$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061323a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393061323a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: mdWV9eS4+WC3/yAcz+97xhH9MgOmz1AFYqyScPjyH8g= Subject key identifier: D7:B9:31:78:E1:07:E9:D4:18:31:8F:29:B8:90:F2:8C:C5:E3:C9:C6 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 61D8FFF977134F9F9776FF079B9AE70154D47DE2 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061323a3a2f34382d3438203d3e20323135333634.roa Signing time: Thu 22 Aug 2024 11:19:27 +0000 ROA not before: Thu 22 Aug 2024 11:14:27 +0000 ROA not after: Thu 21 Aug 2025 11:19:27 +0000 asID: 215364 IP address blocks: 2a14:7581:90a2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d8:ff:f9:77:13:4f:9f:97:76:ff:07:9b:9a:e7:01:54:d4:7d:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 22 11:14:27 2024 GMT Not After : Aug 21 11:19:27 2025 GMT Subject: CN=D7B93178E107E9D418318F29B890F28CC5E3C9C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:62:31:d9:60:6c:6b:7c:c9:eb:1a:dd:3f:44: 7d:05:d0:bd:5e:6c:3d:af:fd:16:6b:2b:3f:09:f9: cb:78:7f:10:b6:40:a7:4c:80:bb:b0:c5:e9:51:0c: 4a:b3:69:3c:2e:3b:7c:44:d6:a5:d5:2c:20:5c:99: 8f:0f:d5:8f:55:b9:bf:59:a2:3e:09:e9:15:20:d7: c9:34:0f:3a:ec:d0:05:a2:09:f0:fe:62:6c:fc:78: 16:58:05:62:eb:a1:b6:f7:84:0e:95:2a:f4:ed:20: 70:8d:1f:35:e1:4c:23:52:e1:ab:0c:03:fd:bf:34: 10:27:1c:a4:93:b2:6a:97:2e:be:71:90:02:c6:43: d0:4f:86:9d:c4:2b:d8:e0:16:17:31:b5:b1:09:b4: 0c:2f:7c:56:9a:90:dc:04:01:be:34:e9:30:60:26: 21:f1:64:02:dc:7d:0c:22:2d:af:b3:df:de:26:a1: 92:20:fc:10:eb:0d:04:45:ff:38:65:62:9d:4a:75: ae:cb:83:f3:02:6c:46:7e:45:91:f7:d9:09:76:f0: 78:3a:24:ee:59:d7:57:fe:83:51:e1:13:f9:c4:d0: d9:e5:2a:2d:9d:ba:2a:1d:6a:cf:b3:2a:4d:c3:3a: 53:27:81:a8:9f:99:4b:8d:dd:01:cb:86:76:9f:ff: 45:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B9:31:78:E1:07:E9:D4:18:31:8F:29:B8:90:F2:8C:C5:E3:C9:C6 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061323a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a2::/48 Signature Algorithm: sha256WithRSAEncryption 47:8f:05:50:89:4d:76:69:03:a5:19:fd:d3:25:e8:5a:9d:eb: 0b:5c:f2:26:43:88:28:06:27:0c:a8:78:aa:26:0e:ed:0d:ec: 8a:7b:b8:1f:fe:de:f0:b1:1c:4c:d8:9a:07:aa:e0:07:6d:0f: e7:e4:f5:c4:56:f5:48:fe:9d:19:40:de:08:c0:8e:5b:e6:b9: 99:4e:57:36:15:61:34:eb:4c:18:b8:7d:3c:e6:80:b5:26:77: aa:4b:d7:f4:d7:f6:26:8d:6e:77:3c:64:2a:ac:e9:d6:84:92: 19:16:d8:6c:b5:b4:01:5b:47:09:24:c2:fe:a1:f7:5a:3d:04: 67:2c:aa:2d:4b:42:84:31:b0:b8:a1:94:47:a9:6c:08:47:91: f9:91:bd:a5:ef:5b:64:3f:0e:7f:35:d2:fd:5d:02:51:11:9c: ab:1e:4e:e5:5d:5b:f9:15:3b:e3:21:6d:c2:50:79:ad:0e:eb: 9f:67:c7:a1:4a:56:c2:4d:e7:66:4f:25:b8:65:d4:a5:fa:96: 15:4c:d8:f6:50:2a:6b:1e:40:c2:20:1e:2b:eb:ff:c2:e5:9b: af:89:0c:4e:2c:1c:e2:1a:3a:4e:69:48:59:52:9b:39:06:20: f7:21:28:89:f7:2c:26:3d:6b:b6:22:c1:56:be:75:f9:2e:b1: e0:09:ff:15 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYdj/+XcTT5+Xdv8Hm5rnAVTUfeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA4MjIxMTE0MjdaFw0yNTA4MjExMTE5MjdaMDMxMTAvBgNV BAMTKEQ3QjkzMTc4RTEwN0U5RDQxODMxOEYyOUI4OTBGMjhDQzVFM0M5QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5YjHZYGxrfMnrGt0/RH0F0L1e bD2v/RZrKz8J+ct4fxC2QKdMgLuwxelRDEqzaTwuO3xE1qXVLCBcmY8P1Y9Vub9Z oj4J6RUg18k0Dzrs0AWiCfD+Ymz8eBZYBWLrobb3hA6VKvTtIHCNHzXhTCNS4asM A/2/NBAnHKSTsmqXLr5xkALGQ9BPhp3EK9jgFhcxtbEJtAwvfFaakNwEAb406TBg JiHxZALcfQwiLa+z394moZIg/BDrDQRF/zhlYp1Kda7Lg/MCbEZ+RZH32Ql28Hg6 JO5Z11f+g1HhE/nE0NnlKi2duiodas+zKk3DOlMngaifmUuN3QHLhnaf/0XZAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU17kxeOEH6dQYMY8puJDyjMXjycYwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZCiMA0GCSqGSIb3DQEBCwUAA4IBAQBH jwVQiU12aQOlGf3TJehanesLXPImQ4goBicMqHiqJg7tDeyKe7gf/t7wsRxM2JoH quAHbQ/n5PXEVvVI/p0ZQN4IwI5b5rmZTlc2FWE060wYuH085oC1JneqS9f01/Ym jW53PGQqrOnWhJIZFthstbQBW0cJJML+ofdaPQRnLKotS0KEMbC4oZRHqWwIR5H5 kb2l71tkPw5/NdL9XQJREZyrHk7lXVv5FTvjIW3CUHmtDuufZ8ehSlbCTedmTyW4 ZdSl+pYVTNj2UCprHkDCIB4r6//C5ZuviQxOLBziGjpOaUhZUps5BiD3ISiJ9ywm PWu2IsFWvnX5LrHgCf8V -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org