$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135303a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323135303a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: R/LL5dRDeBw8zlnjXgHnXuzRTC0bSZzm+d0gkVhTfuc= Subject key identifier: 7B:D1:65:95:E5:E5:5F:B7:76:04:EE:ED:F6:92:BB:51:CA:B8:B9:1A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 15BB2B268EE75D6D19ECF40B3956BECC7674AA8F Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135303a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 15 Jun 2024 13:47:47 +0000 ROA not before: Sat 15 Jun 2024 13:42:47 +0000 ROA not after: Sat 14 Jun 2025 13:47:47 +0000 asID: 215729 IP address blocks: 2a14:7581:2150::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:bb:2b:26:8e:e7:5d:6d:19:ec:f4:0b:39:56:be:cc:76:74:aa:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Jun 15 13:42:47 2024 GMT Not After : Jun 14 13:47:47 2025 GMT Subject: CN=7BD16595E5E55FB77604EEEDF692BB51CAB8B91A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:57:44:0d:8c:fb:44:bd:b6:bd:27:5d:a5: 54:f9:b9:ed:bd:66:4f:58:c3:42:51:b0:0f:44:13: 6b:c3:ff:fd:21:4f:6a:63:be:5e:bb:c9:db:36:69: e0:2f:bf:2c:5e:79:3b:79:42:76:e3:fc:b3:78:b7: a8:ad:36:08:f0:da:36:0b:9b:be:47:41:ad:d7:00: c0:13:0f:58:54:1a:6b:b3:8e:0e:86:34:4b:43:17: 51:99:ed:3a:64:19:a7:ff:77:6e:45:0a:3d:f1:3d: ac:0a:17:98:a9:0b:fe:ea:a2:9f:9a:55:f0:01:d8: a6:8d:86:1a:3b:26:ad:df:06:e7:46:35:a8:18:6f: e2:87:0c:ac:1e:bc:dc:20:99:d8:cf:bd:0f:f6:02: 88:07:b0:1a:ff:84:2c:d4:82:e7:14:aa:fe:55:23: 1b:b3:c9:b9:59:4b:29:6c:11:79:49:ca:c9:5f:de: 32:6a:ea:5f:85:5f:5e:a9:f7:e3:25:d5:74:f4:b1: ff:c8:09:0e:62:ca:67:77:3b:b3:b2:da:d7:1f:b7: 91:80:73:81:71:6a:6a:3d:91:a3:9e:5a:23:97:29: 43:de:5e:09:1c:7a:9d:8a:90:4f:37:d3:a2:bc:a2: 09:f1:a3:8c:44:10:53:a2:43:3e:5c:71:6d:cb:7b: b6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D1:65:95:E5:E5:5F:B7:76:04:EE:ED:F6:92:BB:51:CA:B8:B9:1A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135303a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2150::/48 Signature Algorithm: sha256WithRSAEncryption 57:2e:2f:9a:d8:0b:09:f7:7d:13:2e:57:78:28:1f:64:10:91: 5d:b3:2d:31:fd:22:1c:44:44:da:07:2f:95:07:fe:83:e7:db: 8e:3a:a3:78:17:4f:3a:20:6b:19:de:83:b6:3c:20:5c:7d:ef: a7:1e:6d:93:ac:55:32:75:7a:26:5e:69:b9:52:18:6d:b2:3d: c3:da:f1:80:fa:8d:3e:ac:05:ff:4d:61:5d:f5:2f:27:32:51: af:cf:1f:62:e1:da:ed:67:d5:18:a0:d3:bc:7e:4d:e1:96:f2: 22:70:8a:b6:0b:36:63:4a:fe:88:84:72:33:3f:4b:ad:37:2c: c1:30:2e:f3:ca:8f:6a:31:f0:d8:4d:5f:9c:72:b9:b9:12:8c: ca:c9:83:26:f1:0c:20:f6:36:7a:9a:d3:d2:89:eb:78:7f:f8: a0:72:02:48:38:cd:47:36:20:d9:48:70:c5:b9:98:e5:77:52: f9:d1:19:09:4d:00:b9:b2:43:84:cd:71:ec:30:d3:15:b9:aa: 58:a5:a6:ae:5f:97:ce:48:b1:10:33:09:fa:25:90:36:1d:95: 74:5f:d4:dd:7d:7a:4c:98:41:ac:ad:76:ad:0f:cc:67:da:c9: a8:37:60:50:18:04:dd:04:46:e8:c6:eb:5b:c4:eb:0a:c1:a0: a1:61:c7:21 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFbsrJo7nXW0Z7PQLOVa+zHZ0qo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA2MTUxMzQyNDdaFw0yNTA2MTQxMzQ3NDdaMDMxMTAvBgNV BAMTKDdCRDE2NTk1RTVFNTVGQjc3NjA0RUVFREY2OTJCQjUxQ0FCOEI5MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZa1dEDYz7RL22vSddpVT5ue29 Zk9Yw0JRsA9EE2vD//0hT2pjvl67yds2aeAvvyxeeTt5Qnbj/LN4t6itNgjw2jYL m75HQa3XAMATD1hUGmuzjg6GNEtDF1GZ7TpkGaf/d25FCj3xPawKF5ipC/7qop+a VfAB2KaNhho7Jq3fBudGNagYb+KHDKwevNwgmdjPvQ/2AogHsBr/hCzUgucUqv5V IxuzyblZSylsEXlJyslf3jJq6l+FX16p9+Ml1XT0sf/ICQ5iymd3O7Oy2tcft5GA c4Fxamo9kaOeWiOXKUPeXgkcep2KkE8306K8ognxo4xEEFOiQz5ccW3Le7ZhAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUe9FlleXlX7d2BO7t9pK7Ucq4uRowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSFQMA0GCSqGSIb3DQEBCwUAA4IBAQBX Li+a2AsJ930TLld4KB9kEJFdsy0x/SIcRETaBy+VB/6D59uOOqN4F086IGsZ3oO2 PCBcfe+nHm2TrFUydXomXmm5Uhhtsj3D2vGA+o0+rAX/TWFd9S8nMlGvzx9i4drt Z9UYoNO8fk3hlvIicIq2CzZjSv6IhHIzP0utNyzBMC7zyo9qMfDYTV+ccrm5EozK yYMm8Qwg9jZ6mtPSiet4f/igcgJIOM1HNiDZSHDFuZjld1L50RkJTQC5skOEzXHs MNMVuapYpaauX5fOSLEQMwn6JZA2HZV0X9TdfXpMmEGsrXatD8xn2smoN2BQGATd BEboxutbxOsKwaChYcch -----END CERTIFICATE-----Generated at Fri Sep 27 22:22:12 2024 by rpki-client on console-ams.rpki-client.org