$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: QUOxsQ0jrjtQMYftK/FhaP7xMarM291zbcxEh8cQdLw= Subject key identifier: 53:61:57:43:00:55:B3:26:91:B9:D6:4C:5A:A4:D2:CC:27:5C:5C:7A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 30650BFAE03821714EECDDDFF07DA1DA4E9AD293 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 25 May 2024 16:00:08 +0000 ROA not before: Sat 25 May 2024 15:55:08 +0000 ROA not after: Sat 24 May 2025 16:00:08 +0000 asID: 215729 IP address blocks: 2a14:7581:2341::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:65:0b:fa:e0:38:21:71:4e:ec:dd:df:f0:7d:a1:da:4e:9a:d2:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: May 25 15:55:08 2024 GMT Not After : May 24 16:00:08 2025 GMT Subject: CN=536157430055B32691B9D64C5AA4D2CC275C5C7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:03:5a:31:ba:ac:e8:96:a4:bd:c1:6e:f0:ea: f5:9c:27:dd:86:2f:30:4b:01:11:41:e1:1f:18:fd: fa:9d:99:3e:b0:a2:61:a3:1e:64:3d:fa:ae:bb:bb: 0c:ef:6f:31:36:e9:00:72:63:4a:80:06:43:fd:c6: f6:ab:31:5d:f1:06:37:8d:30:09:9f:80:26:f2:56: 5f:9e:ad:5f:f9:71:b0:90:69:a2:8c:56:2b:5e:52: a4:1f:9e:cc:06:8f:70:0c:41:17:36:2c:34:e6:ff: 36:23:13:1a:93:19:bc:14:9b:04:f0:7d:4a:ab:61: 6c:c6:05:37:bf:ad:1b:42:70:b8:7d:02:cf:f2:44: f3:bc:c2:53:4b:02:47:1a:2c:7f:b5:36:37:cd:82: 5b:41:3b:8a:f9:8d:44:8d:4b:e3:0c:50:6e:f7:c9: e7:e9:70:4e:65:40:48:2f:70:92:3a:7f:17:c2:f4: bb:b7:a5:ad:04:a4:71:68:a0:74:47:98:6a:c5:7f: 0a:dd:f4:9e:36:e0:17:4d:0d:52:c2:39:e9:ff:11: 62:9d:98:7a:da:48:f7:e1:34:c8:9b:3f:7c:4b:1f: c2:4f:a9:58:ef:d7:2a:58:8c:ef:7a:be:8b:8e:c4: 50:f7:96:4c:16:9c:43:e8:fa:92:f7:b3:08:ba:d8: dd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:61:57:43:00:55:B3:26:91:B9:D6:4C:5A:A4:D2:CC:27:5C:5C:7A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323334313a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2341::/48 Signature Algorithm: sha256WithRSAEncryption 14:92:da:0f:b4:0e:20:8c:d7:91:d1:67:b6:54:af:72:5f:df: 40:6e:ba:9c:3b:bc:48:ce:65:6d:cf:fa:30:91:39:b7:71:b5: f6:80:24:cb:cc:75:48:57:b0:91:be:d9:7a:6b:83:c7:5f:00: a7:17:55:d8:23:a0:31:92:97:6b:44:9a:9d:c8:2c:2a:9e:fa: 64:6f:9a:3c:83:45:7e:75:2c:d4:66:6c:97:e7:ea:2f:ee:e7: ad:ab:08:a5:b9:40:c2:4a:de:88:c8:a4:c8:7a:13:af:15:ec: 32:59:3c:9f:3b:31:aa:1d:03:28:1c:7e:bf:b2:22:21:4a:12: 90:ab:c3:35:13:6f:ab:ba:f3:d0:2a:f4:d4:89:9d:64:bc:0e: ca:2e:bc:84:bf:38:37:fd:dd:cc:91:03:ea:47:bc:91:58:80: 9b:7d:36:51:af:18:e8:da:b3:03:f1:cb:c5:e8:ff:ec:c5:83: e9:74:13:99:20:6e:4b:b0:d0:4d:3e:0d:54:68:dd:cb:54:ab: c5:0a:00:0e:cf:e9:05:74:8a:2a:76:61:f6:1c:70:c1:26:30: ba:97:b3:33:6f:e8:f6:ba:e5:31:85:97:df:f0:1b:c1:9d:45: 75:2a:09:3b:a2:1e:56:6d:27:9d:e6:9c:b6:34:68:33:7d:81: ea:49:17:4c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUMGUL+uA4IXFO7N3f8H2h2k6a0pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA1MjUxNTU1MDhaFw0yNTA1MjQxNjAwMDhaMDMxMTAvBgNV BAMTKDUzNjE1NzQzMDA1NUIzMjY5MUI5RDY0QzVBQTREMkNDMjc1QzVDN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0A1oxuqzolqS9wW7w6vWcJ92G LzBLARFB4R8Y/fqdmT6womGjHmQ9+q67uwzvbzE26QByY0qABkP9xvarMV3xBjeN MAmfgCbyVl+erV/5cbCQaaKMViteUqQfnswGj3AMQRc2LDTm/zYjExqTGbwUmwTw fUqrYWzGBTe/rRtCcLh9As/yRPO8wlNLAkcaLH+1NjfNgltBO4r5jUSNS+MMUG73 yefpcE5lQEgvcJI6fxfC9Lu3pa0EpHFooHRHmGrFfwrd9J424BdNDVLCOen/EWKd mHraSPfhNMibP3xLH8JPqVjv1ypYjO96vouOxFD3lkwWnEPo+pL3swi62N0pAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUU2FXQwBVsyaRudZMWqTSzCdcXHowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzMzNDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSNBMA0GCSqGSIb3DQEBCwUAA4IBAQAU ktoPtA4gjNeR0We2VK9yX99AbrqcO7xIzmVtz/owkTm3cbX2gCTLzHVIV7CRvtl6 a4PHXwCnF1XYI6AxkpdrRJqdyCwqnvpkb5o8g0V+dSzUZmyX5+ov7uetqwiluUDC St6IyKTIehOvFewyWTyfOzGqHQMoHH6/siIhShKQq8M1E2+ruvPQKvTUiZ1kvA7K LryEvzg3/d3MkQPqR7yRWICbfTZRrxjo2rMD8cvF6P/sxYPpdBOZIG5LsNBNPg1U aN3LVKvFCgAOz+kFdIoqdmH2HHDBJjC6l7Mzb+j2uuUxhZff8BvBnUV1Kgk7oh5W bSed5py2NGgzfYHqSRdM -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org