$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa File: 326131343a316563313a3a2f33322d3438203d3e203438373030.roa (raw, json) Hash identifier: xL09RaMvNnk3zcTxJYCpyR11r2WfajekNMt0OPCzbqM= Subject key identifier: A2:FC:FA:E1:AB:2A:0B:C5:E8:DA:84:81:CF:AB:B0:46:1C:52:67:30 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 1B188D0358664B9EEF651E452A0E2A9F9EF93E8E Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa Signing time: Sat 19 Oct 2024 08:30:23 +0000 ROA not before: Sat 19 Oct 2024 08:25:23 +0000 ROA not after: Sat 18 Oct 2025 08:30:23 +0000 asID: 48700 IP address blocks: 2a14:1ec1::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 01:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:18:8d:03:58:66:4b:9e:ef:65:1e:45:2a:0e:2a:9f:9e:f9:3e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Oct 19 08:25:23 2024 GMT Not After : Oct 18 08:30:23 2025 GMT Subject: CN=A2FCFAE1AB2A0BC5E8DA8481CFABB0461C526730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b4:8b:18:9a:23:64:51:f1:3f:93:79:0e:d2: d7:23:8a:7a:50:22:c9:2e:c0:a4:c7:86:99:85:f6: 86:a6:0e:40:7b:9c:6e:33:a9:68:d1:85:66:b4:c1: ea:fd:19:9a:c3:b1:fd:1f:30:32:33:a9:0f:11:27: d2:0e:c0:03:44:40:9d:fb:55:52:50:13:06:a4:2e: a2:00:f1:66:31:8f:65:93:fd:96:d6:03:e8:5f:80: c1:69:90:1f:17:56:d6:60:f3:17:7a:1c:6d:a7:25: e0:2e:7b:14:b4:e6:c4:00:3b:2d:d1:76:96:4c:a3: cc:5b:f0:85:94:62:b0:0c:fd:c1:0b:6e:d5:80:2b: d5:f6:5f:1c:33:17:b4:ea:13:e1:f2:99:00:9f:cd: 07:1f:1c:2e:3e:39:e4:e3:0a:f4:3c:65:7e:db:dd: 46:a6:73:0b:de:bd:9c:ab:af:59:d7:cb:19:fe:4d: b0:aa:d9:e1:9a:ab:05:ff:a6:3f:62:5b:6b:1e:9e: 48:f7:31:fc:cc:b5:33:e8:ea:d0:e6:bb:d9:41:4f: 2a:78:d3:29:b1:97:94:56:a6:29:89:47:5d:9e:26: f4:5c:f8:c2:74:a6:95:45:48:f8:e7:4f:84:33:48: e9:a4:69:1d:61:13:9b:1f:d7:45:3d:e0:50:71:f6: de:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FC:FA:E1:AB:2A:0B:C5:E8:DA:84:81:CF:AB:B0:46:1C:52:67:30 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1::/32 Signature Algorithm: sha256WithRSAEncryption 1b:76:57:9d:6d:b9:4a:79:a6:61:dd:3d:40:20:21:ef:8c:48: 04:4f:2d:a8:96:bc:f9:8c:e0:4e:35:52:4d:5f:30:5e:36:71: e5:4e:5c:8b:22:9d:11:26:c2:48:93:34:c9:fc:5f:64:64:dc: 25:75:9c:74:b0:ec:69:65:0a:80:b6:e5:c3:b3:75:db:ff:3c: fe:ef:1c:9e:19:ce:6f:6a:b0:3f:1e:e6:ad:1a:f7:11:2d:06: 15:df:99:86:b6:be:dd:60:e4:f0:f0:73:1f:6d:10:9a:32:ea: f0:7c:a3:81:b2:27:78:13:94:7e:aa:24:ca:60:2c:2b:71:2f: 25:e4:60:ec:1d:ad:fa:0f:9c:c9:67:de:5a:e2:d7:38:04:27: b3:95:c7:6c:72:cb:ea:12:1e:10:bf:85:46:38:24:e7:9b:e0: fb:bc:09:22:05:0b:3e:7d:ab:9c:49:2b:2f:4f:4c:8f:85:bd: a1:46:21:61:b4:89:5f:2c:78:66:df:02:2b:e3:8e:61:04:76: 0a:14:4f:6b:95:3d:4d:13:45:39:8d:bc:85:92:30:46:0b:ca: 25:9a:26:f8:b3:e9:ff:29:34:9b:d7:ac:2d:ea:37:1d:9d:c4: 72:dc:50:08:3e:48:4c:bd:f7:f2:8c:dd:5e:a2:b0:0f:f4:fe: 41:62:3a:c4 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUGxiNA1hmS57vZR5FKg4qn575Po4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNDEwMTkwODI1MjNaFw0yNTEwMTgwODMwMjNaMDMxMTAvBgNV BAMTKEEyRkNGQUUxQUIyQTBCQzVFOERBODQ4MUNGQUJCMDQ2MUM1MjY3MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1tIsYmiNkUfE/k3kO0tcjinpQ IskuwKTHhpmF9oamDkB7nG4zqWjRhWa0wer9GZrDsf0fMDIzqQ8RJ9IOwANEQJ37 VVJQEwakLqIA8WYxj2WT/ZbWA+hfgMFpkB8XVtZg8xd6HG2nJeAuexS05sQAOy3R dpZMo8xb8IWUYrAM/cELbtWAK9X2XxwzF7TqE+HymQCfzQcfHC4+OeTjCvQ8ZX7b 3UamcwvevZyrr1nXyxn+TbCq2eGaqwX/pj9iW2senkj3MfzMtTPo6tDmu9lBTyp4 0ymxl5RWpimJR12eJvRc+MJ0ppVFSPjnT4QzSOmkaR1hE5sf10U94FBx9t7JAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUovz64asqC8Xo2oSBz6uwRhxSZzAwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzNDM4MzczMDMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAKhQewTANBgkqhkiG9w0BAQsFAAOCAQEAG3ZXnW25SnmmYd09QCAh 74xIBE8tqJa8+YzgTjVSTV8wXjZx5U5ciyKdESbCSJM0yfxfZGTcJXWcdLDsaWUK gLblw7N12/88/u8cnhnOb2qwPx7mrRr3ES0GFd+Zhra+3WDk8PBzH20QmjLq8Hyj gbIneBOUfqokymAsK3EvJeRg7B2t+g+cyWfeWuLXOAQns5XHbHLL6hIeEL+FRjgk 55vg+7wJIgULPn2rnEkrL09Mj4W9oUYhYbSJXyx4Zt8CK+OOYQR2ChRPa5U9TRNF OY28hZIwRgvKJZom+LPp/yk0m9esLeo3HZ3EctxQCD5ITL338ozdXqKwD/T+QWI6 xA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org