$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa File: 326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa (raw, json) Hash identifier: CF0jWSCzZFUy1Fafe137rlHbiCFDPVBfanWNlQQSeOA= Subject key identifier: 25:A7:79:C9:2F:17:A7:7F:7F:FA:6D:E5:60:09:05:3F:D7:C5:F4:6B Certificate issuer: /CN=58E92F2C3859C2D0EF322A871688CB22928E2F3E Certificate serial: 3178AFBFCD36595C577BAE059EE0085C03279EFF Authority key identifier: 58:E9:2F:2C:38:59:C2:D0:EF:32:2A:87:16:88:CB:22:92:8E:2F:3E Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/58E92F2C3859C2D0EF322A871688CB22928E2F3E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa Signing time: Fri 03 May 2024 00:47:35 +0000 ROA not before: Fri 03 May 2024 00:42:35 +0000 ROA not after: Fri 02 May 2025 00:47:35 +0000 asID: 51019 IP address blocks: 2a14:14c1:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/58E92F2C3859C2D0EF322A871688CB22928E2F3E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/58E92F2C3859C2D0EF322A871688CB22928E2F3E.mft rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/58E92F2C3859C2D0EF322A871688CB22928E2F3E.cer rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/25827D84056B8444CC2A7842759035354B8416BC.crl rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/25827D84056B8444CC2A7842759035354B8416BC.mft rsync://rpki.ripe.net/repository/DEFAULT/JYJ9hAVrhETMKnhCdZA1NUuEFrw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:78:af:bf:cd:36:59:5c:57:7b:ae:05:9e:e0:08:5c:03:27:9e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58E92F2C3859C2D0EF322A871688CB22928E2F3E Validity Not Before: May 3 00:42:35 2024 GMT Not After : May 2 00:47:35 2025 GMT Subject: CN=25A779C92F17A77F7FFA6DE56009053FD7C5F46B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:50:85:fe:d8:30:97:87:9b:b0:7b:c3:41:92: bb:f6:61:82:0f:9e:66:8e:0d:68:f9:6c:c7:1d:67: a3:d5:1c:39:ee:b4:3a:98:6c:f3:7c:9b:64:06:da: 58:0d:01:42:18:da:5d:ae:64:ff:da:69:38:bf:ae: 99:36:3c:d9:41:44:e8:39:79:aa:bc:4b:a9:e4:cf: a5:b8:43:67:cd:95:46:27:f3:db:f9:2d:3c:c1:a6: 84:f7:29:09:a9:43:d4:9e:dd:02:a7:73:e2:0a:2d: a1:ba:f4:92:7a:a0:ff:57:11:0b:bf:4f:53:cc:ef: 41:01:eb:fc:d9:2c:eb:f4:b0:80:cb:13:b3:b2:27: d5:02:3a:b2:12:a4:7e:8a:c5:3f:50:c1:75:03:22: 3e:ae:ee:3c:ce:41:a0:e9:b9:2c:1a:f4:7b:ec:4f: c0:ef:93:dc:e5:41:51:75:85:d0:1b:6d:e1:2d:28: 11:68:0b:25:e7:7e:4d:c5:37:31:c7:b1:00:31:49: ee:d2:16:71:48:8c:fc:de:69:05:bc:43:ac:63:00: b8:f9:60:40:94:2b:f1:35:97:1e:f4:86:32:2c:af: 42:8c:df:b5:d8:9c:8f:2b:21:23:6d:14:69:f2:6c: 3a:51:79:ea:22:aa:e1:1d:ed:d8:da:43:8a:de:c5: 5b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A7:79:C9:2F:17:A7:7F:7F:FA:6D:E5:60:09:05:3F:D7:C5:F4:6B X509v3 Authority Key Identifier: keyid:58:E9:2F:2C:38:59:C2:D0:EF:32:2A:87:16:88:CB:22:92:8E:2F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/58E92F2C3859C2D0EF322A871688CB22928E2F3E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/69bbfdcf-35cd-4524-8ffa-3005b0b69a29/0/58E92F2C3859C2D0EF322A871688CB22928E2F3E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/3/326131343a313463313a3130303a3a2f34382d3438203d3e203531303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:14c1:100::/48 Signature Algorithm: sha256WithRSAEncryption b8:8b:9d:b5:13:3d:c8:c2:ed:4f:bd:8f:e1:6d:be:92:c3:0c: b4:d8:93:37:8e:a2:ee:5e:78:49:c1:8d:1f:20:18:a0:34:eb: 2f:21:f1:6b:30:12:e0:b9:55:2c:e7:b0:e6:c4:70:07:4b:81: 00:90:a2:71:87:dc:ca:f1:f7:05:76:c4:e4:91:b8:2b:36:1a: 77:69:e6:8c:19:d0:d7:1b:e9:1f:bf:64:2d:59:1c:6c:f4:04: a7:b7:25:b4:22:a4:10:aa:cc:01:d3:59:24:97:a2:c6:3f:0c: f9:31:25:0e:5f:0a:13:51:d2:49:f9:11:c9:b4:f1:b1:b8:19: 5b:e3:25:01:e8:9a:2b:4c:4a:bc:51:67:60:aa:3b:16:aa:3d: 27:79:38:79:a7:da:5a:54:88:76:63:f7:13:2e:79:3a:ec:58: 73:5b:29:38:57:83:e0:db:17:cd:33:99:42:80:5d:cc:83:ab: f0:dd:48:05:e9:b4:1c:8a:ea:a0:19:eb:3a:70:9b:cb:28:92: 4a:42:67:e7:ef:24:20:44:33:71:af:46:c2:8b:b5:5b:2d:d6: bb:d4:2c:78:ae:dc:1e:45:b6:e4:0f:00:2e:c7:a9:c4:7c:88: f0:ab:bf:65:02:0e:7c:8a:8e:0b:4c:cc:32:c6:be:52:91:22: b9:c9:2b:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUMXivv802WVxXe64FnuAIXAMnnv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThFOTJGMkMzODU5QzJEMEVGMzIyQTg3MTY4OENCMjI5 MjhFMkYzRTAeFw0yNDA1MDMwMDQyMzVaFw0yNTA1MDIwMDQ3MzVaMDMxMTAvBgNV BAMTKDI1QTc3OUM5MkYxN0E3N0Y3RkZBNkRFNTYwMDkwNTNGRDdDNUY0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcUIX+2DCXh5uwe8NBkrv2YYIP nmaODWj5bMcdZ6PVHDnutDqYbPN8m2QG2lgNAUIY2l2uZP/aaTi/rpk2PNlBROg5 eaq8S6nkz6W4Q2fNlUYn89v5LTzBpoT3KQmpQ9Se3QKnc+IKLaG69JJ6oP9XEQu/ T1PM70EB6/zZLOv0sIDLE7OyJ9UCOrISpH6KxT9QwXUDIj6u7jzOQaDpuSwa9Hvs T8Dvk9zlQVF1hdAbbeEtKBFoCyXnfk3FNzHHsQAxSe7SFnFIjPzeaQW8Q6xjALj5 YECUK/E1lx70hjIsr0KM37XYnI8rISNtFGnybDpReeoiquEd7djaQ4rexVsFAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUJad5yS8Xp39/+m3lYAkFP9fF9GswHwYDVR0j BBgwFoAUWOkvLDhZwtDvMiqHFojLIpKOLz4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzMvNThFOTJGMkMzODU5QzJEMEVGMzIyQTg3MTY4OENCMjI5MjhFMkYzRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82OWJiZmRjZi0zNWNkLTQ1 MjQtOGZmYS0zMDA1YjBiNjlhMjkvMC81OEU5MkYyQzM4NTlDMkQwRUYzMjJBODcx Njg4Q0IyMjkyOEUyRjNFLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hYTAwNGJhMS00MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMy8zMjYxMzEz NDNhMzEzNDYzMzEzYTMxMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzEz MDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFBTBAQAwDQYJKoZIhvcNAQELBQADggEBALiLnbUT PcjC7U+9j+FtvpLDDLTYkzeOou5eeEnBjR8gGKA06y8h8WswEuC5VSznsObEcAdL gQCQonGH3Mrx9wV2xOSRuCs2Gndp5owZ0Ncb6R+/ZC1ZHGz0BKe3JbQipBCqzAHT WSSXosY/DPkxJQ5fChNR0kn5Ecm08bG4GVvjJQHomitMSrxRZ2CqOxaqPSd5OHmn 2lpUiHZj9xMueTrsWHNbKThXg+DbF80zmUKAXcyDq/DdSAXptByK6qAZ6zpwm8so kkpCZ+fvJCBEM3GvRsKLtVst1rvULHiu3B5FtuQPAC7HqcR8iPCrv2UCDnyKjgtM zDLGvlKRIrnJK1M= -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:05 2024 by rpki-client on console-fra.rpki-client.org