$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343536303a3a2f34342d3438203d3e20323135313731.roa File: 326131343a373538313a343536303a3a2f34342d3438203d3e20323135313731.roa (raw, json) Hash identifier: KfVtaM6pSil5IlE25aJ6GsX8ukKL88HTbLxoecGenMs= Subject key identifier: BD:8E:6B:33:3F:7D:E4:75:F9:14:5D:96:27:58:E0:38:F2:B0:BF:CD Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 23144F771A4D92F29BA540685E2EC2864FB120B7 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343536303a3a2f34342d3438203d3e20323135313731.roa Signing time: Fri 14 Jun 2024 16:23:07 +0000 ROA not before: Fri 14 Jun 2024 16:18:07 +0000 ROA not after: Fri 13 Jun 2025 16:23:07 +0000 asID: 215171 IP address blocks: 2a14:7581:4560::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:14:4f:77:1a:4d:92:f2:9b:a5:40:68:5e:2e:c2:86:4f:b1:20:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jun 14 16:18:07 2024 GMT Not After : Jun 13 16:23:07 2025 GMT Subject: CN=BD8E6B333F7DE475F9145D962758E038F2B0BFCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:db:7d:da:3c:3e:41:ca:50:da:e6:74:62:c6: f6:4a:e1:f7:36:38:31:e6:db:a3:b5:f2:a4:84:dc: 1b:bc:4d:d2:82:e5:7b:e6:13:e6:6d:b4:84:df:c9: 7c:23:0c:25:70:89:2f:3b:94:ba:63:d9:fa:a2:55: f1:fa:51:83:17:da:e2:42:39:02:57:4c:77:69:88: db:0e:ce:f6:61:ef:47:23:6f:3d:83:04:da:fc:21: bf:ff:4f:0a:d6:b0:2c:70:3b:03:ca:85:af:02:cf: dd:73:ae:00:06:c3:ee:63:e0:6d:e5:d8:5e:07:bb: 4e:af:7c:45:ca:cc:73:03:e7:ab:4d:b4:b6:d1:8b: d2:be:c5:f1:0a:63:25:95:a6:a1:14:94:db:91:46: 50:cf:ae:d8:cc:f2:b1:0a:74:78:82:82:1c:4c:1e: 3e:b6:f1:88:3e:ef:c0:c5:6b:7e:9d:29:83:4a:8a: 10:83:9b:6f:32:0c:93:59:ae:41:36:82:32:ba:0b: d5:c8:62:31:be:28:d7:5a:e1:60:e7:97:b3:4b:f6: f7:c6:5b:4a:21:c5:e6:5f:e8:73:ba:89:cd:b6:d3: 80:25:d6:b9:7d:3b:f2:8b:b4:a7:f3:aa:0e:72:64: 7b:fa:4e:37:4f:94:7a:1f:57:5c:54:b2:ee:9a:cd: 2f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:8E:6B:33:3F:7D:E4:75:F9:14:5D:96:27:58:E0:38:F2:B0:BF:CD X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343536303a3a2f34342d3438203d3e20323135313731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4560::/44 Signature Algorithm: sha256WithRSAEncryption 2d:0e:59:8e:ec:5c:bf:3e:6b:80:09:48:30:0c:6a:28:58:1f: 5a:ad:df:72:3f:38:c0:37:b4:d8:86:77:ff:4c:a0:c6:56:3a: 32:30:d1:8e:87:a5:33:53:97:16:11:75:0c:b0:ed:71:c8:6f: 97:11:47:9d:2e:5d:f0:95:d0:7a:9e:18:0b:0d:96:b9:e8:3b: 53:86:00:6c:16:d4:02:74:c0:94:ad:1e:72:54:3b:e1:fd:fa: 20:1c:ca:53:e1:15:ca:4b:af:c6:f7:c6:c3:95:64:36:92:1f: 35:e5:c7:05:a5:08:dd:37:98:fa:9f:94:6c:a6:9a:2b:d7:d7: a8:6d:02:d9:9d:39:ba:75:27:92:91:32:3e:02:1a:af:f2:fe: c0:ff:6e:68:9c:cd:1a:cf:63:1f:64:18:15:47:2b:28:d0:b6: a5:5e:5c:cc:98:98:39:4e:85:39:1b:48:02:3b:1c:7d:10:77: 12:42:4b:d2:2d:aa:de:23:2a:ec:e0:72:2e:64:86:52:b0:97: fe:9c:b6:64:e8:70:f4:f4:ff:b3:f8:c1:c2:f7:5d:e6:c4:8e: ff:50:b4:9b:a1:e7:b7:b9:57:d9:05:29:6e:2a:84:7e:a9:1e: 12:d2:f6:c1:e1:12:c8:8d:e3:eb:9f:ca:c8:3f:a0:63:84:09: 3b:f1:63:cc -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIxRPdxpNkvKbpUBoXi7Chk+xILcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDA2MTQxNjE4MDdaFw0yNTA2MTMxNjIzMDdaMDMxMTAvBgNV BAMTKEJEOEU2QjMzM0Y3REU0NzVGOTE0NUQ5NjI3NThFMDM4RjJCMEJGQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO233aPD5BylDa5nRixvZK4fc2 ODHm26O18qSE3Bu8TdKC5XvmE+ZttITfyXwjDCVwiS87lLpj2fqiVfH6UYMX2uJC OQJXTHdpiNsOzvZh70cjbz2DBNr8Ib//TwrWsCxwOwPKha8Cz91zrgAGw+5j4G3l 2F4Hu06vfEXKzHMD56tNtLbRi9K+xfEKYyWVpqEUlNuRRlDPrtjM8rEKdHiCghxM Hj628Yg+78DFa36dKYNKihCDm28yDJNZrkE2gjK6C9XIYjG+KNda4WDnl7NL9vfG W0ohxeZf6HO6ic2204Al1rl9O/KLtKfzqg5yZHv6TjdPlHofV1xUsu6azS+7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUvY5rMz995HX5FF2WJ1jgOPKwv80wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzUzNjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUVgMA0GCSqGSIb3DQEBCwUAA4IBAQAt DlmO7Fy/PmuACUgwDGooWB9ard9yPzjAN7TYhnf/TKDGVjoyMNGOh6UzU5cWEXUM sO1xyG+XEUedLl3wldB6nhgLDZa56DtThgBsFtQCdMCUrR5yVDvh/fogHMpT4RXK S6/G98bDlWQ2kh815ccFpQjdN5j6n5Rsppor19eobQLZnTm6dSeSkTI+Ahqv8v7A /25onM0az2MfZBgVRyso0LalXlzMmJg5ToU5G0gCOxx9EHcSQkvSLareIyrs4HIu ZIZSsJf+nLZk6HD09P+z+MHC913mxI7/ULSboee3uVfZBSluKoR+qR4S0vbB4RLI jePrn8rIP6BjhAk78WPM -----END CERTIFICATE-----Generated at Mon Nov 25 00:07:05 2024 by rpki-client on console-fra.rpki-client.org