$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: n13ozOgN/szcSy8ou42QXiXUX+yXlpqcLn3ozZcZDlw= Subject key identifier: 66:60:7B:88:07:8C:56:11:24:18:32:2B:CC:41:78:88:D2:39:6B:E2 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 543AFA0C6BC6BAC4178C705390F4A29732EEEB1E Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 10 Jul 2024 16:52:20 +0000 ROA not before: Wed 10 Jul 2024 16:47:20 +0000 ROA not after: Wed 09 Jul 2025 16:52:20 +0000 asID: 215364 IP address blocks: 2a14:7581:90ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:3a:fa:0c:6b:c6:ba:c4:17:8c:70:53:90:f4:a2:97:32:ee:eb:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jul 10 16:47:20 2024 GMT Not After : Jul 9 16:52:20 2025 GMT Subject: CN=66607B88078C56112418322BCC417888D2396BE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:00:15:a3:b5:d8:05:2c:5e:e6:6e:df:47: bc:a0:cb:8a:c0:ea:d9:6c:ba:53:67:ca:1f:d4:56: a9:c6:c8:c6:1a:16:0c:19:dd:b8:3b:c2:02:f2:d6: f8:75:14:cf:90:c3:cf:54:05:60:93:29:14:af:a9: a9:13:6e:b3:af:6c:66:81:93:10:18:a1:41:b2:a3: 4b:07:d8:8c:52:77:bf:b6:33:fd:22:28:43:14:e5: 3d:f3:ac:8b:5a:c7:cf:4a:35:1f:61:29:8f:4d:dd: 49:89:99:9e:30:1e:85:97:6f:ec:93:c3:e8:c8:5c: 79:1f:64:77:b2:70:84:6e:cf:09:c2:3f:12:27:b7: c3:45:a8:71:1f:ea:d4:42:df:64:7a:2e:73:61:98: 79:f0:63:32:b3:de:a2:e6:2d:99:03:d8:e8:a1:10: 74:ae:7d:73:78:f7:fc:ef:ce:82:8c:8a:c0:b9:02: b1:ec:a1:4c:81:c8:a0:52:b5:a8:a6:9a:6b:4c:4b: 7c:b7:e6:7f:c3:ec:94:c0:cf:42:63:30:6c:b0:79: 5d:72:66:d8:85:c6:0d:d7:45:4b:f0:a4:aa:d7:b1: bc:cd:eb:cf:b6:96:72:09:46:01:eb:dd:27:4b:aa: 99:bd:88:e5:76:39:e6:4f:d4:e7:93:f3:74:39:68: 1c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:60:7B:88:07:8C:56:11:24:18:32:2B:CC:41:78:88:D2:39:6B:E2 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ee::/48 Signature Algorithm: sha256WithRSAEncryption b3:4c:34:f2:0c:ab:c6:47:d2:77:dd:48:d4:52:38:78:e5:15: fe:78:39:00:35:6a:0c:f9:bd:03:e6:cf:da:8d:87:19:79:a3: 23:39:32:9c:0a:be:41:dd:0d:cf:ef:4e:96:62:45:d0:67:b5: be:a6:a5:36:a1:cf:a5:5c:b0:d2:d3:53:6a:65:93:a3:b8:a3: 82:52:9f:cc:46:a8:5b:e3:b4:7e:33:f1:3b:67:cf:25:47:01: 10:a9:c8:7f:4d:26:51:d7:0f:ea:84:e8:e9:f4:a1:3a:71:bb: 89:d0:3a:83:18:66:19:d2:0b:d7:fe:21:c9:cc:17:7e:6d:60: 80:91:6f:3d:4c:e1:3e:44:98:b5:39:bc:50:a3:91:64:07:34: ce:ac:6f:ad:50:8d:c5:ab:a5:b7:af:f0:97:72:08:51:e8:83: 58:00:49:59:15:b4:60:a4:5d:c5:19:9b:fa:4b:33:fc:7d:17: 8d:91:87:a9:7d:73:7d:1b:6a:0d:94:49:16:20:e8:02:e1:10: a0:70:f8:14:56:d9:62:f3:aa:74:cc:ea:40:5b:c9:8c:70:68: d0:6b:67:0e:9f:93:0b:56:96:16:c0:6c:05:9b:35:9c:fb:62: 6e:e7:e5:eb:e2:04:7d:09:88:e2:17:19:aa:af:31:c9:92:b2: 99:20:f0:f8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVDr6DGvGusQXjHBTkPSilzLu6x4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA3MTAxNjQ3MjBaFw0yNTA3MDkxNjUyMjBaMDMxMTAvBgNV BAMTKDY2NjA3Qjg4MDc4QzU2MTEyNDE4MzIyQkNDNDE3ODg4RDIzOTZCRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI+gAVo7XYBSxe5m7fR7ygy4rA 6tlsulNnyh/UVqnGyMYaFgwZ3bg7wgLy1vh1FM+Qw89UBWCTKRSvqakTbrOvbGaB kxAYoUGyo0sH2IxSd7+2M/0iKEMU5T3zrItax89KNR9hKY9N3UmJmZ4wHoWXb+yT w+jIXHkfZHeycIRuzwnCPxInt8NFqHEf6tRC32R6LnNhmHnwYzKz3qLmLZkD2Oih EHSufXN49/zvzoKMisC5ArHsoUyByKBStaimmmtMS3y35n/D7JTAz0JjMGyweV1y ZtiFxg3XRUvwpKrXsbzN68+2lnIJRgHr3SdLqpm9iOV2OeZP1OeT83Q5aBw1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUZmB7iAeMVhEkGDIrzEF4iNI5a+IwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NTY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZDuMA0GCSqGSIb3DQEBCwUAA4IBAQCz TDTyDKvGR9J33UjUUjh45RX+eDkANWoM+b0D5s/ajYcZeaMjOTKcCr5B3Q3P706W YkXQZ7W+pqU2oc+lXLDS01NqZZOjuKOCUp/MRqhb47R+M/E7Z88lRwEQqch/TSZR 1w/qhOjp9KE6cbuJ0DqDGGYZ0gvX/iHJzBd+bWCAkW89TOE+RJi1ObxQo5FkBzTO rG+tUI3Fq6W3r/CXcghR6INYAElZFbRgpF3FGZv6SzP8fReNkYepfXN9G2oNlEkW IOgC4RCgcPgUVtli86p0zOpAW8mMcGjQa2cOn5MLVpYWwGwFmzWc+2Ju5+Xr4gR9 CYjiFxmqrzHJkrKZIPD4 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org