$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: bbuwQT1eXr0NV539nUSZ216xcdkEaNnvl/GDwOA9Lgk= Subject key identifier: C0:DA:CA:A7:9E:B9:38:00:AC:DD:42:96:FC:09:C5:0D:61:37:85:A0 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 67B9A1EA078B6B114C27FB84721936CDFE52A400 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:21:59 +0000 ROA not before: Fri 13 Sep 2024 05:16:59 +0000 ROA not after: Fri 12 Sep 2025 05:21:59 +0000 asID: 216324 IP address blocks: 2a14:7581:203::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:b9:a1:ea:07:8b:6b:11:4c:27:fb:84:72:19:36:cd:fe:52:a4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:16:59 2024 GMT Not After : Sep 12 05:21:59 2025 GMT Subject: CN=C0DACAA79EB93800ACDD4296FC09C50D613785A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ee:ad:15:7b:f9:dd:59:ac:06:b6:83:f7:cd: 61:42:8a:08:9c:e3:aa:54:67:86:23:b7:55:2e:df: 92:2d:89:13:1a:8a:09:1a:61:81:8c:20:5c:11:ce: 27:33:fa:81:1d:2f:3b:10:35:a2:ec:a6:9e:6e:4e: 9e:34:ba:43:7a:0c:96:e9:cc:c7:21:a0:6d:06:8f: 89:6f:5f:5a:86:99:b9:35:21:75:d9:dd:fc:60:e9: 4d:f1:14:14:de:0f:bd:55:48:cc:48:52:85:9f:0c: 25:cd:ab:f0:97:da:5d:85:93:43:6a:9a:69:c5:67: a6:f6:b1:62:79:8c:45:5c:26:7b:30:74:fc:9a:9a: f4:d9:55:32:a6:0f:92:53:80:76:34:90:85:3f:ad: 2d:44:eb:ee:06:45:63:cd:87:3b:ff:80:f3:59:7d: ba:95:5d:57:3b:47:6f:89:61:0d:4d:81:97:c8:f9: ec:32:03:3a:c0:85:a3:5d:b7:db:12:2b:a4:66:76: 6f:70:0a:e3:35:e5:4e:fd:ec:5c:5f:9b:c2:4c:60: d4:0c:17:c2:5a:b1:eb:a6:18:6a:82:ef:8b:ca:37: fa:3f:d8:4f:d6:ce:9f:57:ea:36:0c:88:cf:4f:01: d4:7b:9b:d2:43:03:5c:55:4c:fb:6b:3e:05:9f:67: 14:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:DA:CA:A7:9E:B9:38:00:AC:DD:42:96:FC:09:C5:0D:61:37:85:A0 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:203::/48 Signature Algorithm: sha256WithRSAEncryption 69:a1:f0:2d:29:9d:81:6c:40:e9:33:80:47:0b:ef:fd:e0:f0: 6d:39:ca:39:05:e9:6e:16:a0:b0:77:93:d8:f6:60:e2:81:89: 46:d7:7d:d1:fe:b2:29:9f:f7:e0:b0:cf:00:54:f3:8c:fa:2c: 34:2b:e0:9f:f9:dc:ed:8e:8f:0b:c9:13:64:17:01:9b:a7:10: 78:ae:0b:4e:53:a1:36:a6:99:18:dc:d0:20:7c:77:0f:8a:18: 98:4a:c4:5d:fe:0e:9e:c0:81:03:14:49:b2:2f:75:fc:d5:6b: b9:cf:c3:7f:00:71:58:f1:0b:3c:c7:49:7f:2c:2e:2f:4c:e5: 75:30:c8:a0:29:be:72:53:b4:4c:ec:8e:cb:04:44:74:f9:0a: cc:ec:f2:74:75:7d:45:4b:92:f8:28:f0:01:b0:b4:b1:5f:1e: 4e:26:f4:20:57:b4:0d:8d:07:ee:0d:3d:89:a7:95:36:bd:a5: 4f:a9:03:2b:7d:dd:f0:bf:d4:29:46:fe:56:21:87:61:dc:1f: ec:01:35:fc:fc:f0:8c:96:f9:b7:67:40:de:d2:26:c2:7c:2f: ec:4a:e8:79:2d:6e:6f:d4:25:77:88:f9:1e:56:cb:44:8d:7e: b4:09:cb:f6:50:d7:68:ce:12:df:51:77:97:5e:fe:87:72:a8: 98:a8:b6:e1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUZ7mh6geLaxFMJ/uEchk2zf5SpAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE2NTlaFw0yNTA5MTIwNTIxNTlaMDMxMTAvBgNV BAMTKEMwREFDQUE3OUVCOTM4MDBBQ0RENDI5NkZDMDlDNTBENjEzNzg1QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb7q0Ve/ndWawGtoP3zWFCigic 46pUZ4Yjt1Uu35ItiRMaigkaYYGMIFwRzicz+oEdLzsQNaLspp5uTp40ukN6DJbp zMchoG0Gj4lvX1qGmbk1IXXZ3fxg6U3xFBTeD71VSMxIUoWfDCXNq/CX2l2Fk0Nq mmnFZ6b2sWJ5jEVcJnswdPyamvTZVTKmD5JTgHY0kIU/rS1E6+4GRWPNhzv/gPNZ fbqVXVc7R2+JYQ1NgZfI+ewyAzrAhaNdt9sSK6Rmdm9wCuM15U797Fxfm8JMYNQM F8JaseumGGqC74vKN/o/2E/Wzp9X6jYMiM9PAdR7m9JDA1xVTPtrPgWfZxRpAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUwNrKp565OACs3UKW/AnFDWE3haAwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECAzANBgkqhkiG9w0BAQsFAAOCAQEAaaHw LSmdgWxA6TOARwvv/eDwbTnKOQXpbhagsHeT2PZg4oGJRtd90f6yKZ/34LDPAFTz jPosNCvgn/nc7Y6PC8kTZBcBm6cQeK4LTlOhNqaZGNzQIHx3D4oYmErEXf4OnsCB AxRJsi91/NVruc/DfwBxWPELPMdJfywuL0zldTDIoCm+clO0TOyOywREdPkKzOzy dHV9RUuS+CjwAbC0sV8eTib0IFe0DY0H7g09iaeVNr2lT6kDK33d8L/UKUb+ViGH Ydwf7AE1/PzwjJb5t2dA3tImwnwv7EroeS1ub9Qld4j5HlbLRI1+tAnL9lDXaM4S 31F3l17+h3KomKi24Q== -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org