$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061333a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393061333a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: cykeNqeAps0DJ3lcB+VvNlG1mo5ET1nEkq1j80+ye3g= Subject key identifier: 62:A3:31:06:BE:A6:E1:06:95:C0:E1:68:B7:D8:C8:A1:0B:5C:FE:D8 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 5A5745BAAE86AB72B045638737FD0D8775B074B2 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061333a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 16 Oct 2024 18:06:21 +0000 ROA not before: Wed 16 Oct 2024 18:01:21 +0000 ROA not after: Wed 15 Oct 2025 18:06:21 +0000 asID: 215364 IP address blocks: 2a14:7581:90a3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 01:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:57:45:ba:ae:86:ab:72:b0:45:63:87:37:fd:0d:87:75:b0:74:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Oct 16 18:01:21 2024 GMT Not After : Oct 15 18:06:21 2025 GMT Subject: CN=62A33106BEA6E10695C0E168B7D8C8A10B5CFED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:4b:7b:49:b8:2a:87:29:ee:b9:41:23:73: 6f:37:36:00:0e:6f:f6:dd:bf:27:62:a9:85:f0:58: 18:ad:95:3a:3e:6f:81:71:6f:54:bc:8a:c2:77:25: 35:0d:61:e0:3e:c4:09:df:58:d5:af:81:6c:40:d2: 82:14:eb:44:13:52:b0:5b:b6:03:ab:74:c3:e6:7a: 6b:19:75:91:52:09:f4:6e:ef:c6:46:6f:b6:e0:e5: dc:e1:4f:2c:90:ad:fd:80:05:fc:90:03:49:2b:74: 76:ca:39:20:aa:03:a4:09:ed:0b:67:03:70:1f:db: fb:5c:c4:7e:ca:ad:74:d8:14:8b:9d:d5:1c:8e:eb: 85:f1:4d:77:e3:1f:3a:64:ed:9a:09:a0:0e:3f:57: d5:27:29:7b:90:99:9f:b6:a7:fa:64:06:61:53:51: 48:48:97:d9:3e:6f:d7:a6:0f:bc:f5:f1:a4:f6:a4: 88:4a:88:c4:67:7d:5b:8b:e4:4a:1b:f6:80:23:c0: 60:c6:2d:e1:2d:f3:47:ca:51:ce:42:50:ab:c1:e9: 66:3a:7a:5b:9c:45:80:55:72:92:aa:ab:9e:d1:72: e9:70:88:ef:4d:ec:5e:9b:3d:21:c6:cb:b5:0b:cd: 81:8e:e1:eb:6b:69:3e:99:4c:61:d9:b1:19:6f:00: 32:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A3:31:06:BE:A6:E1:06:95:C0:E1:68:B7:D8:C8:A1:0B:5C:FE:D8 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061333a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a3::/48 Signature Algorithm: sha256WithRSAEncryption 16:49:14:62:46:3d:8c:0c:f6:60:de:b7:72:0a:64:5c:3a:22: 6e:6a:1e:b9:23:f1:68:d0:5c:00:62:1c:ec:fa:1b:27:1a:e8: 9c:b4:0a:76:ec:72:7a:82:92:b1:b2:db:f9:66:1f:bd:6e:70: 9d:9f:a4:73:a5:e9:2a:de:0e:4c:ea:a1:67:83:eb:c3:5b:c5: 36:69:6b:07:eb:32:5d:3c:fb:65:13:d1:15:7e:4e:7d:29:4a: 6a:09:7b:3c:e3:cf:d4:6f:d5:6b:32:af:f3:d8:33:37:04:a4: 5e:18:2e:6c:30:9b:78:6b:4f:f1:ce:23:ac:9d:a0:db:47:50: 3a:4f:d2:cd:cb:f0:59:f4:c1:11:e1:42:28:ec:71:17:bc:c4: 90:1d:55:e3:43:4b:c5:dd:6d:c2:6d:31:d5:33:0a:71:f3:85: 12:d2:dd:8e:48:c5:e1:d6:86:09:0d:b3:a4:f0:ca:62:29:b1: 40:1d:40:10:21:75:b3:3f:79:8b:f6:64:6b:89:d7:9d:58:a2: 99:c6:0b:17:ca:59:64:b2:43:fa:e5:0d:34:34:86:61:e3:6f: b8:f7:25:44:84:d7:d0:4f:ec:bb:0d:92:e8:fb:9c:c0:34:a3: 1a:ad:a2:1b:24:37:1c:2b:61:59:c5:98:30:60:a3:99:9b:47: 6a:fe:08:66 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUWldFuq6Gq3KwRWOHN/0Nh3WwdLIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDEwMTYxODAxMjFaFw0yNTEwMTUxODA2MjFaMDMxMTAvBgNV BAMTKDYyQTMzMTA2QkVBNkUxMDY5NUMwRTE2OEI3RDhDOEExMEI1Q0ZFRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCr0t7SbgqhynuuUEjc283NgAO b/bdvydiqYXwWBitlTo+b4Fxb1S8isJ3JTUNYeA+xAnfWNWvgWxA0oIU60QTUrBb tgOrdMPmemsZdZFSCfRu78ZGb7bg5dzhTyyQrf2ABfyQA0krdHbKOSCqA6QJ7Qtn A3Af2/tcxH7KrXTYFIud1RyO64XxTXfjHzpk7ZoJoA4/V9UnKXuQmZ+2p/pkBmFT UUhIl9k+b9emD7z18aT2pIhKiMRnfVuL5Eob9oAjwGDGLeEt80fKUc5CUKvB6WY6 elucRYBVcpKqq57RculwiO9N7F6bPSHGy7ULzYGO4etraT6ZTGHZsRlvADKtAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUYqMxBr6m4QaVwOFot9jIoQtc/tgwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZCjMA0GCSqGSIb3DQEBCwUAA4IBAQAW SRRiRj2MDPZg3rdyCmRcOiJuah65I/Fo0FwAYhzs+hsnGuictAp27HJ6gpKxstv5 Zh+9bnCdn6Rzpekq3g5M6qFng+vDW8U2aWsH6zJdPPtlE9EVfk59KUpqCXs848/U b9VrMq/z2DM3BKReGC5sMJt4a0/xziOsnaDbR1A6T9LNy/BZ9MER4UIo7HEXvMSQ HVXjQ0vF3W3CbTHVMwpx84US0t2OSMXh1oYJDbOk8MpiKbFAHUAQIXWzP3mL9mRr idedWKKZxgsXyllkskP65Q00NIZh42+49yVEhNfQT+y7DZLo+5zANKMaraIbJDcc K2FZxZgwYKOZm0dq/ghm -----END CERTIFICATE-----Generated at Mon Nov 25 09:40:55 2024 by rpki-client on console-ams.rpki-client.org