$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34302d3438203d3e20323136343532.roa File: 326131343a373538313a6430303a3a2f34302d3438203d3e20323136343532.roa (raw, json) Hash identifier: GOSro5bSH04/LhFcp3jWcxc9uL2by5TiBmqbWGnAjdA= Subject key identifier: 54:47:D6:27:C9:19:AC:67:DB:52:3A:AE:55:FB:2D:97:76:6B:60:57 Certificate issuer: /CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Certificate serial: 04CB8215AE99AB185F382C0A5554922995BAF546 Authority key identifier: 0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34302d3438203d3e20323136343532.roa Signing time: Thu 08 Aug 2024 15:20:41 +0000 ROA not before: Thu 08 Aug 2024 15:15:41 +0000 ROA not after: Thu 07 Aug 2025 15:20:41 +0000 asID: 216452 IP address blocks: 2a14:7581:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:cb:82:15:ae:99:ab:18:5f:38:2c:0a:55:54:92:29:95:ba:f5:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Validity Not Before: Aug 8 15:15:41 2024 GMT Not After : Aug 7 15:20:41 2025 GMT Subject: CN=5447D627C919AC67DB523AAE55FB2D97766B6057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:d0:98:49:69:f6:52:eb:81:85:1c:41:a3: ab:b8:30:f1:ee:a6:8a:34:9c:bd:a4:db:73:f1:96: 00:ca:21:1d:97:f8:bf:94:d4:c3:bb:65:2c:df:33: d4:14:d4:d0:24:72:4f:b0:ac:d4:dd:18:c0:5b:e8: 36:db:f4:4a:f7:f3:62:e3:62:6a:7e:e9:b4:18:9d: ce:35:00:de:a5:09:0f:a4:be:5b:d3:31:1e:c6:6d: e6:e4:3a:3e:31:74:c4:fe:6c:ea:2f:a7:34:7d:51: c3:6d:90:54:b4:32:a3:56:4b:a9:18:a2:ac:1c:80: b9:fa:b8:a4:6c:f1:1a:e2:ef:ad:7e:10:99:62:ca: 62:88:77:80:46:b8:f1:44:86:48:5f:af:37:88:39: a3:c7:d5:03:1d:a4:bf:d5:92:74:2d:23:e4:f9:23: ef:fa:ca:c5:10:ec:94:f7:fa:83:56:c0:09:5e:43: 21:f2:2e:25:69:06:d1:45:4e:b7:0d:6e:5b:2a:85: a0:cf:9e:43:1a:f4:41:3b:21:c1:ce:42:d4:e1:85: 79:3f:eb:1e:81:75:48:89:03:2c:e1:d2:62:58:14: df:0b:87:04:d4:db:bb:7a:78:c2:b7:14:17:f7:00: b8:e7:22:1a:82:3e:06:5c:4c:82:a6:30:cb:8d:05: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:47:D6:27:C9:19:AC:67:DB:52:3A:AE:55:FB:2D:97:76:6B:60:57 X509v3 Authority Key Identifier: keyid:0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34302d3438203d3e20323136343532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d00::/40 Signature Algorithm: sha256WithRSAEncryption 3e:57:b7:ef:5f:46:32:ac:2c:70:17:07:03:51:9c:21:79:8f: 76:88:56:bb:e9:17:88:1d:91:50:f5:a1:c6:c0:c9:0b:6a:19: 71:db:6c:dd:db:17:8e:0a:e4:57:e0:9a:0f:8f:15:a9:e6:1c: 3b:7a:00:5a:70:8f:75:2c:ed:89:b2:ae:e6:5d:52:ee:19:90: 53:84:ff:8f:76:38:da:c2:fd:af:a7:2d:54:02:86:01:14:e2: b8:36:35:79:6c:d3:80:3f:35:a0:ff:3e:13:8c:dd:92:4c:9a: ea:64:0a:82:dc:6f:66:bd:29:11:7f:d4:f2:de:0f:a8:cf:15: 06:21:e0:77:90:b2:24:ae:35:df:86:2e:0f:e9:c2:ec:73:68: 61:16:36:95:74:38:99:1d:9c:4f:e0:61:b4:40:01:2e:ca:b8: 14:4d:83:50:31:c7:11:2d:20:c7:01:3d:92:c2:56:e6:93:af: df:c3:9f:ec:36:17:b4:54:e9:51:c1:ee:55:a0:21:17:88:3a: a8:26:56:d7:8c:a7:22:bd:2d:2d:d7:64:1d:9e:df:1f:f9:99: b1:8c:95:37:30:6f:b0:bd:6d:21:1f:b5:4b:16:ed:6a:96:54: e2:d4:09:74:84:b0:82:25:b2:98:22:d6:0a:4b:6d:e9:9d:45: 73:fb:86:3c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUBMuCFa6ZqxhfOCwKVVSSKZW69UYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZG QjgyM0U0NTAeFw0yNDA4MDgxNTE1NDFaFw0yNTA4MDcxNTIwNDFaMDMxMTAvBgNV BAMTKDU0NDdENjI3QzkxOUFDNjdEQjUyM0FBRTU1RkIyRDk3NzY2QjYwNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm8NCYSWn2UuuBhRxBo6u4MPHu poo0nL2k23PxlgDKIR2X+L+U1MO7ZSzfM9QU1NAkck+wrNTdGMBb6Dbb9Er382Lj Ymp+6bQYnc41AN6lCQ+kvlvTMR7GbebkOj4xdMT+bOovpzR9UcNtkFS0MqNWS6kY oqwcgLn6uKRs8Rri761+EJliymKId4BGuPFEhkhfrzeIOaPH1QMdpL/VknQtI+T5 I+/6ysUQ7JT3+oNWwAleQyHyLiVpBtFFTrcNblsqhaDPnkMa9EE7IcHOQtThhXk/ 6x6BdUiJAyzh0mJYFN8LhwTU27t6eMK3FBf3ALjnIhqCPgZcTIKmMMuNBbILAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUVEfWJ8kZrGfbUjquVfstl3ZrYFcwHwYDVR0j BBgwFoAUCothqETWwsevOO3L0WXQ7/uCPkUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzJjNDA1ZjEtYzMyZC00N2NlLTg5NDMtMDc1MmVkMTNk OGVmLzEvMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZGQjgyM0U0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wQThCNjFBODQ0RDZDMkM3QUYzOEVEQ0JE MTY1RDBFRkZCODIzRTQ1LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MmM0MDVmMS1jMzJkLTQ3Y2UtODk0My0wNzUyZWQxM2Q4ZWYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEz NjM0MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYENMA0GCSqGSIb3DQEBCwUAA4IBAQA+V7fv X0YyrCxwFwcDUZwheY92iFa76ReIHZFQ9aHGwMkLahlx22zd2xeOCuRX4JoPjxWp 5hw7egBacI91LO2Jsq7mXVLuGZBThP+Pdjjawv2vpy1UAoYBFOK4NjV5bNOAPzWg /z4TjN2STJrqZAqC3G9mvSkRf9Ty3g+ozxUGIeB3kLIkrjXfhi4P6cLsc2hhFjaV dDiZHZxP4GG0QAEuyrgUTYNQMccRLSDHAT2Swlbmk6/fw5/sNhe0VOlRwe5VoCEX iDqoJlbXjKcivS0t12Qdnt8f+ZmxjJU3MG+wvW0hH7VLFu1qllTi1Al0hLCCJbKY ItYKS23pnUVz+4Y8 -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:20 2024 by rpki-client on console-fra.rpki-client.org