$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: QCtcuxKcPVb1lkyq/9Yp9f4UkFOEElZo50cV2Hvqbj0= Subject key identifier: 9C:7B:7F:94:01:7F:A5:27:FC:2F:E0:8E:1C:F0:3A:8B:60:64:F1:CD Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 2E6111AACDC9291576476DFECAEB75A94DFF10D7 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa Signing time: Mon 01 Apr 2024 07:47:39 +0000 ROA not before: Mon 01 Apr 2024 07:42:39 +0000 ROA not after: Mon 31 Mar 2025 07:47:39 +0000 asID: 215729 IP address blocks: 2a14:7581:2102::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 27 Jun 2024 17:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:61:11:aa:cd:c9:29:15:76:47:6d:fe:ca:eb:75:a9:4d:ff:10:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 1 07:42:39 2024 GMT Not After : Mar 31 07:47:39 2025 GMT Subject: CN=9C7B7F94017FA527FC2FE08E1CF03A8B6064F1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2a:02:5e:17:d4:ea:5c:bd:03:c8:12:38:79: d6:ad:84:21:c4:0f:b3:a2:63:50:4f:79:f2:b8:b9: 83:49:12:6c:48:0c:09:05:fa:34:ca:7f:96:dc:51: 2b:23:aa:2a:af:2e:30:c8:e2:91:91:1a:82:e5:d2: ff:a3:6f:17:80:d5:ad:fe:54:59:2a:29:03:a5:75: 3a:4d:d5:5e:df:71:81:93:fd:fc:b9:11:42:22:ae: 1f:b3:17:0d:f1:e1:03:13:1c:0c:29:f2:a4:19:2d: 4a:25:74:84:89:ff:83:f6:78:3c:70:e1:74:11:f9: 67:79:4e:20:44:12:c7:07:b2:af:11:ec:0a:98:30: 1d:9f:38:d4:87:40:f2:00:e3:58:c7:91:ac:80:1c: 2e:50:c2:48:94:97:09:fa:c2:af:38:df:72:1d:6c: 23:e0:f9:98:86:db:dc:e0:75:9c:92:8a:fe:b2:c6: c2:60:d8:1e:20:58:8d:de:05:40:0a:38:68:bc:e9: e3:ef:6c:50:1b:4d:aa:37:8e:3f:9d:61:be:3d:b4: 6c:c0:01:68:21:24:b9:e6:82:de:18:ec:b3:b5:03: 6f:d4:94:85:cc:20:80:89:9e:dc:23:94:97:5d:a4: 7f:75:3f:a4:34:6f:65:c0:f8:42:33:42:d2:b3:0c: 50:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7B:7F:94:01:7F:A5:27:FC:2F:E0:8E:1C:F0:3A:8B:60:64:F1:CD X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323130323a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2102::/48 Signature Algorithm: sha256WithRSAEncryption 27:3f:a7:0d:f1:b1:38:4e:23:58:15:26:40:5e:78:f7:7b:17: b7:5a:f6:49:32:ec:f2:e0:44:cf:ab:0b:8f:12:a1:99:5a:e8: 7f:1d:5d:86:0d:cf:34:8c:ba:7f:b6:27:22:1a:3b:53:e8:fd: dd:9d:b7:2c:10:4e:41:11:1c:f7:b3:c2:d8:85:07:0b:02:9c: 71:5f:7f:27:2d:12:52:c4:93:b9:01:33:5e:ea:97:ff:da:8f: a0:01:0a:e2:6d:3e:c9:e2:d1:df:b9:77:b8:53:61:52:15:84: 9f:7d:e6:fd:5b:cd:62:7a:65:06:4f:7a:af:37:1f:f5:95:e3: 25:05:20:24:f6:a6:b0:4c:82:d3:32:5e:bc:78:4c:13:8e:9b: 71:a3:40:a7:bd:64:43:64:87:e4:60:3e:6c:1d:75:ee:8c:8f: a5:f3:80:82:71:3b:2e:3e:84:da:ab:c7:9c:7a:de:d2:ec:98: 61:77:a9:a6:de:43:c3:c2:07:14:71:dd:7c:98:d7:19:80:68: 94:34:c4:ba:3e:6f:a6:8e:a8:2c:61:0a:ae:ee:60:cb:74:3c: 8b:b7:7a:a4:90:bc:f4:4f:b7:12:92:62:a3:3f:dc:f1:6a:62: 97:6a:16:d5:4b:d5:83:4b:19:0c:13:5a:ce:26:3d:e8:86:d7: 9e:08:4d:00 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULmERqs3JKRV2R23+yut1qU3/ENcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDEwNzQyMzlaFw0yNTAzMzEwNzQ3MzlaMDMxMTAvBgNV BAMTKDlDN0I3Rjk0MDE3RkE1MjdGQzJGRTA4RTFDRjAzQThCNjA2NEYxQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXKgJeF9TqXL0DyBI4edathCHE D7OiY1BPefK4uYNJEmxIDAkF+jTKf5bcUSsjqiqvLjDI4pGRGoLl0v+jbxeA1a3+ VFkqKQOldTpN1V7fcYGT/fy5EUIirh+zFw3x4QMTHAwp8qQZLUoldISJ/4P2eDxw 4XQR+Wd5TiBEEscHsq8R7AqYMB2fONSHQPIA41jHkayAHC5QwkiUlwn6wq8433Id bCPg+ZiG29zgdZySiv6yxsJg2B4gWI3eBUAKOGi86ePvbFAbTao3jj+dYb49tGzA AWghJLnmgt4Y7LO1A2/UlIXMIICJntwjlJddpH91P6Q0b2XA+EIzQtKzDFAJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUnHt/lAF/pSf8L+COHPA6i2Bk8c0wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSECMA0GCSqGSIb3DQEBCwUAA4IBAQAn P6cN8bE4TiNYFSZAXnj3exe3WvZJMuzy4ETPqwuPEqGZWuh/HV2GDc80jLp/tici GjtT6P3dnbcsEE5BERz3s8LYhQcLApxxX38nLRJSxJO5ATNe6pf/2o+gAQribT7J 4tHfuXe4U2FSFYSffeb9W81iemUGT3qvNx/1leMlBSAk9qawTILTMl68eEwTjptx o0CnvWRDZIfkYD5sHXXujI+l84CCcTsuPoTaq8ecet7S7Jhhd6mm3kPDwgcUcd18 mNcZgGiUNMS6Pm+mjqgsYQqu7mDLdDyLt3qkkLz0T7cSkmKjP9zxamKXahbVS9WD SxkME1rOJj3ohteeCE0A -----END CERTIFICATE-----Generated at Thu Jun 27 00:21:21 2024 by rpki-client on console-ams.rpki-client.org