$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 3jz7qBAt/x3hx0KhMiyloYsGBxxi20xg/aBSp+sZaDE= Subject key identifier: 95:8A:8A:59:E0:FE:A3:24:5D:94:9D:6F:32:DB:EE:18:0A:E7:19:97 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 66BC77BF995C852762139C293E00F9AFEB5CE1C5 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa Signing time: Mon 26 Aug 2024 15:25:05 +0000 ROA not before: Mon 26 Aug 2024 15:20:05 +0000 ROA not after: Mon 25 Aug 2025 15:25:05 +0000 asID: 215364 IP address blocks: 2a14:7581:91e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bc:77:bf:99:5c:85:27:62:13:9c:29:3e:00:f9:af:eb:5c:e1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 26 15:20:05 2024 GMT Not After : Aug 25 15:25:05 2025 GMT Subject: CN=958A8A59E0FEA3245D949D6F32DBEE180AE71997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:16:75:76:fd:f7:aa:d3:d2:b9:8a:7a:4b:57: d4:6a:16:d0:55:ed:11:35:23:7b:93:33:c0:8f:f3: a8:a9:5e:ec:f2:06:4d:36:fc:04:79:40:ca:db:1c: c6:9d:d1:84:9d:44:02:32:7f:92:58:d1:13:60:a9: 8c:7e:5d:aa:f8:e0:e2:66:70:f2:1b:c1:f1:2b:f8: 2a:7c:af:e2:57:c6:7e:fc:d8:08:fd:e1:73:92:e9: 69:9d:66:0c:bd:9a:e8:37:ac:31:15:ec:03:9d:d4: fe:32:57:3f:76:02:b3:9f:70:69:8f:b2:e9:3d:0e: 9a:61:cf:5a:c8:3b:a7:ad:6a:36:ae:03:f8:f8:3c: 46:96:db:9a:7d:99:87:24:b3:1a:c1:b5:6d:1c:3f: ae:8b:00:bc:96:ad:58:8b:98:b8:9e:f2:5c:27:68: a4:1f:a8:73:56:fc:53:02:d7:e9:84:57:7d:81:f0: 09:7c:93:61:d5:9d:01:2e:8b:be:46:87:31:88:0e: 00:84:04:6f:7e:96:2c:32:73:58:52:95:05:2f:db: c4:a2:2b:33:84:50:cb:8f:40:41:76:c2:a3:d9:89: c4:a4:4a:f1:79:37:e3:cf:ef:ff:30:ad:d3:3f:ce: 8e:c3:2d:fa:8c:42:cd:2a:ba:8a:88:4f:4b:1e:2b: 07:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:8A:8A:59:E0:FE:A3:24:5D:94:9D:6F:32:DB:EE:18:0A:E7:19:97 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e1::/48 Signature Algorithm: sha256WithRSAEncryption 8e:db:3e:10:f6:d1:f3:a2:d7:f9:51:13:ad:92:20:f8:cb:18: 64:4a:e4:c5:ba:50:96:54:72:fc:33:24:4e:21:7e:9a:a4:5b: 95:13:a8:b3:8f:30:ab:83:bf:84:a5:f7:ed:bb:fc:5c:c2:39: 0c:b6:3e:ab:9f:fc:00:fb:c6:4a:da:6d:36:23:b7:2d:4f:35: 34:c7:0a:82:20:51:bb:44:d7:1c:51:fb:10:0d:61:76:d7:4e: 6d:db:a1:63:bd:c3:d6:22:cc:1c:cf:27:19:2f:7d:3d:f8:78: 94:b4:ee:b4:33:80:26:e6:ed:00:39:e6:07:96:c4:fd:6f:7b: 45:eb:36:64:61:ff:e6:c8:0b:6b:86:09:85:0e:d8:50:94:2e: a2:26:63:34:5d:18:e0:1c:cc:dd:28:72:a1:be:53:5e:24:29: 2d:89:88:85:44:b3:36:81:cf:7a:1f:47:fc:1e:fd:21:64:38: a3:78:15:bc:55:72:a0:82:8d:a2:8f:0c:41:48:2b:9f:c9:0f: 8d:11:34:4d:43:0e:ea:68:4b:e9:60:c4:12:be:eb:fa:04:65: 11:45:59:0e:c5:40:17:46:aa:7a:ac:3e:fb:43:2f:0a:d2:c7: 6d:2c:79:55:33:53:f8:44:66:fe:92:64:c0:f9:f5:6d:8e:21: 14:61:a2:63 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZrx3v5lchSdiE5wpPgD5r+tc4cUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA4MjYxNTIwMDVaFw0yNTA4MjUxNTI1MDVaMDMxMTAvBgNV BAMTKDk1OEE4QTU5RTBGRUEzMjQ1RDk0OUQ2RjMyREJFRTE4MEFFNzE5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1FnV2/feq09K5inpLV9RqFtBV 7RE1I3uTM8CP86ipXuzyBk02/AR5QMrbHMad0YSdRAIyf5JY0RNgqYx+Xar44OJm cPIbwfEr+Cp8r+JXxn782Aj94XOS6WmdZgy9mug3rDEV7AOd1P4yVz92ArOfcGmP suk9Dpphz1rIO6etajauA/j4PEaW25p9mYcksxrBtW0cP66LALyWrViLmLie8lwn aKQfqHNW/FMC1+mEV32B8Al8k2HVnQEui75GhzGIDgCEBG9+liwyc1hSlQUv28Si KzOEUMuPQEF2wqPZicSkSvF5N+PP7/8wrdM/zo7DLfqMQs0quoqIT0seKweJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUlYqKWeD+oyRdlJ1vMtvuGArnGZcwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHhMA0GCSqGSIb3DQEBCwUAA4IBAQCO 2z4Q9tHzotf5UROtkiD4yxhkSuTFulCWVHL8MyROIX6apFuVE6izjzCrg7+Epfft u/xcwjkMtj6rn/wA+8ZK2m02I7ctTzU0xwqCIFG7RNccUfsQDWF2105t26FjvcPW IswczycZL309+HiUtO60M4Am5u0AOeYHlsT9b3tF6zZkYf/myAtrhgmFDthQlC6i JmM0XRjgHMzdKHKhvlNeJCktiYiFRLM2gc96H0f8Hv0hZDijeBW8VXKggo2ijwxB SCufyQ+NETRNQw7qaEvpYMQSvuv6BGURRVkOxUAXRqp6rD77Qy8K0sdtLHlVM1P4 RGb+kmTA+fVtjiEUYaJj -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org