$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835633a3a2f34382d3438203d3e20313431303637.roa File: 326131343a373538313a343835633a3a2f34382d3438203d3e20313431303637.roa (raw, json) Hash identifier: dkDlXn7ZTKwdhEvN1AyaOINvq0aj0JnSzR14swqFK7s= Subject key identifier: 18:EE:AD:B3:00:20:5A:BC:F0:1F:21:FE:36:5D:B7:80:4F:0C:A3:2E Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 702DD4A6F48C4C8E876C4B664CE716FF2381DF42 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835633a3a2f34382d3438203d3e20313431303637.roa Signing time: Thu 31 Oct 2024 01:08:47 +0000 ROA not before: Thu 31 Oct 2024 01:03:47 +0000 ROA not after: Thu 30 Oct 2025 01:08:47 +0000 asID: 141067 IP address blocks: 2a14:7581:485c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:2d:d4:a6:f4:8c:4c:8e:87:6c:4b:66:4c:e7:16:ff:23:81:df:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Oct 31 01:03:47 2024 GMT Not After : Oct 30 01:08:47 2025 GMT Subject: CN=18EEADB300205ABCF01F21FE365DB7804F0CA32E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:0a:e4:54:48:8c:4e:c3:1c:89:fa:47:ce: 6f:c1:c2:67:96:03:06:b0:39:2f:a5:aa:cf:a3:bf: 5d:99:ca:da:d9:6e:9c:1a:22:b1:63:9f:76:c1:0b: 09:fd:ec:6d:33:98:a8:05:1d:4e:22:75:bc:87:08: df:5f:f4:cc:f9:e2:c4:84:8d:31:e8:54:49:a4:67: 81:d7:d5:db:10:a4:5c:04:66:6a:8f:0e:e1:6c:54: 79:c8:c3:c4:8b:94:4d:e4:e7:58:bf:64:a5:de:8f: 86:12:47:b7:e1:5d:c2:ae:1f:c7:fd:b1:fe:c4:9d: 19:c8:98:12:91:6a:8f:97:4b:8f:54:d1:b9:c4:d0: db:c3:41:e2:28:a3:37:90:4a:b8:31:5d:60:bd:fc: 13:7c:d5:95:1b:46:d3:7e:45:bf:2a:4a:5c:bd:65: 90:e2:2b:bb:bc:c7:7f:70:8a:7a:fa:cf:de:ab:8c: 9c:84:d8:b5:61:33:c0:6f:39:c4:3d:60:64:49:f2: c3:f1:68:05:06:b0:14:f9:4d:73:5c:fd:04:2a:ac: 2b:a6:f8:1d:83:64:44:ea:0e:6c:ef:77:fe:37:13: 42:2e:55:66:b5:cb:e5:dc:5a:79:e4:ce:98:c9:cb: 1c:39:c1:de:91:c7:a7:c8:1a:e6:56:79:07:47:2e: a5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EE:AD:B3:00:20:5A:BC:F0:1F:21:FE:36:5D:B7:80:4F:0C:A3:2E X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835633a3a2f34382d3438203d3e20313431303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:485c::/48 Signature Algorithm: sha256WithRSAEncryption 94:f5:0b:12:ff:f0:dc:a9:e2:ee:4e:42:67:98:ee:6e:98:05: 61:53:52:e4:ae:87:e7:6d:92:76:98:80:ca:8a:8c:0a:d4:c6: 8f:bd:24:1b:68:c4:99:16:05:e6:c5:ff:64:52:95:20:f9:a0: d6:ea:c2:28:97:4d:05:92:b6:b3:0e:59:c6:c7:d6:1d:e9:07: 55:85:27:4e:db:eb:01:e6:db:84:12:38:ab:1f:d8:cb:06:e4: e5:37:a8:b2:9f:a0:2c:43:08:78:4f:b6:c4:b9:19:57:76:75: cd:22:e3:33:8a:76:26:fc:29:95:d7:a0:ae:94:3d:32:e3:7a: 19:53:54:34:d4:fd:f0:3e:38:8a:2e:3c:b6:18:03:d8:67:a4: 18:f9:39:0e:5e:84:7e:4c:d4:fa:a1:bf:6c:d3:13:84:65:28: dc:28:de:72:e6:ca:e3:0f:ac:5b:32:37:9e:67:f6:02:5b:52: 5e:93:41:94:2f:af:b8:47:de:01:0e:eb:17:7e:eb:49:d9:a2: ea:b0:0f:5f:cc:6e:c8:4a:c5:0f:53:b3:d8:8b:3c:5f:7b:0b: f6:b1:3c:51:95:3a:57:3f:94:4f:0b:6b:18:48:e5:14:e3:e7: 77:d5:86:11:b0:43:33:4a:a6:74:89:fd:c0:04:05:33:bc:6f: b0:c4:3e:4f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcC3UpvSMTI6HbEtmTOcW/yOB30IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDEwMzEwMTAzNDdaFw0yNTEwMzAwMTA4NDdaMDMxMTAvBgNV BAMTKDE4RUVBREIzMDAyMDVBQkNGMDFGMjFGRTM2NURCNzgwNEYwQ0EzMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjArkVEiMTsMcifpHzm/BwmeW AwawOS+lqs+jv12ZytrZbpwaIrFjn3bBCwn97G0zmKgFHU4idbyHCN9f9Mz54sSE jTHoVEmkZ4HX1dsQpFwEZmqPDuFsVHnIw8SLlE3k51i/ZKXej4YSR7fhXcKuH8f9 sf7EnRnImBKRao+XS49U0bnE0NvDQeIoozeQSrgxXWC9/BN81ZUbRtN+Rb8qSly9 ZZDiK7u8x39winr6z96rjJyE2LVhM8BvOcQ9YGRJ8sPxaAUGsBT5TXNc/QQqrCum +B2DZETqDmzvd/43E0IuVWa1y+XcWnnkzpjJyxw5wd6Rx6fIGuZWeQdHLqX/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUGO6tswAgWrzwHyH+Nl23gE8Moy4wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz NDMxMzAzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gUhcMA0GCSqGSIb3DQEBCwUAA4IBAQCU 9QsS//DcqeLuTkJnmO5umAVhU1LkrofnbZJ2mIDKiowK1MaPvSQbaMSZFgXmxf9k UpUg+aDW6sIol00FkrazDlnGx9Yd6QdVhSdO2+sB5tuEEjirH9jLBuTlN6iyn6As Qwh4T7bEuRlXdnXNIuMzinYm/CmV16CulD0y43oZU1Q01P3wPjiKLjy2GAPYZ6QY +TkOXoR+TNT6ob9s0xOEZSjcKN5y5srjD6xbMjeeZ/YCW1Jek0GUL6+4R94BDusX futJ2aLqsA9fzG7ISsUPU7PYizxfewv2sTxRlTpXP5RPC2sYSOUU4+d31YYRsEMz SqZ0if3ABAUzvG+wxD5P -----END CERTIFICATE-----Generated at Mon Nov 25 01:33:34 2024 by rpki-client on console-ams.rpki-client.org