$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa File: 326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa (raw, json) Hash identifier: 4fHLejJ946NktWTU2sxiTGZMT9qoCr17W/uS0Esd5lw= Subject key identifier: BB:4F:81:63:60:BF:81:52:FA:C0:53:2E:92:6B:A9:BE:1B:00:3A:7B Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 1A4C79E99DCD7AC744674102B75474D39807F72F Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa Signing time: Mon 04 Nov 2024 13:28:53 +0000 ROA not before: Mon 04 Nov 2024 13:23:53 +0000 ROA not after: Mon 03 Nov 2025 13:28:53 +0000 asID: 215148 IP address blocks: 2a14:7581:910a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4c:79:e9:9d:cd:7a:c7:44:67:41:02:b7:54:74:d3:98:07:f7:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Nov 4 13:23:53 2024 GMT Not After : Nov 3 13:28:53 2025 GMT Subject: CN=BB4F816360BF8152FAC0532E926BA9BE1B003A7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a1:42:80:c9:00:32:52:6d:91:02:de:5c:53: 59:a8:7c:98:4f:71:74:05:a6:36:49:a6:ec:d2:60: 35:ed:49:0c:07:f5:c1:e9:6d:8e:ad:9f:7f:4d:50: e1:33:36:00:38:88:a7:76:97:24:09:8b:71:dd:49: 6d:85:85:f1:fc:e2:ea:f9:1b:34:4e:41:c0:f3:28: a9:88:e5:b6:a5:41:17:5a:86:15:0d:aa:66:74:09: 97:6d:25:2b:5f:85:89:ad:50:4a:44:ae:92:7b:e6: 9b:80:f1:2b:a1:6c:a4:22:c7:62:de:92:97:c9:c6: 84:b5:f3:f0:2b:db:7b:fd:89:d7:7b:2a:54:ec:0d: 2e:cb:bc:51:32:fd:f2:46:7b:60:b0:20:35:00:b3: a0:36:6f:92:4b:a0:2e:38:bc:e2:a2:b9:2c:55:11: 92:83:2b:b5:d0:f5:48:b5:58:64:ff:cb:85:6f:95: 3b:04:7e:ce:59:f9:b2:af:54:a3:5c:cb:0e:06:8b: b6:6e:ed:93:da:db:35:fd:c8:36:17:b6:8f:c1:0e: 4f:65:3e:bf:3c:a3:20:ce:cb:49:69:63:6c:4b:69: 91:3f:6f:07:1f:1d:9c:8e:6e:9d:3c:91:36:c1:7c: 6d:f4:31:b8:cf:59:e4:92:4f:15:f9:8c:38:1a:93: 48:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4F:81:63:60:BF:81:52:FA:C0:53:2E:92:6B:A9:BE:1B:00:3A:7B X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:910a::/48 Signature Algorithm: sha256WithRSAEncryption 2b:96:57:51:d3:4a:fc:49:30:9e:59:9b:8b:1d:fd:ed:9c:60: 1b:e4:4b:2d:14:31:59:e8:ea:95:2b:54:10:19:35:06:28:b9: a7:53:ca:16:b2:3d:0b:87:f8:11:81:1e:3f:a2:34:4f:09:5a: 0d:42:b2:7d:cc:0c:90:78:11:a9:b0:cd:db:53:63:a0:83:2e: 48:6b:e7:6d:ce:85:7f:30:ea:2c:81:dd:26:3e:37:7c:7c:15: c1:60:e9:75:61:db:ed:5c:4f:10:f7:d0:09:c5:db:86:20:93: e0:18:e7:ef:2c:99:dc:d5:e8:f7:d1:91:b7:06:02:be:46:36: 61:e2:56:d8:ad:9b:eb:fc:90:94:33:09:ad:d8:96:1f:dc:f5: 06:ed:fc:6f:fa:38:5c:b9:d2:dc:66:05:58:9c:fb:b5:59:da: 9c:a8:ca:05:58:fd:73:f9:64:7f:c8:46:23:41:0c:b5:a5:e8: 2a:eb:f0:66:09:e8:6f:cf:50:42:b6:f0:92:d3:3f:9a:92:41: 62:b8:78:16:e1:cb:c2:cd:c8:35:e4:87:b6:db:c5:8f:3e:d2: 70:00:3e:b0:a9:8a:97:9b:9e:1e:96:07:02:78:90:2e:a3:a2: fd:c4:a2:cf:5e:50:e7:44:30:26:e2:57:9a:71:8f:92:5b:ce: dc:b9:13:81 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUGkx56Z3NesdEZ0ECt1R005gH9y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDExMDQxMzIzNTNaFw0yNTExMDMxMzI4NTNaMDMxMTAvBgNV BAMTKEJCNEY4MTYzNjBCRjgxNTJGQUMwNTMyRTkyNkJBOUJFMUIwMDNBN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCloUKAyQAyUm2RAt5cU1mofJhP cXQFpjZJpuzSYDXtSQwH9cHpbY6tn39NUOEzNgA4iKd2lyQJi3HdSW2FhfH84ur5 GzROQcDzKKmI5balQRdahhUNqmZ0CZdtJStfhYmtUEpErpJ75puA8SuhbKQix2Le kpfJxoS18/Ar23v9idd7KlTsDS7LvFEy/fJGe2CwIDUAs6A2b5JLoC44vOKiuSxV EZKDK7XQ9Ui1WGT/y4VvlTsEfs5Z+bKvVKNcyw4Gi7Zu7ZPa2zX9yDYXto/BDk9l Pr88oyDOy0lpY2xLaZE/bwcfHZyObp08kTbBfG30MbjPWeSSTxX5jDgak0gHAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUu0+BY2C/gVL6wFMukmupvhsAOnswHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzEzMDYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZEKMA0GCSqGSIb3DQEBCwUAA4IBAQAr lldR00r8STCeWZuLHf3tnGAb5EstFDFZ6OqVK1QQGTUGKLmnU8oWsj0Lh/gRgR4/ ojRPCVoNQrJ9zAyQeBGpsM3bU2Oggy5Ia+dtzoV/MOosgd0mPjd8fBXBYOl1Ydvt XE8Q99AJxduGIJPgGOfvLJnc1ej30ZG3BgK+RjZh4lbYrZvr/JCUMwmt2JYf3PUG 7fxv+jhcudLcZgVYnPu1WdqcqMoFWP1z+WR/yEYjQQy1pegq6/BmCehvz1BCtvCS 0z+akkFiuHgW4cvCzcg15Ie228WPPtJwAD6wqYqXm54elgcCeJAuo6L9xKLPXlDn RDAm4leacY+SW87cuROB -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:49 2024 by rpki-client on console-ams.rpki-client.org