$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230363a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230363a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: V1hQdHAX5ychM/R35oF1seWXgqF9k8x6wOTmkCpTT60= Subject key identifier: 93:6D:15:43:65:C1:92:BC:03:FB:1E:14:6C:48:85:04:5F:0B:D1:C9 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3DFC4FE18E828C8BCA55422584980C00ECEC0F05 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230363a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:22:42 +0000 ROA not before: Fri 13 Sep 2024 05:17:42 +0000 ROA not after: Fri 12 Sep 2025 05:22:42 +0000 asID: 216324 IP address blocks: 2a14:7581:206::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fc:4f:e1:8e:82:8c:8b:ca:55:42:25:84:98:0c:00:ec:ec:0f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:17:42 2024 GMT Not After : Sep 12 05:22:42 2025 GMT Subject: CN=936D154365C192BC03FB1E146C4885045F0BD1C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:d3:bd:ea:63:33:29:9f:cf:53:70:ee:85: 95:11:1a:67:de:e5:78:e1:66:e8:8f:9b:41:90:7c: dc:5c:ce:37:c3:7e:de:01:ce:87:24:4a:40:37:95: 41:d0:9f:43:8e:6b:a6:b4:80:6c:38:a5:13:37:b1: a3:1c:0b:2a:43:7d:8d:75:47:68:a6:43:16:10:f2: 50:f4:8c:a6:d0:61:76:31:13:d5:68:73:51:d4:8a: e6:f9:b3:59:e7:1a:79:74:63:b2:7a:22:e7:0d:d0: 2e:e3:1c:c9:bf:7a:08:dd:4f:42:de:f9:49:f1:d0: 76:63:02:89:78:bc:c5:1e:06:e6:2d:e2:08:f0:e6: 3d:d3:b4:67:30:d5:33:b2:5f:9c:82:ff:5f:d6:ab: 0e:f8:2f:e9:1f:b7:02:92:c1:46:5b:60:45:24:19: 04:e4:94:0c:17:18:4c:18:a7:f0:4b:18:1f:15:59: 40:89:7e:05:db:ad:82:47:12:bb:a4:d7:2e:eb:24: f4:76:96:3b:c8:a1:ba:e8:eb:e5:51:ba:f4:bf:f2: 66:14:ee:24:c1:76:44:a7:bf:7c:5a:00:ae:0e:72: 58:af:ca:17:35:d4:c9:f8:61:66:aa:bc:63:18:d3: 12:b3:f3:59:5a:d0:56:75:ce:19:ec:cb:40:28:96: ee:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6D:15:43:65:C1:92:BC:03:FB:1E:14:6C:48:85:04:5F:0B:D1:C9 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230363a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:206::/48 Signature Algorithm: sha256WithRSAEncryption 88:77:24:e5:3c:a8:13:a8:fd:06:d4:dd:73:54:fc:c7:a5:58: ac:80:01:63:c0:b0:64:bd:51:f6:a6:df:af:e7:a3:27:20:cf: 52:88:6a:83:4c:79:66:76:f7:9c:42:98:b5:6e:a0:e6:19:33: a6:05:78:7a:23:9f:d0:33:a2:ea:08:7a:be:7f:d4:b7:26:1b: 26:52:5b:e0:d7:db:f2:fd:a2:c2:56:29:35:3e:c3:75:4e:db: 34:6e:97:88:8c:62:da:3d:0f:83:fb:e2:07:7d:89:f8:6d:39: 93:d4:93:e1:15:b9:b9:27:e7:07:c2:e9:45:57:4d:ed:32:3d: f0:c6:66:42:8d:87:0d:5f:5f:87:6f:04:0a:05:c6:0d:5a:09: f7:9c:4f:72:51:f7:ae:64:2b:4f:3f:e3:5f:52:e2:fd:c3:33: 02:22:32:d0:d3:32:74:7f:0e:0f:5c:56:7c:84:21:ee:5a:5b: 0a:07:7a:3e:71:89:1d:b2:0b:a6:6a:88:60:82:c7:47:4e:27: 87:5e:47:a4:56:ce:1f:73:1e:18:c6:cd:09:b2:c6:a2:8a:a9: 69:73:f7:d4:2e:a1:87:85:43:e7:6f:06:14:4e:35:be:59:54: 94:54:3d:aa:d5:ba:8d:40:d8:00:f7:3b:99:42:06:33:93:86: ee:1d:95:ed -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPfxP4Y6CjIvKVUIlhJgMAOzsDwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE3NDJaFw0yNTA5MTIwNTIyNDJaMDMxMTAvBgNV BAMTKDkzNkQxNTQzNjVDMTkyQkMwM0ZCMUUxNDZDNDg4NTA0NUYwQkQxQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2w9O96mMzKZ/PU3DuhZURGmfe 5XjhZuiPm0GQfNxczjfDft4BzockSkA3lUHQn0OOa6a0gGw4pRM3saMcCypDfY11 R2imQxYQ8lD0jKbQYXYxE9Voc1HUiub5s1nnGnl0Y7J6IucN0C7jHMm/egjdT0Le +Unx0HZjAol4vMUeBuYt4gjw5j3TtGcw1TOyX5yC/1/Wqw74L+kftwKSwUZbYEUk GQTklAwXGEwYp/BLGB8VWUCJfgXbrYJHEruk1y7rJPR2ljvIobro6+VRuvS/8mYU 7iTBdkSnv3xaAK4Oclivyhc11Mn4YWaqvGMY0xKz81la0FZ1zhnsy0Aolu5tAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUk20VQ2XBkrwD+x4UbEiFBF8L0ckwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECBjANBgkqhkiG9w0BAQsFAAOCAQEAiHck 5TyoE6j9BtTdc1T8x6VYrIABY8CwZL1R9qbfr+ejJyDPUohqg0x5Znb3nEKYtW6g 5hkzpgV4eiOf0DOi6gh6vn/UtyYbJlJb4Nfb8v2iwlYpNT7DdU7bNG6XiIxi2j0P g/viB32J+G05k9ST4RW5uSfnB8LpRVdN7TI98MZmQo2HDV9fh28ECgXGDVoJ95xP clH3rmQrTz/jX1Li/cMzAiIy0NMydH8OD1xWfIQh7lpbCgd6PnGJHbILpmqIYILH R04nh15HpFbOH3MeGMbNCbLGooqpaXP31C6hh4VD528GFE41vllUlFQ9qtW6jUDY APc7mUIGM5OG7h2V7Q== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org