$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231363a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231363a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: uJQRJDnsz0yros1i3Jo6ydoQJsSvAgk2CTDjfD5BTwE= Subject key identifier: DE:98:02:C9:B9:F1:F8:2F:D8:E8:D3:0E:4E:EB:AD:96:5C:C1:04:6B Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 17BA5481D3A661868F4FE23C3DCFF0FFB7BC7756 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231363a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:25:32 +0000 ROA not before: Fri 13 Sep 2024 05:20:32 +0000 ROA not after: Fri 12 Sep 2025 05:25:32 +0000 asID: 216324 IP address blocks: 2a14:7581:216::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ba:54:81:d3:a6:61:86:8f:4f:e2:3c:3d:cf:f0:ff:b7:bc:77:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:20:32 2024 GMT Not After : Sep 12 05:25:32 2025 GMT Subject: CN=DE9802C9B9F1F82FD8E8D30E4EEBAD965CC1046B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:ad:52:ee:39:88:fc:31:2f:98:38:79:08: ec:39:37:5f:ae:bb:a5:b5:61:54:a7:0e:51:cf:88: b3:f7:3e:32:42:06:00:40:6a:bc:3a:14:8f:a6:d0: a9:fe:43:df:fe:c0:f1:9c:c7:01:56:0b:20:5c:bf: 1a:db:9a:9e:26:a4:f5:36:ef:e0:24:0e:56:eb:3f: 10:6e:3e:ed:62:7d:6e:1f:d6:39:fe:77:27:14:25: 6a:d4:67:db:b6:df:d5:b1:e5:8b:28:c1:89:c3:d9: 2f:49:bd:6f:68:b5:67:4c:4a:c1:64:e3:3d:f9:88: 40:0c:65:f0:be:6d:15:9f:1a:62:6e:1a:f0:3a:60: ec:9f:d9:96:6f:a2:51:4d:bc:35:8e:b7:a5:6c:65: d1:af:52:02:b5:46:49:9a:97:6e:5c:bd:95:46:0b: d4:62:52:00:8a:2d:1c:bb:73:c4:65:54:9f:f4:fe: f8:cf:cd:f2:5c:55:20:8b:b8:db:f4:2c:ec:c9:fe: c7:30:13:94:c9:2d:8b:75:9a:57:a9:17:8d:b1:ea: da:37:fa:f5:69:ae:61:2a:18:55:96:87:d8:16:2f: d4:7e:22:19:36:20:db:1b:93:80:e4:35:d8:18:35: bc:2b:39:4c:97:9b:6f:3a:e3:83:8a:13:17:e3:e2: 7e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:98:02:C9:B9:F1:F8:2F:D8:E8:D3:0E:4E:EB:AD:96:5C:C1:04:6B X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231363a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:216::/48 Signature Algorithm: sha256WithRSAEncryption 5f:d7:a2:c8:45:41:bd:e3:c1:bc:3e:64:fb:13:7f:93:8b:ff: 4f:65:34:b2:31:6c:3d:41:d2:1a:61:7a:fb:6b:73:d6:a8:6a: 95:1a:34:a2:dc:13:be:a5:44:95:2a:98:33:2b:d5:07:eb:d5: 94:ab:7d:1e:f5:42:35:24:0b:52:ca:b6:b5:e4:11:ef:f4:66: 4e:ed:83:00:fb:53:68:c1:09:34:ea:8a:7b:86:ff:27:0b:ba: 56:85:0d:ff:f3:4c:40:40:a6:fc:28:14:fd:23:e3:e3:70:40: 3f:c1:51:cf:ae:f0:92:85:ac:1f:28:5f:dc:a0:a2:a5:e1:57: 35:86:20:76:f9:5b:2b:13:a9:16:60:5e:ea:8f:31:b0:29:0d: ad:f8:2c:db:76:2c:30:29:b9:21:29:30:9d:b8:ad:1f:55:65: 76:88:07:4d:5f:20:e1:d7:b7:0b:8b:71:a5:b1:aa:3d:46:5c: 5a:8b:88:d5:3b:ff:c8:61:ca:4b:0e:2e:39:5c:14:33:25:0f: 28:46:8b:8d:a3:0d:43:29:3f:5d:5f:ec:ee:ea:2d:03:d2:87: d2:44:c0:83:23:fa:c7:b6:5d:ce:e5:8e:e2:97:da:b4:9e:b1: fd:6a:eb:10:e2:be:ae:0e:c5:4e:69:13:01:1e:a0:35:4e:4f: 85:af:56:a6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUF7pUgdOmYYaPT+I8Pc/w/7e8d1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTIwMzJaFw0yNTA5MTIwNTI1MzJaMDMxMTAvBgNV BAMTKERFOTgwMkM5QjlGMUY4MkZEOEU4RDMwRTRFRUJBRDk2NUNDMTA0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqa1S7jmI/DEvmDh5COw5N1+u u6W1YVSnDlHPiLP3PjJCBgBAarw6FI+m0Kn+Q9/+wPGcxwFWCyBcvxrbmp4mpPU2 7+AkDlbrPxBuPu1ifW4f1jn+dycUJWrUZ9u239Wx5YsowYnD2S9JvW9otWdMSsFk 4z35iEAMZfC+bRWfGmJuGvA6YOyf2ZZvolFNvDWOt6VsZdGvUgK1Rkmal25cvZVG C9RiUgCKLRy7c8RlVJ/0/vjPzfJcVSCLuNv0LOzJ/scwE5TJLYt1mlepF42x6to3 +vVprmEqGFWWh9gWL9R+Ihk2INsbk4DkNdgYNbwrOUyXm28644OKExfj4n6HAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU3pgCybnx+C/Y6NMOTuutllzBBGswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFjANBgkqhkiG9w0BAQsFAAOCAQEAX9ei yEVBvePBvD5k+xN/k4v/T2U0sjFsPUHSGmF6+2tz1qhqlRo0otwTvqVElSqYMyvV B+vVlKt9HvVCNSQLUsq2teQR7/RmTu2DAPtTaMEJNOqKe4b/Jwu6VoUN//NMQECm /CgU/SPj43BAP8FRz67wkoWsHyhf3KCipeFXNYYgdvlbKxOpFmBe6o8xsCkNrfgs 23YsMCm5ISkwnbitH1VldogHTV8g4de3C4txpbGqPUZcWouI1Tv/yGHKSw4uOVwU MyUPKEaLjaMNQyk/XV/s7uotA9KH0kTAgyP6x7ZdzuWO4pfatJ6x/WrrEOK+rg7F TmkTAR6gNU5Pha9Wpg== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org