$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa File: 326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa (raw, json) Hash identifier: balCDraqmFeCDcT6AARLgPE7wx/XlJCm9PVdBomS9WU= Subject key identifier: 2A:36:FA:47:C8:43:88:71:86:1C:70:6B:F8:A7:E8:AB:A6:34:EC:44 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 403BFC27E96F9C84645A80BC3AA4519F5D587580 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa Signing time: Mon 25 Mar 2024 10:01:17 +0000 ROA not before: Mon 25 Mar 2024 09:56:17 +0000 ROA not after: Mon 24 Mar 2025 10:01:17 +0000 asID: 215674 IP address blocks: 2a14:7581:4810::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:3b:fc:27:e9:6f:9c:84:64:5a:80:bc:3a:a4:51:9f:5d:58:75:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Mar 25 09:56:17 2024 GMT Not After : Mar 24 10:01:17 2025 GMT Subject: CN=2A36FA47C8438871861C706BF8A7E8ABA634EC44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e7:c4:d2:18:07:64:74:18:5f:23:32:88:fc: 8c:02:6a:3b:62:ba:3e:e5:1a:be:17:3a:f5:98:48: af:d2:e9:b4:dd:e9:48:1e:23:c9:21:92:10:3e:21: a4:7d:86:f9:ac:7f:11:4a:90:be:4e:60:27:67:1e: 25:8e:a3:12:c6:e0:b8:6a:74:6d:cd:cb:4f:04:0c: 19:9b:0c:37:28:dc:4a:74:c6:d1:03:97:db:75:64: 1d:95:d6:4c:7b:b3:3e:90:44:2b:55:6d:b9:b6:9d: 87:f9:44:00:78:80:69:ea:3f:7d:ae:c9:4d:b2:93: 6c:ef:0e:59:62:72:68:02:e1:69:dd:bd:6e:f1:04: fa:a8:83:8d:b3:ba:c9:02:6c:c6:07:04:b1:4d:13: f2:17:b8:0c:b2:10:f0:81:bb:fa:06:c1:09:ec:cc: 45:84:6d:eb:36:1c:d4:96:5b:c9:02:9c:e6:d2:c8: f8:8b:81:77:f6:10:5a:dc:a0:40:34:bb:b2:f4:74: 55:70:ec:20:97:9b:7d:ce:fa:e7:5b:5e:95:f1:13: 41:20:9e:65:54:ba:42:35:57:ea:15:48:28:27:4f: f4:65:67:45:c2:ab:8d:d0:ce:5a:da:c0:8c:ef:e0: e8:44:45:fd:c2:bb:33:11:6c:ed:23:16:c2:54:11: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:36:FA:47:C8:43:88:71:86:1C:70:6B:F8:A7:E8:AB:A6:34:EC:44 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343831303a3a2f34342d3438203d3e20323135363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4810::/44 Signature Algorithm: sha256WithRSAEncryption 5a:7b:a8:c5:0b:c3:88:39:31:ca:f1:47:84:d5:ee:8b:da:8a: a3:20:9a:81:93:58:2d:10:cf:e7:b2:38:bc:16:3a:b4:c1:62: 7b:3c:23:e2:95:f2:45:92:7f:83:2a:aa:bd:9a:06:e2:f7:cd: 90:44:85:c5:4a:4f:4c:45:3b:4b:97:8f:f2:be:74:89:f8:4a: 7c:22:b2:d3:54:f5:6d:d5:0c:65:7e:bc:97:a1:b1:96:4c:6e: c2:c9:ac:3b:30:82:27:c1:c1:12:1e:3c:6c:59:57:40:09:b6: da:1f:e4:41:09:f6:12:9c:e6:0c:0f:f1:d0:9e:99:04:34:06: 10:21:fd:e7:01:e8:a6:ce:e0:20:3e:aa:5e:bc:11:c2:10:aa: b3:93:0a:c3:cf:6b:7d:30:51:d7:9a:98:1d:96:0e:0f:1a:1e: 6f:ec:ac:d8:4d:b7:98:e7:80:8d:6c:0a:3d:98:63:58:50:ec: 36:1e:8d:59:be:d1:31:f1:86:11:e3:2d:f8:5c:25:10:a3:17: 4b:dd:23:a2:ca:66:9e:56:01:f3:62:a8:8e:39:5e:06:a2:f7: eb:72:1c:d9:69:6f:6d:6f:4f:df:29:0a:ad:63:da:a4:26:99: e3:00:e6:fd:8d:01:4c:01:d0:5c:82:fc:a9:df:3c:ba:06:43: fa:7f:99:c2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQDv8J+lvnIRkWoC8OqRRn11YdYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDAzMjUwOTU2MTdaFw0yNTAzMjQxMDAxMTdaMDMxMTAvBgNV BAMTKDJBMzZGQTQ3Qzg0Mzg4NzE4NjFDNzA2QkY4QTdFOEFCQTYzNEVDNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn58TSGAdkdBhfIzKI/IwCajti uj7lGr4XOvWYSK/S6bTd6UgeI8khkhA+IaR9hvmsfxFKkL5OYCdnHiWOoxLG4Lhq dG3Ny08EDBmbDDco3Ep0xtEDl9t1ZB2V1kx7sz6QRCtVbbm2nYf5RAB4gGnqP32u yU2yk2zvDllicmgC4WndvW7xBPqog42zuskCbMYHBLFNE/IXuAyyEPCBu/oGwQns zEWEbes2HNSWW8kCnObSyPiLgXf2EFrcoEA0u7L0dFVw7CCXm33O+udbXpXxE0Eg nmVUukI1V+oVSCgnT/RlZ0XCq43QzlrawIzv4OhERf3CuzMRbO0jFsJUETubAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUKjb6R8hDiHGGHHBr+Kfoq6Y07EQwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUgQMA0GCSqGSIb3DQEBCwUAA4IBAQBa e6jFC8OIOTHK8UeE1e6L2oqjIJqBk1gtEM/nsji8Fjq0wWJ7PCPilfJFkn+DKqq9 mgbi982QRIXFSk9MRTtLl4/yvnSJ+Ep8IrLTVPVt1QxlfryXobGWTG7Cyaw7MIIn wcESHjxsWVdACbbaH+RBCfYSnOYMD/HQnpkENAYQIf3nAeimzuAgPqpevBHCEKqz kwrDz2t9MFHXmpgdlg4PGh5v7KzYTbeY54CNbAo9mGNYUOw2Ho1ZvtEx8YYR4y34 XCUQoxdL3SOiymaeVgHzYqiOOV4GovfrchzZaW9tb0/fKQqtY9qkJpnjAOb9jQFM AdBcgvyp3zy6BkP6f5nC -----END CERTIFICATE-----Generated at Thu Nov 21 21:14:51 2024 by rpki-client on console-fra.rpki-client.org