$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa File: 326130363a313238333a3a2f33322d3332203d3e203438373030.roa (raw, json) Hash identifier: SH+d8GaMEv7cq9q3syALOJ98PjmCcgQzSMSYaxsw0DE= Subject key identifier: C6:04:22:D6:42:D0:16:6F:A0:A5:55:6B:DB:F1:4C:57:D1:78:E8:EF Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 73687632D310F488A4691C66E14E56B9C6630666 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa Signing time: Sun 15 Sep 2024 14:36:34 +0000 ROA not before: Sun 15 Sep 2024 14:31:34 +0000 ROA not after: Sun 14 Sep 2025 14:36:34 +0000 asID: 48700 IP address blocks: 2a06:1283::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:68:76:32:d3:10:f4:88:a4:69:1c:66:e1:4e:56:b9:c6:63:06:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:34 2024 GMT Not After : Sep 14 14:36:34 2025 GMT Subject: CN=C60422D642D0166FA0A5556BDBF14C57D178E8EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:00:1d:b3:98:79:35:8a:08:a8:b2:57:3e:46: 2a:71:bb:63:b6:76:b5:8c:37:05:5a:6a:6c:be:04: 7f:d4:91:4e:1e:05:68:0c:21:cb:c3:f1:54:8c:9d: 68:9d:8f:1e:b6:51:10:0d:ee:fd:b5:41:5a:7a:40: 15:0e:87:c2:89:06:1e:cc:bb:e7:df:81:1c:57:67: 11:cb:01:c5:b7:7a:53:b4:10:90:13:fa:9e:66:6f: 05:3b:08:79:c1:9a:77:67:96:1f:0b:81:fd:c7:ae: 18:89:1f:c8:da:ef:58:80:bd:62:d7:3e:3a:8b:06: 8d:53:52:09:27:2e:dd:93:d5:c9:ee:6d:6e:97:38: 14:d1:1a:6f:d6:3e:52:83:ab:20:64:41:9c:2d:81: 8e:90:ce:2b:c8:26:99:99:8b:a1:68:14:68:3f:f4: 19:d7:d8:ba:67:93:51:d5:a3:a9:5a:0d:b8:9c:00: 22:90:e0:e6:b1:de:57:7e:17:ff:22:24:62:33:73: 72:d5:54:d6:7e:d0:46:4f:78:61:a3:46:d0:25:4c: d0:ef:09:cb:7e:0d:d7:04:f0:18:6f:f0:40:f6:0d: a7:7e:cf:be:07:5e:90:f2:b2:89:4e:b4:5e:91:ac: 76:0a:4d:02:cb:2f:93:71:01:4e:7e:0d:64:9d:c8: 92:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:04:22:D6:42:D0:16:6F:A0:A5:55:6B:DB:F1:4C:57:D1:78:E8:EF X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/32 Signature Algorithm: sha256WithRSAEncryption b4:13:9b:ec:db:dc:fe:ab:22:aa:7b:44:eb:82:03:5e:60:a9: 59:61:09:51:59:a8:91:1a:0e:a6:ea:72:ec:cf:ec:a7:2a:df: 1d:9b:8f:3f:58:48:71:38:4a:8d:9e:71:31:a9:84:a8:77:37: 85:2a:e8:df:d1:94:2c:bd:e4:f8:80:24:ff:d6:ae:81:9d:61: 1a:60:be:70:60:ff:e5:be:6d:9c:e0:b1:d4:ad:8c:7d:33:8d: 38:a9:08:db:81:3d:17:36:06:1e:02:05:55:0d:db:c7:44:68: ff:f0:a8:3e:ca:83:5f:ab:52:d6:ce:93:c4:22:1f:67:cf:41: f0:a3:d1:50:78:99:72:3c:0d:09:18:ba:6f:0a:97:82:8f:50: 92:6c:92:06:83:be:d5:37:15:04:e3:22:bd:32:43:a8:74:20: e4:f6:b4:1a:47:ce:95:26:20:22:94:07:06:83:bc:bf:23:7c: cc:a3:33:63:be:c2:30:b5:bc:5f:a5:5f:f9:dc:9b:2b:09:62: 30:e1:2d:9d:c3:8a:51:ca:cb:5d:87:d2:07:8e:5a:37:19:1d: 71:1c:5e:ca:03:15:0c:80:8e:38:e1:04:e2:ab:79:e8:bf:b6: c1:7d:ea:c6:97:9a:0e:ca:fe:23:27:d4:f8:72:f3:ca:04:e6: f3:58:47:24 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUc2h2MtMQ9IikaRxm4U5WucZjBmYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzRaFw0yNTA5MTQxNDM2MzRaMDMxMTAvBgNV BAMTKEM2MDQyMkQ2NDJEMDE2NkZBMEE1NTU2QkRCRjE0QzU3RDE3OEU4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBAB2zmHk1igioslc+Ripxu2O2 drWMNwVaamy+BH/UkU4eBWgMIcvD8VSMnWidjx62URAN7v21QVp6QBUOh8KJBh7M u+ffgRxXZxHLAcW3elO0EJAT+p5mbwU7CHnBmndnlh8Lgf3HrhiJH8ja71iAvWLX PjqLBo1TUgknLt2T1cnubW6XOBTRGm/WPlKDqyBkQZwtgY6QzivIJpmZi6FoFGg/ 9BnX2Lpnk1HVo6laDbicACKQ4Oax3ld+F/8iJGIzc3LVVNZ+0EZPeGGjRtAlTNDv Cct+DdcE8Bhv8ED2Dad+z74HXpDysolOtF6RrHYKTQLLL5NxAU5+DWSdyJLRAgMB AAGjggJsMIICaDAdBgNVHQ4EFgQUxgQi1kLQFm+gpVVr2/FMV9F46O8wHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG EoMwDQYJKoZIhvcNAQELBQADggEBALQTm+zb3P6rIqp7ROuCA15gqVlhCVFZqJEa DqbqcuzP7Kcq3x2bjz9YSHE4So2ecTGphKh3N4Uq6N/RlCy95PiAJP/WroGdYRpg vnBg/+W+bZzgsdStjH0zjTipCNuBPRc2Bh4CBVUN28dEaP/wqD7Kg1+rUtbOk8Qi H2fPQfCj0VB4mXI8DQkYum8Kl4KPUJJskgaDvtU3FQTjIr0yQ6h0IOT2tBpHzpUm ICKUBwaDvL8jfMyjM2O+wjC1vF+lX/ncmysJYjDhLZ3DilHKy12H0geOWjcZHXEc XsoDFQyAjjjhBOKreei/tsF96saXmg7K/iMn1Phy88oE5vNYRyQ= -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org