$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa File: 38332e3134322e33312e302f32342d3234203d3e20323135303835.roa (raw, json) Hash identifier: DeNLRbWhS9WKIEvlMBYaR+2p0F2qMHWNHV7i4if0F4Q= Subject key identifier: 53:83:44:D3:CF:39:94:AA:63:35:BE:36:FB:B0:C1:06:AE:E7:2A:94 Certificate issuer: /CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Certificate serial: 56AA0EE8CF6B5C670E66D4FBA273CCF006296374 Authority key identifier: 75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa Signing time: Mon 02 Sep 2024 09:08:01 +0000 ROA not before: Mon 02 Sep 2024 09:03:01 +0000 ROA not after: Mon 01 Sep 2025 09:08:01 +0000 asID: 215085 IP address blocks: 83.142.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 16:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:aa:0e:e8:cf:6b:5c:67:0e:66:d4:fb:a2:73:cc:f0:06:29:63:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Validity Not Before: Sep 2 09:03:01 2024 GMT Not After : Sep 1 09:08:01 2025 GMT Subject: CN=538344D3CF3994AA6335BE36FBB0C106AEE72A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:55:4d:b8:7b:7a:ba:53:cd:62:65:ed:f9: d0:3c:64:b9:7b:de:89:06:79:1f:65:e0:e4:d9:b9: 0a:19:76:d6:e4:e0:c7:af:8b:95:1a:bc:9a:ca:82: a1:ce:b9:1b:5b:4b:f4:e0:b5:0a:de:14:d2:2b:a0: 26:39:71:fc:7f:6b:71:cc:65:3b:6a:fc:d1:d4:f7: ab:4c:b2:f8:48:d2:64:b6:fc:08:70:65:6c:26:38: 48:b2:0f:d2:96:81:bd:6e:b9:9a:53:3a:b5:ca:fd: ad:5a:4b:2b:6f:e9:4f:f3:dd:1b:f0:c1:1f:82:37: ed:ec:19:b2:7f:f0:0a:88:30:aa:83:7c:9f:28:e0: 2e:8b:ca:02:bb:35:13:6c:7f:56:3c:5f:4f:a7:5c: 2d:81:23:4a:15:d9:a3:d0:e0:24:7b:7c:ba:c7:45: 44:ac:64:d8:1f:e6:8e:ca:d8:70:f6:b6:15:c4:c8: f4:03:b4:58:73:3a:55:ba:17:91:ae:79:d1:d9:2d: cf:ba:4f:f7:62:b7:4d:9d:2a:ef:ee:86:0a:30:5f: dd:12:8b:cd:4d:50:64:00:c0:29:ea:ee:83:c9:a7: f6:ab:44:5b:d5:ea:d5:88:d1:6f:4a:de:36:6c:c2: f7:5a:1e:d0:82:a8:2e:91:89:46:77:f2:ca:ac:75: d7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:83:44:D3:CF:39:94:AA:63:35:BE:36:FB:B0:C1:06:AE:E7:2A:94 X509v3 Authority Key Identifier: keyid:75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/38332e3134322e33312e302f32342d3234203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.142.31.0/24 Signature Algorithm: sha256WithRSAEncryption 20:09:67:d7:1c:26:3e:5d:42:80:45:94:ee:07:ff:27:61:c8: 3d:d1:58:a9:16:53:a1:b3:e3:87:61:df:91:5c:e0:69:40:7c: d3:2c:cc:36:d7:41:6e:2b:f1:a9:8f:29:99:21:4a:41:5e:dc: ca:2f:55:3a:b8:f7:bf:f7:60:e8:ed:b1:4d:58:0c:14:40:50: 3c:97:81:01:23:ce:d4:9d:94:24:e1:c5:68:a1:a4:c5:b4:61: 36:de:d5:0b:40:25:97:6a:5a:f9:06:0b:85:6c:35:4d:6a:02: 62:da:2f:32:dc:ec:21:51:1e:46:fe:df:3b:3b:e3:29:e0:d9: 95:c1:10:24:dc:59:6c:d6:1f:da:d1:f0:85:fb:52:51:a1:8e: 87:e7:dc:61:00:52:d8:b7:af:4e:68:07:31:2a:c9:cb:eb:c7: d3:59:ce:9a:04:a4:7a:bb:cd:7f:37:32:b0:59:26:2d:8d:d9: dd:c9:b6:4f:dc:14:8b:29:5c:de:be:ca:4f:34:eb:de:43:aa: 3f:21:f5:dc:80:10:f2:31:8e:94:e4:ac:7c:3d:b6:1e:18:fc: fe:d6:45:07:13:0a:c1:b3:36:23:b9:22:62:7f:67:9e:78:86: 5b:b0:30:67:0a:45:aa:7d:72:69:3b:c9:0c:b0:70:a9:3a:e8: 8f:fa:2b:ef -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUVqoO6M9rXGcOZtT7onPM8AYpY3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1 RDhCQTk3MDAeFw0yNDA5MDIwOTAzMDFaFw0yNTA5MDEwOTA4MDFaMDMxMTAvBgNV BAMTKDUzODM0NEQzQ0YzOTk0QUE2MzM1QkUzNkZCQjBDMTA2QUVFNzJBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfO1VNuHt6ulPNYmXt+dA8ZLl7 3okGeR9l4OTZuQoZdtbk4Mevi5UavJrKgqHOuRtbS/TgtQreFNIroCY5cfx/a3HM ZTtq/NHU96tMsvhI0mS2/AhwZWwmOEiyD9KWgb1uuZpTOrXK/a1aSytv6U/z3Rvw wR+CN+3sGbJ/8AqIMKqDfJ8o4C6LygK7NRNsf1Y8X0+nXC2BI0oV2aPQ4CR7fLrH RUSsZNgf5o7K2HD2thXEyPQDtFhzOlW6F5GuedHZLc+6T/dit02dKu/uhgowX90S i81NUGQAwCnq7oPJp/arRFvV6tWI0W9K3jZswvdaHtCCqC6RiUZ38sqsdddzAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUU4NE0885lKpjNb42+7DBBq7nKpQwHwYDVR0j BBgwFoAUddXC7NMPaA210WmH9Ff+tF2LqXAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzEvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhCQTk3MC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhC QTk3MC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzEvMzgzMzJlMzEzNDMyMmUzMzMx MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA U44fMA0GCSqGSIb3DQEBCwUAA4IBAQAgCWfXHCY+XUKARZTuB/8nYcg90VipFlOh s+OHYd+RXOBpQHzTLMw210FuK/GpjymZIUpBXtzKL1U6uPe/92Do7bFNWAwUQFA8 l4EBI87UnZQk4cVooaTFtGE23tULQCWXalr5BguFbDVNagJi2i8y3OwhUR5G/t87 O+Mp4NmVwRAk3Fls1h/a0fCF+1JRoY6H59xhAFLYt69OaAcxKsnL68fTWc6aBKR6 u81/NzKwWSYtjdndybZP3BSLKVzevspPNOveQ6o/IfXcgBDyMY6U5Kx8PbYeGPz+ 1kUHEwrBszYjuSJif2eeeIZbsDBnCkWqfXJpO8kMsHCpOuiP+ivv -----END CERTIFICATE-----Generated at Mon Nov 25 22:24:48 2024 by rpki-client on console-ams.rpki-client.org