$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: cm2MNpf5O/Wz7YSxJY6UMpCsFnanycSI1FmavljoCwc= Subject key identifier: F1:D1:7E:1D:BD:C8:5C:71:4C:9B:3F:28:A8:87:91:67:FF:90:03:AC Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 4244522ACA44F6E96E6A4AD7639954AA9B49B07D Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:22:30 +0000 ROA not before: Fri 13 Sep 2024 05:17:30 +0000 ROA not after: Fri 12 Sep 2025 05:22:30 +0000 asID: 216324 IP address blocks: 2a14:7581:205::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:44:52:2a:ca:44:f6:e9:6e:6a:4a:d7:63:99:54:aa:9b:49:b0:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:17:30 2024 GMT Not After : Sep 12 05:22:30 2025 GMT Subject: CN=F1D17E1DBDC85C714C9B3F28A8879167FF9003AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:1c:26:8d:53:79:ed:03:fb:99:5b:b1:64: a9:9b:3f:f2:5d:09:c8:52:3f:64:f0:2d:d4:db:88: 06:e5:bd:fc:b4:df:5f:84:b9:96:ff:5f:66:a7:a5: 88:1a:39:c3:67:8c:9f:c1:ed:7e:0b:65:3c:50:d5: 61:68:5f:08:44:10:4d:d8:2e:9e:42:be:44:9d:4a: f4:2d:fa:a3:2a:63:b0:66:0e:43:2e:3e:69:36:43: 09:91:79:e4:8f:c6:82:cf:4d:c3:c5:bb:7e:50:aa: ac:68:f0:b0:f5:d4:7f:cc:2d:ef:14:50:48:a6:e4: 62:5f:63:42:ab:44:b6:9e:80:28:79:d2:f1:45:0d: 6d:45:59:81:9c:0a:59:a6:0c:14:48:18:86:39:7f: fe:80:f8:95:3f:fe:c7:c2:92:50:38:62:01:10:33: d1:16:16:6a:6b:7f:da:ff:50:1b:8c:50:bd:98:2e: bf:b0:49:9f:38:12:ec:c8:10:67:ff:af:6d:a5:ec: 58:35:9f:c5:eb:8e:17:c5:f3:0e:15:ef:1b:df:b2: 75:0b:10:c7:0c:2e:16:71:80:3c:a2:ed:b6:4a:20: 65:33:9e:f0:78:9d:f1:c6:c6:f5:5f:e0:9c:53:e7: 67:88:84:d3:18:ec:34:d1:c9:df:43:2e:d0:66:21: 94:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D1:7E:1D:BD:C8:5C:71:4C:9B:3F:28:A8:87:91:67:FF:90:03:AC X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:205::/48 Signature Algorithm: sha256WithRSAEncryption 30:2b:d5:7e:3f:3b:59:7b:a3:2c:e2:a4:80:d6:b7:51:ef:45: 60:5b:4f:fa:73:58:2b:34:a8:ac:b7:30:7f:4c:84:b7:ab:dd: ee:e8:df:24:0c:b4:20:2d:88:3c:26:b7:07:98:0c:2e:9f:14: b5:19:ae:30:79:9e:2e:45:cd:20:51:27:44:04:3d:0a:92:3d: 9d:1a:cf:31:c7:ac:0a:52:df:ed:2c:c3:ee:8b:23:c3:05:b8: 18:a9:8a:32:f8:a5:00:43:21:5d:e6:17:18:9b:b8:05:5d:26: 61:09:26:fc:89:9d:2c:8d:7b:7e:60:ee:7b:99:6c:53:ee:10: 87:a2:8f:bb:80:a7:54:cd:f0:e0:ee:75:b4:56:6a:d5:d0:cf: 02:68:0c:f9:a5:e9:71:1a:93:70:ce:3e:04:56:14:ab:3d:dc: 5c:70:8b:93:e4:a6:7e:7c:00:94:1e:e0:f3:87:93:99:04:50: e2:17:5f:38:44:e0:4f:ae:f1:c9:12:42:30:5e:51:ba:54:bb: 39:60:7d:7f:8d:f8:b6:f4:a0:36:17:4a:1d:97:14:f1:8b:f6: d4:78:b3:b1:56:f0:93:c0:c5:64:f1:b2:2d:a4:94:ea:89:99: 19:1c:cc:d9:86:2a:37:2c:b7:b0:92:3e:c1:8e:d1:bd:8d:2f: dc:c6:ca:60 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUQkRSKspE9uluakrXY5lUqptJsH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE3MzBaFw0yNTA5MTIwNTIyMzBaMDMxMTAvBgNV BAMTKEYxRDE3RTFEQkRDODVDNzE0QzlCM0YyOEE4ODc5MTY3RkY5MDAzQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/BBwmjVN57QP7mVuxZKmbP/Jd CchSP2TwLdTbiAblvfy031+EuZb/X2anpYgaOcNnjJ/B7X4LZTxQ1WFoXwhEEE3Y Lp5CvkSdSvQt+qMqY7BmDkMuPmk2QwmReeSPxoLPTcPFu35Qqqxo8LD11H/MLe8U UEim5GJfY0KrRLaegCh50vFFDW1FWYGcClmmDBRIGIY5f/6A+JU//sfCklA4YgEQ M9EWFmprf9r/UBuMUL2YLr+wSZ84EuzIEGf/r22l7Fg1n8XrjhfF8w4V7xvfsnUL EMcMLhZxgDyi7bZKIGUznvB4nfHGxvVf4JxT52eIhNMY7DTRyd9DLtBmIZSjAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU8dF+Hb3IXHFMmz8oqIeRZ/+QA6wwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECBTANBgkqhkiG9w0BAQsFAAOCAQEAMCvV fj87WXujLOKkgNa3Ue9FYFtP+nNYKzSorLcwf0yEt6vd7ujfJAy0IC2IPCa3B5gM Lp8UtRmuMHmeLkXNIFEnRAQ9CpI9nRrPMcesClLf7SzD7osjwwW4GKmKMvilAEMh XeYXGJu4BV0mYQkm/ImdLI17fmDue5lsU+4Qh6KPu4CnVM3w4O51tFZq1dDPAmgM +aXpcRqTcM4+BFYUqz3cXHCLk+SmfnwAlB7g84eTmQRQ4hdfOETgT67xyRJCMF5R ulS7OWB9f434tvSgNhdKHZcU8Yv21HizsVbwk8DFZPGyLaSU6omZGRzM2YYqNyy3 sJI+wY7RvY0v3MbKYA== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org