$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa File: 326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa (raw, json) Hash identifier: jj4MMS7Ss71QrHsWUws9vHa7jbV028b/flj3NUWh1sY= Subject key identifier: 89:43:53:E0:3C:C7:81:B0:27:02:CD:4C:1D:70:8B:23:E0:40:3B:8C Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 67C01CFD58C6BF8CF2B077D5E9D5D8FE012EFF17 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa Signing time: Sun 15 Sep 2024 14:36:35 +0000 ROA not before: Sun 15 Sep 2024 14:31:35 +0000 ROA not after: Sun 14 Sep 2025 14:36:35 +0000 asID: 216052 IP address blocks: 2a06:1283:b121::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c0:1c:fd:58:c6:bf:8c:f2:b0:77:d5:e9:d5:d8:fe:01:2e:ff:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:35 2024 GMT Not After : Sep 14 14:36:35 2025 GMT Subject: CN=894353E03CC781B02702CD4C1D708B23E0403B8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d2:18:7b:29:eb:a8:b0:c8:ea:48:5b:9a:3a: a2:47:5c:4c:9f:de:0f:70:6f:a1:03:e3:42:dc:be: 9d:dc:68:ed:81:66:d9:ad:8e:41:d3:d9:7b:a4:98: d0:46:bc:85:ed:29:f2:06:af:0f:17:7f:d2:b9:1a: 12:65:d3:80:7b:25:c6:8f:4b:d7:46:86:2c:6d:b6: 38:10:ba:05:32:fe:b3:4b:1a:f0:61:68:1e:15:46: f1:38:bc:f6:83:dc:e6:8e:e6:00:0f:4a:1b:e3:19: 9b:8b:92:b3:a3:98:aa:89:c8:58:b0:08:fc:ac:eb: d8:42:81:05:e1:0a:ac:02:c6:e1:33:89:4a:0d:45: 9c:76:6c:68:e6:c4:d0:db:fe:8a:25:b1:7c:11:97: e4:a3:91:84:9d:34:56:fb:0c:4c:61:44:5a:6f:b9: c0:3d:6d:29:d9:fc:b6:f9:1b:6b:10:70:43:a8:52: 0c:31:12:9c:d6:e5:46:0b:10:17:8b:de:bb:3a:b9: 1b:91:d2:cf:c0:4c:ad:1b:90:0b:c9:7b:28:50:82: 56:ab:db:cb:6c:db:38:a2:f7:d3:36:b9:45:f1:e3: d3:9d:d8:92:0a:4a:95:68:16:35:02:fe:83:ec:35: 87:23:ef:0d:27:34:4a:77:6c:1e:ef:18:ef:d9:1a: 48:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:43:53:E0:3C:C7:81:B0:27:02:CD:4C:1D:70:8B:23:E0:40:3B:8C X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b121::/48 Signature Algorithm: sha256WithRSAEncryption 77:8b:1a:e0:4a:d2:bf:c7:68:af:ea:80:b4:dd:dc:6d:92:e5: 26:1f:e1:81:3e:ce:0d:39:88:4f:15:33:9e:8e:4a:3d:29:f7: e5:f5:5b:1d:03:ee:e9:d3:90:57:18:db:3b:5c:94:9a:b9:12: 27:05:c2:7b:c7:c6:04:5c:3e:00:ce:f0:26:5b:3a:e7:2a:29: 57:95:cc:9f:a9:a9:a8:e4:20:77:5b:ac:8f:80:01:1a:8a:93: c7:03:f7:e2:33:2b:25:1c:f8:94:16:1f:24:cf:09:26:2d:13: f6:59:e2:91:07:1f:d1:a2:01:7b:76:13:ee:85:ac:8a:70:ed: 53:2b:74:48:cd:92:82:bf:5c:41:11:fb:5c:69:60:00:81:cd: cc:db:39:e6:d4:6d:93:b2:49:f0:50:83:83:dc:66:b7:d8:db: 3d:0a:89:3b:1f:1b:41:9c:b5:06:9b:bc:6d:dd:ac:63:4a:ae: ee:58:16:a6:35:f5:4a:6a:2c:f6:31:98:d6:24:c8:cf:ac:63: 15:cf:2d:a8:6f:74:1e:2b:4c:ea:5f:dc:7a:18:b6:de:1e:fb: 8e:30:ae:de:27:03:39:ff:9d:d8:76:3b:22:32:c8:e1:86:61: 47:18:b2:d5:fe:c8:cd:9c:fe:af:ca:6c:7a:ba:eb:18:ad:b7: 07:ab:9b:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZ8Ac/VjGv4zysHfV6dXY/gEu/xcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzVaFw0yNTA5MTQxNDM2MzVaMDMxMTAvBgNV BAMTKDg5NDM1M0UwM0NDNzgxQjAyNzAyQ0Q0QzFENzA4QjIzRTA0MDNCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj0hh7KeuosMjqSFuaOqJHXEyf 3g9wb6ED40Lcvp3caO2BZtmtjkHT2XukmNBGvIXtKfIGrw8Xf9K5GhJl04B7JcaP S9dGhixttjgQugUy/rNLGvBhaB4VRvE4vPaD3OaO5gAPShvjGZuLkrOjmKqJyFiw CPys69hCgQXhCqwCxuEziUoNRZx2bGjmxNDb/oolsXwRl+SjkYSdNFb7DExhRFpv ucA9bSnZ/Lb5G2sQcEOoUgwxEpzW5UYLEBeL3rs6uRuR0s/ATK0bkAvJeyhQglar 28ts2zii99M2uUXx49Od2JIKSpVoFjUC/oPsNYcj7w0nNEp3bB7vGO/ZGkjtAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUiUNT4DzHgbAnAs1MHXCLI+BAO4wwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxMzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOxITANBgkqhkiG9w0BAQsFAAOCAQEAd4sa4ErSv8dor+qA tN3cbZLlJh/hgT7ODTmITxUzno5KPSn35fVbHQPu6dOQVxjbO1yUmrkSJwXCe8fG BFw+AM7wJls65yopV5XMn6mpqOQgd1usj4ABGoqTxwP34jMrJRz4lBYfJM8JJi0T 9lnikQcf0aIBe3YT7oWsinDtUyt0SM2Sgr9cQRH7XGlgAIHNzNs55tRtk7JJ8FCD g9xmt9jbPQqJOx8bQZy1Bpu8bd2sY0qu7lgWpjX1Smos9jGY1iTIz6xjFc8tqG90 HitM6l/cehi23h77jjCu3icDOf+d2HY7IjLI4YZhRxiy1f7IzZz+r8pserrrGK23 B6ubRg== -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org