$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3438203d3e203434383137.roa File: 326131343a373538313a343030303a3a2f33362d3438203d3e203434383137.roa (raw, json) Hash identifier: 2OjyaJbbNxiK1KbQufJXFdY8QVhoqDcSSIjvfQsPK/M= Subject key identifier: 86:58:2C:CA:4F:FD:57:88:2C:8A:88:E2:AE:9C:39:45:67:BE:79:9D Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 2B4AE5780A4888F4030406E48E23DB634CB1962F Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3438203d3e203434383137.roa Signing time: Sat 23 Mar 2024 05:08:28 +0000 ROA not before: Sat 23 Mar 2024 05:03:28 +0000 ROA not after: Sat 22 Mar 2025 05:08:28 +0000 asID: 44817 IP address blocks: 2a14:7581:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:4a:e5:78:0a:48:88:f4:03:04:06:e4:8e:23:db:63:4c:b1:96:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Mar 23 05:03:28 2024 GMT Not After : Mar 22 05:08:28 2025 GMT Subject: CN=86582CCA4FFD57882C8A88E2AE9C394567BE799D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:64:8c:81:4f:1b:8a:58:0b:d8:8d:fd:f2: fd:96:b4:e6:cc:93:92:0a:5e:62:21:3f:06:50:2d: bc:1c:c4:97:70:2b:32:63:82:ca:bc:15:3a:8a:db: f3:f6:c1:0b:b2:8c:65:63:6d:45:16:8e:8b:94:ed: 2a:a1:a1:0a:29:48:c6:74:a2:8b:da:55:9e:d7:6c: fd:6c:4f:dc:a9:da:0d:6e:af:c4:f7:9f:2e:1b:64: a4:00:37:47:07:55:b7:0a:db:c6:25:0e:72:39:18: 4f:26:31:cf:69:db:90:47:ef:0d:29:36:29:7f:d1: 24:1d:3f:08:dc:4f:54:ba:41:c7:97:5f:b0:c8:e8: 08:ec:be:d0:c4:1f:4c:33:94:d8:88:f4:17:33:5d: 37:3b:ad:96:00:43:de:c3:42:a4:6a:f6:4d:de:8a: b3:f6:80:27:3b:08:5b:5a:44:dd:08:63:60:c6:c6: 49:c7:bc:58:9c:6f:9b:09:5b:74:c9:98:0a:34:92: cc:0a:21:bb:a7:98:b0:6a:e8:4b:59:35:8a:6e:ae: f9:91:36:44:fc:d8:c8:57:bc:ff:10:99:ad:85:88: fb:4d:6f:63:57:d7:b6:14:16:af:63:38:d8:4e:9e: 2c:61:96:5b:72:ca:38:5e:f9:31:68:59:8c:24:c2: 9c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:58:2C:CA:4F:FD:57:88:2C:8A:88:E2:AE:9C:39:45:67:BE:79:9D X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343030303a3a2f33362d3438203d3e203434383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4000::/36 Signature Algorithm: sha256WithRSAEncryption 25:9a:c0:f7:48:73:56:59:6a:8f:4c:c2:ee:b5:54:05:e3:84: 5a:9e:2e:d4:20:cb:2f:92:6b:2a:bf:6e:ea:a5:81:5d:5e:81: 07:fb:64:45:d0:e1:b8:0b:6e:80:63:6e:05:e4:47:f2:49:6a: a0:4d:9a:51:89:ab:1c:9d:27:a5:20:5b:66:13:82:df:c0:18: 07:d4:02:69:32:2b:19:4a:c3:5f:76:5b:26:29:a5:35:16:06: fb:bb:b8:21:9d:18:dc:16:05:30:25:dc:9f:9c:d3:0d:49:7f: 15:45:e7:80:f0:dc:c1:4a:58:ec:8d:8f:d4:72:32:ad:36:5f: f2:e8:fe:b7:ef:83:de:a1:7b:2b:a7:b9:62:83:57:74:ae:c9: e1:b4:27:8b:c7:9d:98:6b:49:de:76:74:fb:a7:64:8e:f7:06: 2b:2e:00:1e:16:48:91:69:14:85:1b:fb:c7:d4:b2:ae:cb:d9: 43:87:f7:f2:aa:5c:1c:30:ba:1f:63:7f:e1:e4:b4:53:fc:6c: 53:31:d1:ec:cf:0e:9d:67:d4:79:7a:24:c0:c2:49:db:bf:f2: b5:05:ec:c8:48:26:1d:68:7e:6f:38:3c:1d:7e:98:82:13:b9: ea:39:86:ab:8e:8a:79:de:2b:9f:01:33:15:31:2c:d0:84:9c: 4b:c3:11:5f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUK0rleApIiPQDBAbkjiPbY0yxli8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDAzMjMwNTAzMjhaFw0yNTAzMjIwNTA4MjhaMDMxMTAvBgNV BAMTKDg2NTgyQ0NBNEZGRDU3ODgyQzhBODhFMkFFOUMzOTQ1NjdCRTc5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkNWSMgU8bilgL2I398v2WtObM k5IKXmIhPwZQLbwcxJdwKzJjgsq8FTqK2/P2wQuyjGVjbUUWjouU7SqhoQopSMZ0 oovaVZ7XbP1sT9yp2g1ur8T3ny4bZKQAN0cHVbcK28YlDnI5GE8mMc9p25BH7w0p Nil/0SQdPwjcT1S6QceXX7DI6AjsvtDEH0wzlNiI9BczXTc7rZYAQ97DQqRq9k3e irP2gCc7CFtaRN0IY2DGxknHvFicb5sJW3TJmAo0kswKIbunmLBq6EtZNYpurvmR NkT82MhXvP8Qma2FiPtNb2NX17YUFq9jONhOnixhlltyyjhe+TFoWYwkwpz1AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUhlgsyk/9V4gsiojirpw5RWe+eZ0wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzQz NDM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGBCoUdYFAMA0GCSqGSIb3DQEBCwUAA4IBAQAlmsD3 SHNWWWqPTMLutVQF44Rani7UIMsvkmsqv27qpYFdXoEH+2RF0OG4C26AY24F5Efy SWqgTZpRiascnSelIFtmE4LfwBgH1AJpMisZSsNfdlsmKaU1Fgb7u7ghnRjcFgUw JdyfnNMNSX8VReeA8NzBSljsjY/UcjKtNl/y6P6374PeoXsrp7lig1d0rsnhtCeL x52Ya0nednT7p2SO9wYrLgAeFkiRaRSFG/vH1LKuy9lDh/fyqlwcMLofY3/h5LRT /GxTMdHszw6dZ9R5eiTAwknbv/K1BezISCYdaH5vODwdfpiCE7nqOYarjop53iuf ATMVMSzQhJxLwxFf -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org