$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: V7B63ShvTa48L7HP6aqeC+WTwS6yjesQtsh5Rbel9T8= Subject key identifier: 7E:1D:76:9A:6B:8E:AE:35:3C:29:43:87:E1:C8:61:D0:03:72:EC:F6 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 144D9F56F11DC0D1BF94E310D6DE6FB822CD5FC8 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:25:43 +0000 ROA not before: Fri 13 Sep 2024 05:20:43 +0000 ROA not after: Fri 12 Sep 2025 05:25:43 +0000 asID: 216324 IP address blocks: 2a14:7581:217::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4d:9f:56:f1:1d:c0:d1:bf:94:e3:10:d6:de:6f:b8:22:cd:5f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:20:43 2024 GMT Not After : Sep 12 05:25:43 2025 GMT Subject: CN=7E1D769A6B8EAE353C294387E1C861D00372ECF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:46:29:66:72:f8:fe:3d:7f:b2:12:f1:f9: df:7d:d7:57:cb:f5:1c:7a:6f:8a:e2:87:5e:37:e4: a5:28:f7:29:ba:61:4f:32:9f:c5:aa:04:22:20:2a: e2:bc:25:3d:65:36:da:46:82:90:85:e5:db:c1:fd: ed:1a:9d:da:69:c1:be:fd:1d:7f:b0:64:f7:72:43: dc:7d:6d:14:83:92:57:5f:10:77:66:18:68:87:82: 3b:b1:00:8c:d8:37:47:7e:07:84:1b:c3:c7:09:4d: 82:31:0f:b1:b8:68:4b:15:f5:f4:c6:70:e2:dc:f0: 6a:34:c8:3b:04:53:8a:af:cf:c9:0a:b8:46:26:08: 88:81:e4:81:f3:3a:44:7d:56:43:b1:b0:76:90:bc: 85:5e:e4:96:1d:df:82:f3:a8:10:20:51:05:6f:83: f8:2d:d3:48:34:d7:b6:be:da:ea:3c:76:4b:7c:f1: 10:d7:ba:de:28:05:c7:49:4a:35:55:74:1d:92:ed: 9f:70:f7:a9:7d:bc:fa:65:92:ec:85:2e:08:ce:99: 7f:23:d0:ed:4f:f7:4c:c6:a9:40:70:d4:48:64:8a: 79:d6:24:d7:bd:62:a0:c8:2a:77:54:c5:48:2b:e3: 6c:1b:a7:8b:f2:4b:8a:e5:02:1f:89:49:8b:12:71: a1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1D:76:9A:6B:8E:AE:35:3C:29:43:87:E1:C8:61:D0:03:72:EC:F6 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:217::/48 Signature Algorithm: sha256WithRSAEncryption b7:6b:18:f5:84:62:38:e5:b6:3b:78:29:fd:31:b5:e9:69:2d: ed:0e:5e:ee:07:7c:9c:65:e5:4c:c5:3f:6f:bd:4c:52:eb:66: 7a:4d:ff:55:1a:62:15:d2:be:c8:51:4f:dd:12:f6:05:85:66: c8:4c:4c:b6:a6:84:69:08:ac:90:c7:7c:61:b8:0d:33:0b:45: 62:e5:2c:fa:1e:4f:78:00:68:46:db:77:63:4a:f5:29:85:16: e1:31:cb:44:eb:2a:1e:23:df:39:cc:b8:74:d0:6b:8a:1d:82: ed:d7:04:11:f4:ac:c2:7c:7a:59:b4:7b:84:2a:3c:80:6f:3f: 39:63:53:13:fc:e7:f0:bb:95:61:eb:15:b9:d3:d7:32:3a:50: 03:f6:89:5e:5d:6a:e8:1c:5c:70:2c:ed:32:0a:98:de:04:18: f7:8e:e8:e9:27:45:76:fc:3f:23:ac:b1:49:52:b4:e5:f5:51: fe:f6:39:bb:e0:c4:5d:e6:3d:67:e8:35:0e:be:c1:e8:74:97: 5c:d4:72:24:86:21:98:2e:d4:55:c8:85:36:5a:7e:15:23:0a: f9:93:6d:4f:05:98:b8:0e:fa:54:c4:6e:b7:24:ee:88:ae:a4: 00:a6:47:0d:76:79:c4:8a:24:22:c2:88:e7:20:1f:84:ec:f5: db:e4:34:84 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUFE2fVvEdwNG/lOMQ1t5vuCLNX8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTIwNDNaFw0yNTA5MTIwNTI1NDNaMDMxMTAvBgNV BAMTKDdFMUQ3NjlBNkI4RUFFMzUzQzI5NDM4N0UxQzg2MUQwMDM3MkVDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5nUYpZnL4/j1/shLx+d9911fL 9Rx6b4rih1435KUo9ym6YU8yn8WqBCIgKuK8JT1lNtpGgpCF5dvB/e0andppwb79 HX+wZPdyQ9x9bRSDkldfEHdmGGiHgjuxAIzYN0d+B4Qbw8cJTYIxD7G4aEsV9fTG cOLc8Go0yDsEU4qvz8kKuEYmCIiB5IHzOkR9VkOxsHaQvIVe5JYd34LzqBAgUQVv g/gt00g017a+2uo8dkt88RDXut4oBcdJSjVVdB2S7Z9w96l9vPplkuyFLgjOmX8j 0O1P90zGqUBw1EhkinnWJNe9YqDIKndUxUgr42wbp4vyS4rlAh+JSYsScaEJAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUfh12mmuOrjU8KUOH4chh0ANy7PYwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFzANBgkqhkiG9w0BAQsFAAOCAQEAt2sY 9YRiOOW2O3gp/TG16Wkt7Q5e7gd8nGXlTMU/b71MUutmek3/VRpiFdK+yFFP3RL2 BYVmyExMtqaEaQiskMd8YbgNMwtFYuUs+h5PeABoRtt3Y0r1KYUW4THLROsqHiPf Ocy4dNBrih2C7dcEEfSswnx6WbR7hCo8gG8/OWNTE/zn8LuVYesVudPXMjpQA/aJ Xl1q6BxccCztMgqY3gQY947o6SdFdvw/I6yxSVK05fVR/vY5u+DEXeY9Z+g1Dr7B 6HSXXNRyJIYhmC7UVciFNlp+FSMK+ZNtTwWYuA76VMRutyTuiK6kAKZHDXZ5xIok IsKI5yAfhOz12+Q0hA== -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org