$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663133303a3a2f34342d3438203d3e20323135363833.roa File: 326130363a396634343a663133303a3a2f34342d3438203d3e20323135363833.roa (raw, json) Hash identifier: o8VCBUQYHTq+uKsdJwzlb2ifyiIzF583f3zpiX9ztY0= Subject key identifier: 11:FC:EF:43:79:56:A1:92:5A:5F:B7:09:53:98:D5:CF:84:A9:E2:E5 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 1D486F622551464DC54744DF7AD0FD3F93EFA96B Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663133303a3a2f34342d3438203d3e20323135363833.roa Signing time: Fri 26 Jan 2024 10:33:46 +0000 ROA not before: Fri 26 Jan 2024 10:28:46 +0000 ROA not after: Fri 24 Jan 2025 10:33:46 +0000 asID: 215683 IP address blocks: 2a06:9f44:f130::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Jun 2024 06:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:48:6f:62:25:51:46:4d:c5:47:44:df:7a:d0:fd:3f:93:ef:a9:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Jan 26 10:28:46 2024 GMT Not After : Jan 24 10:33:46 2025 GMT Subject: CN=11FCEF437956A1925A5FB7095398D5CF84A9E2E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:25:45:80:ec:89:df:3b:1c:0f:31:17:b9:f9: 39:1e:18:2b:66:f8:77:9e:59:4f:59:64:dc:30:9f: 84:fc:51:d1:64:6d:cc:bb:f8:e8:ce:82:fe:7d:e8: d9:62:bb:e4:94:5f:6d:80:72:21:91:92:86:d6:ec: ad:85:0e:8d:2e:36:81:f2:4a:3a:fc:59:23:a1:c7: d4:c8:d7:1f:3a:ed:6a:68:1c:7a:5f:b0:42:42:7a: d4:78:73:22:4e:44:04:9b:86:25:29:51:96:fa:f4: 7a:56:dc:5a:84:dc:e4:01:e7:ed:88:09:cb:9a:d3: ce:f1:75:44:29:9e:63:c2:92:d4:b3:d8:7a:7d:4b: d9:52:d5:96:dc:09:10:14:0f:74:43:06:ff:87:31: d3:f2:4d:2d:01:43:7a:f1:7a:0a:c2:7e:27:bc:e9: 1b:9b:64:36:7f:82:d4:54:c0:e3:73:4e:6c:2d:c1: 09:67:b5:08:fb:bd:5b:52:7b:22:cd:2b:de:9a:8e: 56:89:b9:78:7e:f9:32:45:38:8d:ca:83:fe:3c:e4: 44:74:2f:a2:20:3f:dc:db:90:38:91:98:57:d9:19: 82:98:e2:a0:a6:43:80:f4:e9:6c:33:3b:1c:b0:23: d8:94:f1:71:26:18:34:16:5c:2a:b6:34:1a:67:1a: 35:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FC:EF:43:79:56:A1:92:5A:5F:B7:09:53:98:D5:CF:84:A9:E2:E5 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663133303a3a2f34342d3438203d3e20323135363833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f130::/44 Signature Algorithm: sha256WithRSAEncryption d7:de:fd:a4:2d:77:f6:5c:24:9b:e5:13:94:1f:a1:b8:4f:ee: 78:e2:ee:d9:2c:6d:a3:20:36:50:aa:f3:31:98:7d:c5:4f:fc: de:0f:0f:8a:0d:31:3c:a4:f1:cb:ec:24:2b:68:0b:6a:ff:be: 04:15:a3:e1:fe:70:50:30:35:d8:5b:5a:3c:f0:4e:e1:58:88: 9c:ec:37:a9:4b:f9:78:af:20:a9:9b:53:bb:1e:cd:f7:86:3d: 4d:6e:62:54:f6:11:09:76:86:23:f2:0c:ed:02:82:ec:cb:18: 64:f1:3d:58:63:06:00:01:a2:2f:7b:49:c9:93:44:bb:b5:b2: 37:d1:f7:b4:53:eb:1a:37:a2:4e:4c:ae:7f:91:6e:6f:bb:37: 11:ec:2f:4c:69:f0:14:88:0f:ee:8f:84:7f:d2:48:04:66:cb: 5f:b8:57:95:30:cf:70:a1:cb:9c:6a:f3:8a:ef:6f:20:b2:32: 4a:aa:7e:41:c1:3d:a6:d1:e7:3f:d4:87:4a:25:40:76:ac:06: 35:df:b7:95:08:8b:36:17:be:8f:87:72:32:a1:fc:6e:01:c9: 92:51:89:bc:d4:75:f2:12:40:04:e0:e0:2b:d3:3a:c1:a1:64: 95:6a:54:f1:ff:59:1e:82:f0:87:7f:5c:3e:63:39:ce:da:1b: 78:a6:70:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUHUhvYiVRRk3FR0TfetD9P5PvqWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yNDAxMjYxMDI4NDZaFw0yNTAxMjQxMDMzNDZaMDMxMTAvBgNV BAMTKDExRkNFRjQzNzk1NkExOTI1QTVGQjcwOTUzOThENUNGODRBOUUyRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfJUWA7InfOxwPMRe5+TkeGCtm +HeeWU9ZZNwwn4T8UdFkbcy7+OjOgv596Nliu+SUX22AciGRkobW7K2FDo0uNoHy Sjr8WSOhx9TI1x867WpoHHpfsEJCetR4cyJORASbhiUpUZb69HpW3FqE3OQB5+2I Ccua087xdUQpnmPCktSz2Hp9S9lS1ZbcCRAUD3RDBv+HMdPyTS0BQ3rxegrCfie8 6RubZDZ/gtRUwONzTmwtwQlntQj7vVtSeyLNK96ajlaJuXh++TJFOI3Kg/485ER0 L6IgP9zbkDiRmFfZGYKY4qCmQ4D06WwzOxywI9iU8XEmGDQWXCq2NBpnGjUPAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUEfzvQ3lWoZJaX7cJU5jVz4Sp4uUwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMxMzMzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzgzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGn0TxMDANBgkqhkiG9w0BAQsFAAOCAQEA1979pC139lwkm+UT lB+huE/ueOLu2SxtoyA2UKrzMZh9xU/83g8Pig0xPKTxy+wkK2gLav++BBWj4f5w UDA12FtaPPBO4ViInOw3qUv5eK8gqZtTux7N94Y9TW5iVPYRCXaGI/IM7QKC7MsY ZPE9WGMGAAGiL3tJyZNEu7WyN9H3tFPrGjeiTkyuf5Fub7s3EewvTGnwFIgP7o+E f9JIBGbLX7hXlTDPcKHLnGrziu9vILIySqp+QcE9ptHnP9SHSiVAdqwGNd+3lQiL Nhe+j4dyMqH8bgHJklGJvNR18hJABODgK9M6waFklWpU8f9ZHoLwh39cPmM5ztob eKZwsg== -----END CERTIFICATE-----Generated at Fri Jun 28 15:48:14 2024 by rpki-client on console-ams.rpki-client.org