$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: lQubaqydAzJkCeiPO2a+oD2TNpyI4WStvyxbcIOAQTw= Subject key identifier: 04:BF:9E:EC:43:E2:F7:34:BC:5D:C6:D0:4E:E0:B9:D4:E4:6F:A9:7D Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3FAB66C3926F4053FF5EF0051279EA26EAF4C050 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 15 Jun 2024 14:14:36 +0000 ROA not before: Sat 15 Jun 2024 14:09:36 +0000 ROA not after: Sat 14 Jun 2025 14:14:36 +0000 asID: 215729 IP address blocks: 2a14:7581:2020::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ab:66:c3:92:6f:40:53:ff:5e:f0:05:12:79:ea:26:ea:f4:c0:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Jun 15 14:09:36 2024 GMT Not After : Jun 14 14:14:36 2025 GMT Subject: CN=04BF9EEC43E2F734BC5DC6D04EE0B9D4E46FA97D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:06:26:be:99:e8:d7:08:02:10:99:10:23:4d: 87:a3:c9:14:33:3f:34:d3:b5:d1:f1:7e:22:cf:81: 2c:dd:4c:22:16:70:d9:2c:8d:89:4f:22:ab:8c:e5: a8:d2:ac:68:48:49:b2:c6:74:f4:69:71:00:1c:f0: 2f:52:bc:ac:cf:98:d3:24:8b:0b:37:79:71:64:65: 04:91:6a:aa:5b:43:23:4f:08:91:42:6d:4d:73:8d: f4:4d:48:d6:cd:10:ca:57:1f:bf:60:d8:cc:61:df: 89:ac:a4:11:d3:16:2d:85:6f:c2:43:1f:6a:76:ba: e6:47:dc:e0:60:fb:e9:58:21:c6:fc:d0:99:2b:2e: 07:57:fa:b0:1b:03:e6:25:67:68:02:d3:94:ee:1b: 0f:9f:c6:6c:8e:d4:62:26:d0:12:f3:88:ca:fa:e7: ce:5e:8b:c2:a6:c0:87:57:23:1f:f2:11:36:de:ba: 4e:48:52:c8:c4:d6:27:28:67:16:7b:4c:f6:96:e0: 74:5c:ed:34:8c:aa:4e:a5:c5:54:00:a1:07:a2:d0: 4a:c9:8f:63:f5:9e:97:ad:55:3b:8e:ac:46:f3:b6: aa:1d:94:da:46:83:8a:b9:ab:f4:a2:b0:df:2c:56: 4e:2b:08:df:90:45:c0:ec:01:1b:03:38:f2:66:d3: 9a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BF:9E:EC:43:E2:F7:34:BC:5D:C6:D0:4E:E0:B9:D4:E4:6F:A9:7D X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323032303a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2020::/48 Signature Algorithm: sha256WithRSAEncryption 62:f8:57:fd:a4:2f:29:f3:95:e9:12:90:87:74:4d:2d:ac:7b: f3:9c:d3:ef:1f:d4:87:02:69:93:da:6f:bc:7c:53:73:75:0c: b0:43:f6:99:f8:34:31:8f:4f:7c:ff:e1:a2:6c:f8:fb:31:1d: 1f:10:04:61:8c:2f:d6:bb:d2:87:bf:a9:2f:cd:3c:7b:d7:65: da:4b:90:9e:08:50:e7:14:ad:03:61:26:07:42:85:34:b9:6e: 27:32:49:12:1a:c5:79:30:db:69:c7:96:35:64:c6:cf:d7:76: 10:24:4d:d1:09:a6:1c:68:e8:64:b4:e2:26:8d:60:79:bc:97: e9:98:9a:05:ec:de:fa:c4:e8:14:8d:47:c3:c4:e5:ba:aa:21: ac:8f:be:b7:cc:19:1f:10:62:49:c7:ed:da:eb:9f:05:32:f5: bf:ff:e1:f5:e0:5b:60:f8:b2:93:d6:c8:da:16:3d:79:1d:78: 74:5c:a5:5f:c7:14:ad:0d:5e:f5:6e:02:37:70:ba:85:ae:d6: 6b:f3:71:f3:21:d0:71:bd:32:ad:54:d8:82:6e:13:f2:64:d3: ba:6b:97:7f:b6:33:d5:04:a7:e1:f9:f7:f1:2f:64:23:dd:ce: 66:96:8b:80:f0:a1:cd:dd:e4:37:ff:b4:28:a3:fe:ea:8b:7d: 1c:08:e7:53 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUP6tmw5JvQFP/XvAFEnnqJur0wFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA2MTUxNDA5MzZaFw0yNTA2MTQxNDE0MzZaMDMxMTAvBgNV BAMTKDA0QkY5RUVDNDNFMkY3MzRCQzVEQzZEMDRFRTBCOUQ0RTQ2RkE5N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Bia+mejXCAIQmRAjTYejyRQz PzTTtdHxfiLPgSzdTCIWcNksjYlPIquM5ajSrGhISbLGdPRpcQAc8C9SvKzPmNMk iws3eXFkZQSRaqpbQyNPCJFCbU1zjfRNSNbNEMpXH79g2Mxh34mspBHTFi2Fb8JD H2p2uuZH3OBg++lYIcb80JkrLgdX+rAbA+YlZ2gC05TuGw+fxmyO1GIm0BLziMr6 585ei8KmwIdXIx/yETbeuk5IUsjE1icoZxZ7TPaW4HRc7TSMqk6lxVQAoQei0ErJ j2P1npetVTuOrEbztqodlNpGg4q5q/SisN8sVk4rCN+QRcDsARsDOPJm05qbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUBL+e7EPi9zS8XcbQTuC51ORvqX0wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMjMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSAgMA0GCSqGSIb3DQEBCwUAA4IBAQBi +Ff9pC8p85XpEpCHdE0trHvznNPvH9SHAmmT2m+8fFNzdQywQ/aZ+DQxj098/+Gi bPj7MR0fEARhjC/Wu9KHv6kvzTx712XaS5CeCFDnFK0DYSYHQoU0uW4nMkkSGsV5 MNtpx5Y1ZMbP13YQJE3RCaYcaOhktOImjWB5vJfpmJoF7N76xOgUjUfDxOW6qiGs j763zBkfEGJJx+3a658FMvW//+H14Ftg+LKT1sjaFj15HXh0XKVfxxStDV71bgI3 cLqFrtZr83HzIdBxvTKtVNiCbhPyZNO6a5d/tjPVBKfh+ffxL2Qj3c5mlouA8KHN 3eQ3/7Qoo/7qi30cCOdT -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org