$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33362d3438203d3e20313939343539.roa File: 326130363a396634343a3a2f33362d3438203d3e20313939343539.roa (raw, json) Hash identifier: dF+ul8qucFwNhwS18S5luRCbpkOYSoLS05POUgZo/uo= Subject key identifier: 5D:8E:DF:90:3D:FC:87:1E:F7:3C:67:F4:43:B5:8C:4E:9C:72:B5:2E Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 5658CF7C6A659D3203B9AC4C84CF38A448CD8DAC Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33362d3438203d3e20313939343539.roa Signing time: Thu 15 Feb 2024 03:15:03 +0000 ROA not before: Thu 15 Feb 2024 03:10:03 +0000 ROA not after: Thu 13 Feb 2025 03:15:03 +0000 asID: 199459 IP address blocks: 2a06:9f44::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:58:cf:7c:6a:65:9d:32:03:b9:ac:4c:84:cf:38:a4:48:cd:8d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Feb 15 03:10:03 2024 GMT Not After : Feb 13 03:15:03 2025 GMT Subject: CN=5D8EDF903DFC871EF73C67F443B58C4E9C72B52E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:61:35:8c:94:1c:ae:ae:18:58:36:e9:31:63: 13:af:04:ef:a2:0e:fa:f2:cc:d3:c3:bc:b4:75:fc: af:be:7f:cc:e1:da:fa:59:b3:c6:6d:85:9a:68:82: c5:11:1c:c9:a0:91:af:1c:f6:00:6c:60:98:f1:9d: ec:ee:2a:8f:02:89:7d:e5:11:54:02:98:ed:06:12: fa:72:8e:f0:da:2f:2f:4e:75:7e:a8:01:5c:fd:c1: 5d:7f:68:18:f6:08:3e:45:e7:e8:c8:13:3c:de:b3: 5c:15:e9:d6:db:a0:d3:e6:8d:a1:73:98:4d:b1:4d: 07:fc:32:f2:e8:b0:8a:62:60:47:c8:39:ef:56:41: 33:0f:67:0a:c8:d2:07:e2:29:5a:00:5d:75:4f:e7: a1:59:a1:64:86:c3:c5:b1:04:d9:2c:7d:4e:b7:00: 2b:cb:f1:a8:51:92:40:4d:43:7b:78:3d:cf:be:11: 08:c3:50:fc:78:ee:e0:30:bd:6f:7d:28:1a:45:e3: ec:1b:d3:a4:b1:50:57:9f:be:75:6d:99:ea:93:02: 62:0b:98:78:a4:f5:df:4e:95:10:39:9c:77:ca:99: a5:e7:41:fd:e3:f7:77:14:4d:2f:56:d4:4d:e2:f6: 7d:47:44:ec:60:3b:aa:1f:c9:ca:95:ed:93:c0:d7: 0d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8E:DF:90:3D:FC:87:1E:F7:3C:67:F4:43:B5:8C:4E:9C:72:B5:2E X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a3a2f33362d3438203d3e20313939343539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44::/36 Signature Algorithm: sha256WithRSAEncryption cd:d4:3c:4b:96:6f:3b:a5:07:ee:ec:a0:df:7c:59:de:e4:30: e2:1f:6c:48:da:c3:7e:59:dc:64:af:13:82:15:a5:c4:8e:3f: 2b:96:9b:f2:c9:da:02:47:d8:43:a0:c4:3e:66:47:78:10:ef: 2b:a1:33:aa:66:b9:20:44:c4:f0:1d:ce:a3:5e:18:d7:ae:fb: 04:b3:12:66:48:1e:cd:8d:e6:5c:d3:e0:86:27:cc:fd:4f:a7: f8:b9:8f:13:4c:5c:2c:2c:13:7e:20:da:df:20:66:0c:c6:03: 9c:1b:9e:21:a4:6a:bc:4e:77:49:37:4f:cc:91:08:9e:24:6e: db:b4:19:ab:4c:2b:75:61:2b:89:a0:c7:90:f0:38:0b:9c:50: b3:ce:af:5c:87:8f:33:ae:2c:05:18:54:d7:9a:83:ea:9b:09: 5d:24:e2:df:98:b9:0c:ef:14:aa:e9:43:76:1c:84:e6:f6:05: 3f:b3:0e:bf:a6:f7:6a:bb:d6:af:63:fd:7c:0c:1b:33:12:d6: 86:ab:7b:42:c9:92:e6:86:96:1c:5d:9d:4a:9c:5b:fc:4c:9e: e8:c0:cb:95:41:04:ac:7b:b8:fd:cf:e3:b2:04:c4:df:9e:bb: 2e:4c:94:05:3f:12:e5:47:4f:a5:8b:e5:16:6f:94:79:45:2e: 2d:02:b2:a3 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUVljPfGplnTIDuaxMhM84pEjNjawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yNDAyMTUwMzEwMDNaFw0yNTAyMTMwMzE1MDNaMDMxMTAvBgNV BAMTKDVEOEVERjkwM0RGQzg3MUVGNzNDNjdGNDQzQjU4QzRFOUM3MkI1MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6YTWMlByurhhYNukxYxOvBO+i DvryzNPDvLR1/K++f8zh2vpZs8ZthZpogsURHMmgka8c9gBsYJjxnezuKo8CiX3l EVQCmO0GEvpyjvDaLy9OdX6oAVz9wV1/aBj2CD5F5+jIEzzes1wV6dbboNPmjaFz mE2xTQf8MvLosIpiYEfIOe9WQTMPZwrI0gfiKVoAXXVP56FZoWSGw8WxBNksfU63 ACvL8ahRkkBNQ3t4Pc++EQjDUPx47uAwvW99KBpF4+wb06SxUFefvnVtmeqTAmIL mHik9d9OlRA5nHfKmaXnQf3j93cUTS9W1E3i9n1HROxgO6ofycqV7ZPA1w1LAgMB AAGjggJvMIICazAdBgNVHQ4EFgQUXY7fkD38hx73PGf0Q7WMTpxytS4wHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzEzOTM5MzQzNTM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYE KgafRAAwDQYJKoZIhvcNAQELBQADggEBAM3UPEuWbzulB+7soN98Wd7kMOIfbEja w35Z3GSvE4IVpcSOPyuWm/LJ2gJH2EOgxD5mR3gQ7yuhM6pmuSBExPAdzqNeGNeu +wSzEmZIHs2N5lzT4IYnzP1Pp/i5jxNMXCwsE34g2t8gZgzGA5wbniGkarxOd0k3 T8yRCJ4kbtu0GatMK3VhK4mgx5DwOAucULPOr1yHjzOuLAUYVNeag+qbCV0k4t+Y uQzvFKrpQ3YchOb2BT+zDr+m92q71q9j/XwMGzMS1oare0LJkuaGlhxdnUqcW/xM nujAy5VBBKx7uP3P47IExN+euy5MlAU/EuVHT6WL5RZvlHlFLi0CsqM= -----END CERTIFICATE-----Generated at Tue Jul 2 07:32:26 2024 by rpki-client on console-fra.rpki-client.org