$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663137303a3a2f34342d3438203d3e203437333131.roa File: 326130363a396634343a663137303a3a2f34342d3438203d3e203437333131.roa (raw, json) Hash identifier: 9jhhlQBf5kEZO6AiRK1xrjoSGlpjxtl7nlHc8pH6akw= Subject key identifier: 5E:2C:ED:93:89:3B:C6:5D:25:9F:38:A0:A5:AB:DF:7C:59:76:A1:82 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 4CBABE7A6909001805F33676DF0EA6C3253ECFF7 Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663137303a3a2f34342d3438203d3e203437333131.roa Signing time: Tue 12 Dec 2023 14:35:04 +0000 ROA not before: Tue 12 Dec 2023 14:30:04 +0000 ROA not after: Tue 10 Dec 2024 14:35:04 +0000 asID: 47311 IP address blocks: 2a06:9f44:f170::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 11 Jun 2024 05:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ba:be:7a:69:09:00:18:05:f3:36:76:df:0e:a6:c3:25:3e:cf:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Dec 12 14:30:04 2023 GMT Not After : Dec 10 14:35:04 2024 GMT Subject: CN=5E2CED93893BC65D259F38A0A5ABDF7C5976A182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:02:fc:93:b4:5d:b3:5a:24:83:c1:06:2e:39: 00:86:d0:28:da:02:01:67:24:b7:9d:38:39:fa:77: e1:01:c6:fd:ff:55:eb:f3:3f:ae:ae:dd:76:ca:54: a4:29:42:9d:51:1d:11:c5:5e:57:17:70:38:75:f8: f3:87:9f:f8:f6:3d:87:55:20:88:b1:a4:ac:0a:ec: e2:d7:24:41:b4:01:69:07:08:68:ac:8c:39:04:3b: 3e:e1:72:79:1c:96:d7:27:03:4f:12:50:6d:44:4c: c3:69:be:b2:57:33:83:0f:45:6f:46:90:9b:9b:6d: f9:1e:be:03:e7:19:05:c0:75:6e:df:f9:ed:f1:9d: 94:95:03:b8:09:47:14:fa:b9:8f:d8:ce:be:a2:f2: cb:ac:c2:db:9a:80:a7:ab:e4:82:56:3d:26:b0:6e: 37:bd:c3:45:43:ce:30:0b:51:29:2d:9c:0e:51:71: 53:64:bc:6e:e7:6f:32:e8:18:93:69:7b:e6:80:f3: 82:70:ac:a7:29:75:2e:09:f6:d1:bb:f5:19:94:eb: be:d3:0b:cc:20:80:b7:61:81:a5:30:98:0d:41:f9: 59:c8:aa:fe:82:ec:5c:8e:94:98:ef:23:ea:1e:1d: d1:3b:b2:0b:2c:d6:1d:60:e4:38:a5:94:63:a9:ee: 04:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2C:ED:93:89:3B:C6:5D:25:9F:38:A0:A5:AB:DF:7C:59:76:A1:82 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663137303a3a2f34342d3438203d3e203437333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f170::/44 Signature Algorithm: sha256WithRSAEncryption 08:06:60:9a:1a:1a:9d:4d:2f:02:3f:14:3a:11:34:dd:42:39: 3f:29:8c:b1:f2:dc:8a:e7:cd:12:34:7f:7e:ea:87:80:fa:94: 67:ed:5b:d0:71:55:02:61:af:e3:a3:e7:34:ff:b0:88:f0:c1: 31:64:f1:66:84:88:56:fb:ef:83:66:0e:aa:bf:9b:37:2c:f8: 77:a2:97:24:e4:84:e9:6f:f9:b0:fe:d9:09:bb:4f:cf:03:f8: ef:98:76:3b:ca:82:15:ba:eb:6b:39:3c:79:52:1c:19:72:a8: 9e:8c:3c:f2:33:55:37:4c:99:25:3e:bb:2f:8b:fe:b3:93:ee: 13:56:a8:5a:1d:41:85:bc:0b:59:b5:f7:d3:d8:22:2c:b4:f2: 9a:07:e8:79:d3:ee:c7:c6:ca:1d:97:41:c0:4f:be:eb:ed:cb: 8d:f9:9a:00:fb:72:08:43:b8:a3:74:8a:40:01:44:e8:5a:2a: fe:2d:c0:7f:71:27:9e:93:21:7c:24:c0:fb:95:24:d5:38:62: c8:da:12:2b:b0:6a:52:e2:6e:10:9a:3c:82:4a:d6:30:00:64: cb:a8:3f:f6:bf:71:e6:ba:90:24:09:79:c3:a9:93:a1:4b:b6: 97:f4:89:b1:fd:f5:00:99:9d:33:bc:b1:fc:ee:ba:fb:00:83: bf:18:0d:f2 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUTLq+emkJABgF8zZ23w6mwyU+z/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yMzEyMTIxNDMwMDRaFw0yNDEyMTAxNDM1MDRaMDMxMTAvBgNV BAMTKDVFMkNFRDkzODkzQkM2NUQyNTlGMzhBMEE1QUJERjdDNTk3NkExODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWAvyTtF2zWiSDwQYuOQCG0Cja AgFnJLedODn6d+EBxv3/VevzP66u3XbKVKQpQp1RHRHFXlcXcDh1+POHn/j2PYdV IIixpKwK7OLXJEG0AWkHCGisjDkEOz7hcnkcltcnA08SUG1ETMNpvrJXM4MPRW9G kJubbfkevgPnGQXAdW7f+e3xnZSVA7gJRxT6uY/Yzr6i8suswtuagKer5IJWPSaw bje9w0VDzjALUSktnA5RcVNkvG7nbzLoGJNpe+aA84JwrKcpdS4J9tG79RmU677T C8wggLdhgaUwmA1B+VnIqv6C7FyOlJjvI+oeHdE7sgss1h1g5DillGOp7gSfAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUXiztk4k7xl0lnzigpavffFl2oYIwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMxMzczMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDM0MzczMzMxMzEucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqBp9E8XAwDQYJKoZIhvcNAQELBQADggEBAAgGYJoaGp1NLwI/FDoR NN1COT8pjLHy3IrnzRI0f37qh4D6lGftW9BxVQJhr+Oj5zT/sIjwwTFk8WaEiFb7 74NmDqq/mzcs+HeilyTkhOlv+bD+2Qm7T88D+O+YdjvKghW662s5PHlSHBlyqJ6M PPIzVTdMmSU+uy+L/rOT7hNWqFodQYW8C1m199PYIiy08poH6HnT7sfGyh2XQcBP vuvty435mgD7cghDuKN0ikABROhaKv4twH9xJ56TIXwkwPuVJNU4YsjaEiuwalLi bhCaPIJK1jAAZMuoP/a/cea6kCQJecOpk6FLtpf0ibH99QCZnTO8sfzuuvsAg78Y DfI= -----END CERTIFICATE-----Generated at Mon Jun 10 09:43:40 2024 by rpki-client on console-fra.rpki-client.org