$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061343a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393061343a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: P6cpiTTYL7lLBXArfAsieT7qICD6oOOoBgXZt2WZD6M= Subject key identifier: 4A:2B:C8:4B:38:BE:ED:50:95:62:7D:25:AC:F9:25:23:88:CA:BE:13 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 7CA1914E6C40D22F33935B8D4CFC8DC0D5290993 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061343a3a2f34382d3438203d3e20323135333634.roa Signing time: Thu 21 Nov 2024 13:39:20 +0000 ROA not before: Thu 21 Nov 2024 13:34:20 +0000 ROA not after: Thu 20 Nov 2025 13:39:20 +0000 asID: 215364 IP address blocks: 2a14:7581:90a4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a1:91:4e:6c:40:d2:2f:33:93:5b:8d:4c:fc:8d:c0:d5:29:09:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Nov 21 13:34:20 2024 GMT Not After : Nov 20 13:39:20 2025 GMT Subject: CN=4A2BC84B38BEED5095627D25ACF9252388CABE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:c7:6f:5a:25:80:b9:d0:65:8f:90:80:ce: f6:69:59:3a:9e:4d:92:82:10:bd:41:86:7b:7b:e2: 9d:2c:b7:69:28:97:bb:78:3e:52:44:96:58:7b:eb: 1d:8a:b9:9b:20:60:a6:29:f1:f9:86:d8:43:79:e4: f8:3d:59:bf:a6:21:3f:50:8c:0f:ca:ad:ed:e2:d2: e2:db:fb:f5:de:a7:2f:94:72:ea:19:09:1b:e7:65: b0:2c:64:f9:fe:6b:07:c0:20:28:5e:68:00:2f:05: 98:71:e1:bf:51:59:00:2d:41:17:55:cb:13:e4:26: af:10:47:57:85:9f:b9:be:d1:c9:f6:05:02:fa:8c: c3:4a:ee:4e:98:9f:aa:7f:6f:0f:90:70:1d:98:91: 48:8c:d6:8b:d7:9d:51:30:b8:85:b9:c9:24:a2:79: 58:85:49:e2:e9:f2:f8:55:b5:92:dd:4a:c0:42:bf: 4b:ee:8f:9d:28:95:60:f3:c1:35:c3:be:f7:03:1e: 93:42:9c:91:ec:57:4c:6d:29:29:d0:1e:c6:e8:51: fd:4b:17:40:b0:fa:6b:01:da:96:4e:a0:96:73:1b: 65:9a:1d:dc:a5:7f:ba:e3:8b:f9:fe:c5:05:df:4f: 58:22:fb:cf:fc:f1:d9:b0:f9:30:63:d7:5f:69:73: 41:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2B:C8:4B:38:BE:ED:50:95:62:7D:25:AC:F9:25:23:88:CA:BE:13 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061343a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a4::/48 Signature Algorithm: sha256WithRSAEncryption 06:d0:d9:63:56:c3:8d:75:3e:41:bb:d8:9f:b5:36:db:97:74: 51:38:be:3f:84:91:66:65:e1:31:00:74:8a:d5:8a:1b:51:32: 9d:54:31:1d:14:a2:d4:30:77:8d:c3:7c:b6:17:7a:75:cd:60: 68:77:55:47:0f:f7:b7:1d:5b:b7:3c:f4:1b:39:43:f8:b3:0a: d4:29:21:bb:f4:b0:fc:6e:06:a2:50:55:fa:35:4f:df:f6:a1: 9a:83:23:05:69:25:ac:8c:94:39:51:da:5f:b1:16:f3:92:f1: c8:6e:c5:47:41:99:88:82:7b:1f:fb:a5:b7:8c:5d:ab:54:7b: d8:85:49:89:18:c4:10:da:e5:05:af:31:73:fa:45:0a:05:3b: 8c:49:82:43:1b:80:5c:02:54:a7:43:eb:6c:00:80:b9:03:8b: be:56:e7:a7:39:8d:11:2e:0e:0f:6e:d4:1d:98:70:b1:ef:17: 95:c8:9c:6c:89:ac:4d:c2:e8:dd:2a:e3:1c:f1:ed:35:72:bd: 3c:9f:89:62:80:93:84:2c:cc:06:78:bf:5d:ab:b9:44:59:f9: a1:64:ff:18:a9:ae:95:4f:3a:5a:ee:4a:56:fc:0e:0c:ff:aa: ab:a9:a1:e9:59:cd:98:28:b8:9d:eb:29:95:cf:2a:9e:3c:5a: 9d:1f:83:b2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfKGRTmxA0i8zk1uNTPyNwNUpCZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDExMjExMzM0MjBaFw0yNTExMjAxMzM5MjBaMDMxMTAvBgNV BAMTKDRBMkJDODRCMzhCRUVENTA5NTYyN0QyNUFDRjkyNTIzODhDQUJFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3BsdvWiWAudBlj5CAzvZpWTqe TZKCEL1Bhnt74p0st2kol7t4PlJEllh76x2KuZsgYKYp8fmG2EN55Pg9Wb+mIT9Q jA/Kre3i0uLb+/Xepy+UcuoZCRvnZbAsZPn+awfAICheaAAvBZhx4b9RWQAtQRdV yxPkJq8QR1eFn7m+0cn2BQL6jMNK7k6Yn6p/bw+QcB2YkUiM1ovXnVEwuIW5ySSi eViFSeLp8vhVtZLdSsBCv0vuj50olWDzwTXDvvcDHpNCnJHsV0xtKSnQHsboUf1L F0Cw+msB2pZOoJZzG2WaHdylf7rji/n+xQXfT1gi+8/88dmw+TBj119pc0FrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUSivISzi+7VCVYn0lrPklI4jKvhMwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZCkMA0GCSqGSIb3DQEBCwUAA4IBAQAG 0NljVsONdT5Bu9iftTbbl3RROL4/hJFmZeExAHSK1YobUTKdVDEdFKLUMHeNw3y2 F3p1zWBod1VHD/e3HVu3PPQbOUP4swrUKSG79LD8bgaiUFX6NU/f9qGagyMFaSWs jJQ5UdpfsRbzkvHIbsVHQZmIgnsf+6W3jF2rVHvYhUmJGMQQ2uUFrzFz+kUKBTuM SYJDG4BcAlSnQ+tsAIC5A4u+VuenOY0RLg4PbtQdmHCx7xeVyJxsiaxNwujdKuMc 8e01cr08n4ligJOELMwGeL9dq7lEWfmhZP8Yqa6VTzpa7kpW/A4M/6qrqaHpWc2Y KLid6ymVzyqePFqdH4Oy -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org