$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343834303a3a2f34342d3438203d3e20323135323839.roa File: 326131343a373538313a343834303a3a2f34342d3438203d3e20323135323839.roa (raw, json) Hash identifier: Bo15fqP9Ac/cIgSIHZ4Z4OZP/kjLDe1d5T3u0s2HgVw= Subject key identifier: 95:5C:3D:B8:32:3B:A8:DC:6F:E3:4A:96:9B:38:4F:B5:27:01:EA:2B Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 78043BD531161306C1C023A0ADE71B500C74F061 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343834303a3a2f34342d3438203d3e20323135323839.roa Signing time: Thu 28 Mar 2024 07:09:37 +0000 ROA not before: Thu 28 Mar 2024 07:04:37 +0000 ROA not after: Thu 27 Mar 2025 07:09:37 +0000 asID: 215289 IP address blocks: 2a14:7581:4840::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:04:3b:d5:31:16:13:06:c1:c0:23:a0:ad:e7:1b:50:0c:74:f0:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Mar 28 07:04:37 2024 GMT Not After : Mar 27 07:09:37 2025 GMT Subject: CN=955C3DB8323BA8DC6FE34A969B384FB52701EA2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:59:96:b8:d7:85:97:f2:e1:bb:e7:bb:71:93: a5:d7:05:42:e6:5d:98:19:b4:b1:6e:5a:7b:5c:ed: f3:4a:12:c3:93:d7:44:ab:c3:e2:a8:04:e0:5c:8e: 91:1e:f5:67:c2:6f:02:8f:2b:c1:51:75:68:95:20: 1d:db:a7:da:a7:24:51:8a:3b:f9:bc:fe:df:03:79: 84:47:2f:08:78:90:d9:09:af:01:76:3f:7f:73:42: ed:11:5e:c6:41:26:d4:aa:eb:6d:56:b3:fc:43:3b: bc:ac:ee:5a:4c:0e:f5:52:57:e5:42:67:01:ba:80: 97:0e:10:3e:ee:3f:9a:5e:a0:10:6c:8f:96:d5:5e: 35:2b:d3:58:b5:c7:c6:07:49:2c:bd:69:dc:b7:f9: 15:03:01:73:2c:a9:0b:38:1f:26:b5:63:3e:fe:b1: d2:20:81:69:30:43:a2:f8:2e:2e:dc:8e:73:35:4a: 88:8d:44:38:79:2b:9b:a1:a0:2a:c2:eb:c6:29:ce: 33:33:56:87:a8:36:3e:39:48:9f:4e:37:7b:74:0f: 0d:0c:11:45:df:0c:fd:7d:46:80:42:12:52:5a:c1: 26:d8:d0:06:72:0b:30:76:5a:2c:58:92:89:ea:2b: c5:76:d6:3f:8c:b1:a8:3b:95:0a:24:b4:f8:a0:63: a4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:5C:3D:B8:32:3B:A8:DC:6F:E3:4A:96:9B:38:4F:B5:27:01:EA:2B X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343834303a3a2f34342d3438203d3e20323135323839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4840::/44 Signature Algorithm: sha256WithRSAEncryption 4a:d0:7a:c7:f4:d6:91:6f:6c:fb:6c:af:f2:d9:64:7c:9d:a5: 56:12:04:35:c3:82:50:4f:b3:11:f6:f6:2a:14:37:58:ec:2a: 8b:ff:db:3a:01:e9:e6:88:ff:b4:c1:d1:08:51:86:7f:40:22: d7:d0:4f:e3:d9:74:dc:0c:41:c1:7f:b2:97:03:af:74:71:61: ac:e2:ac:79:f2:17:d4:a5:77:f8:03:f9:14:80:13:cb:20:25: f6:60:12:08:ef:97:06:24:d7:dc:28:6c:69:3e:44:fd:4e:d2: 75:d2:0b:27:b4:97:e7:ad:bc:7f:16:53:43:8c:d2:fd:a7:58: 72:cd:9f:3a:bf:92:67:51:3c:f4:9c:af:c5:13:ee:cd:92:63: f3:6b:29:9d:7f:2a:06:d1:63:e7:18:79:e1:d0:8c:85:d6:87: 6e:37:42:f3:8a:73:de:a8:6e:67:51:a7:e5:8f:d0:26:ba:1d: 47:12:36:f8:e6:ef:f8:8e:ba:48:8c:47:1d:de:14:d3:c4:71: ad:a4:1a:68:1c:4b:9e:c2:df:83:ab:99:35:81:44:27:e6:80: dc:20:25:9a:d5:bd:d2:f9:2c:2d:fa:f5:b3:ce:36:67:98:ee: 44:e4:92:d8:69:03:dc:1e:6e:e4:30:12:c8:7a:43:d8:bd:69: aa:60:dd:7f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUeAQ71TEWEwbBwCOgrecbUAx08GEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDAzMjgwNzA0MzdaFw0yNTAzMjcwNzA5MzdaMDMxMTAvBgNV BAMTKDk1NUMzREI4MzIzQkE4REM2RkUzNEE5NjlCMzg0RkI1MjcwMUVBMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrWZa414WX8uG757txk6XXBULm XZgZtLFuWntc7fNKEsOT10Srw+KoBOBcjpEe9WfCbwKPK8FRdWiVIB3bp9qnJFGK O/m8/t8DeYRHLwh4kNkJrwF2P39zQu0RXsZBJtSq621Ws/xDO7ys7lpMDvVSV+VC ZwG6gJcOED7uP5peoBBsj5bVXjUr01i1x8YHSSy9ady3+RUDAXMsqQs4Hya1Yz7+ sdIggWkwQ6L4Li7cjnM1SoiNRDh5K5uhoCrC68YpzjMzVoeoNj45SJ9ON3t0Dw0M EUXfDP19RoBCElJawSbY0AZyCzB2WixYkonqK8V21j+Msag7lQoktPigY6T1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUlVw9uDI7qNxv40qWmzhPtScB6iswHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzIzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUhAMA0GCSqGSIb3DQEBCwUAA4IBAQBK 0HrH9NaRb2z7bK/y2WR8naVWEgQ1w4JQT7MR9vYqFDdY7CqL/9s6AenmiP+0wdEI UYZ/QCLX0E/j2XTcDEHBf7KXA690cWGs4qx58hfUpXf4A/kUgBPLICX2YBII75cG JNfcKGxpPkT9TtJ10gsntJfnrbx/FlNDjNL9p1hyzZ86v5JnUTz0nK/FE+7NkmPz aymdfyoG0WPnGHnh0IyF1oduN0LzinPeqG5nUaflj9Amuh1HEjb45u/4jrpIjEcd 3hTTxHGtpBpoHEuewt+Dq5k1gUQn5oDcICWa1b3S+Swt+vWzzjZnmO5E5JLYaQPc Hm7kMBLIekPYvWmqYN1/ -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org