$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3364643a3a2f34382d3438203d3e20313530323439.roa File: 326130363a396634343a3364643a3a2f34382d3438203d3e20313530323439.roa (raw, json) Hash identifier: 6Sirl1mPFlYkSeJDnTK4fKPOsLXorMMY9ZXc/Akijpk= Subject key identifier: FD:FD:06:C9:06:32:98:A8:03:4C:FC:6F:A4:3A:A9:C5:1D:5E:E6:77 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 75BB1E0A221EC8E199E9CCCA2479474C770C0BFD Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3364643a3a2f34382d3438203d3e20313530323439.roa Signing time: Sat 04 May 2024 18:45:20 +0000 ROA not before: Sat 04 May 2024 18:40:20 +0000 ROA not after: Sat 03 May 2025 18:45:20 +0000 asID: 150249 IP address blocks: 2a06:9f44:3dd::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:bb:1e:0a:22:1e:c8:e1:99:e9:cc:ca:24:79:47:4c:77:0c:0b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: May 4 18:40:20 2024 GMT Not After : May 3 18:45:20 2025 GMT Subject: CN=FDFD06C9063298A8034CFC6FA43AA9C51D5EE677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d8:a1:dc:26:77:0d:a3:59:9a:83:06:91:5c: c1:43:0c:77:29:c1:cf:82:a5:42:a3:2d:ba:5b:f0: 01:a8:8c:d2:ce:b5:f3:48:37:bd:38:55:be:77:db: 9a:91:02:9c:7f:43:fb:47:f0:95:b8:09:a4:6d:43: 3b:65:9d:96:ad:a8:8a:52:0a:21:53:31:98:de:20: a6:1b:ea:d7:c5:98:85:b4:be:41:ef:16:92:ed:c3: 2c:8d:f9:b6:41:89:d0:8c:a5:31:fd:d1:2e:bd:5a: dd:c9:ce:e6:b4:70:47:0f:d6:20:65:95:5e:79:00: 41:5e:19:ad:dc:ba:1e:19:e8:4f:d6:01:b6:e3:11: 2b:02:74:8f:5c:cd:7d:53:4d:b7:c6:a7:33:29:43: fd:b1:79:8f:dc:1f:48:93:66:09:27:96:3b:df:3b: fc:a4:8f:7b:b4:a8:a5:b4:30:84:ae:ca:99:76:9b: 4c:c1:f6:44:c0:87:e2:bf:6d:5b:91:7a:5e:c9:0f: 62:fe:27:76:88:71:94:9b:af:70:03:bd:63:03:4d: 83:4c:26:e7:b4:e1:0e:5e:b0:09:a3:00:e4:57:ce: 58:78:7d:95:f9:31:4e:78:c7:ab:14:f5:66:3c:32: e2:0a:ce:1a:61:3d:de:83:b7:28:b2:3d:b0:58:c3: 3e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FD:06:C9:06:32:98:A8:03:4C:FC:6F:A4:3A:A9:C5:1D:5E:E6:77 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3364643a3a2f34382d3438203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:3dd::/48 Signature Algorithm: sha256WithRSAEncryption 1d:cd:03:09:e1:bc:ff:5a:42:a2:d9:58:15:b0:0a:72:f2:0f: ec:38:5f:4e:c8:c9:a6:ad:f2:87:40:af:ab:2e:8c:ca:2b:ff: c1:50:46:ec:a0:a5:ab:98:69:eb:44:dc:2e:37:b0:7c:16:78: 0c:21:4b:81:b9:de:70:25:47:38:75:30:39:5b:3e:1a:49:9d: b8:a1:29:c1:12:15:5b:8f:18:ad:5d:7a:4c:fc:fb:a9:c3:04: 50:06:94:52:41:0a:9f:5a:a6:52:1d:70:dd:de:7b:ce:0e:9c: 67:bb:84:15:4e:16:05:54:1a:88:e0:6e:48:94:79:26:e3:02: 03:6f:7e:b1:c5:12:e0:c5:12:93:90:6b:10:84:b9:61:29:fb: b0:58:f1:91:fa:71:90:e5:e2:2f:92:b6:ae:c0:e4:4b:12:4e: 4b:f8:0d:f9:95:6f:cb:3e:e3:0b:54:07:13:f9:5c:d9:cd:2e: 9e:d1:87:58:47:e8:e5:c1:d2:05:06:e9:75:1c:93:f3:11:f0: 51:42:5a:57:db:78:41:1e:02:a9:3d:32:0f:13:9b:4a:0b:0f: fb:8e:dc:d0:e3:27:8b:f5:0a:9e:47:a4:0a:9c:3d:b8:44:ab: 0f:db:ad:a1:fa:79:95:a0:3a:b6:5a:b0:db:ad:05:bc:db:26: 50:17:6e:b5 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUdbseCiIeyOGZ6czKJHlHTHcMC/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yNDA1MDQxODQwMjBaFw0yNTA1MDMxODQ1MjBaMDMxMTAvBgNV BAMTKEZERkQwNkM5MDYzMjk4QTgwMzRDRkM2RkE0M0FBOUM1MUQ1RUU2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC12KHcJncNo1magwaRXMFDDHcp wc+CpUKjLbpb8AGojNLOtfNIN704Vb5325qRApx/Q/tH8JW4CaRtQztlnZatqIpS CiFTMZjeIKYb6tfFmIW0vkHvFpLtwyyN+bZBidCMpTH90S69Wt3Jzua0cEcP1iBl lV55AEFeGa3cuh4Z6E/WAbbjESsCdI9czX1TTbfGpzMpQ/2xeY/cH0iTZgknljvf O/ykj3u0qKW0MISuypl2m0zB9kTAh+K/bVuRel7JD2L+J3aIcZSbr3ADvWMDTYNM Jue04Q5esAmjAORXzlh4fZX5MU54x6sU9WY8MuIKzhphPd6DtyiyPbBYwz4vAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQU/f0GyQYymKgDTPxvpDqpxR1e5ncwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2EzMzY0NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzAzMjM0Mzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqBp9EA90wDQYJKoZIhvcNAQELBQADggEBAB3NAwnhvP9aQqLZWBWw CnLyD+w4X07Iyaat8odAr6sujMor/8FQRuygpauYaetE3C43sHwWeAwhS4G53nAl Rzh1MDlbPhpJnbihKcESFVuPGK1dekz8+6nDBFAGlFJBCp9aplIdcN3ee84OnGe7 hBVOFgVUGojgbkiUeSbjAgNvfrHFEuDFEpOQaxCEuWEp+7BY8ZH6cZDl4i+Stq7A 5EsSTkv4DfmVb8s+4wtUBxP5XNnNLp7Rh1hH6OXB0gUG6XUck/MR8FFCWlfbeEEe Aqk9Mg8Tm0oLD/uO3NDjJ4v1Cp5HpAqcPbhEqw/braH6eZWgOrZasNutBbzbJlAX brU= -----END CERTIFICATE-----Generated at Tue Jul 2 07:47:33 2024 by rpki-client on console-ams.rpki-client.org