$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa File: 326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa (raw, json) Hash identifier: M62bfEYxpMPf6gAM/xsGFcWOm9QaUbAkySyebsbb+00= Subject key identifier: 95:03:1A:57:A5:DC:19:54:94:92:93:96:19:14:23:65:DE:D0:DD:F6 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 598AD32B51E25E0F09EFB307D69F29FD4017F0F2 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 09:02:23 +0000 ROA not before: Fri 13 Sep 2024 08:57:23 +0000 ROA not after: Fri 12 Sep 2025 09:02:23 +0000 asID: 216324 IP address blocks: 2a14:7581:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:8a:d3:2b:51:e2:5e:0f:09:ef:b3:07:d6:9f:29:fd:40:17:f0:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 08:57:23 2024 GMT Not After : Sep 12 09:02:23 2025 GMT Subject: CN=95031A57A5DC19549492939619142365DED0DDF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fb:9b:38:89:f6:2e:7b:6c:67:20:7d:71:1d: 15:29:fb:3c:f7:df:da:92:a0:9a:8a:2c:ed:f4:2a: c6:44:25:ab:d3:73:80:db:d1:9b:b1:8d:9a:a2:34: 8a:8c:e6:0b:f6:6e:a0:0f:57:89:d9:f7:79:8f:a0: b8:76:f8:31:c2:28:c9:ac:53:25:53:b5:06:46:2e: 11:a6:e4:cc:6a:92:31:10:5a:9c:44:03:0a:c5:29: 68:d3:48:0f:a3:56:d2:3d:0e:d0:9e:7b:3a:20:06: e8:d7:c3:df:1a:ac:2c:c0:2b:8a:6e:c7:58:9f:44: 75:54:a3:cc:78:13:50:1a:83:76:4d:d9:d7:24:11: e3:27:9b:20:b0:e4:86:ce:e7:49:f5:56:7f:35:d1: 33:38:ac:c0:10:3c:ea:8f:9f:cc:f0:25:9f:e0:6e: 7e:bb:7f:c5:f2:b2:f5:f3:6f:19:bc:ab:b6:20:f3: 9c:8f:ea:24:b3:48:be:08:74:43:19:f9:c3:40:d3: ca:1d:f5:8f:31:91:86:1b:1b:56:c2:db:db:06:b6: 45:34:06:47:53:39:a8:5c:b9:9a:8e:8f:c3:07:93: 4e:3a:0a:dc:4c:9d:27:37:21:85:33:4e:03:88:ab: a5:9a:86:71:07:82:4d:cc:09:79:21:95:ed:bd:ef: e5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:03:1A:57:A5:DC:19:54:94:92:93:96:19:14:23:65:DE:D0:DD:F6 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230303a3a2f34302d3430203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:200::/40 Signature Algorithm: sha256WithRSAEncryption 1d:f5:73:6f:10:d4:ca:43:0f:6f:0c:df:ce:39:b9:ed:1b:bd: 6d:c3:17:7b:7a:4c:48:1e:9e:77:02:2b:9a:37:a9:74:db:c6: 44:e4:a6:4e:ac:c9:13:80:72:51:08:27:dd:03:0f:5c:8a:c2: e7:23:e7:ba:12:55:5b:1c:ea:22:b1:5d:52:73:fe:64:56:75: 36:29:22:77:60:ff:db:7f:56:c7:1e:3d:07:5f:92:74:7c:79: 32:c1:bf:a8:54:7e:4a:51:66:8a:99:63:28:cc:ae:6e:77:17: 55:59:20:49:bf:73:10:1e:53:a5:6a:0f:b8:2a:cd:9e:22:53: d5:12:99:8c:6d:d0:fc:cd:00:59:37:56:a1:4f:92:3e:70:c9: 7b:53:41:08:3e:a6:b5:d3:b7:63:3b:dd:41:76:b8:7b:17:60: 93:e4:ba:9b:15:54:18:a4:44:76:99:31:a7:21:55:36:0c:49: 1f:38:ac:14:ed:c8:b4:c3:bd:fe:88:c4:23:ef:57:b8:52:e9: 9b:b0:4d:76:67:bb:32:6f:9b:1d:f6:3c:70:76:1c:7a:4b:ac: eb:40:b8:05:e2:d0:76:23:c5:88:cb:5c:d0:45:cb:ed:34:ac: 3e:7b:98:c2:77:e2:ca:00:8d:76:04:b4:22:51:9f:7f:a3:c3: 0d:08:50:5b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUWYrTK1HiXg8J77MH1p8p/UAX8PIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwODU3MjNaFw0yNTA5MTIwOTAyMjNaMDMxMTAvBgNV BAMTKDk1MDMxQTU3QTVEQzE5NTQ5NDkyOTM5NjE5MTQyMzY1REVEMERERjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS+5s4ifYue2xnIH1xHRUp+zz3 39qSoJqKLO30KsZEJavTc4Db0ZuxjZqiNIqM5gv2bqAPV4nZ93mPoLh2+DHCKMms UyVTtQZGLhGm5MxqkjEQWpxEAwrFKWjTSA+jVtI9DtCeezogBujXw98arCzAK4pu x1ifRHVUo8x4E1Aag3ZN2dckEeMnmyCw5IbO50n1Vn810TM4rMAQPOqPn8zwJZ/g bn67f8XysvXzbxm8q7Yg85yP6iSzSL4IdEMZ+cNA08od9Y8xkYYbG1bC29sGtkU0 BkdTOahcuZqOj8MHk046CtxMnSc3IYUzTgOIq6WahnEHgk3MCXkhle297+XrAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUlQMaV6XcGVSUkpOWGRQjZd7Q3fYwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYECMA0GCSqGSIb3DQEBCwUAA4IBAQAd9XNv ENTKQw9vDN/OObntG71twxd7ekxIHp53AiuaN6l028ZE5KZOrMkTgHJRCCfdAw9c isLnI+e6ElVbHOoisV1Sc/5kVnU2KSJ3YP/bf1bHHj0HX5J0fHkywb+oVH5KUWaK mWMozK5udxdVWSBJv3MQHlOlag+4Ks2eIlPVEpmMbdD8zQBZN1ahT5I+cMl7U0EI Pqa107djO91Bdrh7F2CT5LqbFVQYpER2mTGnIVU2DEkfOKwU7ci0w73+iMQj71e4 UumbsE12Z7syb5sd9jxwdhx6S6zrQLgF4tB2I8WIy1zQRcvtNKw+e5jCd+LKAI12 BLQiUZ9/o8MNCFBb -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org