$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: jJU0A3QnltXRjsX45Ibex6hrHGTRmJkaCIyX0j4JfII= Subject key identifier: 81:E1:2F:F9:A8:60:52:7B:E7:67:0A:B0:73:20:02:53:3C:E2:3C:B4 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 1D4344AD7D3F5F885C1BCB48C096F4162FD85E79 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 07:42:07 +0000 ROA not before: Fri 13 Sep 2024 07:37:07 +0000 ROA not after: Fri 12 Sep 2025 07:42:07 +0000 asID: 216324 IP address blocks: 2a14:7581:212::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:43:44:ad:7d:3f:5f:88:5c:1b:cb:48:c0:96:f4:16:2f:d8:5e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 07:37:07 2024 GMT Not After : Sep 12 07:42:07 2025 GMT Subject: CN=81E12FF9A860527BE7670AB0732002533CE23CB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:46:1a:ff:c0:28:2e:81:1f:d5:48:47:73:fa: e1:fb:0c:99:48:11:40:f7:eb:ff:0e:6f:69:20:63: f8:8b:30:48:65:ac:23:cc:0c:fc:ea:a2:1d:64:28: 5d:c8:c7:7b:90:ab:43:35:5a:6b:7c:74:35:06:83: f9:c3:69:8d:50:b6:af:7e:a1:7d:3e:78:6d:bd:fe: e6:c9:42:43:0c:6d:86:d7:4b:a1:2f:7c:4c:df:40: ef:50:b2:5a:9a:49:bb:dd:42:97:98:15:4c:a2:ce: fe:50:48:d6:13:c4:db:df:22:59:21:1b:6c:92:72: 0d:2b:28:3d:53:63:bd:a3:74:5b:fc:7e:ed:eb:b7: 07:c4:00:66:5a:d2:61:bf:d0:28:ca:b1:30:87:b7: 5b:db:23:aa:3f:94:a8:54:be:c3:b4:03:78:6d:19: 20:3a:81:0e:e4:e9:06:f8:d9:d6:1e:d3:ae:dd:75: ea:3d:23:6a:e6:1b:33:dd:1a:71:87:a8:af:8f:34: 1c:b2:f4:81:30:e5:a1:4c:af:53:34:13:f7:29:90: 4f:f7:c6:6d:91:00:0f:8d:30:73:b0:bf:8e:b9:46: e1:a0:1f:bc:ea:c4:97:6f:f6:16:53:75:3d:78:70: b6:44:8a:fa:e1:85:fd:28:cc:ad:50:71:45:95:a5: b1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E1:2F:F9:A8:60:52:7B:E7:67:0A:B0:73:20:02:53:3C:E2:3C:B4 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:212::/48 Signature Algorithm: sha256WithRSAEncryption 93:68:68:11:4c:9e:e1:c6:d4:69:ba:0d:83:1b:90:d6:71:4c: 72:0e:6e:83:0e:96:aa:ef:55:3b:cb:f5:80:32:0c:fe:d6:4a: 3e:46:63:b6:c5:fe:95:61:73:ff:d0:bb:d1:e9:9d:ba:2c:5d: 1d:df:98:8a:3c:bc:96:78:53:de:e5:c4:fa:93:30:d0:c7:d7: af:99:ee:79:1d:44:5e:b8:f3:e5:0a:b8:d5:f9:ff:64:eb:fb: 19:a7:8b:e4:09:68:e3:7b:67:37:6c:97:d9:d4:39:d4:8e:8d: 14:49:cd:0f:6c:bd:7c:b5:08:b6:99:0f:af:8d:cd:b5:78:00: 63:82:7e:cb:44:94:c7:0f:b9:85:e3:41:18:ea:31:f6:f6:07: 86:f2:f7:e8:c2:9d:70:d9:b6:6c:b3:bf:55:00:a2:32:e6:cc: ca:b6:b4:d7:72:72:43:46:80:b4:2d:4f:fe:5c:f8:86:46:76: 9f:1c:93:b9:94:d7:e0:80:22:ea:67:5d:eb:c9:11:ed:89:32: c8:62:77:76:2c:61:76:63:07:b0:f4:5e:e2:31:7e:f0:05:d7: cb:4b:ca:7f:2e:18:a7:45:f2:f4:c0:a1:76:c8:7e:0c:bd:20: b1:4c:70:f6:ae:06:11:4f:1c:2b:eb:68:54:f0:ee:56:74:c7: 12:50:21:74 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUHUNErX0/X4hcG8tIwJb0Fi/YXnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNzM3MDdaFw0yNTA5MTIwNzQyMDdaMDMxMTAvBgNV BAMTKDgxRTEyRkY5QTg2MDUyN0JFNzY3MEFCMDczMjAwMjUzM0NFMjNDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGRhr/wCgugR/VSEdz+uH7DJlI EUD36/8Ob2kgY/iLMEhlrCPMDPzqoh1kKF3Ix3uQq0M1Wmt8dDUGg/nDaY1Qtq9+ oX0+eG29/ubJQkMMbYbXS6EvfEzfQO9QslqaSbvdQpeYFUyizv5QSNYTxNvfIlkh G2yScg0rKD1TY72jdFv8fu3rtwfEAGZa0mG/0CjKsTCHt1vbI6o/lKhUvsO0A3ht GSA6gQ7k6Qb42dYe067ddeo9I2rmGzPdGnGHqK+PNByy9IEw5aFMr1M0E/cpkE/3 xm2RAA+NMHOwv465RuGgH7zqxJdv9hZTdT14cLZEivrhhf0ozK1QcUWVpbFRAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUgeEv+ahgUnvnZwqwcyACUzziPLQwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECEjANBgkqhkiG9w0BAQsFAAOCAQEAk2ho EUye4cbUaboNgxuQ1nFMcg5ugw6Wqu9VO8v1gDIM/tZKPkZjtsX+lWFz/9C70emd uixdHd+Yijy8lnhT3uXE+pMw0MfXr5nueR1EXrjz5Qq41fn/ZOv7GaeL5Alo43tn N2yX2dQ51I6NFEnND2y9fLUItpkPr43NtXgAY4J+y0SUxw+5heNBGOox9vYHhvL3 6MKdcNm2bLO/VQCiMubMyra013JyQ0aAtC1P/lz4hkZ2nxyTuZTX4IAi6mdd68kR 7YkyyGJ3dixhdmMHsPRe4jF+8AXXy0vKfy4Yp0Xy9MChdsh+DL0gsUxw9q4GEU8c K+toVPDuVnTHElAhdA== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org