$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: kbu4OApRglc+yABuSkVm08Gk1jKCRV7ygxK4IS2+72g= Subject key identifier: 39:18:03:A6:75:F1:D7:DD:B9:B3:98:5B:C7:B2:CC:BC:5D:6B:9D:CB Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3AE03CA1EFD994C86A242B52166FB8E6B04FEF1D Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:24:00 +0000 ROA not before: Fri 13 Sep 2024 05:19:00 +0000 ROA not after: Fri 12 Sep 2025 05:24:00 +0000 asID: 216324 IP address blocks: 2a14:7581:215::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:e0:3c:a1:ef:d9:94:c8:6a:24:2b:52:16:6f:b8:e6:b0:4f:ef:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:19:00 2024 GMT Not After : Sep 12 05:24:00 2025 GMT Subject: CN=391803A675F1D7DDB9B3985BC7B2CCBC5D6B9DCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e6:93:15:ae:b8:41:b1:c9:7b:a3:28:c1:cf: 1b:8d:87:94:de:fb:53:80:02:c7:5a:8c:3e:5f:b7: e3:c9:15:9d:33:38:24:96:47:b8:25:be:c9:91:d8: f6:18:5e:68:9f:2b:94:45:bf:a6:54:10:44:a3:ae: 6b:27:47:73:83:1b:cb:e5:b9:0a:77:9a:8e:11:cf: 50:c1:d0:48:b1:25:c3:37:2d:3b:7d:44:85:d1:41: 50:8f:54:7a:72:03:51:05:e7:59:04:ce:8f:b6:b6: 1b:3b:b9:27:93:72:f5:67:6f:3f:6d:ce:e9:93:cc: 86:b0:bf:87:07:59:57:4c:e3:41:39:11:cc:74:fa: 22:32:78:f2:5b:d6:83:a7:3a:d3:5b:a6:39:f1:cd: 1b:16:4a:59:b6:cf:c4:d3:c2:38:73:42:48:f1:e8: 0b:07:3a:bf:7a:22:2a:51:03:49:fa:a1:87:b9:ed: 0d:d4:15:1f:98:69:2f:62:3b:d4:3e:f2:63:64:80: eb:2d:87:e8:39:7b:93:11:ff:06:25:fa:f9:ef:ba: 4c:77:19:bb:e2:dc:17:e1:9e:95:4b:56:cd:4e:fa: 1e:61:27:99:96:55:c2:ae:5f:65:89:22:39:55:a0: a0:22:09:a6:36:65:09:6b:9e:59:29:f2:ea:dc:4d: 05:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:18:03:A6:75:F1:D7:DD:B9:B3:98:5B:C7:B2:CC:BC:5D:6B:9D:CB X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:215::/48 Signature Algorithm: sha256WithRSAEncryption 0a:e2:73:5b:29:6b:0d:75:94:f8:00:ed:fc:19:c8:28:06:bd: f8:de:97:43:04:16:92:66:d8:ef:72:aa:d3:10:9d:40:c3:47: 6a:5c:07:74:17:4d:2a:3f:46:bb:a7:28:df:41:de:12:cf:4a: d7:98:51:09:0b:ad:64:f2:69:2c:4f:4b:ca:2b:8e:48:e3:92: 65:d5:36:84:22:ac:53:6a:36:f5:b5:81:fa:e1:eb:e6:76:6a: c7:b0:5e:76:0a:7c:a1:66:ae:9c:b7:ae:58:f2:7b:5f:a2:4e: e9:a0:b4:35:94:ff:94:ed:3c:9f:f3:28:ed:50:ed:12:56:fa: 50:d2:c7:1a:15:57:91:6c:cc:3c:fb:79:0f:2d:6f:d1:2c:76: ce:fa:ea:e3:57:35:f7:45:8d:a4:6b:33:97:b0:94:43:e7:89: 80:c2:87:db:62:3e:67:d9:17:a7:a1:86:c0:4a:d7:09:e4:dc: a3:11:d8:42:dc:cf:07:0a:0f:ca:e0:ca:60:f9:b9:31:b2:81: ae:0c:6f:7a:b5:77:92:27:25:0f:ad:a9:9e:f4:d6:9d:f1:6a: 69:6e:d7:aa:82:91:c9:89:d2:6e:b1:e9:e4:77:1e:f9:28:60: d0:f3:a9:64:59:82:f0:aa:02:d4:29:70:2a:97:e6:15:47:5b: 5d:c7:e1:11 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUOuA8oe/ZlMhqJCtSFm+45rBP7x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTE5MDBaFw0yNTA5MTIwNTI0MDBaMDMxMTAvBgNV BAMTKDM5MTgwM0E2NzVGMUQ3RERCOUIzOTg1QkM3QjJDQ0JDNUQ2QjlEQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85pMVrrhBscl7oyjBzxuNh5Te +1OAAsdajD5ft+PJFZ0zOCSWR7glvsmR2PYYXmifK5RFv6ZUEESjrmsnR3ODG8vl uQp3mo4Rz1DB0EixJcM3LTt9RIXRQVCPVHpyA1EF51kEzo+2ths7uSeTcvVnbz9t zumTzIawv4cHWVdM40E5Ecx0+iIyePJb1oOnOtNbpjnxzRsWSlm2z8TTwjhzQkjx 6AsHOr96IipRA0n6oYe57Q3UFR+YaS9iO9Q+8mNkgOsth+g5e5MR/wYl+vnvukx3 Gbvi3BfhnpVLVs1O+h5hJ5mWVcKuX2WJIjlVoKAiCaY2ZQlrnlkp8urcTQXbAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUORgDpnXx1925s5hbx7LMvF1rncswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFTANBgkqhkiG9w0BAQsFAAOCAQEACuJz WylrDXWU+ADt/BnIKAa9+N6XQwQWkmbY73Kq0xCdQMNHalwHdBdNKj9Gu6co30He Es9K15hRCQutZPJpLE9LyiuOSOOSZdU2hCKsU2o29bWB+uHr5nZqx7Bedgp8oWau nLeuWPJ7X6JO6aC0NZT/lO08n/Mo7VDtElb6UNLHGhVXkWzMPPt5Dy1v0Sx2zvrq 41c190WNpGszl7CUQ+eJgMKH22I+Z9kXp6GGwErXCeTcoxHYQtzPBwoPyuDKYPm5 MbKBrgxverV3kiclD62pnvTWnfFqaW7XqoKRyYnSbrHp5Hce+Shg0POpZFmC8KoC 1ClwKpfmFUdbXcfhEQ== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org