$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: KFn9WdvuXZqN8qHQEq155lH4XfWV3U3t3rO+sW/3ok4= Subject key identifier: 73:FB:B5:74:6C:1D:67:75:45:1C:03:01:0A:A3:61:CA:92:A0:D0:7A Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 579DBEC0FEA7B1360F60AE34EE9B271F171A3FEA Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 26 Jun 2024 05:04:04 +0000 ROA not before: Wed 26 Jun 2024 04:59:04 +0000 ROA not after: Wed 25 Jun 2025 05:04:04 +0000 asID: 215364 IP address blocks: 2a14:7581:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 02:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:9d:be:c0:fe:a7:b1:36:0f:60:ae:34:ee:9b:27:1f:17:1a:3f:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Jun 26 04:59:04 2024 GMT Not After : Jun 25 05:04:04 2025 GMT Subject: CN=73FBB5746C1D6775451C03010AA361CA92A0D07A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:bc:75:8e:58:35:01:c9:ca:65:d4:dd:a9:ac: 4a:91:ac:69:76:fa:7c:15:d9:a1:01:fc:26:8f:32: c6:e1:00:96:18:8a:32:83:c6:05:20:55:7a:ad:ce: 33:f1:8a:83:31:39:40:65:a6:fd:ab:cb:74:a3:0e: 68:b4:c0:7a:cb:0a:57:a3:35:f3:4e:cf:29:98:40: c2:ef:06:79:69:5c:64:9d:49:58:09:a4:af:84:04: a0:b0:9f:2d:ba:4b:69:c1:21:ce:ee:1d:bd:33:77: ab:08:7f:e3:5b:74:ca:f9:59:d8:46:ed:1b:2b:ba: 18:10:8e:76:7d:a2:8c:dc:7d:54:cd:b9:09:13:91: bd:3d:1e:87:1c:b4:a5:30:dd:67:f4:70:82:35:c4: 43:e0:2b:83:77:11:78:a4:cf:ba:f0:b4:0e:9a:c3: f6:d1:da:ba:f7:29:e0:ce:82:7e:a1:8e:f3:9c:00: 04:0f:5d:68:0b:a7:93:1e:b3:5d:5c:37:05:fd:b5: 8a:8e:f1:26:57:e0:8c:56:bd:b2:fd:98:2d:37:34: aa:22:8f:83:0f:94:25:0d:8d:1b:34:8b:30:7b:1a: c2:ff:5b:34:13:36:cc:f5:51:b8:8c:3b:07:4f:86: d8:14:96:ee:65:c5:62:47:92:41:ff:49:1c:0c:25: 1e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FB:B5:74:6C:1D:67:75:45:1C:03:01:0A:A3:61:CA:92:A0:D0:7A X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:ff0::/48 Signature Algorithm: sha256WithRSAEncryption b5:6e:d1:6f:3b:29:82:ac:82:cd:ae:bf:c2:80:75:df:24:dd: 32:e1:23:bd:0d:8c:aa:b7:46:4c:d4:81:2c:c0:e7:15:ef:14: a1:fc:8f:15:80:52:1e:36:0e:e8:66:2d:93:43:a4:82:dd:78: 1f:08:78:90:e5:ab:64:61:d5:a9:f0:ae:2f:4e:35:2f:4f:6e: b7:74:bf:c5:24:a9:7d:78:f2:22:10:9f:87:79:23:95:61:b1: 0c:4d:67:3b:9d:ea:19:1d:e5:1f:1b:e2:b4:5e:71:32:13:4a: 35:3b:2f:1d:91:b7:b1:8a:bf:00:c3:d1:96:a0:c3:39:84:bd: 15:aa:1e:a2:dc:81:99:88:7e:a7:28:7c:66:d0:13:bd:0e:6d: 39:2e:74:e7:b1:d7:85:0e:7c:9f:fe:ee:a2:dc:41:1d:cb:78: 61:39:a0:0d:a0:5a:90:3f:49:5c:df:e9:62:d5:f4:78:27:5e: 70:3c:28:45:a6:a4:86:77:4c:5c:d1:a7:bf:53:ec:8b:4b:7f: ce:b3:27:0e:ac:bd:11:9c:54:0b:5b:30:cf:94:40:f5:ff:e7: 7f:30:1d:77:15:95:3b:c4:d4:85:6d:a7:72:73:01:ff:8c:63: 32:34:60:58:8c:7d:39:5a:54:46:34:f8:9b:00:9c:89:f2:63: e6:e7:74:85 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUV52+wP6nsTYPYK407psnHxcaP+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNDA2MjYwNDU5MDRaFw0yNTA2MjUwNTA0MDRaMDMxMTAvBgNV BAMTKDczRkJCNTc0NkMxRDY3NzU0NTFDMDMwMTBBQTM2MUNBOTJBMEQwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7vHWOWDUBycpl1N2prEqRrGl2 +nwV2aEB/CaPMsbhAJYYijKDxgUgVXqtzjPxioMxOUBlpv2ry3SjDmi0wHrLClej NfNOzymYQMLvBnlpXGSdSVgJpK+EBKCwny26S2nBIc7uHb0zd6sIf+NbdMr5WdhG 7RsruhgQjnZ9oozcfVTNuQkTkb09HocctKUw3Wf0cII1xEPgK4N3EXikz7rwtA6a w/bR2rr3KeDOgn6hjvOcAAQPXWgLp5Mes11cNwX9tYqO8SZX4IxWvbL9mC03NKoi j4MPlCUNjRs0izB7GsL/WzQTNsz1UbiMOwdPhtgUlu5lxWJHkkH/SRwMJR4NAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUc/u1dGwdZ3VFHAMBCqNhypKg0HowHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY2NjYzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NTMzMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEP8DANBgkqhkiG9w0BAQsFAAOCAQEAtW7R bzspgqyCza6/woB13yTdMuEjvQ2MqrdGTNSBLMDnFe8UofyPFYBSHjYO6GYtk0Ok gt14Hwh4kOWrZGHVqfCuL041L09ut3S/xSSpfXjyIhCfh3kjlWGxDE1nO53qGR3l HxvitF5xMhNKNTsvHZG3sYq/AMPRlqDDOYS9FaoeotyBmYh+pyh8ZtATvQ5tOS50 57HXhQ58n/7uotxBHct4YTmgDaBakD9JXN/pYtX0eCdecDwoRaakhndMXNGnv1Ps i0t/zrMnDqy9EZxUC1swz5RA9f/nfzAddxWVO8TUhW2ncnMB/4xjMjRgWIx9OVpU RjT4mwCcifJj5ud0hQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org