$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa File: 326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa (raw, json) Hash identifier: Fb9U5onYhJ0bwRtEjYGUTxLrzqugr5G6uA9CKAt2Qds= Subject key identifier: 65:50:FA:9B:D2:42:0C:8E:17:DB:0D:4D:5A:4C:FF:36:42:C5:C6:45 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 07E8BC255DACBAF52B4FDBB531B572420417B45F Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa Signing time: Thu 28 Mar 2024 14:55:07 +0000 ROA not before: Thu 28 Mar 2024 14:50:07 +0000 ROA not after: Thu 27 Mar 2025 14:55:07 +0000 asID: 215379 IP address blocks: 2a14:7581:4850::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:e8:bc:25:5d:ac:ba:f5:2b:4f:db:b5:31:b5:72:42:04:17:b4:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Mar 28 14:50:07 2024 GMT Not After : Mar 27 14:55:07 2025 GMT Subject: CN=6550FA9BD2420C8E17DB0D4D5A4CFF3642C5C645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b0:c0:90:ef:d3:5d:0b:e2:83:b3:7d:38:30: ed:ea:b4:a2:8b:46:b0:82:9a:31:b7:a1:ff:51:2f: 6b:1f:bf:6f:e0:0a:d4:7c:55:80:4d:72:0c:39:c4: f0:01:13:d4:e7:84:c7:bd:1e:ef:3a:6d:a3:aa:42: 35:79:31:6c:ca:8b:02:f9:03:a1:ec:8e:57:d0:1f: 83:dc:c7:d0:b2:cb:7b:6d:80:df:b8:40:45:e7:66: dd:c4:50:bb:aa:d6:de:e1:04:bd:80:24:6a:fa:0c: d7:17:23:58:b3:3e:1a:8e:37:0f:72:66:21:37:30: 4a:34:19:99:35:36:ef:40:6e:65:1d:8a:24:5a:32: 53:5c:b3:39:31:af:c1:8c:8e:dd:82:bb:9f:49:1e: 23:ba:9e:3e:53:58:b4:3e:4d:79:ea:6b:90:f4:56: a9:2a:df:6d:0d:fd:ee:a9:df:ce:97:7e:08:5f:bd: 1b:77:29:58:d4:d6:cf:d6:31:6a:68:ef:47:26:44: 6c:1c:80:59:7b:93:7f:ea:af:85:dd:27:cf:4a:77: 16:9e:ff:00:b3:ef:45:fc:1b:fe:d3:a2:8c:8c:41: e8:05:06:f4:da:76:0b:91:76:93:8c:b3:7f:2c:5d: 81:43:ae:1a:38:e7:19:11:7b:16:62:45:2e:ce:31: 32:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:50:FA:9B:D2:42:0C:8E:17:DB:0D:4D:5A:4C:FF:36:42:C5:C6:45 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4850::/44 Signature Algorithm: sha256WithRSAEncryption 04:46:a6:1e:32:da:d8:39:ad:49:b5:0a:5e:fa:e1:ff:9d:a6: 99:13:4f:48:98:25:83:b1:5e:83:59:1c:68:5e:94:14:01:41: d5:fa:04:aa:31:19:6e:ac:fe:2d:93:bc:17:7e:88:33:77:40: 85:4a:48:1b:b1:59:db:9f:ba:90:2b:2a:43:52:49:c6:8c:c8: 30:68:79:f5:86:8c:d9:36:63:4d:af:04:15:50:9b:09:d3:1e: f0:24:8c:67:ac:1f:bb:28:86:6e:b6:dc:73:b9:ff:03:a7:31: 88:89:ea:06:e7:c0:7b:54:b6:42:49:ca:24:85:98:76:99:60: b0:c8:dc:ad:64:b9:00:7b:37:85:26:b4:0b:ee:7b:2b:9d:b8: b0:8b:22:9b:e8:01:07:c2:40:56:00:63:14:59:9c:48:7c:b5: 0d:9d:6d:3f:d3:72:62:59:ff:68:6a:9f:6c:28:f7:bb:ae:6b: 9a:e1:bf:c3:ea:2c:6d:52:fa:14:19:b0:d3:ae:fd:3f:86:86: 44:8d:af:74:0f:e1:77:06:a5:b5:96:6d:11:96:d1:c4:0d:30: a6:71:0a:4b:70:4f:b1:24:17:31:7c:9d:0f:b6:d1:8e:9c:c0: 13:f3:7e:cd:e4:5a:92:94:ff:da:74:67:44:90:b4:4a:1a:7a: bf:f9:98:a9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUB+i8JV2suvUrT9u1MbVyQgQXtF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDAzMjgxNDUwMDdaFw0yNTAzMjcxNDU1MDdaMDMxMTAvBgNV BAMTKDY1NTBGQTlCRDI0MjBDOEUxN0RCMEQ0RDVBNENGRjM2NDJDNUM2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbsMCQ79NdC+KDs304MO3qtKKL RrCCmjG3of9RL2sfv2/gCtR8VYBNcgw5xPABE9TnhMe9Hu86baOqQjV5MWzKiwL5 A6HsjlfQH4Pcx9Cyy3ttgN+4QEXnZt3EULuq1t7hBL2AJGr6DNcXI1izPhqONw9y ZiE3MEo0GZk1Nu9AbmUdiiRaMlNcszkxr8GMjt2Cu59JHiO6nj5TWLQ+TXnqa5D0 Vqkq320N/e6p386XfghfvRt3KVjU1s/WMWpo70cmRGwcgFl7k3/qr4XdJ89Kdxae /wCz70X8G/7TooyMQegFBvTadguRdpOMs38sXYFDrho45xkRexZiRS7OMTJtAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUZVD6m9JCDI4X2w1NWkz/NkLFxkUwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUhQMA0GCSqGSIb3DQEBCwUAA4IBAQAE RqYeMtrYOa1JtQpe+uH/naaZE09ImCWDsV6DWRxoXpQUAUHV+gSqMRlurP4tk7wX fogzd0CFSkgbsVnbn7qQKypDUknGjMgwaHn1hozZNmNNrwQVUJsJ0x7wJIxnrB+7 KIZuttxzuf8DpzGIieoG58B7VLZCScokhZh2mWCwyNytZLkAezeFJrQL7nsrnbiw iyKb6AEHwkBWAGMUWZxIfLUNnW0/03JiWf9oap9sKPe7rmua4b/D6ixtUvoUGbDT rv0/hoZEja90D+F3BqW1lm0RltHEDTCmcQpLcE+xJBcxfJ0PttGOnMAT837N5FqS lP/adGdEkLRKGnq/+Zip -----END CERTIFICATE-----Generated at Thu Nov 21 21:14:51 2024 by rpki-client on console-fra.rpki-client.org