$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa File: 326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa (raw, json) Hash identifier: WAEDCXUcEyZrm+AiMC7S/4c05J5m88q64rRSqxpIjho= Subject key identifier: E1:24:B8:A3:F8:EC:4B:C3:45:37:9A:EA:F9:F2:3E:20:B7:D9:59:10 Certificate issuer: /CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Certificate serial: 6BA09E4C88EE2380C7815E10F69FC5C0B3639BF9 Authority key identifier: 0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa Signing time: Fri 09 Aug 2024 02:27:29 +0000 ROA not before: Fri 09 Aug 2024 02:22:29 +0000 ROA not after: Fri 08 Aug 2025 02:27:29 +0000 asID: 31898 IP address blocks: 2a14:7581:d00::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 17:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a0:9e:4c:88:ee:23:80:c7:81:5e:10:f6:9f:c5:c0:b3:63:9b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Validity Not Before: Aug 9 02:22:29 2024 GMT Not After : Aug 8 02:27:29 2025 GMT Subject: CN=E124B8A3F8EC4BC345379AEAF9F23E20B7D95910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:40:be:ff:17:86:14:8c:89:11:61:d0:63:33: 4d:51:4e:9a:b3:23:9c:dc:28:27:6c:9f:4b:bd:64: f5:a1:42:4b:31:89:c4:28:48:41:51:46:8b:b7:45: b7:fe:1d:2e:b7:9b:75:74:d9:50:bc:0a:44:78:3d: aa:50:0f:39:38:56:29:6b:e4:b6:15:8a:6b:96:94: 3f:df:98:2f:da:ea:1f:22:a0:d3:74:b4:91:1e:e6: 68:af:74:29:c3:ea:07:e5:5d:87:50:8f:7b:fa:bf: 6c:f1:7f:44:0d:be:2b:95:fc:b9:dc:bc:a1:70:ac: 7d:9c:8d:c6:c2:17:5c:7a:6e:d8:c2:7e:ae:c4:5f: 2b:81:0f:26:22:d7:f7:d5:49:eb:50:e8:d4:81:1b: 67:9a:64:eb:44:04:a1:19:dc:15:1f:2b:fa:27:c1: 0e:15:b4:50:0f:76:07:8b:bd:08:ff:51:44:79:fe: cb:6b:a2:18:ff:bd:ce:06:f8:2b:a0:35:24:88:80: ad:4c:ff:59:1f:d5:4f:db:8a:55:f9:67:0f:53:fc: d8:e7:5b:4d:1c:25:e9:ec:5e:18:ee:96:30:6e:eb: 73:5f:25:df:08:dd:50:6a:65:ef:4f:54:12:d4:6a: 6d:02:09:ed:23:94:16:11:97:23:b2:19:b7:d3:30: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:24:B8:A3:F8:EC:4B:C3:45:37:9A:EA:F9:F2:3E:20:B7:D9:59:10 X509v3 Authority Key Identifier: keyid:0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d00::/44 Signature Algorithm: sha256WithRSAEncryption 6e:96:8a:07:f2:de:05:8a:27:2f:22:1f:df:0a:e5:83:e3:8e: 04:f7:54:78:91:51:28:f5:54:cb:32:00:df:5e:59:fb:90:fd: c2:e3:6a:65:db:fb:8e:ba:a3:bc:db:4e:e0:dd:aa:c9:5d:cc: dd:c9:0b:8a:25:c6:ba:2e:e4:0c:8e:fa:a6:ec:0a:f9:8c:73: 7b:e7:6c:a2:bf:30:c8:05:a0:b9:ae:dd:f0:ab:06:a9:5f:9e: e6:da:b8:db:10:f2:0d:c1:38:b1:72:16:02:8f:b8:ed:76:76: b6:0d:9f:c2:10:0e:a4:f0:0a:10:46:18:33:0b:74:73:6c:d3: a6:81:e5:28:45:98:f0:0f:30:90:0f:18:ab:9a:85:9f:8d:15: 0a:20:53:e2:99:90:4c:cf:db:35:26:9c:68:e4:2f:73:29:3b: af:8e:02:a5:02:15:65:8f:fc:53:56:89:e8:93:fb:cc:dc:1c: ca:3a:58:4a:f8:87:8b:f3:1f:85:bd:e0:5a:e4:12:0d:1c:df: fc:b2:fe:d7:bc:6b:f1:24:40:cd:09:f4:d4:92:2f:29:1c:09: aa:dd:4c:dd:c3:48:9f:89:72:be:f0:15:3c:cd:93:bf:52:97: b8:42:92:3d:16:dc:7b:1f:ac:3f:47:e3:76:b1:a3:d5:73:ef: 9e:f1:1c:3c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUa6CeTIjuI4DHgV4Q9p/FwLNjm/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZG QjgyM0U0NTAeFw0yNDA4MDkwMjIyMjlaFw0yNTA4MDgwMjI3MjlaMDMxMTAvBgNV BAMTKEUxMjRCOEEzRjhFQzRCQzM0NTM3OUFFQUY5RjIzRTIwQjdEOTU5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVQL7/F4YUjIkRYdBjM01RTpqz I5zcKCdsn0u9ZPWhQksxicQoSEFRRou3Rbf+HS63m3V02VC8CkR4PapQDzk4Vilr 5LYVimuWlD/fmC/a6h8ioNN0tJEe5mivdCnD6gflXYdQj3v6v2zxf0QNviuV/Lnc vKFwrH2cjcbCF1x6btjCfq7EXyuBDyYi1/fVSetQ6NSBG2eaZOtEBKEZ3BUfK/on wQ4VtFAPdgeLvQj/UUR5/strohj/vc4G+CugNSSIgK1M/1kf1U/bilX5Zw9T/Njn W00cJensXhjuljBu63NfJd8I3VBqZe9PVBLUam0CCe0jlBYRlyOyGbfTMHjdAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQU4SS4o/jsS8NFN5rq+fI+ILfZWRAwHwYDVR0j BBgwFoAUCothqETWwsevOO3L0WXQ7/uCPkUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzJjNDA1ZjEtYzMyZC00N2NlLTg5NDMtMDc1MmVkMTNk OGVmLzEvMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZGQjgyM0U0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wQThCNjFBODQ0RDZDMkM3QUYzOEVEQ0JE MTY1RDBFRkZCODIzRTQ1LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MmM0MDVmMS1jMzJkLTQ3Y2UtODk0My0wNzUyZWQxM2Q4ZWYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMzMzEz ODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwQqFHWBDQAwDQYJKoZIhvcNAQELBQADggEBAG6Wigfy 3gWKJy8iH98K5YPjjgT3VHiRUSj1VMsyAN9eWfuQ/cLjamXb+466o7zbTuDdqsld zN3JC4olxrou5AyO+qbsCvmMc3vnbKK/MMgFoLmu3fCrBqlfnubauNsQ8g3BOLFy FgKPuO12drYNn8IQDqTwChBGGDMLdHNs06aB5ShFmPAPMJAPGKuahZ+NFQogU+KZ kEzP2zUmnGjkL3MpO6+OAqUCFWWP/FNWieiT+8zcHMo6WEr4h4vzH4W94FrkEg0c 3/yy/te8a/EkQM0J9NSSLykcCardTN3DSJ+Jcr7wFTzNk79Sl7hCkj0W3HsfrD9H 43axo9Vz757xHDw= -----END CERTIFICATE-----Generated at Thu Nov 21 09:46:55 2024 by rpki-client on console-ams.rpki-client.org