$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: H2xJFNDb6hptZIBpOn8s6FvppRu80C5OyU0f/AjdT+M= Subject key identifier: 45:A6:6E:42:8D:62:1E:23:9E:0C:E0:93:91:FB:8B:FC:96:63:06:E8 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 7AD6DAAD8506C6093DACDFC47620EFA5D185F845 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa Signing time: Tue 05 Mar 2024 16:05:45 +0000 ROA not before: Tue 05 Mar 2024 16:00:45 +0000 ROA not after: Tue 04 Mar 2025 16:05:45 +0000 asID: 215729 IP address blocks: 2a14:7581:2101::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d6:da:ad:85:06:c6:09:3d:ac:df:c4:76:20:ef:a5:d1:85:f8:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Mar 5 16:00:45 2024 GMT Not After : Mar 4 16:05:45 2025 GMT Subject: CN=45A66E428D621E239E0CE09391FB8BFC966306E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:38:de:f2:64:49:d1:a9:aa:e1:c1:b0:54: 02:ae:ef:ab:07:a8:5b:b3:db:5d:c4:73:75:31:1a: 43:fb:d2:91:7a:56:08:b2:94:41:fa:8c:4c:46:f2: 12:68:e3:5a:8a:9e:ab:be:a4:3d:b6:c0:4e:b4:91: 10:49:3e:ee:42:46:be:ce:ae:0e:18:6b:43:6b:89: d3:ed:5e:e2:aa:1e:e0:71:ea:a7:fe:bb:94:28:86: ec:d3:95:09:49:da:ad:8c:77:03:54:4d:7e:22:9c: d7:f3:06:a2:07:64:54:aa:b8:c9:75:ea:93:24:60: 2b:6c:30:18:17:d0:5c:4a:99:53:d5:20:9a:8a:5e: 85:fc:5e:1a:f8:fe:34:36:87:99:4f:06:29:8a:c1: ed:63:9d:ae:0a:69:d6:41:ad:85:dc:70:23:c4:14: 3a:9d:01:4e:5d:6c:7b:f2:1e:d8:df:5a:9c:fb:d0: b0:3e:f1:a7:82:e6:b0:6f:3d:4d:1e:40:be:ff:ef: c2:1e:9f:46:fe:09:c5:a4:82:fa:36:65:bb:7d:30: 65:2d:98:7c:f5:25:ef:2e:ef:a3:2d:d8:09:f9:9b: b7:6d:e6:3a:38:92:55:0f:3e:f1:ba:e2:4d:04:1f: ea:b8:e1:64:06:91:be:bc:7d:73:47:05:a5:4e:91: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A6:6E:42:8D:62:1E:23:9E:0C:E0:93:91:FB:8B:FC:96:63:06:E8 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130313a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2101::/48 Signature Algorithm: sha256WithRSAEncryption 29:32:bb:06:53:1e:ae:77:19:63:54:1e:c5:05:91:aa:ac:6e: eb:cd:d1:0c:11:fa:97:26:44:c8:6a:21:1f:72:50:bc:47:11: 5b:ff:d1:72:e8:b8:3f:6e:fe:fc:96:e7:6b:50:e4:25:29:1e: 2c:41:cc:ea:3e:de:5e:d8:48:23:b8:0e:74:24:ef:67:80:2b: ac:a5:04:48:2a:7b:f6:b3:5f:e1:47:65:3f:94:1a:e6:c2:9c: 7c:86:e7:4e:5a:51:b6:9a:37:13:82:3f:df:e1:fa:5b:9c:22: 32:c9:3b:84:1b:08:e8:4a:a3:71:d0:79:21:e6:f5:31:7a:8f: cb:ca:1e:68:a5:1a:83:cb:3c:b7:89:d6:c0:51:db:20:a2:ab: 3f:01:48:90:e5:32:c5:0c:61:43:ac:2a:eb:8c:8d:bf:02:7a: 07:72:e1:6c:1f:b3:5e:11:c3:2d:df:11:ed:75:8f:79:07:36: a7:fd:29:ed:ac:36:3d:7f:d1:01:4b:85:cc:cf:fc:be:08:04: 97:bd:9f:ac:f5:c9:89:6b:d9:9d:d6:f4:e9:aa:10:d5:f3:d1: 1e:14:5e:cf:14:eb:4e:7b:90:f3:81:7e:b7:61:e0:33:22:d7: 64:91:ac:e0:c0:de:17:bf:9f:f6:4b:5b:9f:1d:11:76:ff:a1: 30:83:01:33 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUetbarYUGxgk9rN/EdiDvpdGF+EUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDAzMDUxNjAwNDVaFw0yNTAzMDQxNjA1NDVaMDMxMTAvBgNV BAMTKDQ1QTY2RTQyOEQ2MjFFMjM5RTBDRTA5MzkxRkI4QkZDOTY2MzA2RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOrzje8mRJ0amq4cGwVAKu76sH qFuz213Ec3UxGkP70pF6VgiylEH6jExG8hJo41qKnqu+pD22wE60kRBJPu5CRr7O rg4Ya0NridPtXuKqHuBx6qf+u5QohuzTlQlJ2q2MdwNUTX4inNfzBqIHZFSquMl1 6pMkYCtsMBgX0FxKmVPVIJqKXoX8Xhr4/jQ2h5lPBimKwe1jna4KadZBrYXccCPE FDqdAU5dbHvyHtjfWpz70LA+8aeC5rBvPU0eQL7/78Ien0b+CcWkgvo2Zbt9MGUt mHz1Je8u76Mt2An5m7dt5jo4klUPPvG64k0EH+q44WQGkb68fXNHBaVOkXk3AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURaZuQo1iHiOeDOCTkfuL/JZjBugwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSEBMA0GCSqGSIb3DQEBCwUAA4IBAQAp MrsGUx6udxljVB7FBZGqrG7rzdEMEfqXJkTIaiEfclC8RxFb/9Fy6Lg/bv78ludr UOQlKR4sQczqPt5e2EgjuA50JO9ngCuspQRIKnv2s1/hR2U/lBrmwpx8hudOWlG2 mjcTgj/f4fpbnCIyyTuEGwjoSqNx0Hkh5vUxeo/Lyh5opRqDyzy3idbAUdsgoqs/ AUiQ5TLFDGFDrCrrjI2/AnoHcuFsH7NeEcMt3xHtdY95Bzan/SntrDY9f9EBS4XM z/y+CASXvZ+s9cmJa9md1vTpqhDV89EeFF7PFOtOe5DzgX63YeAzItdkkazgwN4X v5/2S1ufHRF2/6EwgwEz -----END CERTIFICATE-----Generated at Fri Sep 27 22:22:12 2024 by rpki-client on console-ams.rpki-client.org