$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: nNzDucwR0KS2LsS5G8lz/ackOTUXgEvJQ2CPq07wnJo= Subject key identifier: 8B:A9:17:CA:14:E8:5F:83:60:E1:CE:39:29:68:60:E7:00:BE:DE:AE Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 0BC951AE239B0511E60C2989380BE9278B387BF8 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:23:25 +0000 ROA not before: Fri 13 Sep 2024 05:18:25 +0000 ROA not after: Fri 12 Sep 2025 05:23:25 +0000 asID: 216324 IP address blocks: 2a14:7581:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:c9:51:ae:23:9b:05:11:e6:0c:29:89:38:0b:e9:27:8b:38:7b:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:18:25 2024 GMT Not After : Sep 12 05:23:25 2025 GMT Subject: CN=8BA917CA14E85F8360E1CE39296860E700BEDEAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:63:aa:bb:65:2d:76:64:2e:a4:e7:6e:1b: b8:b7:91:43:b5:b1:42:ad:6c:b8:c5:47:01:03:c4: ac:65:7e:9c:5c:b4:78:5b:ca:d0:76:7a:61:a4:7d: a4:6c:0e:58:63:45:2f:4e:fa:3d:da:9d:66:b4:83: 63:93:07:1b:f6:40:38:9e:a9:72:5e:26:8a:3a:5f: e7:96:44:21:09:56:7b:2e:a7:74:34:50:a5:ce:6d: 0d:de:e4:bf:8e:e6:f0:f2:aa:df:f3:1c:87:a8:ff: 7e:91:5c:0d:88:c4:61:5a:93:7e:85:78:18:e9:69: 20:75:ca:ab:a8:5f:fe:f9:91:c2:b3:12:cf:9a:58: f6:77:f2:1c:69:f4:e8:8c:fe:c1:73:bb:c8:48:56: 8c:30:23:05:eb:93:89:e3:27:e9:56:02:39:84:68: 5a:6f:64:9e:db:0c:09:69:6e:15:e0:5c:47:46:b0: d3:42:bd:61:4b:04:25:b7:27:d0:9d:62:f4:61:1e: 10:de:77:58:f2:21:cc:e6:4a:a3:61:f6:9e:c3:fe: 2a:f5:36:d8:2e:bb:89:ac:79:f8:15:c4:94:f3:20: 7c:bc:b3:89:d5:17:68:0c:d7:e0:db:8f:01:cd:cd: 0b:da:ea:34:2a:c2:7c:d4:e1:2d:8e:b8:80:5a:01: d4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A9:17:CA:14:E8:5F:83:60:E1:CE:39:29:68:60:E7:00:BE:DE:AE X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:211::/48 Signature Algorithm: sha256WithRSAEncryption a4:64:17:87:19:70:a9:c0:21:82:5a:cc:7b:39:d4:c3:0d:e7: 6e:e9:48:73:9c:9a:7f:7f:d3:d5:00:22:49:b1:2e:ec:c0:2a: a8:aa:9f:a3:06:ce:1b:00:82:64:ac:a0:40:c1:5f:51:7d:87: be:94:f1:51:8a:30:59:2d:b4:44:75:ad:a4:d4:5f:4e:32:0a: b4:c1:84:3d:76:df:68:9d:b2:af:f5:7d:23:f5:3c:96:d7:29: 6d:db:4f:9c:31:31:cf:a3:6a:3e:cd:28:6c:5f:59:0f:f4:04: 97:55:1d:58:1e:23:56:59:0c:61:a4:88:65:39:87:94:72:af: d2:c5:03:31:8a:8e:88:cc:d1:90:97:cd:d1:56:08:4e:29:8d: 5a:7b:4b:e1:00:73:3f:e5:68:df:83:d8:39:b9:63:94:2e:72: 60:af:a8:0b:43:e7:f3:d1:d0:e1:24:b4:a9:54:70:fe:26:b8: 38:ed:0b:cc:bb:9a:ee:98:e9:f1:89:82:a6:01:bf:25:6f:ad: f2:55:58:47:71:dd:6c:86:9a:93:9d:78:e1:81:54:10:7c:ba: 60:f8:f8:28:e7:79:d1:bb:c1:a8:d7:e1:ba:d2:76:68:a8:ca: 1e:e9:c6:ff:ce:48:c9:78:54:3f:b2:f9:6b:54:51:f4:a8:68: 2c:2b:0f:97 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUC8lRriObBRHmDCmJOAvpJ4s4e/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE4MjVaFw0yNTA5MTIwNTIzMjVaMDMxMTAvBgNV BAMTKDhCQTkxN0NBMTRFODVGODM2MEUxQ0UzOTI5Njg2MEU3MDBCRURFQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzb2Oqu2UtdmQupOduG7i3kUO1 sUKtbLjFRwEDxKxlfpxctHhbytB2emGkfaRsDlhjRS9O+j3anWa0g2OTBxv2QDie qXJeJoo6X+eWRCEJVnsup3Q0UKXObQ3e5L+O5vDyqt/zHIeo/36RXA2IxGFak36F eBjpaSB1yquoX/75kcKzEs+aWPZ38hxp9OiM/sFzu8hIVowwIwXrk4njJ+lWAjmE aFpvZJ7bDAlpbhXgXEdGsNNCvWFLBCW3J9CdYvRhHhDed1jyIczmSqNh9p7D/ir1 Ntguu4msefgVxJTzIHy8s4nVF2gM1+DbjwHNzQva6jQqwnzU4S2OuIBaAdTHAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUi6kXyhToX4Ng4c45KWhg5wC+3q4wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECETANBgkqhkiG9w0BAQsFAAOCAQEApGQX hxlwqcAhglrMeznUww3nbulIc5yaf3/T1QAiSbEu7MAqqKqfowbOGwCCZKygQMFf UX2HvpTxUYowWS20RHWtpNRfTjIKtMGEPXbfaJ2yr/V9I/U8ltcpbdtPnDExz6Nq Ps0obF9ZD/QEl1UdWB4jVlkMYaSIZTmHlHKv0sUDMYqOiMzRkJfN0VYITimNWntL 4QBzP+Vo34PYObljlC5yYK+oC0Pn89HQ4SS0qVRw/ia4OO0LzLua7pjp8YmCpgG/ JW+t8lVYR3HdbIaak5144YFUEHy6YPj4KOd50bvBqNfhutJ2aKjKHunG/85IyXhU P7L5a1RR9KhoLCsPlw== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org