$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3266663a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3266663a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: aAH9i9a+tUDKVkwKrhNCCZp2xSS63zga1EE/kb0Y5Vc= Subject key identifier: 7E:4B:DA:CE:5E:0E:DE:33:6F:5A:85:51:F3:B3:1C:19:2B:7B:4D:DB Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 66E834BDE178A62FA929EEF981277799D44F8FA2 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3266663a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 13 Sep 2024 05:26:39 +0000 ROA not before: Fri 13 Sep 2024 05:21:39 +0000 ROA not after: Fri 12 Sep 2025 05:26:39 +0000 asID: 216324 IP address blocks: 2a14:7581:2ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e8:34:bd:e1:78:a6:2f:a9:29:ee:f9:81:27:77:99:d4:4f:8f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 13 05:21:39 2024 GMT Not After : Sep 12 05:26:39 2025 GMT Subject: CN=7E4BDACE5E0EDE336F5A8551F3B31C192B7B4DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:20:22:2c:a9:9b:8d:a0:03:41:9e:ae:ce: f8:49:83:82:f9:43:1c:48:dc:86:03:66:8f:e7:0c: 47:bf:6e:70:06:b3:2e:fa:d0:7a:0e:1e:22:d3:f1: a9:53:08:98:cd:94:f5:6b:ad:67:ac:72:63:7c:b2: e0:5a:e8:ab:dd:9a:48:c9:61:c6:59:14:49:90:bc: fa:f3:6e:35:11:b7:e9:f6:eb:be:08:59:2d:18:33: 37:61:c7:ca:d3:34:88:ae:63:c9:b3:35:66:ae:c1: c8:46:f7:87:3e:2c:e2:6d:c6:5f:09:47:74:0e:bc: 75:ef:5f:fa:da:b1:80:3b:82:25:95:19:41:37:3a: dd:26:f5:f4:00:60:00:0d:6a:e5:a4:f2:ea:79:5b: c5:4a:06:6c:75:23:92:4c:1c:82:a6:a4:ed:94:ac: 1b:91:b7:2d:8b:00:4e:d6:4b:e4:83:1b:32:1d:0d: 90:b1:e3:62:65:64:98:72:ae:fa:7a:cd:be:df:65: 2b:40:71:cc:62:9c:43:93:f8:8b:4b:5c:7b:70:3b: af:8f:de:e5:41:e3:77:21:fd:82:05:dc:3d:49:b1: 7e:dd:b9:aa:41:f8:64:8a:e5:08:b4:b2:5b:d8:88: 3d:d5:c9:9a:c7:9f:80:3b:18:60:61:97:53:11:bf: 76:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4B:DA:CE:5E:0E:DE:33:6F:5A:85:51:F3:B3:1C:19:2B:7B:4D:DB X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3266663a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2ff::/48 Signature Algorithm: sha256WithRSAEncryption 50:f5:2e:25:f0:f3:83:7f:cf:14:ea:c6:78:ff:ce:ed:0c:54: 98:32:6f:3a:b2:8a:7b:e2:23:06:86:96:25:84:55:db:af:7f: a2:48:2c:6a:39:77:60:74:3b:79:3a:30:d7:51:03:6b:ad:b8: 05:70:fc:c8:78:05:c1:d9:c7:57:5a:68:c4:b6:e2:77:78:44: 4a:ed:ab:fd:a3:e9:e0:74:2f:80:06:be:31:f8:5c:53:93:32: c9:36:a2:8f:6c:5a:e2:30:10:72:6a:8c:ae:a9:0c:b9:5a:06: e1:3a:d6:5b:da:d4:8c:7a:e2:cb:33:27:a0:73:f5:c7:21:2f: 4c:20:fd:bf:62:7b:6e:2b:48:38:47:24:72:c3:13:13:4d:2a: 36:0c:16:f5:09:8c:91:99:71:1e:a0:06:d8:99:a0:d8:84:d7: 7b:a1:be:76:24:b6:49:66:dd:28:74:76:58:eb:89:98:18:67: c9:48:3a:76:c0:29:f1:43:ab:4f:c7:43:b6:85:51:6e:c9:5f: 46:ea:6c:45:df:8c:65:ce:46:87:ad:18:0f:b9:05:19:fc:e1: e7:0b:e2:04:28:cf:ff:e9:eb:e2:63:20:fe:e2:cc:cd:f4:c3: d8:48:54:12:97:7b:37:76:4a:38:5c:5d:74:8a:3f:18:05:e3: b1:35:4b:0c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUZug0veF4pi+pKe75gSd3mdRPj6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MTMwNTIxMzlaFw0yNTA5MTIwNTI2MzlaMDMxMTAvBgNV BAMTKDdFNEJEQUNFNUUwRURFMzM2RjVBODU1MUYzQjMxQzE5MkI3QjREREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJMyAiLKmbjaADQZ6uzvhJg4L5 QxxI3IYDZo/nDEe/bnAGsy760HoOHiLT8alTCJjNlPVrrWescmN8suBa6KvdmkjJ YcZZFEmQvPrzbjURt+n2674IWS0YMzdhx8rTNIiuY8mzNWauwchG94c+LOJtxl8J R3QOvHXvX/rasYA7giWVGUE3Ot0m9fQAYAANauWk8up5W8VKBmx1I5JMHIKmpO2U rBuRty2LAE7WS+SDGzIdDZCx42JlZJhyrvp6zb7fZStAccxinEOT+ItLXHtwO6+P 3uVB43ch/YIF3D1JsX7duapB+GSK5Qi0slvYiD3VyZrHn4A7GGBhl1MRv3ZDAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUfkvazl4O3jNvWoVR87McGSt7TdswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyNjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEC/zANBgkqhkiG9w0BAQsFAAOCAQEAUPUu JfDzg3/PFOrGeP/O7QxUmDJvOrKKe+IjBoaWJYRV269/okgsajl3YHQ7eTow11ED a624BXD8yHgFwdnHV1poxLbid3hESu2r/aPp4HQvgAa+MfhcU5MyyTaij2xa4jAQ cmqMrqkMuVoG4TrWW9rUjHriyzMnoHP1xyEvTCD9v2J7bitIOEckcsMTE00qNgwW 9QmMkZlxHqAG2Jmg2ITXe6G+diS2SWbdKHR2WOuJmBhnyUg6dsAp8UOrT8dDtoVR bslfRupsRd+MZc5Gh60YD7kFGfzh5wviBCjP/+nr4mMg/uLMzfTD2EhUEpd7N3ZK OFxddIo/GAXjsTVLDA== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org