$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: xT2pm07UnP0uG6BhVw2rTqffGPuhiKG8ksJKNvqD2jc= Subject key identifier: A6:67:F4:80:C7:F5:CE:8B:FA:11:C2:FE:EA:0A:56:49:8F:67:7F:72 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 6A081E91B9E60C488F0045CF626AB71805F146 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:23:37 +0000 ROA not before: Fri 13 Sep 2024 05:18:37 +0000 ROA not after: Fri 12 Sep 2025 05:23:37 +0000 asID: 216324 IP address blocks: 2a14:7581:213::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:08:1e:91:b9:e6:0c:48:8f:00:45:cf:62:6a:b7:18:05:f1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:18:37 2024 GMT Not After : Sep 12 05:23:37 2025 GMT Subject: CN=A667F480C7F5CE8BFA11C2FEEA0A56498F677F72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:8d:c0:38:9e:2e:b3:44:f1:00:e2:3f:b2: 3c:50:b0:8e:e0:a6:1c:6e:a7:ab:35:78:91:aa:9d: c8:01:5d:35:4a:33:21:38:0e:c0:aa:20:81:3e:c0: 51:f1:2a:b5:ac:1b:e9:56:5f:f3:c0:7c:ee:e3:36: f2:9c:4b:fb:70:04:46:be:15:88:87:fd:4b:89:5e: f9:10:22:9c:54:20:c8:02:95:14:18:d0:7c:a0:fc: be:e4:c1:ff:ee:9f:62:de:c4:2b:a8:63:90:f5:75: d5:f7:bb:c2:b7:bc:b0:a3:92:51:8c:58:39:b2:38: c1:43:b4:bc:c2:c3:2a:62:fb:3b:1c:6b:c3:a9:fc: c8:63:8b:0a:7c:b5:f6:a5:0c:2c:0e:82:45:87:a5: 4f:7b:18:16:30:40:e1:82:5c:12:df:f2:61:68:94: 5f:65:53:51:a6:88:6e:2c:1d:6c:93:67:ec:fe:a3: 81:5a:e8:05:48:bb:33:fd:f5:bb:21:76:35:60:c9: ab:a2:67:66:4e:5f:b2:b3:7a:42:19:f5:f7:07:55: 6b:66:9f:78:cf:31:b0:b3:e0:49:e9:20:43:a6:f2: 36:a0:c8:57:a4:fb:73:8a:0b:eb:90:07:78:ff:02: 97:29:5e:20:85:f9:ce:07:7c:b2:97:e8:70:e2:d9: a0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:67:F4:80:C7:F5:CE:8B:FA:11:C2:FE:EA:0A:56:49:8F:67:7F:72 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:213::/48 Signature Algorithm: sha256WithRSAEncryption a6:22:74:87:af:72:c1:3e:48:10:e0:d3:46:19:66:38:81:4e: 1c:07:10:9d:82:85:45:28:90:ef:13:78:ce:e6:36:8e:38:71: 64:7c:19:79:8c:13:6f:14:16:d3:d6:4c:29:f0:fd:85:23:1c: bb:0c:c5:32:35:79:31:98:ca:55:88:7d:ff:47:0b:a6:d2:1d: 9a:f2:e3:12:c7:24:e9:89:45:1e:37:f3:6b:78:4c:3e:0c:7b: 39:6f:e6:14:b9:86:ec:54:a3:6d:57:55:07:e6:42:fe:7e:73: 05:27:4e:16:0c:a4:f0:9b:4b:4c:ee:f4:05:3c:74:57:65:25: 1a:a5:21:3f:58:41:92:cb:3c:ab:d2:95:f5:0e:dd:80:7b:94: b9:8e:11:01:09:ae:74:b9:b9:59:ac:b6:d6:bf:16:a8:62:47: e6:e3:63:6f:83:98:33:ae:55:01:64:67:7f:01:e9:8f:e9:7e: a4:51:d7:91:96:f9:05:c2:a2:50:9f:69:ce:39:17:dc:55:07: 3a:dc:32:98:f6:81:1c:90:60:66:a3:c8:4f:53:ab:00:3b:2a: e9:0b:36:43:d7:8c:41:18:94:6f:c2:a1:d7:22:24:6d:28:8d: 0f:a6:60:25:de:77:ec:b9:20:f1:d1:c1:0c:07:14:15:96:ca: 88:77:bb:8e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgITaggekbnmDEiPAEXPYmq3GAXxRjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygzMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5NTQ5MDgyNkU3 OEU2RTExMB4XDTI0MDkxMzA1MTgzN1oXDTI1MDkxMjA1MjMzN1owMzExMC8GA1UE AxMoQTY2N0Y0ODBDN0Y1Q0U4QkZBMTFDMkZFRUEwQTU2NDk4RjY3N0Y3MjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMY8jcA4ni6zRPEA4j+yPFCwjuCm HG6nqzV4kaqdyAFdNUozITgOwKoggT7AUfEqtawb6VZf88B87uM28pxL+3AERr4V iIf9S4le+RAinFQgyAKVFBjQfKD8vuTB/+6fYt7EK6hjkPV11fe7wre8sKOSUYxY ObI4wUO0vMLDKmL7Oxxrw6n8yGOLCny19qUMLA6CRYelT3sYFjBA4YJcEt/yYWiU X2VTUaaIbiwdbJNn7P6jgVroBUi7M/31uyF2NWDJq6JnZk5fsrN6Qhn19wdVa2af eM8xsLPgSekgQ6byNqDIV6T7c4oL65AHeP8ClyleIIX5zgd8spfocOLZoMkCAwEA AaOCAoMwggJ/MB0GA1UdDgQWBBSmZ/SAx/XOi/oRwv7qClZJj2d/cjAfBgNVHSME GDAWgBQw7DQcxZJj9IeZ9wqVSQgm545uETAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3 NDgvMS8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5NTQ5MDgyNkU3OEU2RTExLmNy bDCBngYIKwYBBQUHAQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5j LnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5 OS1iMDc5LTMwOWVkOTdmMzgyNC8wLzMwRUMzNDFDQzU5MjYzRjQ4Nzk5RjcwQTk1 NDkwODI2RTc4RTZFMTEuY2VyMIG1BggrBgEFBQcBCwSBqDCBpTCBogYIKwYBBQUH MAuGgZVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzIzZDVmNjgyLWI1MWItNDgxMi1iOGIxLTQzMGUzODY4Mzc0OC8xLzMyNjEzMTM0 M2EzNzM1MzgzMTNhMzIzMTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM2 MzMzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH AQH/BBMwETAPBAIAAjAJAwcAKhR1gQITMA0GCSqGSIb3DQEBCwUAA4IBAQCmInSH r3LBPkgQ4NNGGWY4gU4cBxCdgoVFKJDvE3jO5jaOOHFkfBl5jBNvFBbT1kwp8P2F Ixy7DMUyNXkxmMpViH3/Rwum0h2a8uMSxyTpiUUeN/NreEw+DHs5b+YUuYbsVKNt V1UH5kL+fnMFJ04WDKTwm0tM7vQFPHRXZSUapSE/WEGSyzyr0pX1Dt2Ae5S5jhEB Ca50ublZrLbWvxaoYkfm42Nvg5gzrlUBZGd/AemP6X6kUdeRlvkFwqJQn2nOORfc VQc63DKY9oEckGBmo8hPU6sAOyrpCzZD14xBGJRvwqHXIiRtKI0PpmAl3nfsuSDx 0cEMBxQVlsqId7uO -----END CERTIFICATE-----Generated at Thu Sep 19 13:12:07 2024 by rpki-client on console-ams.rpki-client.org