$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 69Xsi44laAcnxP50J1kp3cC9fZOYKoWYPgQjGZJBXKc= Subject key identifier: 73:9E:88:E4:86:C7:87:98:0E:A6:69:AF:2A:5B:91:A2:A1:03:EA:1C Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 157F3E116E9585F43C4F35D6DF7471639CDB358B Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa Signing time: Sun 18 Aug 2024 16:25:14 +0000 ROA not before: Sun 18 Aug 2024 16:20:14 +0000 ROA not after: Sun 17 Aug 2025 16:25:14 +0000 asID: 215364 IP address blocks: 2a14:7581:91e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:7f:3e:11:6e:95:85:f4:3c:4f:35:d6:df:74:71:63:9c:db:35:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 18 16:20:14 2024 GMT Not After : Aug 17 16:25:14 2025 GMT Subject: CN=739E88E486C787980EA669AF2A5B91A2A103EA1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c5:b1:39:89:7d:39:b5:f8:48:e0:01:a8:bf: 26:b7:8c:66:2a:c4:9c:d5:bb:02:d8:50:26:fa:4a: fe:1d:96:0b:98:36:97:c2:69:f6:dd:49:67:fc:47: c6:bc:b7:14:a2:d7:61:66:3f:75:5d:06:14:78:b1: ee:fd:e4:f7:d2:8a:34:5b:b8:58:c0:f6:6b:33:73: ae:d3:db:f9:f4:ab:e4:23:7f:90:13:41:21:9b:b6: c1:55:c6:2c:20:49:cc:06:43:2c:52:4f:0a:ba:8d: 1b:04:97:48:f6:0f:9b:57:3f:ee:e7:33:7d:98:10: 2d:91:41:98:79:04:d5:63:8b:74:98:49:8b:34:ce: e2:84:38:5f:c3:1a:05:79:5b:e5:26:b2:93:8d:34: 4f:39:95:2f:e0:16:45:cb:55:33:c0:1d:3b:a3:3c: b8:91:9c:5c:c0:5b:22:47:5b:e8:30:9b:e6:82:20: eb:a8:ad:3b:52:1f:a8:c6:56:76:04:f9:d9:45:8f: 58:ca:71:d9:06:5a:c0:f0:ea:13:1b:bd:cd:2a:c7: 09:b3:1f:c1:c2:53:a2:48:43:38:70:13:43:36:6e: 1e:4a:bb:78:55:e2:1d:c0:e1:82:66:bb:2e:48:86: 2f:11:16:5c:c5:b8:56:c9:c7:99:70:87:c6:da:e9: 36:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9E:88:E4:86:C7:87:98:0E:A6:69:AF:2A:5B:91:A2:A1:03:EA:1C X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e0::/48 Signature Algorithm: sha256WithRSAEncryption b3:7f:46:2f:01:86:b2:1e:a2:aa:ed:f4:70:f9:da:49:92:df: 22:39:b4:6b:30:64:36:81:ab:59:af:ce:34:d8:4e:1f:29:06: 8a:cc:6b:37:f9:cc:24:00:ec:12:6c:d3:00:03:73:31:a6:14: df:69:8f:c1:24:f7:81:c4:34:1e:dd:90:fd:28:09:95:3a:fb: 0e:a4:c0:3e:e6:31:6f:00:92:53:e3:a9:01:aa:ed:38:e5:89: 4b:f5:32:4c:e6:36:ca:ef:a2:c1:b0:5e:b2:c4:42:d4:bd:d8: 5d:41:1f:18:2f:e8:6f:fe:49:96:2c:a6:36:20:f4:f2:c9:5c: e8:e0:9d:46:3f:dd:d3:05:fd:31:96:61:49:f9:cd:38:4d:68: a1:93:93:fd:bc:dc:fd:0a:bb:0a:d4:d1:70:bf:92:68:de:72: 7d:6a:38:99:a5:43:26:6c:d2:1b:17:8e:b0:36:63:e9:6f:9a: 09:ac:04:e0:8f:13:37:a9:3a:32:13:69:2f:ce:a2:9e:24:6f: 92:fc:58:3a:ac:a0:d5:92:35:2c:14:01:1b:a6:02:a8:33:a1: 0e:8b:b6:3d:c1:16:07:a0:e8:eb:63:f6:a1:c5:9d:b9:4e:dc: bf:79:9a:80:eb:79:3c:6d:96:68:c0:a5:d2:36:ac:0e:bc:4a: b1:37:e7:d8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFX8+EW6VhfQ8TzXW33RxY5zbNYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA4MTgxNjIwMTRaFw0yNTA4MTcxNjI1MTRaMDMxMTAvBgNV BAMTKDczOUU4OEU0ODZDNzg3OTgwRUE2NjlBRjJBNUI5MUEyQTEwM0VBMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFxbE5iX05tfhI4AGovya3jGYq xJzVuwLYUCb6Sv4dlguYNpfCafbdSWf8R8a8txSi12FmP3VdBhR4se795PfSijRb uFjA9mszc67T2/n0q+Qjf5ATQSGbtsFVxiwgScwGQyxSTwq6jRsEl0j2D5tXP+7n M32YEC2RQZh5BNVji3SYSYs0zuKEOF/DGgV5W+UmspONNE85lS/gFkXLVTPAHTuj PLiRnFzAWyJHW+gwm+aCIOuorTtSH6jGVnYE+dlFj1jKcdkGWsDw6hMbvc0qxwmz H8HCU6JIQzhwE0M2bh5Ku3hV4h3A4YJmuy5Ihi8RFlzFuFbJx5lwh8ba6Tb1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUc56I5IbHh5gOpmmvKluRoqED6hwwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHgMA0GCSqGSIb3DQEBCwUAA4IBAQCz f0YvAYayHqKq7fRw+dpJkt8iObRrMGQ2gatZr8402E4fKQaKzGs3+cwkAOwSbNMA A3MxphTfaY/BJPeBxDQe3ZD9KAmVOvsOpMA+5jFvAJJT46kBqu045YlL9TJM5jbK 76LBsF6yxELUvdhdQR8YL+hv/kmWLKY2IPTyyVzo4J1GP93TBf0xlmFJ+c04TWih k5P9vNz9CrsK1NFwv5Jo3nJ9ajiZpUMmbNIbF46wNmPpb5oJrATgjxM3qToyE2kv zqKeJG+S/Fg6rKDVkjUsFAEbpgKoM6EOi7Y9wRYHoOjrY/ahxZ25Tty/eZqA63k8 bZZowKXSNqwOvEqxN+fY -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org