$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: ++uL06QCr9tsvOh4Wr52W6vFPokiVWHu9AlqfMmgpBM= Subject key identifier: D9:6C:E9:D2:D7:3E:BC:6B:F5:3F:54:11:6C:03:E7:06:BA:06:3C:79 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 1D88FD7A19E10997E68D18F3C6AF1EA79345BB76 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 06 Apr 2024 15:36:33 +0000 ROA not before: Sat 06 Apr 2024 15:31:33 +0000 ROA not after: Sat 05 Apr 2025 15:36:33 +0000 asID: 215729 IP address blocks: 2a14:7581:2010::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:88:fd:7a:19:e1:09:97:e6:8d:18:f3:c6:af:1e:a7:93:45:bb:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 6 15:31:33 2024 GMT Not After : Apr 5 15:36:33 2025 GMT Subject: CN=D96CE9D2D73EBC6BF53F54116C03E706BA063C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:04:49:cd:a1:d4:dc:88:56:37:5b:6a:88:8c: 09:62:85:39:6c:a1:32:0f:81:47:66:25:23:07:18: 15:ae:47:f1:ca:94:10:6d:b6:10:a6:eb:83:39:e6: 0f:c7:71:55:c6:2b:86:4b:5b:e2:d7:14:cb:aa:af: a2:c0:c3:b8:1f:25:10:3c:40:50:a0:6f:b6:e4:bf: 97:3d:1b:0c:af:a7:59:d7:16:48:ca:3d:b5:04:1d: b9:f9:2a:4c:18:9c:72:cb:81:40:77:36:4d:6f:74: c1:bd:11:6e:fd:cd:fc:1f:8c:12:22:f1:08:f0:30: af:63:b8:72:a6:54:13:08:29:2c:d3:fc:20:8f:e8: 90:eb:b9:39:d7:52:62:61:fa:d3:48:9b:44:c3:b2: 87:48:de:af:ad:36:8c:b8:14:a6:ea:cd:88:c1:dc: 46:29:ac:a6:71:82:00:e0:03:8a:cc:99:7f:14:65: d7:b7:82:80:38:40:b4:9d:ba:34:f5:0e:45:9e:a7: ef:5c:6f:c9:7c:0f:9b:9e:c6:ac:07:11:67:f8:fe: e2:c7:14:12:ff:24:7f:d4:5e:a8:d1:d2:9f:ee:4c: a8:55:7a:99:bf:6a:6c:20:de:90:50:4e:04:29:8f: 50:49:5b:ad:7f:8b:c0:f3:45:3d:e4:42:0b:f4:34: 26:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6C:E9:D2:D7:3E:BC:6B:F5:3F:54:11:6C:03:E7:06:BA:06:3C:79 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323031303a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2010::/48 Signature Algorithm: sha256WithRSAEncryption 24:82:4e:a1:68:b6:63:0f:02:a1:75:f2:d0:30:f3:b2:53:56: 4d:9a:86:72:fd:9e:1f:62:e5:dd:33:04:dc:eb:60:07:2e:8b: 85:a5:d0:18:13:26:d8:46:b5:8a:ac:6f:b2:cb:40:f9:c7:2b: 47:70:47:61:67:e6:cb:5d:88:c8:6e:6b:6c:a1:7e:fa:b1:97: 62:d8:3e:85:7d:a1:ee:e7:3f:31:bf:6b:34:08:59:f2:56:d4: 16:3f:3a:6f:a8:5b:ff:7e:8e:cc:6a:e0:9b:56:73:96:17:50: ec:2d:57:ab:7d:c7:ea:2f:5f:29:0e:92:56:1a:49:ad:cc:e7: a2:f2:5b:a4:d2:06:52:45:98:82:26:ae:0d:0a:d5:63:c3:80: 31:c2:03:fd:30:fc:fe:42:f9:bd:26:58:b8:3a:64:d4:bc:62: 84:dc:93:8b:e7:dc:a8:43:f3:90:2b:f9:cf:50:3b:3e:2a:35: 27:9b:12:d3:af:64:94:f8:96:c4:17:c6:8a:04:17:b6:79:73: a7:37:58:e9:98:1d:e5:58:12:95:33:03:e3:67:30:b0:65:16: 5f:1a:f1:80:75:dd:2b:7c:66:93:91:0f:4c:f0:74:6a:15:d5: d0:55:e9:a4:96:86:4b:3d:dc:c7:96:0b:25:56:11:d6:7d:22: 23:26:73:73 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUHYj9ehnhCZfmjRjzxq8ep5NFu3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDYxNTMxMzNaFw0yNTA0MDUxNTM2MzNaMDMxMTAvBgNV BAMTKEQ5NkNFOUQyRDczRUJDNkJGNTNGNTQxMTZDMDNFNzA2QkEwNjNDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6BEnNodTciFY3W2qIjAlihTls oTIPgUdmJSMHGBWuR/HKlBBtthCm64M55g/HcVXGK4ZLW+LXFMuqr6LAw7gfJRA8 QFCgb7bkv5c9Gwyvp1nXFkjKPbUEHbn5KkwYnHLLgUB3Nk1vdMG9EW79zfwfjBIi 8QjwMK9juHKmVBMIKSzT/CCP6JDruTnXUmJh+tNIm0TDsodI3q+tNoy4FKbqzYjB 3EYprKZxggDgA4rMmX8UZde3goA4QLSdujT1DkWep+9cb8l8D5uexqwHEWf4/uLH FBL/JH/UXqjR0p/uTKhVepm/amwg3pBQTgQpj1BJW61/i8DzRT3kQgv0NCY5AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU2Wzp0tc+vGv1P1QRbAPnBroGPHkwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSAQMA0GCSqGSIb3DQEBCwUAA4IBAQAk gk6haLZjDwKhdfLQMPOyU1ZNmoZy/Z4fYuXdMwTc62AHLouFpdAYEybYRrWKrG+y y0D5xytHcEdhZ+bLXYjIbmtsoX76sZdi2D6FfaHu5z8xv2s0CFnyVtQWPzpvqFv/ fo7MauCbVnOWF1DsLVerfcfqL18pDpJWGkmtzOei8luk0gZSRZiCJq4NCtVjw4Ax wgP9MPz+Qvm9Jli4OmTUvGKE3JOL59yoQ/OQK/nPUDs+KjUnmxLTr2SU+JbEF8aK BBe2eXOnN1jpmB3lWBKVMwPjZzCwZRZfGvGAdd0rfGaTkQ9M8HRqFdXQVemkloZL PdzHlgslVhHWfSIjJnNz -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org