$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20313530323439.roa File: 326131343a373538313a343835663a3a2f34382d3438203d3e20313530323439.roa (raw, json) Hash identifier: 5xKTuxtl6gU1soXvS6gNX1GeC3WIfuH+Q7hlbZVvBVo= Subject key identifier: D5:3F:28:54:55:11:43:F7:D5:FF:D4:CF:37:8C:E7:AC:D5:65:7D:6D Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 020414B2A534E32C16440A0F16DEF0208BD4BC61 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20313530323439.roa Signing time: Fri 12 Jul 2024 09:23:52 +0000 ROA not before: Fri 12 Jul 2024 09:18:52 +0000 ROA not after: Fri 11 Jul 2025 09:23:52 +0000 asID: 150249 IP address blocks: 2a14:7581:485f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:04:14:b2:a5:34:e3:2c:16:44:0a:0f:16:de:f0:20:8b:d4:bc:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jul 12 09:18:52 2024 GMT Not After : Jul 11 09:23:52 2025 GMT Subject: CN=D53F2854551143F7D5FFD4CF378CE7ACD5657D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:74:26:00:c0:10:cc:65:78:c6:56:bb:cc:f5: 30:31:f8:f5:50:a8:02:09:4b:c7:2a:2d:8f:f7:f9: 86:69:c6:d9:46:9a:97:26:5f:91:ce:2d:1d:43:94: a4:68:ec:d9:9e:2f:8e:bc:e1:7b:a1:cc:a1:01:f7: 39:99:75:28:3f:0d:ba:17:c0:67:72:0c:c0:2b:69: bf:ab:ec:b1:0a:43:cc:a6:44:1c:e6:77:6c:99:5a: 3b:44:1e:b1:ef:40:68:db:88:f3:34:9a:2d:11:7c: 28:16:2f:87:2b:04:b0:28:1e:c9:8c:91:80:1e:a5: 88:9e:fe:2c:75:09:08:02:2c:f9:05:8e:70:f2:7d: d7:c5:74:57:ed:96:7c:57:44:53:e6:8e:86:1d:63: 65:f0:86:0b:de:f5:4d:ce:22:97:56:b5:95:04:0d: eb:47:9b:15:31:57:4d:4f:2e:0e:b4:fc:c5:9c:91: 59:41:b8:d4:95:13:fc:da:d1:52:42:58:0d:bc:69: 63:46:87:30:d6:0d:8d:0d:ae:c4:64:36:b5:48:69: e6:6c:b2:5e:4c:10:32:28:02:cf:3d:b6:44:7c:54: 0b:ec:e7:73:04:63:c4:43:71:ed:19:d3:ae:25:44: 76:88:c6:44:26:73:28:10:18:b9:6b:75:3a:fd:44: 60:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3F:28:54:55:11:43:F7:D5:FF:D4:CF:37:8C:E7:AC:D5:65:7D:6D X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:485f::/48 Signature Algorithm: sha256WithRSAEncryption 9b:d2:31:8a:f9:42:27:26:56:dd:c8:1c:02:22:2a:99:c6:95: a5:fb:96:32:83:00:56:d7:bd:5b:31:cc:60:4f:2a:09:82:d5: 6e:91:89:5d:f6:be:e8:f5:7a:10:00:20:d7:ab:62:c0:0f:69: e7:4a:70:da:a4:6e:4f:92:cd:97:d7:e7:74:0b:3e:f6:26:bc: 39:51:16:e8:c4:60:dd:25:f4:69:47:5f:6f:e9:f7:a4:9e:34: 61:ff:58:23:5f:0f:0a:fc:1b:f5:ef:b4:8f:be:0e:74:3e:8a: 13:f5:ab:75:b5:10:44:96:72:4b:43:8f:73:87:09:1e:b7:44: fa:11:0a:e6:6b:e9:d3:21:74:10:6c:fa:7f:b9:16:9e:88:6d: cf:12:1b:82:96:fc:83:6b:eb:85:d6:a0:6c:f8:8d:df:ce:8c: 3f:47:76:ac:58:c7:2f:86:67:8b:75:5e:3c:49:99:3c:ff:11: c5:14:49:e2:00:4a:f3:03:31:4e:2e:ca:ea:f1:2a:ad:79:85: ab:20:dd:a4:6a:10:c5:fd:87:1d:39:46:5f:d1:33:e8:36:1a: 81:57:e2:24:55:a9:a0:1b:44:89:08:4e:95:4c:d1:ad:5c:7b: 6f:87:84:cf:c1:51:54:19:62:ea:d9:45:8a:f5:32:78:0a:05: 47:04:3e:fe -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUAgQUsqU04ywWRAoPFt7wIIvUvGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDA3MTIwOTE4NTJaFw0yNTA3MTEwOTIzNTJaMDMxMTAvBgNV BAMTKEQ1M0YyODU0NTUxMTQzRjdENUZGRDRDRjM3OENFN0FDRDU2NTdENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCadCYAwBDMZXjGVrvM9TAx+PVQ qAIJS8cqLY/3+YZpxtlGmpcmX5HOLR1DlKRo7NmeL4684XuhzKEB9zmZdSg/DboX wGdyDMArab+r7LEKQ8ymRBzmd2yZWjtEHrHvQGjbiPM0mi0RfCgWL4crBLAoHsmM kYAepYie/ix1CQgCLPkFjnDyfdfFdFftlnxXRFPmjoYdY2Xwhgve9U3OIpdWtZUE DetHmxUxV01PLg60/MWckVlBuNSVE/za0VJCWA28aWNGhzDWDY0NrsRkNrVIaeZs sl5MEDIoAs89tkR8VAvs53MEY8RDce0Z064lRHaIxkQmcygQGLlrdTr9RGArAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU1T8oVFURQ/fV/9TPN4znrNVlfW0wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz NTMwMzIzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gUhfMA0GCSqGSIb3DQEBCwUAA4IBAQCb 0jGK+UInJlbdyBwCIiqZxpWl+5YygwBW171bMcxgTyoJgtVukYld9r7o9XoQACDX q2LAD2nnSnDapG5Pks2X1+d0Cz72Jrw5URboxGDdJfRpR19v6feknjRh/1gjXw8K /Bv177SPvg50PooT9at1tRBElnJLQ49zhwket0T6EQrma+nTIXQQbPp/uRaeiG3P EhuClvyDa+uF1qBs+I3fzow/R3asWMcvhmeLdV48SZk8/xHFFEniAErzAzFOLsrq 8SqteYWrIN2kahDF/YcdOUZf0TPoNhqBV+IkVamgG0SJCE6VTNGtXHtvh4TPwVFU GWLq2UWK9TJ4CgVHBD7+ -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org