$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: 9I5cfXC3zeMs4vA6zUX1vp3/18LcY/br3YGMf/bxmoo= Subject key identifier: 3E:1F:D8:1E:7F:50:DD:8B:86:3E:A1:87:D0:4A:F9:01:66:40:75:E9 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 78EDE6F151399CB8FAE492EF89F146277E569A91 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa Signing time: Tue 05 Mar 2024 16:06:13 +0000 ROA not before: Tue 05 Mar 2024 16:01:13 +0000 ROA not after: Tue 04 Mar 2025 16:06:13 +0000 asID: 215729 IP address blocks: 2a14:7581:2180::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ed:e6:f1:51:39:9c:b8:fa:e4:92:ef:89:f1:46:27:7e:56:9a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Mar 5 16:01:13 2024 GMT Not After : Mar 4 16:06:13 2025 GMT Subject: CN=3E1FD81E7F50DD8B863EA187D04AF901664075E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:0d:84:65:69:5b:a1:7f:e3:8f:f6:17:3f: 4b:70:36:6d:9b:c2:a7:b7:8c:3d:47:51:8e:97:1d: 92:ce:c4:be:ae:d6:4c:93:e5:99:ba:f6:0f:84:f5: 0b:03:00:19:16:9d:6a:e2:57:ab:96:53:25:49:a9: c9:bf:a1:4e:1a:76:5c:35:a4:7c:c9:36:64:ca:55: d5:c9:4e:68:4d:43:59:c9:6d:bd:4c:5a:c0:9e:dc: 7f:45:61:81:a3:78:7a:98:38:ed:e9:0c:d6:b3:97: e3:63:c2:b3:b6:f8:aa:b4:6d:da:62:3c:29:1a:7f: ad:d5:72:ad:c7:c3:c9:f2:0f:5a:4c:b2:9b:e1:25: 7b:19:e3:79:68:1b:16:fc:7f:1f:6c:b8:58:ac:3f: 77:80:31:1f:e2:70:3b:7f:cd:9f:45:22:9d:8d:da: 98:43:27:08:1f:08:30:64:04:3e:80:f6:83:09:80: a5:3a:98:92:6e:4f:91:82:4e:a0:cf:e3:f8:a1:c7: 00:71:0c:8d:02:04:6d:bb:9d:39:07:e7:6e:db:dc: a2:3d:a0:a5:66:04:20:2d:9b:9b:e8:29:25:df:55: 9f:9d:24:44:a3:d5:8e:f2:4e:e6:89:76:ca:4a:6d: b6:a3:07:29:c4:ff:83:91:64:0b:61:ab:51:1b:8b: 97:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1F:D8:1E:7F:50:DD:8B:86:3E:A1:87:D0:4A:F9:01:66:40:75:E9 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323138303a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2180::/48 Signature Algorithm: sha256WithRSAEncryption 7e:ce:1c:f1:87:85:8c:ee:85:c5:bb:68:01:b2:f8:53:6a:8c: c5:65:a6:5d:1e:b8:76:6d:08:c4:43:55:67:20:f4:3d:4f:09: 6d:0a:ea:42:d4:de:d9:58:12:b4:03:76:bc:3d:96:33:02:6b: 54:6f:7f:0a:46:aa:80:92:54:ca:e8:c2:c3:93:e6:20:f0:5e: a8:2c:79:50:5c:8a:44:78:06:92:3e:57:9e:ec:73:07:58:53: eb:d5:14:4f:0a:7e:48:c4:aa:5d:dc:7e:ac:ec:2b:8e:09:f0: 31:9e:1c:c4:14:a5:b1:ab:77:c4:93:db:39:cb:f5:98:a8:59: 85:a0:98:c2:34:a4:eb:b3:11:17:58:68:8d:c4:eb:a8:02:ac: 26:12:b9:c0:52:bf:b7:fb:11:f4:e0:24:d3:b1:6e:99:03:ca: b0:8b:68:ee:96:ab:91:f2:c7:77:87:b7:90:52:4f:62:59:fb: 5f:45:83:02:b3:c0:e4:e6:a7:cc:79:9e:41:d9:04:db:8f:63: c4:ad:3e:2a:4d:86:64:cf:5d:ef:33:e7:c3:43:84:3f:4f:e5: d5:86:d0:b6:bb:9c:32:18:12:62:7b:84:f7:2f:8f:be:ef:92: 38:d8:ef:06:47:7c:a6:4c:b7:3e:05:31:5a:34:ec:74:d6:c9: 92:29:5e:10 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUeO3m8VE5nLj65JLvifFGJ35WmpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDAzMDUxNjAxMTNaFw0yNTAzMDQxNjA2MTNaMDMxMTAvBgNV BAMTKDNFMUZEODFFN0Y1MEREOEI4NjNFQTE4N0QwNEFGOTAxNjY0MDc1RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc/g2EZWlboX/jj/YXP0twNm2b wqe3jD1HUY6XHZLOxL6u1kyT5Zm69g+E9QsDABkWnWriV6uWUyVJqcm/oU4adlw1 pHzJNmTKVdXJTmhNQ1nJbb1MWsCe3H9FYYGjeHqYOO3pDNazl+NjwrO2+Kq0bdpi PCkaf63Vcq3Hw8nyD1pMspvhJXsZ43loGxb8fx9suFisP3eAMR/icDt/zZ9FIp2N 2phDJwgfCDBkBD6A9oMJgKU6mJJuT5GCTqDP4/ihxwBxDI0CBG27nTkH527b3KI9 oKVmBCAtm5voKSXfVZ+dJESj1Y7yTuaJdspKbbajBynE/4ORZAthq1Ebi5dxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUPh/YHn9Q3YuGPqGH0Er5AWZAdekwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzODMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSGAMA0GCSqGSIb3DQEBCwUAA4IBAQB+ zhzxh4WM7oXFu2gBsvhTaozFZaZdHrh2bQjEQ1VnIPQ9TwltCupC1N7ZWBK0A3a8 PZYzAmtUb38KRqqAklTK6MLDk+Yg8F6oLHlQXIpEeAaSPlee7HMHWFPr1RRPCn5I xKpd3H6s7CuOCfAxnhzEFKWxq3fEk9s5y/WYqFmFoJjCNKTrsxEXWGiNxOuoAqwm ErnAUr+3+xH04CTTsW6ZA8qwi2julquR8sd3h7eQUk9iWftfRYMCs8Dk5qfMeZ5B 2QTbj2PErT4qTYZkz13vM+fDQ4Q/T+XVhtC2u5wyGBJie4T3L4++75I42O8GR3ym TLc+BTFaNOx01smSKV4Q -----END CERTIFICATE-----Generated at Fri Sep 27 22:22:12 2024 by rpki-client on console-ams.rpki-client.org