$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20323135313731.roa File: 326131343a373538313a343934303a3a2f34342d3438203d3e20323135313731.roa (raw, json) Hash identifier: xBUUDC7moivahh8wpHqIH+vMJn4fPyDzPmTcv5Fy8T0= Subject key identifier: 8A:BF:6D:E4:4E:3C:AE:50:B4:BB:01:90:42:72:8C:0E:79:3E:5F:36 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 562C7AE1B4BE5BF639D32FF3F230F61CB39BA0C1 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20323135313731.roa Signing time: Sun 07 Apr 2024 17:57:27 +0000 ROA not before: Sun 07 Apr 2024 17:52:27 +0000 ROA not after: Sun 06 Apr 2025 17:57:27 +0000 asID: 215171 IP address blocks: 2a14:7581:4940::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:2c:7a:e1:b4:be:5b:f6:39:d3:2f:f3:f2:30:f6:1c:b3:9b:a0:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Apr 7 17:52:27 2024 GMT Not After : Apr 6 17:57:27 2025 GMT Subject: CN=8ABF6DE44E3CAE50B4BB019042728C0E793E5F36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:40:d2:68:93:d9:74:d7:be:1e:0b:a4:70:42: 33:6a:39:82:8f:1c:ce:26:0e:1f:7a:75:57:69:f2: 0a:df:73:7b:f9:c3:54:49:c9:98:8d:05:e5:df:0a: c6:3d:ff:84:b8:a2:49:be:b0:13:bc:24:a6:87:bf: 3d:7b:bd:16:9c:3b:ab:af:ef:21:7f:bb:95:48:c1: 76:89:85:58:02:7e:e3:5d:0e:65:e1:35:4f:65:66: 15:37:c4:bf:1b:cd:e1:fc:92:23:ea:28:35:60:9b: d0:83:44:77:d0:a5:26:39:0d:e8:3f:9b:87:80:01: 9c:3d:08:e0:e1:3f:c1:1e:97:c2:c4:7e:cf:c0:3d: ab:a0:b2:96:83:9b:96:e8:68:3b:e1:ab:02:08:9f: 17:d6:db:44:cd:2c:28:bc:91:7f:6e:7d:0a:e8:7e: 66:47:07:46:8d:6c:fa:e1:2c:03:b2:e0:6f:43:46: 73:ac:2c:fc:08:40:1c:3d:5c:da:34:e2:74:58:25: 87:d9:b7:f7:03:cc:42:71:5a:33:6b:39:a0:28:40: 1a:c0:60:09:ab:00:20:01:b5:09:5c:ef:e4:30:9d: 95:69:ac:af:4a:9f:8c:c3:5f:e7:89:c0:72:6a:18: 4d:f8:9c:8d:66:3e:63:24:39:03:1e:56:e8:bc:2f: 51:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BF:6D:E4:4E:3C:AE:50:B4:BB:01:90:42:72:8C:0E:79:3E:5F:36 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20323135313731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4940::/44 Signature Algorithm: sha256WithRSAEncryption 42:e1:e3:c8:19:39:b5:65:27:73:02:1c:05:01:9a:cf:6f:5a: 56:bd:cf:75:62:e2:41:d9:77:42:02:e1:1a:a6:d2:b6:48:4f: e4:6c:75:25:95:2a:01:5e:6f:4e:d5:f6:fb:e7:47:a8:61:2b: 5e:f4:ea:d5:b1:b2:10:66:8c:42:c5:38:22:3c:8b:ad:a4:2f: e9:60:6c:19:bf:ff:27:25:6d:7b:e0:67:f7:92:20:a4:f4:26: ba:01:72:08:07:e4:1c:e0:00:f1:d8:f1:89:86:17:fe:17:e4: a4:15:e2:a8:e0:48:ef:d2:5a:bf:cf:17:82:46:03:04:08:69: 55:15:31:e6:78:03:c9:43:d4:af:61:48:10:68:59:63:3f:ee: f2:91:22:11:2e:67:d2:f9:5a:3e:70:37:21:f2:e0:c9:94:66: b1:d2:b0:c0:96:6c:0d:76:f5:42:d9:3d:b4:ff:e6:c0:64:2e: b5:1b:92:0c:1d:9b:a7:05:91:d6:e7:87:3a:d6:09:d1:bf:e3: a1:7e:5d:fe:50:47:80:c7:0f:84:d7:10:5c:06:1c:96:fc:79: 6d:72:4f:4e:27:52:d6:b3:47:dc:1d:e2:41:77:52:21:e5:93: 52:59:8b:65:f7:b1:12:62:ec:a3:f5:d9:fa:88:b4:51:8e:17: e3:c4:8d:d6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVix64bS+W/Y50y/z8jD2HLOboMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDA0MDcxNzUyMjdaFw0yNTA0MDYxNzU3MjdaMDMxMTAvBgNV BAMTKDhBQkY2REU0NEUzQ0FFNTBCNEJCMDE5MDQyNzI4QzBFNzkzRTVGMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQNJok9l0174eC6RwQjNqOYKP HM4mDh96dVdp8grfc3v5w1RJyZiNBeXfCsY9/4S4okm+sBO8JKaHvz17vRacO6uv 7yF/u5VIwXaJhVgCfuNdDmXhNU9lZhU3xL8bzeH8kiPqKDVgm9CDRHfQpSY5Deg/ m4eAAZw9CODhP8Eel8LEfs/APaugspaDm5boaDvhqwIInxfW20TNLCi8kX9ufQro fmZHB0aNbPrhLAOy4G9DRnOsLPwIQBw9XNo04nRYJYfZt/cDzEJxWjNrOaAoQBrA YAmrACABtQlc7+QwnZVprK9Kn4zDX+eJwHJqGE34nI1mPmMkOQMeVui8L1FPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUir9t5E48rlC0uwGQQnKMDnk+XzYwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzkzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUlAMA0GCSqGSIb3DQEBCwUAA4IBAQBC 4ePIGTm1ZSdzAhwFAZrPb1pWvc91YuJB2XdCAuEaptK2SE/kbHUllSoBXm9O1fb7 50eoYSte9OrVsbIQZoxCxTgiPIutpC/pYGwZv/8nJW174Gf3kiCk9Ca6AXIIB+Qc 4ADx2PGJhhf+F+SkFeKo4Ejv0lq/zxeCRgMECGlVFTHmeAPJQ9SvYUgQaFljP+7y kSIRLmfS+Vo+cDch8uDJlGax0rDAlmwNdvVC2T20/+bAZC61G5IMHZunBZHW54c6 1gnRv+Ohfl3+UEeAxw+E1xBcBhyW/Hltck9OJ1LWs0fcHeJBd1Ih5ZNSWYtl97ES Yuyj9dn6iLRRjhfjxI3W -----END CERTIFICATE-----Generated at Thu Nov 21 21:14:51 2024 by rpki-client on console-fra.rpki-client.org