$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663132303a3a2f34342d3438203d3e20323033363836.roa File: 326130363a396634343a663132303a3a2f34342d3438203d3e20323033363836.roa (raw, json) Hash identifier: MLANoXxWYaJcGfNL+XeDpDntVMZmEEbOcXznOzAVG2k= Subject key identifier: 71:FE:8C:AA:A8:2E:E3:53:EC:7B:1C:DA:48:BF:31:C2:0D:65:81:6C Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 0E7A63EFBB30B3C94C97D25E9DAF62FB1906F313 Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663132303a3a2f34342d3438203d3e20323033363836.roa Signing time: Mon 11 Dec 2023 03:08:30 +0000 ROA not before: Mon 11 Dec 2023 03:03:30 +0000 ROA not after: Mon 09 Dec 2024 03:08:30 +0000 asID: 203686 IP address blocks: 2a06:9f44:f120::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:7a:63:ef:bb:30:b3:c9:4c:97:d2:5e:9d:af:62:fb:19:06:f3:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Dec 11 03:03:30 2023 GMT Not After : Dec 9 03:08:30 2024 GMT Subject: CN=71FE8CAAA82EE353EC7B1CDA48BF31C20D65816C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1a:8a:64:40:d5:c9:57:a6:96:4d:67:4f:97: 4c:79:2c:0b:ea:a3:60:3f:c7:7f:9a:60:26:2f:f9: e5:76:95:0e:7a:78:cb:eb:15:55:c3:bd:2c:35:3f: 4e:b3:eb:2a:78:f2:cd:fe:d1:8f:ab:bb:ff:bc:a9: 7b:44:d3:54:d1:83:2a:71:01:18:52:c9:60:7f:26: a7:98:be:4a:c3:65:a7:10:9b:70:e8:52:e7:f1:88: 72:74:19:71:09:8e:b7:ee:19:a8:53:9a:ff:18:18: 7f:56:50:c9:58:fb:81:e9:d1:54:4a:9f:04:a3:84: c2:11:b1:47:b2:ef:57:63:a2:0a:a6:0a:f3:70:2d: 43:fd:d0:31:0a:f6:78:90:97:48:c4:0c:34:ba:8e: ad:fd:1e:16:67:e8:8b:2c:b7:85:4d:cd:ac:f2:10: c5:f1:c3:6b:f4:5c:1a:bc:66:27:55:27:88:d8:c1: 8c:3e:4d:7a:35:3b:c0:f7:e4:19:f7:30:27:33:b7: 72:fd:7c:be:fb:3c:e6:bc:43:82:78:df:11:df:ab: 09:7a:23:90:9c:eb:11:c9:b3:53:11:7e:08:6d:d7: 2a:f5:13:0d:6e:7e:25:fa:9e:4d:af:45:8f:53:cb: aa:37:a9:c6:51:3e:1a:ec:80:12:21:7d:06:8a:39: a5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FE:8C:AA:A8:2E:E3:53:EC:7B:1C:DA:48:BF:31:C2:0D:65:81:6C X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663132303a3a2f34342d3438203d3e20323033363836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f120::/44 Signature Algorithm: sha256WithRSAEncryption 61:df:30:35:f3:01:7b:7c:65:0a:ee:61:34:16:ff:c2:b4:1d: 47:32:00:c2:79:74:09:eb:a8:b2:4f:dc:18:ea:5c:da:21:41: ab:09:30:80:87:52:65:2a:d1:84:d0:6d:b5:ec:67:5d:ae:72: 87:96:82:0c:15:79:6a:5a:d0:17:20:e5:e7:04:cd:ff:dc:88: e6:07:81:b9:2e:97:19:80:e9:e1:b9:95:8c:c2:7e:40:95:46: 6d:4c:bb:49:41:17:d7:40:ac:66:c0:1f:9d:64:a5:30:be:3f: 25:f9:9a:90:5c:b9:29:7b:8c:6f:d7:e8:4b:f0:db:5d:52:5a: 8b:72:e0:26:58:c6:a5:37:bc:b1:dc:f9:a7:eb:3b:e4:d1:ce: da:83:9f:21:ea:f3:fe:a4:a5:45:ab:7c:b2:f3:37:f6:41:25: d4:9e:75:90:92:b7:a9:4b:7b:32:34:10:0c:b6:05:75:41:7f: fd:2d:05:0d:0f:68:3a:13:d0:13:1a:6d:34:fc:1d:16:a3:15: 7b:02:78:1c:93:68:b2:d8:d0:ae:22:5e:7d:c4:24:37:1e:fa: ae:9e:f8:d7:76:65:dc:b7:61:ab:66:90:c9:6a:e9:d0:25:18: 1b:aa:76:3d:2b:3b:f7:44:17:12:a3:ff:53:c0:27:92:44:21: 80:bc:e0:51 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUDnpj77sws8lMl9Jena9i+xkG8xMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yMzEyMTEwMzAzMzBaFw0yNDEyMDkwMzA4MzBaMDMxMTAvBgNV BAMTKDcxRkU4Q0FBQTgyRUUzNTNFQzdCMUNEQTQ4QkYzMUMyMEQ2NTgxNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9GopkQNXJV6aWTWdPl0x5LAvq o2A/x3+aYCYv+eV2lQ56eMvrFVXDvSw1P06z6yp48s3+0Y+ru/+8qXtE01TRgypx ARhSyWB/JqeYvkrDZacQm3DoUufxiHJ0GXEJjrfuGahTmv8YGH9WUMlY+4Hp0VRK nwSjhMIRsUey71djogqmCvNwLUP90DEK9niQl0jEDDS6jq39HhZn6Isst4VNzazy EMXxw2v0XBq8ZidVJ4jYwYw+TXo1O8D35Bn3MCczt3L9fL77POa8Q4J43xHfqwl6 I5Cc6xHJs1MRfght1yr1Ew1ufiX6nk2vRY9Ty6o3qcZRPhrsgBIhfQaKOaUPAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUcf6Mqqgu41PsexzaSL8xwg1lgWwwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMxMzIzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzAzMzM2MzgzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGn0TxIDANBgkqhkiG9w0BAQsFAAOCAQEAYd8wNfMBe3xlCu5h NBb/wrQdRzIAwnl0Ceuosk/cGOpc2iFBqwkwgIdSZSrRhNBttexnXa5yh5aCDBV5 alrQFyDl5wTN/9yI5geBuS6XGYDp4bmVjMJ+QJVGbUy7SUEX10CsZsAfnWSlML4/ JfmakFy5KXuMb9foS/DbXVJai3LgJljGpTe8sdz5p+s75NHO2oOfIerz/qSlRat8 svM39kEl1J51kJK3qUt7MjQQDLYFdUF//S0FDQ9oOhPQExptNPwdFqMVewJ4HJNo stjQriJefcQkNx76rp7413Zl3Ldhq2aQyWrp0CUYG6p2PSs790QXEqP/U8AnkkQh gLzgUQ== -----END CERTIFICATE-----Generated at Tue Jul 2 07:32:26 2024 by rpki-client on console-fra.rpki-client.org