$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: s+MXQ9hfwW10K7hLMsKp/0JkjG3a0N7sB5hEJN6rt20= Subject key identifier: DB:B6:84:DA:12:B4:16:06:61:9F:99:8C:9F:58:C4:6C:C2:23:22:25 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3DB90F340EAF75434EDAD062B1B5F97386710C89 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:21:28 +0000 ROA not before: Fri 13 Sep 2024 05:16:28 +0000 ROA not after: Fri 12 Sep 2025 05:21:28 +0000 asID: 216324 IP address blocks: 2a14:7581:202::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b9:0f:34:0e:af:75:43:4e:da:d0:62:b1:b5:f9:73:86:71:0c:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:16:28 2024 GMT Not After : Sep 12 05:21:28 2025 GMT Subject: CN=DBB684DA12B41606619F998C9F58C46CC2232225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:e2:be:c1:74:b8:8b:3e:7d:d8:66:0b:c9: 69:7d:38:a7:f5:2a:55:8b:a9:56:81:0c:f0:db:45: 22:bc:bf:d9:c9:5f:68:3c:3d:e7:81:d5:96:2f:93: 30:54:d9:2c:2f:0d:39:c6:17:91:d3:cb:04:01:8b: 8a:83:0d:8c:ec:67:05:29:61:ad:f0:c3:87:8c:8d: 1c:ad:84:3f:83:17:2e:3c:c7:32:8f:cd:0f:99:89: fb:a8:36:a2:66:0b:9d:32:d7:17:58:bf:39:ce:b9: e9:1d:26:0b:d4:3d:79:11:d7:52:4f:36:79:b3:ee: 46:85:07:47:4e:2b:46:4f:5f:ff:10:e7:f2:ec:ba: 07:0e:7a:b2:85:4b:25:cd:6a:6e:ad:6d:76:34:47: 32:85:d7:ae:97:c4:03:96:0f:f2:65:2f:0d:b0:56: 41:3c:d7:cc:91:b9:62:8c:d7:75:1a:70:59:18:f3: 94:9a:f9:01:84:0e:c8:91:71:b4:c0:ba:e4:c5:0f: 38:dd:b0:a2:85:b3:fa:fc:6b:48:d3:28:f4:8f:ba: c4:2c:de:79:41:24:cf:bf:53:83:3c:83:04:fb:be: fa:78:11:e7:e6:54:57:4c:fc:34:ba:36:3c:1c:1d: f2:81:88:9f:52:bc:3c:52:d8:b2:9d:5e:c8:9e:57: f9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B6:84:DA:12:B4:16:06:61:9F:99:8C:9F:58:C4:6C:C2:23:22:25 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230323a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:202::/48 Signature Algorithm: sha256WithRSAEncryption 66:f9:ca:63:38:b1:5d:44:82:a3:2b:bd:9a:93:63:72:ff:6e: f2:a9:f5:f2:f1:44:4b:5e:cb:22:21:25:c6:2f:5e:fb:92:c7: a0:ee:a1:b9:af:05:f7:d3:a5:1e:6e:42:3c:26:39:d0:0d:11: c1:b3:67:28:44:76:b8:a2:c7:15:ac:05:d9:87:13:d7:2b:93: 66:c7:d1:69:18:08:36:97:d4:8e:42:12:41:db:fe:97:ec:ee: 57:8e:d2:1b:03:a3:08:ae:5b:2d:23:5e:db:e3:17:9f:f0:c3: c6:90:52:a8:73:34:86:79:37:da:00:bb:e7:80:6a:77:3e:4f: 22:65:be:13:4e:f5:4a:b7:2a:53:35:6d:12:ee:13:c2:5c:3b: 0a:01:51:4a:8c:dc:a1:c8:b4:9f:8b:a7:4e:c7:34:68:78:1a: 65:f4:57:17:ca:d7:ce:49:0b:12:7c:00:bb:18:3f:c5:f1:02: 67:78:b5:e6:ef:aa:bf:cb:d7:85:ab:5e:e6:58:2e:d2:ec:6e: 3a:a3:35:94:63:eb:f6:07:9c:75:da:b5:9c:d5:fa:37:3b:9f: 34:75:c4:68:d7:31:fd:d2:eb:c2:6a:eb:0f:0f:88:3c:3f:95: e9:48:5e:aa:f3:8d:69:fb:d8:3f:d0:ab:b5:6c:d0:ab:a1:fa: 57:3f:ae:2c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPbkPNA6vdUNO2tBisbX5c4ZxDIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE2MjhaFw0yNTA5MTIwNTIxMjhaMDMxMTAvBgNV BAMTKERCQjY4NERBMTJCNDE2MDY2MTlGOTk4QzlGNThDNDZDQzIyMzIyMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsZOK+wXS4iz592GYLyWl9OKf1 KlWLqVaBDPDbRSK8v9nJX2g8PeeB1ZYvkzBU2SwvDTnGF5HTywQBi4qDDYzsZwUp Ya3ww4eMjRythD+DFy48xzKPzQ+ZifuoNqJmC50y1xdYvznOuekdJgvUPXkR11JP Nnmz7kaFB0dOK0ZPX/8Q5/LsugcOerKFSyXNam6tbXY0RzKF166XxAOWD/JlLw2w VkE818yRuWKM13UacFkY85Sa+QGEDsiRcbTAuuTFDzjdsKKFs/r8a0jTKPSPusQs 3nlBJM+/U4M8gwT7vvp4EefmVFdM/DS6NjwcHfKBiJ9SvDxS2LKdXsieV/lJAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU27aE2hK0FgZhn5mMn1jEbMIjIiUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECAjANBgkqhkiG9w0BAQsFAAOCAQEAZvnK YzixXUSCoyu9mpNjcv9u8qn18vFES17LIiElxi9e+5LHoO6hua8F99OlHm5CPCY5 0A0RwbNnKER2uKLHFawF2YcT1yuTZsfRaRgINpfUjkISQdv+l+zuV47SGwOjCK5b LSNe2+MXn/DDxpBSqHM0hnk32gC754Bqdz5PImW+E071SrcqUzVtEu4Twlw7CgFR Sozcoci0n4unTsc0aHgaZfRXF8rXzkkLEnwAuxg/xfECZ3i15u+qv8vXhate5lgu 0uxuOqM1lGPr9gecddq1nNX6NzufNHXEaNcx/dLrwmrrDw+IPD+V6UheqvONafvY P9CrtWzQq6H6Vz+uLA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org