$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/326131343a373538303a346630373a3a2f34382d3438203d3e20323136343138.roa File: 326131343a373538303a346630373a3a2f34382d3438203d3e20323136343138.roa (raw, json) Hash identifier: s68j0tD54A19iO5VaV70/QP6qmgRqrfnBgtJ+gA+FoY= Subject key identifier: 11:C0:06:F8:8E:D6:FA:41:DB:88:EE:C5:81:D3:4D:93:2F:76:FC:35 Certificate issuer: /CN=5D86A1FAB8C19115720081D417D39278074047FB Certificate serial: 2D865F7493E83F37F0382ABCE449707708F64D9B Authority key identifier: 5D:86:A1:FA:B8:C1:91:15:72:00:81:D4:17:D3:92:78:07:40:47:FB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5D86A1FAB8C19115720081D417D39278074047FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/326131343a373538303a346630373a3a2f34382d3438203d3e20323136343138.roa Signing time: Thu 22 Aug 2024 17:08:57 +0000 ROA not before: Thu 22 Aug 2024 17:03:57 +0000 ROA not after: Thu 21 Aug 2025 17:08:57 +0000 asID: 216418 IP address blocks: 2a14:7580:4f07::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/5D86A1FAB8C19115720081D417D39278074047FB.crl rsync://rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/5D86A1FAB8C19115720081D417D39278074047FB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5D86A1FAB8C19115720081D417D39278074047FB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:86:5f:74:93:e8:3f:37:f0:38:2a:bc:e4:49:70:77:08:f6:4d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D86A1FAB8C19115720081D417D39278074047FB Validity Not Before: Aug 22 17:03:57 2024 GMT Not After : Aug 21 17:08:57 2025 GMT Subject: CN=11C006F88ED6FA41DB88EEC581D34D932F76FC35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ce:88:0e:61:a9:69:bb:5a:ce:3b:4e:86:24: ea:16:ad:1b:d8:b1:34:30:85:ec:c3:6c:fe:4f:df: d5:8c:80:e5:06:b4:d1:05:f6:b4:d4:31:1a:d6:2a: 6c:55:8b:8c:c9:12:0c:df:d2:07:3a:03:9d:ac:15: d0:b5:9b:c3:c6:c1:3e:7a:f7:3b:14:9d:c8:3d:8e: 8c:95:9a:43:5d:62:1c:b8:b3:f0:e6:59:0f:71:b0: 1a:4f:9f:d3:a8:8b:ce:db:1b:8b:a8:e3:24:5e:94: 3f:74:69:bd:9c:b1:2c:9b:de:16:2a:f7:22:21:c0: bd:9f:b5:12:c6:73:c8:9b:14:36:a1:5d:29:cf:59: 60:16:a1:dd:02:25:64:2e:37:4f:21:a4:4d:aa:57: d7:d4:da:c7:6c:e8:bd:48:ef:f8:bf:1b:c8:f6:3c: f3:bb:5f:81:f0:d5:f6:6f:d3:29:eb:eb:dc:cc:64: ea:4d:d8:bd:e6:01:d6:d4:20:d0:01:33:e2:cc:b3: 69:b5:b6:b3:77:f8:7c:f6:d0:df:9f:77:12:c6:99: 1b:81:fc:e2:a8:a8:07:06:80:46:cd:47:f0:c2:56: 1a:8c:bb:7c:71:13:ca:4c:7e:c6:8f:9c:5e:5a:b5: e8:8f:18:06:6e:16:27:77:8f:79:59:84:f8:c5:05: 69:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C0:06:F8:8E:D6:FA:41:DB:88:EE:C5:81:D3:4D:93:2F:76:FC:35 X509v3 Authority Key Identifier: keyid:5D:86:A1:FA:B8:C1:91:15:72:00:81:D4:17:D3:92:78:07:40:47:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/5D86A1FAB8C19115720081D417D39278074047FB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5D86A1FAB8C19115720081D417D39278074047FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/98826bce-854a-48c6-86af-93cf28393576/1/326131343a373538303a346630373a3a2f34382d3438203d3e20323136343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:4f07::/48 Signature Algorithm: sha256WithRSAEncryption 99:4b:18:8a:e2:ea:74:34:3e:78:2e:43:11:14:14:3b:d3:7d: d1:fb:64:d9:5f:87:03:59:03:ca:d1:69:60:d4:d0:32:f8:cc: 45:99:65:3c:19:87:43:28:0b:11:e6:c9:cc:fd:17:e3:05:0c: a9:68:98:8a:b2:59:4c:7a:ce:48:16:1b:e3:50:34:f0:c1:ad: 1b:1f:d1:e4:b2:24:75:e0:03:3c:61:04:5e:0c:4d:99:41:02: e7:9a:d7:be:c0:c9:7a:cb:52:62:31:16:c6:4a:d1:34:6b:bc: b9:cf:3b:ed:23:35:45:00:09:22:20:82:5e:5a:5f:e3:3f:ef: f9:35:e2:63:1c:2e:17:1e:45:fa:a8:6d:b2:62:4e:f9:ce:34: d0:1f:37:5e:68:fb:b2:d2:97:ad:1b:39:d9:c8:d9:e8:81:5c: e0:f2:30:58:ba:68:d5:21:c8:32:09:33:89:38:94:66:32:f4: 74:74:cb:1f:e7:76:14:88:93:84:47:5e:94:21:3b:70:b9:da: 17:a0:9e:95:52:65:25:40:1b:ad:e2:a9:16:fa:21:8d:1b:dc: c8:a4:15:5b:de:08:62:56:06:47:f0:bd:b5:fc:86:48:87:cd: 75:cf:dc:c4:58:69:01:98:44:35:2a:55:08:b3:7e:ae:b2:3c: d2:d5:03:9d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULYZfdJPoPzfwOCq85Elwdwj2TZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQ4NkExRkFCOEMxOTExNTcyMDA4MUQ0MTdEMzkyNzgw NzQwNDdGQjAeFw0yNDA4MjIxNzAzNTdaFw0yNTA4MjExNzA4NTdaMDMxMTAvBgNV BAMTKDExQzAwNkY4OEVENkZBNDFEQjg4RUVDNTgxRDM0RDkzMkY3NkZDMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQzogOYalpu1rOO06GJOoWrRvY sTQwhezDbP5P39WMgOUGtNEF9rTUMRrWKmxVi4zJEgzf0gc6A52sFdC1m8PGwT56 9zsUncg9joyVmkNdYhy4s/DmWQ9xsBpPn9Ooi87bG4uo4yRelD90ab2csSyb3hYq 9yIhwL2ftRLGc8ibFDahXSnPWWAWod0CJWQuN08hpE2qV9fU2sds6L1I7/i/G8j2 PPO7X4Hw1fZv0ynr69zMZOpN2L3mAdbUINABM+LMs2m1trN3+Hz20N+fdxLGmRuB /OKoqAcGgEbNR/DCVhqMu3xxE8pMfsaPnF5ateiPGAZuFid3j3lZhPjFBWn7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUEcAG+I7W+kHbiO7FgdNNky92/DUwHwYDVR0j BBgwFoAUXYah+rjBkRVyAIHUF9OSeAdAR/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTg4MjZiY2UtODU0YS00OGM2LTg2YWYtOTNjZjI4Mzkz NTc2LzEvNUQ4NkExRkFCOEMxOTExNTcyMDA4MUQ0MTdEMzkyNzgwNzQwNDdGQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81RDg2QTFGQUI4QzE5MTE1NzIwMDgxRDQx N0QzOTI3ODA3NDA0N0ZCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ODgyNmJjZS04NTRhLTQ4YzYtODZhZi05M2NmMjgzOTM1NzYvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTM0NjYzMDM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gE8HMA0GCSqGSIb3DQEBCwUAA4IBAQCZ SxiK4up0ND54LkMRFBQ7033R+2TZX4cDWQPK0Wlg1NAy+MxFmWU8GYdDKAsR5snM /RfjBQypaJiKsllMes5IFhvjUDTwwa0bH9HksiR14AM8YQReDE2ZQQLnmte+wMl6 y1JiMRbGStE0a7y5zzvtIzVFAAkiIIJeWl/jP+/5NeJjHC4XHkX6qG2yYk75zjTQ HzdeaPuy0petGznZyNnogVzg8jBYumjVIcgyCTOJOJRmMvR0dMsf53YUiJOER16U ITtwudoXoJ6VUmUlQBut4qkW+iGNG9zIpBVb3ghiVgZH8L21/IZIh811z9zEWGkB mEQ1KlUIs36usjzS1QOd -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org