$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33322d3332203d3e20313530323439.roa File: 326130363a396634343a3a2f33322d3332203d3e20313530323439.roa (raw, json) Hash identifier: tcC60R3OjaHeGwSTmORXDpyKu9qV4IybL5Q+nNsDgC0= Subject key identifier: BC:59:F2:38:6F:7F:2E:EC:81:E3:69:A5:07:76:AB:0D:8C:11:4B:EE Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 1EBC56471DAE65494CA3FBCD68F232A70AF1962B Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33322d3332203d3e20313530323439.roa Signing time: Mon 11 Dec 2023 03:07:44 +0000 ROA not before: Mon 11 Dec 2023 03:02:44 +0000 ROA not after: Mon 09 Dec 2024 03:07:44 +0000 asID: 150249 IP address blocks: 2a06:9f44::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:bc:56:47:1d:ae:65:49:4c:a3:fb:cd:68:f2:32:a7:0a:f1:96:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Dec 11 03:02:44 2023 GMT Not After : Dec 9 03:07:44 2024 GMT Subject: CN=BC59F2386F7F2EEC81E369A50776AB0D8C114BEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:39:48:da:cf:68:ca:79:49:da:65:6a:b3: 00:25:5c:95:33:6b:05:26:7b:73:9c:56:07:7e:cb: 1d:87:57:4c:a3:db:5e:99:6a:45:80:81:77:de:5b: ba:c9:b5:13:4c:bd:b2:a2:e8:55:a3:c6:ac:c4:23: 86:9a:34:69:03:96:41:26:79:3a:f7:05:e2:ba:ec: 36:f1:37:b9:4a:33:75:60:f1:ce:4f:e6:7a:d5:5a: 7d:2f:0f:17:93:93:61:e3:05:49:3b:72:99:7e:3a: db:96:88:8a:69:ef:01:95:a4:c6:71:13:08:3d:f9: 44:c8:66:62:81:f9:d6:f0:34:79:14:b6:44:b8:f4: 2e:d2:75:25:4f:f3:7b:bd:65:e5:4e:55:8f:b6:92: 76:85:e8:4c:52:35:21:40:85:74:12:74:0b:3d:a6: b0:e6:2b:f7:58:7e:31:cf:0c:b7:8c:50:8a:b8:82: 25:d4:41:67:07:71:1a:68:a6:e9:a3:4e:29:52:79: f5:67:58:c3:ef:91:25:4d:7f:f8:47:bf:c4:36:62: dd:e9:ac:f5:77:a1:ea:fe:78:50:09:de:a0:13:1f: 96:8c:df:44:b1:d9:4d:0a:b2:45:43:88:ba:53:05: 2c:b0:ab:60:56:b9:3b:79:80:ae:9e:65:a4:3b:8d: a5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:59:F2:38:6F:7F:2E:EC:81:E3:69:A5:07:76:AB:0D:8C:11:4B:EE X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33322d3332203d3e20313530323439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44::/32 Signature Algorithm: sha256WithRSAEncryption 7d:aa:b5:fb:b7:06:b1:cd:7b:8c:87:2d:8b:b4:02:95:4f:60: 60:79:32:b9:a2:73:df:54:a3:5c:6c:9b:cd:8b:d1:28:16:e9: 86:65:9e:4b:81:a2:4b:c0:6e:ed:17:49:4d:a3:93:5d:cd:32: 03:0e:61:41:7e:a6:b8:91:75:78:90:89:28:d0:3c:98:82:1c: be:b0:73:bd:63:4c:fe:6f:46:f4:ae:34:da:b7:a3:d4:0e:05: 8e:bd:52:49:b8:e4:03:df:ab:c8:3c:42:ab:21:da:e3:36:96: ae:38:05:19:f4:7d:b9:cf:56:4f:d8:3f:e4:08:6b:29:06:66: f9:3d:b0:19:d9:c8:3c:ba:f2:8b:75:47:cf:e5:74:5c:f9:6a: f0:49:b0:7f:fd:89:7f:94:05:66:90:bb:50:8a:df:c2:86:e3: 41:8a:66:b1:73:fe:2c:44:78:ce:f2:98:86:76:b9:05:f8:00: d1:71:96:e7:67:db:c4:bb:6a:fc:33:19:74:a0:31:67:96:be: 57:bd:60:16:2e:ae:25:bf:95:43:cb:cf:cf:d0:ea:e7:d8:ad: c9:35:ee:35:1b:47:0b:73:77:53:de:5d:58:90:7d:9e:22:8b: 14:3e:2b:a8:ea:32:84:93:6f:95:6f:b0:37:4c:3e:e0:01:af: 37:04:18:18 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUHrxWRx2uZUlMo/vNaPIypwrxliswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yMzEyMTEwMzAyNDRaFw0yNDEyMDkwMzA3NDRaMDMxMTAvBgNV BAMTKEJDNTlGMjM4NkY3RjJFRUM4MUUzNjlBNTA3NzZBQjBEOEMxMTRCRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDWzlI2s9oynlJ2mVqswAlXJUz awUme3OcVgd+yx2HV0yj216ZakWAgXfeW7rJtRNMvbKi6FWjxqzEI4aaNGkDlkEm eTr3BeK67DbxN7lKM3Vg8c5P5nrVWn0vDxeTk2HjBUk7cpl+OtuWiIpp7wGVpMZx Ewg9+UTIZmKB+dbwNHkUtkS49C7SdSVP83u9ZeVOVY+2knaF6ExSNSFAhXQSdAs9 prDmK/dYfjHPDLeMUIq4giXUQWcHcRpopumjTilSefVnWMPvkSVNf/hHv8Q2Yt3p rPV3oer+eFAJ3qATH5aM30Sx2U0KskVDiLpTBSywq2BWuTt5gK6eZaQ7jaUrAgMB AAGjggJuMIICajAdBgNVHQ4EFgQUvFnyOG9/LuyB42mlB3arDYwRS+4wHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzEzNTMwMzIzNDM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgafRDANBgkqhkiG9w0BAQsFAAOCAQEAfaq1+7cGsc17jIcti7QClU9gYHkyuaJz 31SjXGybzYvRKBbphmWeS4GiS8Bu7RdJTaOTXc0yAw5hQX6muJF1eJCJKNA8mIIc vrBzvWNM/m9G9K402rej1A4Fjr1SSbjkA9+ryDxCqyHa4zaWrjgFGfR9uc9WT9g/ 5AhrKQZm+T2wGdnIPLryi3VHz+V0XPlq8Emwf/2Jf5QFZpC7UIrfwobjQYpmsXP+ LER4zvKYhna5BfgA0XGW52fbxLtq/DMZdKAxZ5a+V71gFi6uJb+VQ8vPz9Dq59it yTXuNRtHC3N3U95dWJB9niKLFD4rqOoyhJNvlW+wN0w+4AGvNwQYGA== -----END CERTIFICATE-----Generated at Tue Jul 2 07:47:33 2024 by rpki-client on console-ams.rpki-client.org