$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa File: 326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa (raw, json) Hash identifier: Bu8eu+s1xKEjCs05/XkV2x0FQLM16iFsGrYGYNvS9M8= Subject key identifier: C8:0D:3E:B3:98:2E:65:0A:00:0D:F2:76:21:20:9F:3B:8E:B0:CA:2C Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 37B4FD67E61E3B97556CEC96A347E4DD60335FA7 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa Signing time: Thu 13 Jun 2024 23:16:31 +0000 ROA not before: Thu 13 Jun 2024 23:11:31 +0000 ROA not after: Thu 12 Jun 2025 23:16:31 +0000 asID: 215084 IP address blocks: 2a14:7581:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b4:fd:67:e6:1e:3b:97:55:6c:ec:96:a3:47:e4:dd:60:33:5f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 13 23:11:31 2024 GMT Not After : Jun 12 23:16:31 2025 GMT Subject: CN=C80D3EB3982E650A000DF27621209F3B8EB0CA2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:65:af:7c:1e:c5:d9:84:50:2a:b0:f1:3e: e3:4f:50:9b:b0:e4:3b:dc:43:9a:5b:55:21:04:5e: 79:40:af:b2:d8:8b:96:c7:81:65:56:cd:13:84:0d: 7a:f1:ae:91:35:c7:35:05:8a:d7:af:14:30:ae:b7: 08:13:ea:2e:ef:ed:09:f1:75:31:6b:9d:93:1a:a3: 33:e4:9a:0a:b0:49:32:2d:04:96:6d:dd:f1:39:2c: 52:bd:a6:a9:62:a8:df:cf:c8:5f:fb:13:f2:6b:7d: a1:1a:02:63:50:f9:f2:86:86:01:13:3e:db:79:bd: cc:da:ef:7b:01:af:28:83:1b:da:98:5e:f7:1a:61: c5:29:7d:4e:6c:e6:d2:1d:6e:23:99:dd:c3:cb:d2: 6a:68:07:08:2f:04:ed:c3:aa:af:d8:9c:cc:02:63: 59:db:75:6d:1b:7e:47:de:ea:df:7c:e6:bd:56:30: 6b:18:27:a9:75:0e:c1:30:0e:19:c7:25:42:c6:95: 55:23:35:83:7a:71:da:00:3b:08:f0:10:12:b7:c9: d6:d7:6e:07:90:a5:32:c7:8f:c4:a4:f2:b9:a0:eb: 49:65:52:89:8a:3a:a5:4c:0b:8c:8b:ae:06:8f:aa: 5e:91:6b:f5:14:c0:a5:91:87:ed:40:31:0f:c0:a8: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0D:3E:B3:98:2E:65:0A:00:0D:F2:76:21:20:9F:3B:8E:B0:CA:2C X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a623030303a3a2f33362d3336203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:b000::/36 Signature Algorithm: sha256WithRSAEncryption 97:9c:24:9c:ee:27:e0:83:f4:e3:a3:c0:a5:db:65:14:96:4a: 11:31:4f:ba:23:14:21:f2:35:ea:a1:ca:6b:52:a4:dc:b7:db: 12:d4:73:7e:bd:36:a3:71:43:15:96:17:f5:2d:51:01:5e:90: 7d:87:47:dc:21:c9:26:be:11:00:e3:7d:f5:6c:86:90:d8:48: 7d:be:e3:b0:95:a3:af:e5:68:e2:e4:05:32:a3:bc:d9:eb:1e: 0e:0e:52:5e:96:3a:c5:84:6a:ca:78:45:11:5e:a8:86:04:a3: 1c:3f:02:94:53:d9:38:18:3a:4f:fb:95:ac:70:ba:97:c3:a5: da:d4:50:f4:4c:70:f9:aa:f4:8e:c2:bb:98:b1:90:3f:61:b6: a6:e5:e9:e2:a9:3e:d1:fd:72:1a:65:0f:4e:41:8f:24:4d:61: a1:9f:4f:fe:8b:d3:99:d9:b6:b8:9d:8f:bb:76:83:6d:cf:fe: 81:08:f4:cd:56:63:7b:38:b6:62:5d:3c:29:4a:75:53:fc:50: 8f:e3:29:b9:38:aa:44:ae:62:24:d1:af:8b:05:52:f7:6a:2a: 13:7f:e8:db:07:74:cc:da:50:09:59:b1:d2:30:bf:e9:82:5b: 03:10:30:67:ae:24:ab:8d:fc:a6:d8:91:64:31:57:fa:c4:1f: 28:30:c5:e6 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUN7T9Z+YeO5dVbOyWo0fk3WAzX6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNDA2MTMyMzExMzFaFw0yNTA2MTIyMzE2MzFaMDMxMTAvBgNV BAMTKEM4MEQzRUIzOTgyRTY1MEEwMDBERjI3NjIxMjA5RjNCOEVCMENBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwqGWvfB7F2YRQKrDxPuNPUJuw 5DvcQ5pbVSEEXnlAr7LYi5bHgWVWzROEDXrxrpE1xzUFitevFDCutwgT6i7v7Qnx dTFrnZMaozPkmgqwSTItBJZt3fE5LFK9pqliqN/PyF/7E/JrfaEaAmNQ+fKGhgET Ptt5vcza73sBryiDG9qYXvcaYcUpfU5s5tIdbiOZ3cPL0mpoBwgvBO3Dqq/YnMwC Y1nbdW0bfkfe6t985r1WMGsYJ6l1DsEwDhnHJULGlVUjNYN6cdoAOwjwEBK3ydbX bgeQpTLHj8Sk8rmg60llUomKOqVMC4yLrgaPql6Ra/UUwKWRh+1AMQ/AqJs9AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUyA0+s5guZQoADfJ2ISCfO46wyiwwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTYyMzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzAzODM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gbAwDQYJKoZIhvcNAQELBQADggEBAJec JJzuJ+CD9OOjwKXbZRSWShExT7ojFCHyNeqhymtSpNy32xLUc369NqNxQxWWF/Ut UQFekH2HR9whySa+EQDjffVshpDYSH2+47CVo6/laOLkBTKjvNnrHg4OUl6WOsWE asp4RRFeqIYEoxw/ApRT2TgYOk/7laxwupfDpdrUUPRMcPmq9I7Cu5ixkD9htqbl 6eKpPtH9chplD05BjyRNYaGfT/6L05nZtridj7t2g23P/oEI9M1WY3s4tmJdPClK dVP8UI/jKbk4qkSuYiTRr4sFUvdqKhN/6NsHdMzaUAlZsdIwv+mCWwMQMGeuJKuN /KbYkWQxV/rEHygwxeY= -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org