$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa File: 326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa (raw, json) Hash identifier: YXXvvIU6sxf9qW6atwDWro7los6iax4CaojFLxxUHU0= Subject key identifier: BF:19:3F:BE:D3:46:AB:F5:48:68:9A:1A:CE:45:10:75:C1:CE:08:16 Certificate issuer: /CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Certificate serial: 4A63521925F408B89EB0BF4D5EA364C9D8259D3D Authority key identifier: 08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa Signing time: Fri 17 May 2024 16:29:17 +0000 ROA not before: Fri 17 May 2024 16:24:17 +0000 ROA not after: Fri 16 May 2025 16:29:17 +0000 asID: 50385 IP address blocks: 2a14:7581:8000::/36 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:63:52:19:25:f4:08:b8:9e:b0:bf:4d:5e:a3:64:c9:d8:25:9d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0874801164DC95F0AB9CCD4BD304A3EF78E9F39B Validity Not Before: May 17 16:24:17 2024 GMT Not After : May 16 16:29:17 2025 GMT Subject: CN=BF193FBED346ABF548689A1ACE451075C1CE0816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5c:5b:bb:c2:23:4e:0e:a4:2f:4a:dc:e0:d3: d5:4b:19:c9:42:0e:61:51:b1:09:e7:de:87:e3:7d: fa:67:a4:cd:ea:fb:80:3c:7d:e4:06:89:3b:cf:0f: 02:34:76:c9:c8:b0:f9:6b:f0:5d:31:ae:ad:de:98: a0:8a:4e:01:25:bb:59:51:2f:77:0c:1d:73:96:9f: 92:23:9b:6a:a6:ae:07:ba:20:b1:5c:94:c5:cc:52: 16:ad:c0:f4:36:f2:15:cd:c9:09:6a:fd:fe:b6:e8: 52:cb:8d:8f:42:c8:10:59:5b:8a:d0:8d:84:e5:8b: 42:9b:d6:28:29:74:5d:4b:9b:9e:1b:8b:94:71:ab: 88:e6:fb:47:b8:48:b0:85:85:a7:11:3e:f7:3d:15: f8:ba:dd:ee:47:45:ee:c7:4c:5f:67:e2:a4:f0:65: a8:a5:46:fe:4a:7f:83:4e:9b:d8:b5:3e:5f:54:78: 26:8c:6c:95:35:5c:62:9e:68:ba:1d:d7:3f:99:65: db:37:44:54:f0:e1:af:80:9a:3a:b6:d9:22:54:bd: 1e:05:84:a2:85:d8:32:56:76:1d:97:fb:33:7a:08: 8f:84:60:e5:94:86:a7:63:a3:57:3c:f6:9b:1b:90: 43:a2:ea:4c:fc:00:40:1b:c7:36:ed:11:48:b4:a2: df:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:19:3F:BE:D3:46:AB:F5:48:68:9A:1A:CE:45:10:75:C1:CE:08:16 X509v3 Authority Key Identifier: keyid:08:74:80:11:64:DC:95:F0:AB:9C:CD:4B:D3:04:A3:EF:78:E9:F3:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0874801164DC95F0AB9CCD4BD304A3EF78E9F39B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/1/326131343a373538313a383030303a3a2f33362d3430203d3e203530333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:8000::/36 Signature Algorithm: sha256WithRSAEncryption 7a:65:f2:44:2a:d3:de:01:5d:25:5e:c6:bb:e8:ea:47:d5:6f: 1e:46:7f:61:8b:0a:e3:b9:c2:b1:bc:a7:a7:97:f2:ed:ad:d4: f6:aa:32:a3:12:17:b2:41:01:78:2e:9c:39:ea:a3:e7:98:5f: db:dc:11:96:28:9a:b5:aa:34:70:4f:ac:d3:df:1d:11:b6:a7: 2a:d0:3f:24:8c:b3:92:f0:8c:23:dc:3a:36:42:87:95:07:73: 00:77:1a:84:9a:c5:b6:a4:0a:51:27:cc:cd:3b:76:f2:9a:d3: f7:78:7d:05:1d:d2:7f:25:20:94:c7:c4:a8:21:b8:64:12:f4: 0d:b2:de:b2:69:79:1e:4a:f2:bf:38:ce:64:bd:e7:ca:64:20: 73:85:6c:4b:38:d7:62:1f:49:83:c7:38:55:d1:30:a8:b9:11: f1:fa:1a:76:da:2c:f9:8c:cd:1b:5e:65:be:43:a6:d9:d8:e9: fe:0e:40:c4:bc:be:48:37:20:27:bb:d0:a0:81:2b:35:f6:97: 4c:3a:97:62:71:3c:31:1a:60:46:4c:7e:27:d0:1a:d8:2d:c0: 63:b5:7e:a0:5f:7a:04:fe:11:ec:a1:99:0b:d3:40:fa:45:16: a7:70:fa:37:28:52:58:b9:fe:2d:1f:3f:ae:79:89:4a:c0:7c: 47:f5:4d:72 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUSmNSGSX0CLiesL9NXqNkydglnT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3 OEU5RjM5QjAeFw0yNDA1MTcxNjI0MTdaFw0yNTA1MTYxNjI5MTdaMDMxMTAvBgNV BAMTKEJGMTkzRkJFRDM0NkFCRjU0ODY4OUExQUNFNDUxMDc1QzFDRTA4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChXFu7wiNODqQvStzg09VLGclC DmFRsQnn3ofjffpnpM3q+4A8feQGiTvPDwI0dsnIsPlr8F0xrq3emKCKTgElu1lR L3cMHXOWn5Ijm2qmrge6ILFclMXMUhatwPQ28hXNyQlq/f626FLLjY9CyBBZW4rQ jYTli0Kb1igpdF1Lm54bi5Rxq4jm+0e4SLCFhacRPvc9Ffi63e5HRe7HTF9n4qTw ZailRv5Kf4NOm9i1Pl9UeCaMbJU1XGKeaLod1z+ZZds3RFTw4a+Amjq22SJUvR4F hKKF2DJWdh2X+zN6CI+EYOWUhqdjo1c89psbkEOi6kz8AEAbxzbtEUi0ot+rAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUvxk/vtNGq/VIaJoazkUQdcHOCBYwHwYDVR0j BBgwFoAUCHSAEWTclfCrnM1L0wSj73jp85swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2M4ZTRlMTEtM2FjYS00MzA1LWFjZDQtZjA1ZTZjOTA5 MTE1LzEvMDg3NDgwMTE2NERDOTVGMEFCOUNDRDRCRDMwNEEzRUY3OEU5RjM5Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wODc0ODAxMTY0REM5NUYwQUI5Q0NENEJE MzA0QTNFRjc4RTlGMzlCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zYzhlNGUxMS0zYWNhLTQzMDUtYWNkNC1mMDVlNmM5MDkxMTUvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM4MzAzMDMwM2EzYTJmMzMzNjJkMzQzMDIwM2QzZTIwMzUz MDMzMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGBCoUdYGAMA0GCSqGSIb3DQEBCwUAA4IBAQB6ZfJE KtPeAV0lXsa76OpH1W8eRn9hiwrjucKxvKenl/LtrdT2qjKjEheyQQF4Lpw56qPn mF/b3BGWKJq1qjRwT6zT3x0Rtqcq0D8kjLOS8Iwj3Do2QoeVB3MAdxqEmsW2pApR J8zNO3bymtP3eH0FHdJ/JSCUx8SoIbhkEvQNst6yaXkeSvK/OM5kvefKZCBzhWxL ONdiH0mDxzhV0TCouRHx+hp22iz5jM0bXmW+Q6bZ2On+DkDEvL5INyAnu9CggSs1 9pdMOpdicTwxGmBGTH4n0BrYLcBjtX6gX3oE/hHsoZkL00D6RRancPo3KFJYuf4t Hz+ueYlKwHxH9U1y -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:49 2024 by rpki-client on console-ams.rpki-client.org