$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: 1C7tbyRAw7GAB8GMRxrAsb5flSYScaggz104KmYZUX8= Subject key identifier: 87:77:51:9B:C8:52:01:B2:E5:13:BD:0C:1E:A7:A3:25:19:96:B7:C7 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 50E1AD29FC529AF832CE877AA41B82094155C47E Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa Signing time: Mon 01 Apr 2024 04:45:24 +0000 ROA not before: Mon 01 Apr 2024 04:40:24 +0000 ROA not after: Mon 31 Mar 2025 04:45:24 +0000 asID: 215729 IP address blocks: 2a14:7581:2111::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e1:ad:29:fc:52:9a:f8:32:ce:87:7a:a4:1b:82:09:41:55:c4:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 1 04:40:24 2024 GMT Not After : Mar 31 04:45:24 2025 GMT Subject: CN=8777519BC85201B2E513BD0C1EA7A3251996B7C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:1d:4d:57:f9:06:4e:44:39:7b:59:df:aa: 35:7f:f5:2d:6f:b0:cc:e7:29:b2:1e:c6:16:e2:b0: de:e4:cc:7b:b6:03:3c:1a:d5:cb:38:09:67:cb:98: ea:81:b6:f1:2c:ae:12:9b:3f:79:ef:5b:12:5d:89: 60:84:1b:17:b7:25:a3:b0:a0:69:9c:7c:76:fd:38: e8:f4:8a:fa:74:2d:cf:b9:a3:7c:9f:cb:30:19:c8: 88:97:38:d2:0d:a9:24:93:88:45:46:2c:e4:b7:a8: 99:03:9a:0e:0a:fd:97:f8:83:67:27:fb:94:73:7e: 26:53:bf:e9:fe:26:5f:f3:99:b2:bf:f4:70:e2:fa: 91:82:b7:a1:93:c5:d0:fa:63:25:48:88:be:94:1a: 02:bc:55:68:8d:12:b8:06:b9:5e:2a:83:bd:cd:34: 12:1b:4c:38:c0:c3:44:10:b2:e6:6c:ee:a4:42:0f: f2:de:2a:44:78:7d:f7:f5:58:52:b7:58:0d:d0:b1: 38:d0:40:52:2e:c5:32:f9:9f:cc:90:94:16:cf:29: 97:d8:86:a8:ba:05:02:2a:0b:ed:ba:8a:c1:c4:e5: 7a:17:2f:4e:bd:c8:8b:fb:19:67:8c:7a:6b:b3:78: e8:b6:1c:54:f3:ba:7b:2c:28:71:3d:0c:8c:0c:dc: 92:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:77:51:9B:C8:52:01:B2:E5:13:BD:0C:1E:A7:A3:25:19:96:B7:C7 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323131313a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2111::/48 Signature Algorithm: sha256WithRSAEncryption 70:ef:cb:98:28:47:75:bf:07:ae:eb:e0:6e:b4:11:41:7a:7f: 92:54:86:cb:97:76:f7:2a:4a:4f:36:a0:b1:02:16:3d:86:f5: 9e:ec:67:b5:f7:aa:c9:ee:2f:8e:b4:2f:9c:fd:18:a1:21:23: 01:17:c2:1c:2a:2b:cb:15:29:57:a8:84:a7:16:85:e4:2c:34: b9:5c:a7:4e:5d:27:76:cc:7e:c4:a0:9e:fe:de:25:81:92:44: cc:ce:fa:88:91:dd:71:4f:0e:5a:d9:e8:e7:20:13:e0:82:88: a7:60:6c:61:d3:f8:e4:b8:89:bc:af:5e:d6:11:41:29:b7:62: 8c:a0:3f:77:5d:e5:dc:6d:38:6f:07:d5:36:e0:02:cd:93:14: d8:05:06:f3:4d:c0:c1:ed:85:39:f9:30:be:05:8b:e6:48:4e: c3:93:34:fb:64:11:60:1c:b2:53:72:f0:7c:d4:34:56:14:63: e6:f2:ba:4f:a5:f1:e6:ec:e1:dd:fa:27:37:3a:75:fd:e5:72: f7:66:0f:ef:5d:12:e0:f9:6e:54:be:ac:3a:0e:40:a6:5d:fd: 79:29:ab:49:47:d5:4e:a2:8d:ef:95:51:3e:45:eb:5a:7d:8e: e0:aa:b7:c3:3a:7f:1d:07:4c:43:c4:b1:b3:c9:47:77:49:f5: dd:d7:35:0e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUUOGtKfxSmvgyzod6pBuCCUFVxH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDEwNDQwMjRaFw0yNTAzMzEwNDQ1MjRaMDMxMTAvBgNV BAMTKDg3Nzc1MTlCQzg1MjAxQjJFNTEzQkQwQzFFQTdBMzI1MTk5NkI3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWxx1NV/kGTkQ5e1nfqjV/9S1v sMznKbIexhbisN7kzHu2Azwa1cs4CWfLmOqBtvEsrhKbP3nvWxJdiWCEGxe3JaOw oGmcfHb9OOj0ivp0Lc+5o3yfyzAZyIiXONINqSSTiEVGLOS3qJkDmg4K/Zf4g2cn +5RzfiZTv+n+Jl/zmbK/9HDi+pGCt6GTxdD6YyVIiL6UGgK8VWiNErgGuV4qg73N NBIbTDjAw0QQsuZs7qRCD/LeKkR4fff1WFK3WA3QsTjQQFIuxTL5n8yQlBbPKZfY hqi6BQIqC+26isHE5XoXL069yIv7GWeMemuzeOi2HFTzunssKHE9DIwM3JKBAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUh3dRm8hSAbLlE70MHqejJRmWt8cwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSERMA0GCSqGSIb3DQEBCwUAA4IBAQBw 78uYKEd1vweu6+ButBFBen+SVIbLl3b3KkpPNqCxAhY9hvWe7Ge196rJ7i+OtC+c /RihISMBF8IcKivLFSlXqISnFoXkLDS5XKdOXSd2zH7EoJ7+3iWBkkTMzvqIkd1x Tw5a2ejnIBPggoinYGxh0/jkuIm8r17WEUEpt2KMoD93XeXcbThvB9U24ALNkxTY BQbzTcDB7YU5+TC+BYvmSE7DkzT7ZBFgHLJTcvB81DRWFGPm8rpPpfHm7OHd+ic3 OnX95XL3Zg/vXRLg+W5Uvqw6DkCmXf15KatJR9VOoo3vlVE+RetafY7gqrfDOn8d B0xDxLGzyUd3SfXd1zUO -----END CERTIFICATE-----Generated at Fri Sep 27 22:22:12 2024 by rpki-client on console-ams.rpki-client.org