$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa File: 326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa (raw, json) Hash identifier: z6xFfxTzAOT/hYwAJ2DQkeBnVgxJoH9HtbYNG39WwF0= Subject key identifier: 8D:10:2F:A5:B5:79:B0:A3:2C:84:22:45:7C:C9:69:B3:AF:D0:3A:AE Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 354EB2AFC97A734815C2A50A6167B45B3964F85E Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa Signing time: Thu 22 Aug 2024 16:56:47 +0000 ROA not before: Thu 22 Aug 2024 16:51:47 +0000 ROA not after: Thu 21 Aug 2025 16:56:47 +0000 asID: 215364 IP address blocks: 2a14:7581:9300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4e:b2:af:c9:7a:73:48:15:c2:a5:0a:61:67:b4:5b:39:64:f8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 22 16:51:47 2024 GMT Not After : Aug 21 16:56:47 2025 GMT Subject: CN=8D102FA5B579B0A32C8422457CC969B3AFD03AAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:44:5e:f1:c0:29:e3:76:8f:b5:01:00:dd: 4f:be:76:7c:37:35:53:82:02:5a:e6:1f:bd:35:a1: 70:40:cb:1e:cd:11:1b:fd:90:df:84:15:b9:38:02: 7e:f6:08:37:57:fe:f6:65:7b:48:e2:ff:41:f8:e2: 64:e2:44:fe:52:16:07:61:83:66:69:08:e4:b9:70: 3d:95:83:83:08:0f:b7:1e:f8:43:51:7a:20:bc:bf: fd:d5:ca:6a:16:15:40:f6:2a:44:80:1d:96:d9:8d: 21:9c:6c:4c:f1:68:c0:3b:ad:df:ce:92:3b:5d:68: b6:91:e1:39:fa:39:3f:9d:ad:a0:a9:db:01:da:32: 1b:de:52:12:63:49:00:fc:80:27:b1:dc:fb:1a:f4: 43:8b:4a:07:99:26:bd:21:ae:6e:f0:5a:f4:42:c4: 05:9b:e6:98:fd:03:8f:b5:c0:95:96:41:5d:ff:d2: 58:c6:d6:ab:d7:39:23:40:7f:34:8a:ce:d9:ac:01: 29:af:af:b6:9e:b1:f2:bf:ba:bc:20:12:d6:8b:3b: b1:fa:84:0b:83:9e:90:d7:83:c7:17:d5:f2:de:28: 49:77:07:94:71:2f:96:80:7d:f9:f4:61:d4:b5:69: 26:cc:3b:17:02:b8:61:74:9b:6f:76:3f:9b:71:86: 75:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:10:2F:A5:B5:79:B0:A3:2C:84:22:45:7C:C9:69:B3:AF:D0:3A:AE X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9300::/40 Signature Algorithm: sha256WithRSAEncryption 67:93:8b:50:9b:74:11:53:9c:a8:f9:af:76:49:0f:cc:35:da: c0:ee:bd:b9:4b:1d:be:f4:49:3f:cd:a9:8a:42:42:6a:36:65: ed:52:94:47:b2:56:3f:8b:64:5b:8c:fc:d2:d2:8f:0c:42:f9: 17:18:12:aa:1c:52:6e:8d:fd:70:56:ff:f7:ec:f9:52:03:a2: 93:68:38:12:b4:00:e5:62:2a:9d:a2:2b:49:59:51:8a:22:b4: fb:87:ef:47:8f:8d:88:f1:dc:7c:8a:dd:a1:b8:6d:ef:33:f4: b1:48:75:f9:f3:2b:61:10:9b:76:93:6e:93:15:70:00:10:d4: e9:f7:df:b9:e1:8a:f4:f2:92:52:33:6f:2f:ec:f4:45:30:c5: f1:4d:c6:6f:16:b3:d5:d1:4f:bd:fd:bf:b7:bc:75:95:77:0a: 26:cb:96:af:c9:88:4d:99:7f:31:f0:65:8b:48:8c:27:99:20: 2d:fa:25:ad:d5:3d:d6:1f:72:81:00:42:10:58:cb:39:33:80: 2c:93:20:42:84:7e:8b:96:6e:d4:df:c6:98:72:37:71:a9:ee: 1e:3e:07:24:ab:c8:f3:ff:40:cb:74:cb:27:b1:79:c4:c7:67: e9:4d:01:68:37:31:13:3c:96:5a:76:a4:1d:80:7e:61:c5:e7: 7e:26:5b:ee -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUNU6yr8l6c0gVwqUKYWe0Wzlk+F4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA4MjIxNjUxNDdaFw0yNTA4MjExNjU2NDdaMDMxMTAvBgNV BAMTKDhEMTAyRkE1QjU3OUIwQTMyQzg0MjI0NTdDQzk2OUIzQUZEMDNBQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4xERe8cAp43aPtQEA3U++dnw3 NVOCAlrmH701oXBAyx7NERv9kN+EFbk4An72CDdX/vZle0ji/0H44mTiRP5SFgdh g2ZpCOS5cD2Vg4MID7ce+ENReiC8v/3VymoWFUD2KkSAHZbZjSGcbEzxaMA7rd/O kjtdaLaR4Tn6OT+draCp2wHaMhveUhJjSQD8gCex3Psa9EOLSgeZJr0hrm7wWvRC xAWb5pj9A4+1wJWWQV3/0ljG1qvXOSNAfzSKztmsASmvr7aesfK/urwgEtaLO7H6 hAuDnpDXg8cX1fLeKEl3B5RxL5aAffn0YdS1aSbMOxcCuGF0m292P5txhnW3AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUjRAvpbV5sKMshCJFfMlps6/QOq4wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gZMwDQYJKoZIhvcNAQELBQADggEBAGeT i1CbdBFTnKj5r3ZJD8w12sDuvblLHb70ST/NqYpCQmo2Ze1SlEeyVj+LZFuM/NLS jwxC+RcYEqocUm6N/XBW//fs+VIDopNoOBK0AOViKp2iK0lZUYoitPuH70ePjYjx 3HyK3aG4be8z9LFIdfnzK2EQm3aTbpMVcAAQ1On337nhivTyklIzby/s9EUwxfFN xm8Ws9XRT739v7e8dZV3CibLlq/JiE2ZfzHwZYtIjCeZIC36Ja3VPdYfcoEAQhBY yzkzgCyTIEKEfouWbtTfxphyN3Gp7h4+BySryPP/QMt0yyexecTHZ+lNAWg3MRM8 llp2pB2AfmHF534mW+4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org