$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: a4O9rfuWoa0A0gLU4vU09k45bLYIZdFzT4rvjJNasPc= Subject key identifier: A5:7C:61:43:29:F2:CE:55:1D:65:8D:12:2F:44:C0:79:84:9C:E3:5A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 70D2EF66351667D8A8D4F21B71AF1A54AB47C682 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa Signing time: Wed 03 Apr 2024 15:05:15 +0000 ROA not before: Wed 03 Apr 2024 15:00:15 +0000 ROA not after: Wed 02 Apr 2025 15:05:15 +0000 asID: 215729 IP address blocks: 2a14:7581:2153::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d2:ef:66:35:16:67:d8:a8:d4:f2:1b:71:af:1a:54:ab:47:c6:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:00:15 2024 GMT Not After : Apr 2 15:05:15 2025 GMT Subject: CN=A57C614329F2CE551D658D122F44C079849CE35A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e8:85:26:26:f1:7e:59:69:ed:83:aa:47:24: a1:56:b2:de:77:5d:16:30:e0:77:4f:e3:fd:4f:12: 71:ff:c3:d9:6d:06:11:88:aa:f6:7f:a9:ab:12:1d: b9:4a:db:81:54:9c:92:14:a6:0c:4c:31:53:1f:05: 0f:84:89:e5:60:e4:8f:49:90:e3:57:e4:3f:fa:35: 5d:73:af:49:b7:3e:34:3c:11:19:78:1d:d4:25:ed: 31:e5:f4:99:5f:21:89:f8:7f:0e:9c:58:6c:b7:25: 19:9a:ff:56:64:06:7c:6c:31:91:4e:9c:11:5d:62: 74:d6:e2:56:37:cd:66:66:17:75:98:aa:7d:12:4e: f7:78:28:bf:85:6f:2e:37:b2:62:86:a6:62:67:d9: 0e:e1:5e:8f:c3:4f:bf:21:87:3c:87:7c:df:91:1c: fe:6a:e3:65:04:fd:6c:2b:1a:1f:65:bf:20:2f:5a: 90:7b:5e:39:07:75:3f:59:31:0d:66:14:3f:dc:d6: 02:98:2f:9e:72:8d:77:dd:26:77:49:1e:f6:87:16: 30:07:ba:ad:a1:71:88:b1:23:35:48:85:4f:b6:94: 78:2d:fe:85:9f:d8:2b:f7:af:65:dc:01:5b:28:2b: 46:6d:43:4c:3c:7a:a0:97:dd:fd:43:4f:54:9b:96: 90:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7C:61:43:29:F2:CE:55:1D:65:8D:12:2F:44:C0:79:84:9C:E3:5A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323135333a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2153::/48 Signature Algorithm: sha256WithRSAEncryption 2a:40:6f:64:bd:df:1d:1f:26:bf:b6:c8:24:33:b6:a5:cc:6d: 9e:31:06:c1:9e:79:25:a9:0c:e0:33:c9:43:25:70:a5:89:78: ac:56:34:8e:20:e1:ef:ce:6c:5c:0a:39:23:03:fb:a5:fa:84: 3b:2b:32:f5:57:1d:d8:b7:33:01:96:08:ec:97:90:13:62:98: 11:a3:a3:fd:ac:db:8a:05:ff:ba:17:ec:f3:50:74:20:83:9f: be:3f:e0:22:80:3a:c7:c2:a6:1e:a6:40:9b:00:81:20:38:f4: 8f:d5:3d:86:97:77:a9:fb:04:24:5a:5f:fb:43:ff:55:e5:f2: a3:8f:ea:78:0b:3b:73:9a:f3:75:a1:11:dc:fc:53:88:91:8c: e4:f0:af:bf:2c:67:6d:a1:c5:5c:d0:1e:96:9d:0b:33:83:46: 42:31:32:77:a3:2d:44:d8:6d:d0:1f:34:f5:74:8c:3d:e0:4f: 7c:5b:ac:52:b1:b6:f9:72:7b:b8:60:09:19:65:c5:57:55:97: 05:a7:80:a8:ef:53:3e:f1:1d:5b:df:cc:d9:06:c1:61:c1:f5: ca:ab:6f:3b:bf:3c:27:a4:e2:8e:9a:a3:2c:53:78:4a:4e:c1: af:cd:82:34:84:ad:c4:0c:42:cf:58:8c:07:89:cd:3e:c0:a7: de:5c:66:1c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcNLvZjUWZ9io1PIbca8aVKtHxoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTAwMTVaFw0yNTA0MDIxNTA1MTVaMDMxMTAvBgNV BAMTKEE1N0M2MTQzMjlGMkNFNTUxRDY1OEQxMjJGNDRDMDc5ODQ5Q0UzNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM6IUmJvF+WWntg6pHJKFWst53 XRYw4HdP4/1PEnH/w9ltBhGIqvZ/qasSHblK24FUnJIUpgxMMVMfBQ+EieVg5I9J kONX5D/6NV1zr0m3PjQ8ERl4HdQl7THl9JlfIYn4fw6cWGy3JRma/1ZkBnxsMZFO nBFdYnTW4lY3zWZmF3WYqn0STvd4KL+Fby43smKGpmJn2Q7hXo/DT78hhzyHfN+R HP5q42UE/WwrGh9lvyAvWpB7XjkHdT9ZMQ1mFD/c1gKYL55yjXfdJndJHvaHFjAH uq2hcYixIzVIhU+2lHgt/oWf2Cv3r2XcAVsoK0ZtQ0w8eqCX3f1DT1SblpALAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUpXxhQynyzlUdZY0SL0TAeYSc41owHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSFTMA0GCSqGSIb3DQEBCwUAA4IBAQAq QG9kvd8dHya/tsgkM7alzG2eMQbBnnklqQzgM8lDJXCliXisVjSOIOHvzmxcCjkj A/ul+oQ7KzL1Vx3YtzMBlgjsl5ATYpgRo6P9rNuKBf+6F+zzUHQgg5++P+AigDrH wqYepkCbAIEgOPSP1T2Gl3ep+wQkWl/7Q/9V5fKjj+p4CztzmvN1oRHc/FOIkYzk 8K+/LGdtocVc0B6WnQszg0ZCMTJ3oy1E2G3QHzT1dIw94E98W6xSsbb5cnu4YAkZ ZcVXVZcFp4Co71M+8R1b38zZBsFhwfXKq287vzwnpOKOmqMsU3hKTsGvzYI0hK3E DELPWIwHic0+wKfeXGYc -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org