$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: n1/3ZU4wJomjXHInjpzXQsl+pMItBNPnaCrqnaz2RRA= Subject key identifier: F0:9A:C9:93:B6:5E:9A:29:AC:B2:62:47:6C:98:B6:F3:3B:19:39:E2 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3EE625C0C9FDF4E573F4DBC11A4B463C28F5E10B Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:22:11 +0000 ROA not before: Fri 13 Sep 2024 05:17:11 +0000 ROA not after: Fri 12 Sep 2025 05:22:11 +0000 asID: 216324 IP address blocks: 2a14:7581:204::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e6:25:c0:c9:fd:f4:e5:73:f4:db:c1:1a:4b:46:3c:28:f5:e1:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:17:11 2024 GMT Not After : Sep 12 05:22:11 2025 GMT Subject: CN=F09AC993B65E9A29ACB262476C98B6F33B1939E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:43:ad:d2:3d:15:b5:ee:f3:09:dd:18:f3:58: 2a:bb:ac:46:df:b2:bd:7c:25:89:52:8d:80:6a:1c: 9b:fa:0f:8b:72:b8:8d:a8:62:43:1a:6e:00:84:f3: d5:56:8f:b4:29:73:58:a6:42:9f:9f:06:73:1c:74: 3a:50:36:93:43:dc:0f:a5:83:3f:fe:ff:8f:46:af: a5:42:a9:b0:fa:fb:37:99:1b:b7:88:bf:91:93:1a: 31:b9:a7:6d:88:2c:c3:84:70:64:ee:5a:b6:6f:91: 4e:15:e5:68:1f:27:7a:ea:9e:8b:f6:2a:74:1e:ca: ba:f3:fc:76:62:90:bb:6c:f5:90:d5:57:d4:c8:ca: f4:fa:31:2f:28:c2:ca:3d:7f:00:d2:d0:84:8d:ce: ef:79:e4:7d:57:03:28:69:79:fc:82:d4:90:7d:56: 85:6e:7a:2d:45:91:ea:ce:a1:24:82:c1:6b:1b:b9: e0:10:fb:ea:1a:33:47:3b:c8:84:89:32:27:03:8c: b5:b2:e5:91:57:78:72:4f:0e:03:d2:e8:ef:26:f5: 10:0c:e5:d0:4c:06:8e:72:db:37:47:73:b2:a9:29: 57:84:ab:50:94:46:56:47:d2:99:c0:55:8f:a4:51: 02:bc:1f:70:29:21:38:be:b8:e8:4e:17:b0:34:c3: 0f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9A:C9:93:B6:5E:9A:29:AC:B2:62:47:6C:98:B6:F3:3B:19:39:E2 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:204::/48 Signature Algorithm: sha256WithRSAEncryption bb:4e:92:1a:1a:d7:0e:2e:5b:dd:3b:59:d2:0e:a0:db:dc:0e: 13:12:7f:6b:e0:e3:73:eb:cf:93:99:39:c1:4c:60:ff:17:e7: 01:d8:3d:7c:00:8d:1a:23:7b:15:c2:46:f3:7e:b6:b7:c0:5d: 68:65:d1:8c:0a:93:da:84:50:b3:1f:d6:53:29:65:f8:43:fe: 0b:fe:4e:c3:76:09:ac:b6:20:ad:1a:6c:5f:09:fc:6d:1f:6d: 65:df:10:0d:48:f0:f0:2b:09:25:ad:b8:f3:d1:8a:3d:44:e8: be:9e:61:ba:19:c6:f8:d8:d8:f6:3a:20:20:6c:c8:db:6b:c3: 19:07:ad:63:b0:bb:f5:af:b8:9b:65:e4:b4:9a:dd:9a:d9:cd: b3:d0:1c:d7:4e:81:54:0f:dc:a6:b6:8a:98:51:87:ea:60:1e: fe:d2:7e:93:c6:df:db:ce:fe:40:87:57:f2:4b:04:ee:11:ee: 97:8d:79:9f:cf:d2:56:39:1d:c1:81:17:69:e8:d8:08:80:96: 1d:96:a8:0f:7d:98:01:b4:04:3e:44:57:4d:af:20:66:e9:93: 38:fc:3f:d6:c5:2e:d4:97:cb:01:3a:e0:53:56:e9:9c:81:cd: eb:a1:7a:38:4f:d5:f5:47:69:87:3f:dc:35:e1:fe:c7:b3:55: d7:8d:30:ba -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPuYlwMn99OVz9NvBGktGPCj14QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE3MTFaFw0yNTA5MTIwNTIyMTFaMDMxMTAvBgNV BAMTKEYwOUFDOTkzQjY1RTlBMjlBQ0IyNjI0NzZDOThCNkYzM0IxOTM5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuQ63SPRW17vMJ3RjzWCq7rEbf sr18JYlSjYBqHJv6D4tyuI2oYkMabgCE89VWj7Qpc1imQp+fBnMcdDpQNpND3A+l gz/+/49Gr6VCqbD6+zeZG7eIv5GTGjG5p22ILMOEcGTuWrZvkU4V5WgfJ3rqnov2 KnQeyrrz/HZikLts9ZDVV9TIyvT6MS8owso9fwDS0ISNzu955H1XAyhpefyC1JB9 VoVuei1FkerOoSSCwWsbueAQ++oaM0c7yISJMicDjLWy5ZFXeHJPDgPS6O8m9RAM 5dBMBo5y2zdHc7KpKVeEq1CURlZH0pnAVY+kUQK8H3ApITi+uOhOF7A0ww93AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU8JrJk7ZemimssmJHbJi28zsZOeIwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECBDANBgkqhkiG9w0BAQsFAAOCAQEAu06S GhrXDi5b3TtZ0g6g29wOExJ/a+Djc+vPk5k5wUxg/xfnAdg9fACNGiN7FcJG8362 t8BdaGXRjAqT2oRQsx/WUyll+EP+C/5Ow3YJrLYgrRpsXwn8bR9tZd8QDUjw8CsJ Ja2489GKPUTovp5huhnG+NjY9jogIGzI22vDGQetY7C79a+4m2XktJrdmtnNs9Ac 106BVA/cpraKmFGH6mAe/tJ+k8bf287+QIdX8ksE7hHul415n8/SVjkdwYEXaejY CICWHZaoD32YAbQEPkRXTa8gZumTOPw/1sUu1JfLATrgU1bpnIHN66F6OE/V9Udp hz/cNeH+x7NV140wug== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org