$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663134303a3a2f34342d3438203d3e20323135363734.roa File: 326130363a396634343a663134303a3a2f34342d3438203d3e20323135363734.roa (raw, json) Hash identifier: ugXzwUU/+w/qdko801fUvszpgqSQbGy5nq6Q38PQPN4= Subject key identifier: 25:E6:6E:80:8F:6B:B3:03:92:15:18:8F:06:01:5D:D2:79:E4:24:C8 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 5F5C8E80D6C1EE471C9CBA51EF1230D64F793E79 Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663134303a3a2f34342d3438203d3e20323135363734.roa Signing time: Tue 30 Jan 2024 19:20:27 +0000 ROA not before: Tue 30 Jan 2024 19:15:27 +0000 ROA not after: Tue 28 Jan 2025 19:20:27 +0000 asID: 215674 IP address blocks: 2a06:9f44:f140::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Jul 2024 22:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:5c:8e:80:d6:c1:ee:47:1c:9c:ba:51:ef:12:30:d6:4f:79:3e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Jan 30 19:15:27 2024 GMT Not After : Jan 28 19:20:27 2025 GMT Subject: CN=25E66E808F6BB3039215188F06015DD279E424C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:90:39:b1:47:60:9b:be:b8:fb:d3:0e:77:5f: 76:92:22:bf:d7:22:2f:82:ce:45:6e:07:76:e9:d1: bc:71:26:86:6d:f6:6c:12:f6:c4:f4:d0:5b:d1:aa: 93:89:9d:23:a3:e6:10:c0:cd:33:3d:5e:96:21:f9: c7:8a:de:2f:0d:07:dc:71:68:91:08:1b:11:0f:26: fd:27:77:4b:e0:76:cd:aa:75:3a:bf:f7:4d:6d:b1: e9:d1:8d:5c:37:27:26:1e:f7:79:8e:e8:70:14:a0: 8c:f7:6f:0d:fd:11:9f:cb:75:d4:d6:bf:a5:3e:be: 28:bb:ed:79:8a:22:c3:4d:0f:ee:92:96:d2:59:6c: a4:1f:76:d5:2c:b7:d8:ed:0c:4a:83:f5:88:5b:9a: f5:24:20:9c:76:0d:50:22:02:52:b1:d5:ea:62:9e: 49:ab:5b:49:02:35:63:64:c3:f5:ce:ea:14:bd:18: 93:0e:7f:ba:01:54:a9:13:d7:65:78:ca:06:d8:e5: c0:62:7b:ed:35:dc:16:54:4e:e4:9c:d5:a3:59:ea: 23:91:db:dc:2a:a3:07:c1:53:87:65:1f:eb:c2:3f: 2a:77:66:af:1c:d5:f0:c7:24:ad:c3:a8:c1:93:65: 09:63:07:5b:4a:78:c8:08:9e:da:36:a9:06:ce:02: 46:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E6:6E:80:8F:6B:B3:03:92:15:18:8F:06:01:5D:D2:79:E4:24:C8 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663134303a3a2f34342d3438203d3e20323135363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f140::/44 Signature Algorithm: sha256WithRSAEncryption a7:ea:14:bc:b1:a2:3a:34:da:e8:b6:7d:ba:b9:2a:d1:d3:1e: 2f:d0:c8:b7:e0:86:0e:23:b8:75:7c:45:fe:c5:9f:e2:c6:95: 40:6f:6e:a1:83:49:c4:2e:7c:a5:12:b2:2d:0b:86:85:8b:7c: 09:51:3c:4d:af:98:ff:c4:6b:e2:d4:62:d1:7e:bb:6a:b3:a4: ae:48:47:c8:80:80:d1:de:0d:ef:b1:d3:21:86:9a:b8:8f:c7: eb:8a:44:ba:10:43:fc:8e:50:30:6e:60:fb:70:f7:0e:9f:b2: 15:0b:1b:40:f4:4c:de:e1:49:b9:65:4a:c9:08:7a:44:fb:6f: 5c:c1:18:32:59:05:4c:ff:30:1b:16:0f:cd:f8:2a:c7:f5:2c: dd:a8:d2:11:33:de:54:3a:84:61:97:97:22:be:c2:8a:bb:cc: 6a:8f:08:f1:6e:50:06:d4:5e:28:e6:4f:66:22:f5:00:69:5b: c6:3b:f8:d3:ef:d1:77:89:9b:42:1b:85:7f:29:76:52:86:f5: 0c:67:10:99:d6:bd:7b:63:48:9e:bd:12:be:67:05:76:b2:03: 8b:48:3c:d5:fb:70:76:93:d0:87:9e:09:0b:9f:23:5c:ba:18: a0:d9:ac:7b:80:e0:f9:20:f4:1c:7c:19:32:10:b2:35:24:05: 72:ed:a7:a0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUX1yOgNbB7kccnLpR7xIw1k95PnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yNDAxMzAxOTE1MjdaFw0yNTAxMjgxOTIwMjdaMDMxMTAvBgNV BAMTKDI1RTY2RTgwOEY2QkIzMDM5MjE1MTg4RjA2MDE1REQyNzlFNDI0QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrkDmxR2Cbvrj70w53X3aSIr/X Ii+CzkVuB3bp0bxxJoZt9mwS9sT00FvRqpOJnSOj5hDAzTM9XpYh+ceK3i8NB9xx aJEIGxEPJv0nd0vgds2qdTq/901tsenRjVw3JyYe93mO6HAUoIz3bw39EZ/LddTW v6U+vii77XmKIsNND+6SltJZbKQfdtUst9jtDEqD9YhbmvUkIJx2DVAiAlKx1epi nkmrW0kCNWNkw/XO6hS9GJMOf7oBVKkT12V4ygbY5cBie+013BZUTuSc1aNZ6iOR 29wqowfBU4dlH+vCPyp3Zq8c1fDHJK3DqMGTZQljB1tKeMgInto2qQbOAkYtAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUJeZugI9rswOSFRiPBgFd0nnkJMgwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMxMzQzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzczNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGn0TxQDANBgkqhkiG9w0BAQsFAAOCAQEAp+oUvLGiOjTa6LZ9 urkq0dMeL9DIt+CGDiO4dXxF/sWf4saVQG9uoYNJxC58pRKyLQuGhYt8CVE8Ta+Y /8Rr4tRi0X67arOkrkhHyICA0d4N77HTIYaauI/H64pEuhBD/I5QMG5g+3D3Dp+y FQsbQPRM3uFJuWVKyQh6RPtvXMEYMlkFTP8wGxYPzfgqx/Us3ajSETPeVDqEYZeX Ir7CirvMao8I8W5QBtReKOZPZiL1AGlbxjv40+/Rd4mbQhuFfyl2Uob1DGcQmda9 e2NInr0SvmcFdrIDi0g81ftwdpPQh54JC58jXLoYoNmse4Dg+SD0HHwZMhCyNSQF cu2noA== -----END CERTIFICATE-----Generated at Tue Jul 2 07:47:33 2024 by rpki-client on console-ams.rpki-client.org