$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: O1DyRC8qaYHVjGDvvWH8FfwojoPNKqsNlipCRGs5vDA= Subject key identifier: 1B:95:36:EA:BB:79:B2:C0:6F:E2:46:7B:63:71:39:1B:A3:CD:03:EB Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 7EFE3D9E80DA78E25ACA9D5949632C6975FADA2B Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:25:59 +0000 ROA not before: Fri 13 Sep 2024 05:20:59 +0000 ROA not after: Fri 12 Sep 2025 05:25:59 +0000 asID: 216324 IP address blocks: 2a14:7581:218::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:fe:3d:9e:80:da:78:e2:5a:ca:9d:59:49:63:2c:69:75:fa:da:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:20:59 2024 GMT Not After : Sep 12 05:25:59 2025 GMT Subject: CN=1B9536EABB79B2C06FE2467B6371391BA3CD03EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b0:71:50:a0:c9:96:3a:fe:46:2d:c9:f1:2b: 90:dc:e3:5a:b5:16:ee:33:f3:80:b2:23:07:49:18: 23:09:06:1d:cb:60:88:8b:d1:06:ca:23:8b:bc:4e: 10:e5:71:61:f8:07:1d:84:3b:23:af:43:8c:4f:d7: 1b:5d:96:43:d2:0a:5d:dc:12:0b:91:14:ee:71:cb: f9:87:e2:72:2a:84:54:88:79:d7:ba:ff:81:fa:70: c4:7a:2d:76:31:c2:a6:90:51:ef:d9:e3:b8:3f:57: 20:de:03:9a:61:4c:21:8c:20:fc:05:bb:8d:a0:be: 71:d5:01:d2:26:64:3f:50:37:96:3a:75:c9:d0:70: ee:b7:1f:41:54:71:22:b0:5c:ea:b5:b8:07:2c:fc: 60:ea:e8:8a:64:80:6f:46:14:4c:81:98:df:d2:3a: b3:84:6c:c3:bd:d1:15:82:20:1d:3d:65:08:02:b9: 2d:64:16:ef:7b:e3:14:ca:2f:71:e1:10:98:38:f8: cd:59:f0:a8:0d:1e:fe:b5:6a:f8:70:1f:5a:ae:30: 77:ab:74:ce:03:76:b2:44:73:9e:e4:ca:37:d6:63: 89:9d:0a:ed:fe:63:ff:76:8e:a7:95:1d:f4:37:22: 99:a3:92:07:7b:39:f5:e8:f5:c3:c9:aa:ac:88:da: 77:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:95:36:EA:BB:79:B2:C0:6F:E2:46:7B:63:71:39:1B:A3:CD:03:EB X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:218::/48 Signature Algorithm: sha256WithRSAEncryption b6:b2:6a:dd:fd:c1:cf:28:e7:cb:c7:b2:4e:a6:88:6d:2f:f4: 70:f5:62:d9:2a:89:2d:55:85:95:c5:87:23:33:cb:51:70:cd: 62:bf:95:5e:e4:84:49:8c:8d:d8:6f:79:19:d3:d9:9f:a3:b2: 3a:bb:b5:f4:0e:46:b7:62:51:90:c2:4c:94:01:97:cf:c4:92: af:f0:36:fa:f2:0e:b1:3b:16:8c:6e:85:61:98:2d:9e:af:7a: 6e:53:a5:39:9d:d0:03:2f:df:1e:fd:b9:a1:b8:87:11:34:ed: 1e:65:8f:97:3e:20:66:b6:6b:a5:3e:7c:88:59:60:6d:f8:07: 65:3c:5d:17:23:d4:15:69:6b:ac:88:94:64:44:e6:fe:02:c0: 54:95:b8:68:17:34:c2:29:b5:f1:76:36:ac:59:b1:75:0c:c6: 7a:ce:d5:87:d7:1b:20:73:fa:5d:fe:bd:c4:28:8b:f4:e5:71: 5a:fd:de:a4:65:c7:95:87:00:db:bc:d0:46:52:2d:c5:aa:97: 7f:15:4c:ef:ef:b1:eb:a2:ec:f5:35:a1:73:2e:c5:b5:14:2e: 70:67:bc:f3:8c:90:df:bc:75:7c:d5:be:fe:c4:4c:12:e1:dc: 72:0f:1a:51:96:d2:e9:e6:8d:20:72:ac:29:15:74:78:ab:7a: 6e:9f:96:eb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUfv49noDaeOJayp1ZSWMsaXX62iswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTIwNTlaFw0yNTA5MTIwNTI1NTlaMDMxMTAvBgNV BAMTKDFCOTUzNkVBQkI3OUIyQzA2RkUyNDY3QjYzNzEzOTFCQTNDRDAzRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4sHFQoMmWOv5GLcnxK5Dc41q1 Fu4z84CyIwdJGCMJBh3LYIiL0QbKI4u8ThDlcWH4Bx2EOyOvQ4xP1xtdlkPSCl3c EguRFO5xy/mH4nIqhFSIede6/4H6cMR6LXYxwqaQUe/Z47g/VyDeA5phTCGMIPwF u42gvnHVAdImZD9QN5Y6dcnQcO63H0FUcSKwXOq1uAcs/GDq6IpkgG9GFEyBmN/S OrOEbMO90RWCIB09ZQgCuS1kFu974xTKL3HhEJg4+M1Z8KgNHv61avhwH1quMHer dM4DdrJEc57kyjfWY4mdCu3+Y/92jqeVHfQ3Ipmjkgd7OfXo9cPJqqyI2nedAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUG5U26rt5ssBv4kZ7Y3E5G6PNA+swHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECGDANBgkqhkiG9w0BAQsFAAOCAQEAtrJq 3f3Bzyjny8eyTqaIbS/0cPVi2SqJLVWFlcWHIzPLUXDNYr+VXuSESYyN2G95GdPZ n6OyOru19A5Gt2JRkMJMlAGXz8SSr/A2+vIOsTsWjG6FYZgtnq96blOlOZ3QAy/f Hv25obiHETTtHmWPlz4gZrZrpT58iFlgbfgHZTxdFyPUFWlrrIiUZETm/gLAVJW4 aBc0wim18XY2rFmxdQzGes7Vh9cbIHP6Xf69xCiL9OVxWv3epGXHlYcA27zQRlIt xaqXfxVM7++x66Ls9TWhcy7FtRQucGe884yQ37x1fNW+/sRMEuHccg8aUZbS6eaN IHKsKRV0eKt6bp+W6w== -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org