$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: dynqt70ntBQrh9tkeJDrBfvU+o8G71uDI/zhL0cT2Q8= Subject key identifier: AB:20:FC:6E:3B:E5:C9:85:BC:2B:F2:89:A8:7B:FD:0E:95:DA:63:91 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 717E77D9AAEA1C105E43E6B24533C03BBEC6B876 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 15 Jun 2024 13:57:54 +0000 ROA not before: Sat 15 Jun 2024 13:52:54 +0000 ROA not after: Sat 14 Jun 2025 13:57:54 +0000 asID: 215729 IP address blocks: 2a14:7581:2132::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7e:77:d9:aa:ea:1c:10:5e:43:e6:b2:45:33:c0:3b:be:c6:b8:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Jun 15 13:52:54 2024 GMT Not After : Jun 14 13:57:54 2025 GMT Subject: CN=AB20FC6E3BE5C985BC2BF289A87BFD0E95DA6391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:06:e9:b4:97:37:a9:b4:60:3a:5e:08:fa:ef: 1c:2a:e4:ca:d9:1c:30:29:db:80:8b:c8:8a:a7:73: 01:a5:35:1d:11:23:7a:3d:aa:9e:d0:0e:fb:f2:58: 81:87:1c:0f:27:1b:75:9b:cf:12:c4:c1:00:5a:be: 9d:3a:85:12:31:2e:30:16:d2:bb:01:31:7b:1c:8e: ff:07:bc:46:df:0f:99:6c:26:81:98:ad:7c:8a:8b: f1:ea:7a:fb:e3:e8:84:a3:2f:26:b5:a7:30:4f:f1: 09:c1:25:24:40:05:6e:1e:fa:8f:9b:a3:b3:62:8f: 75:f4:69:5b:1b:61:92:5f:6f:8c:12:98:f3:05:23: d8:50:e6:35:1a:36:b4:cd:6b:ba:11:d2:d2:25:4f: 84:76:32:cf:04:5f:84:43:64:b2:13:c0:4c:24:e4: 96:2a:bd:36:27:6c:46:47:ef:25:e1:55:01:f5:64: 70:d4:78:7e:47:69:5f:3d:a4:f1:c7:3d:17:4b:3e: 7d:94:1f:54:1c:03:a1:e7:c5:cc:29:d4:0a:4e:89: 65:16:de:26:0d:d5:25:67:fd:7e:fe:99:d3:e8:d4: 2d:5d:b9:94:26:4f:86:75:16:63:c5:96:42:6f:46: 8d:69:47:57:e8:e0:dc:0f:60:c6:63:49:23:a3:be: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:20:FC:6E:3B:E5:C9:85:BC:2B:F2:89:A8:7B:FD:0E:95:DA:63:91 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323133323a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2132::/48 Signature Algorithm: sha256WithRSAEncryption 29:a7:7a:16:c2:2b:b5:c6:9f:9b:bb:d6:fe:2b:1f:be:db:ff: 38:15:b2:5a:bb:b2:0a:c6:46:f6:80:58:e2:9a:3a:fa:82:32: d9:f4:79:54:ef:95:4e:65:86:c7:db:da:ef:d2:5a:38:59:04: 74:dd:18:98:2a:0c:28:8c:3b:ea:68:f5:0c:23:bb:55:a7:96: 78:5a:a4:fa:fb:8e:e2:9b:71:51:bc:2b:25:5b:b3:c0:7c:b0: bf:88:3c:eb:76:ec:3c:f7:3e:e5:15:ff:11:95:ec:ae:1e:29: ad:b0:fe:d3:84:7a:a4:29:48:c7:5d:33:53:ae:8a:27:39:ee: b3:24:36:70:74:7e:d5:dd:eb:e8:97:18:64:ab:ac:5a:72:0c: 41:c5:17:3e:4f:f8:4e:17:11:f6:a1:f3:26:56:32:0b:9b:d4: 7d:46:ce:cb:e2:73:a9:19:2b:3a:56:8e:bc:1b:6e:f4:83:6c: 73:18:a7:30:b1:ee:fa:92:c3:f6:a3:c8:3e:b6:7a:97:02:0d: de:4e:38:6b:79:a2:fe:61:0d:e0:42:5d:4d:80:ef:c8:16:0a: c6:4d:f4:9f:b4:ef:bf:4a:38:96:0a:e6:05:80:6a:19:dc:c7: 61:7d:c8:4d:0e:a2:e4:6b:e5:15:78:d6:c0:5e:66:18:a3:03: 8a:00:a8:9f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcX532arqHBBeQ+ayRTPAO77GuHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA2MTUxMzUyNTRaFw0yNTA2MTQxMzU3NTRaMDMxMTAvBgNV BAMTKEFCMjBGQzZFM0JFNUM5ODVCQzJCRjI4OUE4N0JGRDBFOTVEQTYzOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrBum0lzeptGA6Xgj67xwq5MrZ HDAp24CLyIqncwGlNR0RI3o9qp7QDvvyWIGHHA8nG3WbzxLEwQBavp06hRIxLjAW 0rsBMXscjv8HvEbfD5lsJoGYrXyKi/Hqevvj6ISjLya1pzBP8QnBJSRABW4e+o+b o7Nij3X0aVsbYZJfb4wSmPMFI9hQ5jUaNrTNa7oR0tIlT4R2Ms8EX4RDZLITwEwk 5JYqvTYnbEZH7yXhVQH1ZHDUeH5HaV89pPHHPRdLPn2UH1QcA6Hnxcwp1ApOiWUW 3iYN1SVn/X7+mdPo1C1duZQmT4Z1FmPFlkJvRo1pR1fo4NwPYMZjSSOjvhZzAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUqyD8bjvlyYW8K/KJqHv9DpXaY5EwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMzMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSEyMA0GCSqGSIb3DQEBCwUAA4IBAQAp p3oWwiu1xp+bu9b+Kx++2/84FbJau7IKxkb2gFjimjr6gjLZ9HlU75VOZYbH29rv 0lo4WQR03RiYKgwojDvqaPUMI7tVp5Z4WqT6+47im3FRvCslW7PAfLC/iDzrduw8 9z7lFf8RleyuHimtsP7ThHqkKUjHXTNTroonOe6zJDZwdH7V3evolxhkq6xacgxB xRc+T/hOFxH2ofMmVjILm9R9Rs7L4nOpGSs6Vo68G270g2xzGKcwse76ksP2o8g+ tnqXAg3eTjhreaL+YQ3gQl1NgO/IFgrGTfSftO+/SjiWCuYFgGoZ3MdhfchNDqLk a+UVeNbAXmYYowOKAKif -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org