$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa File: 326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa (raw, json) Hash identifier: 0dTOq5r3nzcU4nhnM0SPSmfHWBkaaGJU3KJhAxTcvLU= Subject key identifier: DF:AB:F2:CA:29:84:E1:B8:28:FA:B9:E4:0A:8A:D0:C8:E3:D3:86:83 Certificate issuer: /CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Certificate serial: 1515837AAA5080791C4C9250D2A387399F774F1A Authority key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa Signing time: Sun 05 Jan 2025 17:56:43 +0000 ROA not before: Sun 05 Jan 2025 17:51:43 +0000 ROA not after: Sun 04 Jan 2026 17:56:43 +0000 asID: 36832 IP address blocks: 2a14:1ec7:f00e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Feb 2025 03:32:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:15:83:7a:aa:50:80:79:1c:4c:92:50:d2:a3:87:39:9f:77:4f:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Validity Not Before: Jan 5 17:51:43 2025 GMT Not After : Jan 4 17:56:43 2026 GMT Subject: CN=DFABF2CA2984E1B828FAB9E40A8AD0C8E3D38683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:43:68:ac:20:8a:71:dd:e2:39:9b:d5:f5: 7a:51:23:1b:1f:39:3c:19:7f:a2:7d:8e:45:a0:58: 3f:cd:f5:15:44:ab:cd:62:3d:7a:4f:b5:ef:ff:46: 86:04:df:f1:9c:18:e7:d3:0a:51:6c:17:8b:91:e2: b1:ec:54:e7:2a:c0:af:6f:66:d1:4e:57:d7:c1:5b: 9c:80:29:6a:cf:34:c0:25:59:bb:52:7d:bc:a7:fd: 6b:a3:c7:33:23:24:85:36:f7:36:0b:64:b9:87:11: 0a:03:66:71:c8:02:38:2b:9a:98:2a:21:c4:81:f0: 7e:b0:ef:97:5e:dc:24:c8:bf:6f:f0:f4:27:36:9b: f6:3f:e1:40:6c:1c:ab:13:75:6a:3c:41:c1:df:c8: 78:33:ba:af:62:b3:f8:4a:da:fe:90:0a:7b:34:33: 0e:3c:67:32:87:87:c7:ac:9c:1a:55:c2:3e:89:56: 66:c1:f1:28:81:78:f3:cf:09:04:18:11:e3:9a:69: 46:8f:ef:57:3e:d2:8e:21:79:25:4c:db:50:6c:3a: 7c:5c:6f:ce:94:7a:c2:52:98:0c:1b:db:25:c4:ca: 22:82:ed:ae:b1:5a:e4:fb:09:0a:a5:6d:de:79:1d: 06:8a:a2:11:29:87:26:ec:0e:82:57:90:93:d0:87: 98:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:AB:F2:CA:29:84:E1:B8:28:FA:B9:E4:0A:8A:D0:C8:E3:D3:86:83 X509v3 Authority Key Identifier: keyid:1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030653a3a2f34382d3438203d3e203336383332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:f00e::/48 Signature Algorithm: sha256WithRSAEncryption 57:2f:fa:86:53:e0:5b:cd:7b:87:0d:7c:86:b7:bc:79:49:3e: c5:14:ac:92:25:a7:ec:67:15:97:c0:97:57:fa:9e:7d:b3:b8: 2c:4f:9d:5d:5b:4a:24:4e:59:83:0b:fd:dd:24:90:e8:b1:66: 2a:e6:ad:06:b8:5c:dd:d0:12:4a:1b:61:87:cd:14:44:da:4c: 6f:52:7b:99:36:1c:0e:24:bd:51:7e:0d:a6:06:13:b6:6e:83: 0c:c6:48:30:a4:65:af:7a:50:40:19:0d:39:a5:01:03:15:0f: bd:33:9e:72:5a:86:e9:d5:79:b0:f4:ca:e6:e8:bf:8f:01:82: 53:71:f2:8c:3a:a2:b1:31:f9:fa:bd:fd:fc:a6:07:8e:21:9f: 28:bb:bd:8a:db:b8:72:e2:fd:6b:ec:2f:db:14:b2:dd:76:0d: ea:f1:f5:f2:92:06:eb:e7:a5:be:37:be:5e:10:ab:95:43:65: e7:99:f5:f4:20:a0:8a:21:db:43:23:8e:93:66:73:ee:cb:c5: 26:d1:e5:70:7d:20:fd:97:98:9f:93:72:da:47:2e:da:7c:ca: d9:13:bf:08:0d:41:f5:84:9c:05:c7:b9:32:a4:e2:45:01:c5: d8:78:bc:74:66:6d:20:9f:e0:8c:de:d4:c0:8e:12:74:91:99: 1a:93:e2:60 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUFRWDeqpQgHkcTJJQ0qOHOZ93TxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVG ODNFMEU3MTAeFw0yNTAxMDUxNzUxNDNaFw0yNjAxMDQxNzU2NDNaMDMxMTAvBgNV BAMTKERGQUJGMkNBMjk4NEUxQjgyOEZBQjlFNDBBOEFEMEM4RTNEMzg2ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQ0NorCCKcd3iOZvV9XpRIxsf OTwZf6J9jkWgWD/N9RVEq81iPXpPte//RoYE3/GcGOfTClFsF4uR4rHsVOcqwK9v ZtFOV9fBW5yAKWrPNMAlWbtSfbyn/WujxzMjJIU29zYLZLmHEQoDZnHIAjgrmpgq IcSB8H6w75de3CTIv2/w9Cc2m/Y/4UBsHKsTdWo8QcHfyHgzuq9is/hK2v6QCns0 Mw48ZzKHh8esnBpVwj6JVmbB8SiBePPPCQQYEeOaaUaP71c+0o4heSVM21BsOnxc b86UesJSmAwb2yXEyiKC7a6xWuT7CQqlbd55HQaKohEphybsDoJXkJPQh5idAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU36vyyimE4bgo+rnkCorQyOPThoMwHwYDVR0j BBgwFoAUHb0dR/2ORXTIQhdDycxfDvg+DnEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE0NzZkNjItOWNmYS00ODcxLWEyZDktZmFkZjU3ODFj MTFiLzIvMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVGODNFMEU3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8xREJEMUQ0N0ZEOEU0NTc0Qzg0MjE3NDND OUNDNUYwRUY4M0UwRTcxLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTQ3NmQ2Mi05Y2ZhLTQ4NzEtYTJkOS1mYWRmNTc4MWMxMWIvMi8zMjYxMzEz NDNhMzE2NTYzMzczYTY2MzAzMDY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMz NjM4MzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUHsfwDjANBgkqhkiG9w0BAQsFAAOCAQEAVy/6 hlPgW817hw18hre8eUk+xRSskiWn7GcVl8CXV/qefbO4LE+dXVtKJE5Zgwv93SSQ 6LFmKuatBrhc3dASShthh80URNpMb1J7mTYcDiS9UX4NpgYTtm6DDMZIMKRlr3pQ QBkNOaUBAxUPvTOeclqG6dV5sPTK5ui/jwGCU3HyjDqisTH5+r39/KYHjiGfKLu9 itu4cuL9a+wv2xSy3XYN6vH18pIG6+elvje+XhCrlUNl55n19CCgiiHbQyOOk2Zz 7svFJtHlcH0g/ZeYn5Ny2kcu2nzK2RO/CA1B9YScBce5MqTiRQHF2Hi8dGZtIJ/g jN7UwI4SdJGZGpPiYA== -----END CERTIFICATE-----Generated at Wed Feb 19 20:34:14 2025 by rpki-client