$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030303a3a2f34302d3430203d3e20323038343533.roa File: 326131343a316563373a663030303a3a2f34302d3430203d3e20323038343533.roa (raw, json) Hash identifier: o481HVHzZc05mfQ6iJem09ar5RkDkMsrC5fq7xCYxfc= Subject key identifier: D9:5D:B2:60:1B:83:3C:F2:69:32:DE:72:C4:52:3F:DD:EE:44:00:2B Certificate issuer: /CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Certificate serial: 565D41E0EF5868C49B2FF4C6DBE4775046069616 Authority key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030303a3a2f34302d3430203d3e20323038343533.roa Signing time: Tue 02 Apr 2024 17:55:00 +0000 ROA not before: Tue 02 Apr 2024 17:50:00 +0000 ROA not after: Tue 01 Apr 2025 17:55:00 +0000 asID: 208453 IP address blocks: 2a14:1ec7:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 23:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:5d:41:e0:ef:58:68:c4:9b:2f:f4:c6:db:e4:77:50:46:06:96:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Validity Not Before: Apr 2 17:50:00 2024 GMT Not After : Apr 1 17:55:00 2025 GMT Subject: CN=D95DB2601B833CF26932DE72C4523FDDEE44002B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:9e:a1:69:b7:43:91:54:9d:3e:bf:d5:59: 0c:70:5f:f3:81:2d:de:8f:fe:71:16:97:b7:81:25: d0:79:5c:ba:47:fe:25:a4:e6:ab:ef:f3:c2:d6:10: ef:86:06:64:88:a3:e5:61:d3:17:a4:7d:1c:1e:84: aa:19:65:74:46:a6:e1:a4:5e:13:92:d0:b9:41:1b: 6e:74:5b:75:f8:db:34:d9:fa:99:c0:50:99:64:62: c1:01:86:f2:80:9a:45:5c:40:93:ed:e0:3b:51:91: fe:0a:51:04:1a:ab:09:a0:ea:73:da:fe:e2:7d:27: f8:42:b5:ce:19:4e:98:45:67:49:2e:6f:a5:1d:51: 0c:91:4f:3d:9d:1c:db:00:3f:81:60:a5:8f:d4:27: 06:39:7a:58:08:8d:89:82:92:8f:58:c3:17:d9:d0: bc:c5:23:57:f4:f4:72:dc:ff:c9:66:7a:37:61:74: 20:06:34:05:69:b1:36:66:82:a5:e8:75:73:eb:73: 90:74:1a:b9:d8:bb:fa:66:7f:0e:eb:f7:85:aa:76: a2:c3:72:a5:c1:89:d8:d1:f4:9b:a0:98:45:f6:93: b3:87:0e:b9:b5:77:48:f2:43:e8:a5:46:d7:ec:6a: 57:5e:61:ad:5d:b9:3e:fd:49:53:38:91:a6:30:3d: 24:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:5D:B2:60:1B:83:3C:F2:69:32:DE:72:C4:52:3F:DD:EE:44:00:2B X509v3 Authority Key Identifier: keyid:1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030303a3a2f34302d3430203d3e20323038343533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:f000::/40 Signature Algorithm: sha256WithRSAEncryption 6a:46:48:09:5d:15:1d:83:5e:bb:ee:69:be:87:ef:98:eb:dd: a0:96:b2:1e:b0:e6:08:e3:01:e3:8d:4b:ef:f0:ec:96:fe:cd: 45:e9:42:cf:4f:25:21:cc:df:18:1d:da:58:73:d2:9e:ec:d8: 39:b4:11:3b:71:54:7e:42:b6:8a:09:1e:c9:a1:21:70:9c:fe: 57:9d:08:0c:09:99:d0:7e:8e:3e:0f:50:98:aa:03:25:77:dc: 42:5c:f7:b7:54:37:e5:c9:b0:c8:30:6d:aa:a4:7f:26:fb:b7: 6a:63:1b:93:22:a7:dd:bb:98:64:18:13:e7:e2:ca:fc:2c:7b: f6:dc:1a:a3:a8:bb:c2:d9:5d:92:c8:f4:7f:b1:8d:45:d4:ee: fc:cd:42:9e:ef:2c:ab:e1:2b:e1:66:00:eb:de:da:59:fb:9b: a9:b8:2c:ea:d4:0d:f9:1d:f2:26:ad:27:77:f6:9b:af:7f:3f: 7a:7d:a0:16:ae:a8:91:41:f7:a6:24:13:70:27:31:4b:4f:7f: 3b:bb:d5:18:5a:2e:f5:9a:2d:8d:fd:9c:7c:fb:00:02:35:40: f0:4d:83:8c:22:6e:f3:3e:77:62:33:fd:aa:06:93:4a:1d:46: ed:bf:50:5f:e1:5c:42:45:5c:4d:b6:ad:07:f1:a1:5b:67:e6: b0:f2:eb:d5 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUVl1B4O9YaMSbL/TG2+R3UEYGlhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVG ODNFMEU3MTAeFw0yNDA0MDIxNzUwMDBaFw0yNTA0MDExNzU1MDBaMDMxMTAvBgNV BAMTKEQ5NURCMjYwMUI4MzNDRjI2OTMyREU3MkM0NTIzRkRERUU0NDAwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDADJ6habdDkVSdPr/VWQxwX/OB Ld6P/nEWl7eBJdB5XLpH/iWk5qvv88LWEO+GBmSIo+Vh0xekfRwehKoZZXRGpuGk XhOS0LlBG250W3X42zTZ+pnAUJlkYsEBhvKAmkVcQJPt4DtRkf4KUQQaqwmg6nPa /uJ9J/hCtc4ZTphFZ0kub6UdUQyRTz2dHNsAP4FgpY/UJwY5elgIjYmCko9YwxfZ 0LzFI1f09HLc/8lmejdhdCAGNAVpsTZmgqXodXPrc5B0GrnYu/pmfw7r94WqdqLD cqXBidjR9JugmEX2k7OHDrm1d0jyQ+ilRtfsaldeYa1duT79SVM4kaYwPSSxAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU2V2yYBuDPPJpMt5yxFI/3e5EACswHwYDVR0j BBgwFoAUHb0dR/2ORXTIQhdDycxfDvg+DnEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE0NzZkNjItOWNmYS00ODcxLWEyZDktZmFkZjU3ODFj MTFiLzIvMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVGODNFMEU3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8xREJEMUQ0N0ZEOEU0NTc0Qzg0MjE3NDND OUNDNUYwRUY4M0UwRTcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTQ3NmQ2Mi05Y2ZhLTQ4NzEtYTJkOS1mYWRmNTc4MWMxMWIvMi8zMjYxMzEz NDNhMzE2NTYzMzczYTY2MzAzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MDM4MzQzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhQex/AwDQYJKoZIhvcNAQELBQADggEBAGpG SAldFR2DXrvuab6H75jr3aCWsh6w5gjjAeONS+/w7Jb+zUXpQs9PJSHM3xgd2lhz 0p7s2Dm0ETtxVH5CtooJHsmhIXCc/ledCAwJmdB+jj4PUJiqAyV33EJc97dUN+XJ sMgwbaqkfyb7t2pjG5Mip927mGQYE+fiyvwse/bcGqOou8LZXZLI9H+xjUXU7vzN Qp7vLKvhK+FmAOve2ln7m6m4LOrUDfkd8iatJ3f2m69/P3p9oBauqJFB96YkE3An MUtPfzu71RhaLvWaLY39nHz7AAI1QPBNg4wibvM+d2Iz/aoGk0odRu2/UF/hXEJF XE22rQfxoVtn5rDy69U= -----END CERTIFICATE-----Generated at Mon Nov 25 16:44:06 2024 by rpki-client on console-fra.rpki-client.org