$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393061313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 7q03RLkB6tqAN2VGS8fqPrH4CxAeiijAUGDmJ/NZGNs= Subject key identifier: ED:2E:1B:11:45:91:59:3E:D3:36:17:A6:61:F1:0F:6A:33:3F:70:2C Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 077443282F53346884A5B9F4B42DAFBB8C38799B Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061313a3a2f34382d3438203d3e20323135333634.roa Signing time: Mon 19 Aug 2024 14:18:07 +0000 ROA not before: Mon 19 Aug 2024 14:13:07 +0000 ROA not after: Mon 18 Aug 2025 14:18:07 +0000 asID: 215364 IP address blocks: 2a14:7581:90a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:74:43:28:2f:53:34:68:84:a5:b9:f4:b4:2d:af:bb:8c:38:79:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 19 14:13:07 2024 GMT Not After : Aug 18 14:18:07 2025 GMT Subject: CN=ED2E1B114591593ED33617A661F10F6A333F702C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c2:6e:d1:63:b4:e2:b3:de:a2:54:83:00:c2: ae:3e:56:cd:bf:19:ed:5f:ed:ca:45:d5:d3:42:56: 63:d8:13:fd:cf:46:a3:8e:6f:3a:76:6b:b2:6f:20: 0d:80:3c:90:9e:0d:51:41:91:09:2a:88:c3:2b:35: 47:8f:c3:6e:6b:02:a8:c3:5e:07:54:63:e8:02:80: 51:d1:61:15:a3:aa:18:9b:ad:73:87:da:8f:6a:19: 74:a9:3b:67:ff:29:e1:49:a5:df:6d:30:39:eb:c8: b3:72:e8:be:ac:2d:1d:d7:5a:2d:e9:45:d2:ce:74: cf:40:18:b4:19:28:c5:37:d1:66:67:80:53:3b:c8: ee:96:af:ed:3c:63:2c:f5:c7:cf:6f:8b:44:f1:d8: dd:10:e2:96:ca:e3:08:ed:11:90:be:cc:7e:fb:39: 87:14:37:3f:42:c3:0f:14:87:8d:5a:ed:a0:4c:08: 95:18:20:51:20:d7:46:ee:20:90:21:f5:c5:bf:ee: ee:8f:59:2a:f8:e3:01:21:4b:a1:8b:f6:52:ea:7e: 8a:39:68:7d:17:32:d3:ff:b4:ce:e5:55:6a:54:56: 69:bc:0d:93:01:43:92:74:b5:5e:9d:51:99:fc:79: 24:c6:59:af:a6:c9:19:b2:03:c4:89:d6:a2:a8:0a: ff:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2E:1B:11:45:91:59:3E:D3:36:17:A6:61:F1:0F:6A:33:3F:70:2C X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a1::/48 Signature Algorithm: sha256WithRSAEncryption 46:96:51:db:63:55:fc:97:42:ce:3f:a3:ff:f4:72:6a:6b:8f: 51:06:74:44:c8:39:b5:0f:b1:e6:b8:9d:50:c4:63:4f:03:69: 5b:17:ce:e2:6e:a1:f0:b6:35:e5:d1:73:ec:ef:99:29:7b:33: 6e:f9:84:44:f0:42:84:68:17:8d:6e:9d:7b:33:19:44:22:af: a6:2c:a2:ee:91:53:30:56:cd:7d:0a:2f:de:3b:db:73:1f:ea: 67:80:06:67:b1:33:b1:c3:8e:e8:bd:d3:27:a5:80:5c:17:88: 67:d4:94:87:e3:2e:b2:ac:00:9b:65:28:a1:92:5c:5a:1a:3c: d0:ce:de:f6:b3:3f:97:2b:19:80:81:a6:6b:af:34:2d:8b:b9: 42:27:fc:3e:43:b5:ac:1f:81:f8:78:23:bb:e8:2b:d9:c7:7c: 53:34:bc:07:d3:3c:35:56:07:ea:29:2e:d7:68:3d:dd:f9:98: 86:30:e6:26:91:cc:b7:20:2e:ef:c0:73:36:72:61:c6:8d:99: b7:62:62:cd:ca:5f:c9:fc:11:fc:ce:b1:56:c6:80:1e:f8:e3: 82:34:73:bf:d6:24:52:e6:41:21:7d:1f:bd:bb:0a:0f:7c:6e: 1d:b1:f9:7b:fe:3f:b4:be:fa:06:fe:d2:58:07:4f:15:06:e6: b9:b7:b4:db -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUB3RDKC9TNGiEpbn0tC2vu4w4eZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA4MTkxNDEzMDdaFw0yNTA4MTgxNDE4MDdaMDMxMTAvBgNV BAMTKEVEMkUxQjExNDU5MTU5M0VEMzM2MTdBNjYxRjEwRjZBMzMzRjcwMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYwm7RY7Tis96iVIMAwq4+Vs2/ Ge1f7cpF1dNCVmPYE/3PRqOObzp2a7JvIA2APJCeDVFBkQkqiMMrNUePw25rAqjD XgdUY+gCgFHRYRWjqhibrXOH2o9qGXSpO2f/KeFJpd9tMDnryLNy6L6sLR3XWi3p RdLOdM9AGLQZKMU30WZngFM7yO6Wr+08Yyz1x89vi0Tx2N0Q4pbK4wjtEZC+zH77 OYcUNz9Cww8Uh41a7aBMCJUYIFEg10buIJAh9cW/7u6PWSr44wEhS6GL9lLqfoo5 aH0XMtP/tM7lVWpUVmm8DZMBQ5J0tV6dUZn8eSTGWa+myRmyA8SJ1qKoCv/PAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU7S4bEUWRWT7TNhemYfEPajM/cCwwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZChMA0GCSqGSIb3DQEBCwUAA4IBAQBG llHbY1X8l0LOP6P/9HJqa49RBnREyDm1D7HmuJ1QxGNPA2lbF87ibqHwtjXl0XPs 75kpezNu+YRE8EKEaBeNbp17MxlEIq+mLKLukVMwVs19Ci/eO9tzH+pngAZnsTOx w47ovdMnpYBcF4hn1JSH4y6yrACbZSihklxaGjzQzt72sz+XKxmAgaZrrzQti7lC J/w+Q7WsH4H4eCO76CvZx3xTNLwH0zw1VgfqKS7XaD3d+ZiGMOYmkcy3IC7vwHM2 cmHGjZm3YmLNyl/J/BH8zrFWxoAe+OOCNHO/1iRS5kEhfR+9uwoPfG4dsfl7/j+0 vvoG/tJYB08VBua5t7Tb -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org