$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: n/5Q2lXCKqVKTHj3+rE/k1NFqSwo8v8JMvk8VybScU8= Subject key identifier: 15:F1:C5:C2:39:9C:2E:45:AA:4A:C3:82:48:1B:8F:9D:11:F8:E6:B0 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 14D5CBD7CDD76165F946EBA0EAE6B38358BEB281 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:21:12 +0000 ROA not before: Fri 13 Sep 2024 05:16:12 +0000 ROA not after: Fri 12 Sep 2025 05:21:12 +0000 asID: 216324 IP address blocks: 2a14:7581:201::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d5:cb:d7:cd:d7:61:65:f9:46:eb:a0:ea:e6:b3:83:58:be:b2:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:16:12 2024 GMT Not After : Sep 12 05:21:12 2025 GMT Subject: CN=15F1C5C2399C2E45AA4AC382481B8F9D11F8E6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:82:c0:e3:44:12:cb:54:41:f9:b0:ee:cc:d8: b0:bb:2f:78:70:08:a4:7a:74:26:51:53:7d:8a:eb: 39:d0:4d:7a:e0:09:68:11:15:cb:58:e3:1c:ba:1f: b8:2a:28:a3:71:ae:60:01:28:a8:a5:ea:49:03:73: 57:7b:8e:72:56:97:25:9c:13:66:e1:16:7c:b9:c0: f7:95:5b:7b:7d:3f:bf:a5:ed:a7:12:2b:97:f1:b7: 01:f1:f8:18:dd:a3:f8:de:c0:17:51:0e:6c:7e:cd: 2f:26:66:bb:8c:d6:04:07:16:0d:9b:5b:41:3f:75: 7a:f7:2e:0e:15:bb:fc:1d:e6:40:11:82:3c:92:fb: 3c:e3:93:a3:b0:4c:d9:bc:3a:bc:f6:e7:59:fe:bd: 35:af:96:65:84:1b:94:c3:b5:f2:51:e5:c4:87:26: f6:04:f9:d8:ff:72:9b:bb:3c:4b:4c:d2:a6:6b:ed: 68:89:b3:89:fb:97:73:44:75:b1:3c:ff:6a:10:b8: b3:29:f4:cd:42:ba:f9:51:af:6b:fa:de:76:97:b6: 29:f6:14:90:b6:4c:ae:81:c7:38:cf:a1:fb:1a:80: aa:ea:a3:62:4f:89:33:ca:60:9a:fb:b5:82:de:ed: 2d:6b:c6:5b:94:b5:dd:7d:0d:2f:fd:86:ef:5d:a2: 8b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F1:C5:C2:39:9C:2E:45:AA:4A:C3:82:48:1B:8F:9D:11:F8:E6:B0 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230313a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:201::/48 Signature Algorithm: sha256WithRSAEncryption 22:6c:3e:63:ac:69:c9:ac:60:6d:63:f8:77:e0:b3:e0:48:37: 0c:a5:b7:16:97:4e:bb:95:13:14:39:02:be:f4:d0:39:b5:a4: cd:95:a3:5b:a2:22:bc:62:d4:3d:34:32:7d:a9:00:04:d2:f9: 91:3e:d4:2a:fe:8d:1e:2d:a5:89:14:0f:99:3e:b1:da:58:bd: d8:3d:be:03:ec:0a:49:19:cc:65:67:21:06:fb:0f:fd:5b:77: b3:fa:92:b9:0c:78:47:53:98:93:03:5f:06:9b:40:ab:96:b4: 5b:f9:65:eb:2c:4e:44:fb:c9:11:50:e5:a4:ff:b9:82:ed:12: 80:de:70:45:55:f7:ec:65:ab:01:48:0c:03:82:cd:1c:c5:81: 34:db:28:55:44:0c:2d:0a:11:be:6d:50:b0:97:ce:2b:d2:32: 51:83:61:2c:1b:87:f4:12:76:e4:9e:05:d0:5f:34:03:c0:10: 26:a3:b3:3d:10:7a:a9:63:83:c9:91:e2:64:ea:69:d0:7c:e2: 9b:2e:e8:0b:9b:f0:73:ae:6a:7a:dd:6c:e7:fa:b9:46:c6:a2: 34:a1:a0:66:40:67:a7:4d:5d:ea:ad:49:62:b6:d3:84:61:ba: 09:23:6b:f4:d9:d4:4a:04:f3:96:10:4c:c3:40:df:5a:7a:62: d5:61:c9:43 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUFNXL183XYWX5Ruug6uazg1i+soEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE2MTJaFw0yNTA5MTIwNTIxMTJaMDMxMTAvBgNV BAMTKDE1RjFDNUMyMzk5QzJFNDVBQTRBQzM4MjQ4MUI4RjlEMTFGOEU2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6gsDjRBLLVEH5sO7M2LC7L3hw CKR6dCZRU32K6znQTXrgCWgRFctY4xy6H7gqKKNxrmABKKil6kkDc1d7jnJWlyWc E2bhFny5wPeVW3t9P7+l7acSK5fxtwHx+Bjdo/jewBdRDmx+zS8mZruM1gQHFg2b W0E/dXr3Lg4Vu/wd5kARgjyS+zzjk6OwTNm8Orz251n+vTWvlmWEG5TDtfJR5cSH JvYE+dj/cpu7PEtM0qZr7WiJs4n7l3NEdbE8/2oQuLMp9M1CuvlRr2v63naXtin2 FJC2TK6BxzjPofsagKrqo2JPiTPKYJr7tYLe7S1rxluUtd19DS/9hu9doou/AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUFfHFwjmcLkWqSsOCSBuPnRH45rAwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECATANBgkqhkiG9w0BAQsFAAOCAQEAImw+ Y6xpyaxgbWP4d+Cz4Eg3DKW3FpdOu5UTFDkCvvTQObWkzZWjW6IivGLUPTQyfakA BNL5kT7UKv6NHi2liRQPmT6x2li92D2+A+wKSRnMZWchBvsP/Vt3s/qSuQx4R1OY kwNfBptAq5a0W/ll6yxORPvJEVDlpP+5gu0SgN5wRVX37GWrAUgMA4LNHMWBNNso VUQMLQoRvm1QsJfOK9IyUYNhLBuH9BJ25J4F0F80A8AQJqOzPRB6qWODyZHiZOpp 0Hzimy7oC5vwc65qet1s5/q5RsaiNKGgZkBnp01d6q1JYrbThGG6CSNr9NnUSgTz lhBMw0DfWnpi1WHJQw== -----END CERTIFICATE-----Generated at Thu Sep 19 13:12:07 2024 by rpki-client on console-ams.rpki-client.org