$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa File: 326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa (raw, json) Hash identifier: 92vCLzxUkC0A+QO3tY7K98mZLDwvzT8NNa/AXo3xL2c= Subject key identifier: 14:D8:BF:89:A6:6F:31:4F:3B:DC:BF:FB:EF:B6:A9:42:87:E7:D6:D8 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 0C47CFCFBDE0CF76666B32400E8274CF19A31FC5 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa Signing time: Tue 16 Jul 2024 15:24:04 +0000 ROA not before: Tue 16 Jul 2024 15:19:04 +0000 ROA not after: Tue 15 Jul 2025 15:24:04 +0000 asID: 215617 IP address blocks: 2a14:7581:90ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:47:cf:cf:bd:e0:cf:76:66:6b:32:40:0e:82:74:cf:19:a3:1f:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jul 16 15:19:04 2024 GMT Not After : Jul 15 15:24:04 2025 GMT Subject: CN=14D8BF89A66F314F3BDCBFFBEFB6A94287E7D6D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:a7:e5:af:a4:ac:cb:3f:40:4d:ad:40:dd: 5a:3a:2a:4d:82:5e:d1:30:34:ca:9c:ec:aa:84:49: dc:13:74:2d:8f:fe:e2:7f:7b:1d:94:bb:f2:4f:e9: a5:c4:80:67:29:64:82:b0:3a:28:dc:b7:75:12:9a: d4:ed:7c:ac:d0:b7:92:47:4a:c4:21:00:77:f8:e1: 6f:fa:13:9f:c4:85:10:2d:ae:cf:d8:a1:3e:3f:24: 01:bf:dc:0e:a2:a0:4f:74:63:38:23:13:d3:a6:d2: 9a:7a:c8:2f:3f:be:e4:03:cb:b7:be:a8:8f:79:d4: b3:b2:4a:89:db:dc:24:7b:92:0c:41:fb:fe:be:47: 1d:3d:21:c0:61:08:cc:d9:83:11:f0:65:27:08:2e: ab:ad:ea:c0:7e:f8:9e:06:67:ef:a2:61:ec:8e:49: 7a:10:53:0d:b3:bc:73:8e:2b:5a:41:fa:75:19:55: e9:31:db:45:90:f2:8c:dc:63:27:c0:e4:00:a3:b4: cb:d9:3f:f2:e3:17:cd:0d:ea:1b:f9:72:4a:c2:7d: ab:1d:f3:22:aa:f1:fb:5a:37:f2:3d:4b:47:eb:df: 0d:1f:a7:9d:12:e2:cc:10:6c:54:79:56:c8:8d:52: 50:4b:47:48:67:b2:bc:c5:5d:c8:bf:5a:e3:6b:90: 6f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D8:BF:89:A6:6F:31:4F:3B:DC:BF:FB:EF:B6:A9:42:87:E7:D6:D8 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ff::/48 Signature Algorithm: sha256WithRSAEncryption b8:91:1c:79:80:bf:9d:34:b3:1f:2c:1f:a4:22:86:d2:61:52: 71:ce:c7:82:45:a3:5a:29:52:12:29:a7:2c:27:ef:fd:c1:07: d9:58:ac:a8:44:65:33:f2:99:c6:34:b8:aa:81:89:6e:d0:47: a0:f7:19:6e:fd:b7:60:ed:c7:08:39:05:12:4c:58:c9:6e:b6: 9b:4b:07:d1:18:85:0a:e6:6b:04:64:69:dc:34:3c:96:14:70: 9d:19:e0:41:f0:d0:c6:46:ad:b8:74:0b:c6:a2:2b:d6:7a:22: ef:56:0f:cd:11:5b:b9:85:ef:11:eb:5d:30:25:32:4b:1d:24: f0:8c:75:29:df:a1:57:cc:a0:4a:02:9e:da:99:00:11:cd:60: 8d:3e:d1:63:6c:1f:8c:ca:91:3a:4b:c2:db:77:ac:33:dd:3c: f0:ea:b9:5b:37:9e:ad:d4:b3:70:21:46:61:56:10:92:ad:89: 6d:dc:ca:9e:55:1e:7a:a0:6c:dc:db:50:58:72:1f:67:18:92: 9b:12:d6:d2:b7:9a:dc:47:4c:2f:4f:4a:cb:46:aa:77:c2:48: bd:c9:8a:2b:af:11:ed:b0:10:d0:0f:c3:2f:72:44:3c:c5:82: 35:ea:70:13:e9:bb:d2:ad:46:75:de:f3:1a:7c:01:03:01:5b: 80:f6:07:d7 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUDEfPz73gz3ZmazJADoJ0zxmjH8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA3MTYxNTE5MDRaFw0yNTA3MTUxNTI0MDRaMDMxMTAvBgNV BAMTKDE0RDhCRjg5QTY2RjMxNEYzQkRDQkZGQkVGQjZBOTQyODdFN0Q2RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAb6flr6Ssyz9ATa1A3Vo6Kk2C XtEwNMqc7KqESdwTdC2P/uJ/ex2Uu/JP6aXEgGcpZIKwOijct3USmtTtfKzQt5JH SsQhAHf44W/6E5/EhRAtrs/YoT4/JAG/3A6ioE90YzgjE9Om0pp6yC8/vuQDy7e+ qI951LOySonb3CR7kgxB+/6+Rx09IcBhCMzZgxHwZScILqut6sB++J4GZ++iYeyO SXoQUw2zvHOOK1pB+nUZVekx20WQ8ozcYyfA5ACjtMvZP/LjF80N6hv5ckrCfasd 8yKq8ftaN/I9S0fr3w0fp50S4swQbFR5VsiNUlBLR0hnsrzFXci/WuNrkG/rAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUFNi/iaZvMU873L/777apQofn1tgwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NjY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzYzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZD/MA0GCSqGSIb3DQEBCwUAA4IBAQC4 kRx5gL+dNLMfLB+kIobSYVJxzseCRaNaKVISKacsJ+/9wQfZWKyoRGUz8pnGNLiq gYlu0Eeg9xlu/bdg7ccIOQUSTFjJbrabSwfRGIUK5msEZGncNDyWFHCdGeBB8NDG Rq24dAvGoivWeiLvVg/NEVu5he8R610wJTJLHSTwjHUp36FXzKBKAp7amQARzWCN PtFjbB+MypE6S8Lbd6wz3Tzw6rlbN56t1LNwIUZhVhCSrYlt3MqeVR56oGzc21BY ch9nGJKbEtbSt5rcR0wvT0rLRqp3wki9yYorrxHtsBDQD8MvckQ8xYI16nAT6bvS rUZ13vMafAEDAVuA9gfX -----END CERTIFICATE-----Generated at Thu Nov 21 16:17:59 2024 by rpki-client on console-fra.rpki-client.org