$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: jERYXhJ7TYawf/ONqBvNulsW0N1nZwrYrKqh4hF3SsE= Subject key identifier: E1:6B:82:20:CA:FF:A2:76:54:40:C4:E3:CA:C6:48:26:72:6E:85:8E Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 1F1147ED4961DAB66799283B9510606BCCCC6AF1 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 06 Apr 2024 14:18:19 +0000 ROA not before: Sat 06 Apr 2024 14:13:19 +0000 ROA not after: Sat 05 Apr 2025 14:18:19 +0000 asID: 215729 IP address blocks: 2a14:7581:2068::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 27 Jun 2024 17:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:11:47:ed:49:61:da:b6:67:99:28:3b:95:10:60:6b:cc:cc:6a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 6 14:13:19 2024 GMT Not After : Apr 5 14:18:19 2025 GMT Subject: CN=E16B8220CAFFA2765440C4E3CAC64826726E858E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:62:f1:55:a5:73:de:e5:a0:18:9d:a8:e8: 5e:5a:8e:a6:61:9d:46:67:c3:49:91:a1:ef:48:a9: bc:eb:06:7b:dc:8a:7f:c6:97:35:a7:97:b4:8a:11: 4b:41:9d:7f:18:54:0f:c6:b7:65:e4:65:aa:38:f8: 5f:50:b8:7b:5c:27:6b:e4:41:61:41:f4:b8:82:74: d9:bd:d2:43:94:b7:5e:18:57:5f:51:7b:cc:86:5e: d4:29:3c:8b:ca:86:73:9a:7a:d3:37:78:30:c7:72: f8:f5:65:7d:0a:be:0f:8a:d3:f7:c1:7d:1e:58:e5: 56:9a:00:a2:9b:0a:60:1f:06:eb:92:89:2b:53:76: 8c:1a:c2:5e:fd:aa:9a:7a:1f:e2:74:a0:70:63:48: 4c:af:ca:68:f9:0d:23:36:94:a1:05:96:30:cb:a5: 3d:f5:78:0d:40:24:56:3c:48:c7:45:d3:64:7d:3d: e5:ac:53:98:d5:4f:f8:0f:a3:e1:dd:f2:41:a0:3b: b0:dd:6a:1e:8d:99:2e:9f:28:03:09:e8:c8:2b:25: ec:6d:14:83:6e:62:25:e7:02:fc:ad:59:ad:04:5b: 48:19:16:ff:9a:ad:35:b1:71:ec:05:74:84:f1:71: 08:4b:f0:27:35:06:b1:6a:44:38:22:d8:c1:8e:10: 79:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6B:82:20:CA:FF:A2:76:54:40:C4:E3:CA:C6:48:26:72:6E:85:8E X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323036383a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2068::/48 Signature Algorithm: sha256WithRSAEncryption 42:c1:1c:41:7c:c0:23:8d:d5:6d:e7:47:36:72:65:25:d6:b5: f1:73:cc:17:c2:95:b6:c8:0c:12:ba:8a:55:7e:5b:8d:af:6e: e3:33:94:39:ee:01:de:cd:48:d1:36:25:ce:cf:ce:4c:0a:84: 47:3c:39:8d:64:c8:62:42:ff:f2:ec:18:dc:71:db:92:7e:71: 50:a5:96:d0:d5:cd:13:0e:85:19:8e:98:af:7b:68:d7:49:b1: bf:e1:86:ec:68:fe:aa:4e:9d:cd:0f:91:67:be:4b:62:f3:88: 24:9c:bf:28:23:1d:ff:fa:90:f8:4b:c1:0a:6b:27:47:3f:7f: b1:2c:93:7f:a0:79:ae:14:8b:0a:af:cb:5e:be:69:c8:d5:00: 32:85:90:ca:a6:9d:4a:b6:4f:04:58:82:cd:da:37:bf:d6:b0: 41:e6:6e:69:c1:eb:3c:9b:0d:9b:59:1b:b0:d2:56:fd:1c:88: a2:dd:84:53:10:52:ff:9f:8b:74:5d:85:7e:c4:4b:60:59:b7: 9f:4b:0f:64:48:0d:d2:88:3c:42:cf:e7:7a:3c:87:67:13:85: ad:1f:37:a1:70:bb:d2:64:f7:95:60:0b:e2:a6:3f:64:dc:c2: 47:15:83:14:74:f8:37:c8:1d:b8:e5:54:71:b6:11:1a:a8:8a: 19:5c:17:20 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUHxFH7Ulh2rZnmSg7lRBga8zMavEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDYxNDEzMTlaFw0yNTA0MDUxNDE4MTlaMDMxMTAvBgNV BAMTKEUxNkI4MjIwQ0FGRkEyNzY1NDQwQzRFM0NBQzY0ODI2NzI2RTg1OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGoWLxVaVz3uWgGJ2o6F5ajqZh nUZnw0mRoe9IqbzrBnvcin/GlzWnl7SKEUtBnX8YVA/Gt2XkZao4+F9QuHtcJ2vk QWFB9LiCdNm90kOUt14YV19Re8yGXtQpPIvKhnOaetM3eDDHcvj1ZX0Kvg+K0/fB fR5Y5VaaAKKbCmAfBuuSiStTdowawl79qpp6H+J0oHBjSEyvymj5DSM2lKEFljDL pT31eA1AJFY8SMdF02R9PeWsU5jVT/gPo+Hd8kGgO7Ddah6NmS6fKAMJ6MgrJext FINuYiXnAvytWa0EW0gZFv+arTWxcewFdITxcQhL8Cc1BrFqRDgi2MGOEHmlAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU4WuCIMr/onZUQMTjysZIJnJuhY4wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNjM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSBoMA0GCSqGSIb3DQEBCwUAA4IBAQBC wRxBfMAjjdVt50c2cmUl1rXxc8wXwpW2yAwSuopVfluNr27jM5Q57gHezUjRNiXO z85MCoRHPDmNZMhiQv/y7BjccduSfnFQpZbQ1c0TDoUZjpive2jXSbG/4YbsaP6q Tp3ND5Fnvkti84gknL8oIx3/+pD4S8EKaydHP3+xLJN/oHmuFIsKr8tevmnI1QAy hZDKpp1Ktk8EWILN2je/1rBB5m5pwes8mw2bWRuw0lb9HIii3YRTEFL/n4t0XYV+ xEtgWbefSw9kSA3SiDxCz+d6PIdnE4WtHzehcLvSZPeVYAvipj9k3MJHFYMUdPg3 yB245VRxthEaqIoZXBcg -----END CERTIFICATE-----Generated at Thu Jun 27 00:12:36 2024 by rpki-client on console-fra.rpki-client.org