$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa File: 326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa (raw, json) Hash identifier: X5cP9INzyU6hfhzHW/HgOMcxnrIOQ/8U00kirObl4Jg= Subject key identifier: D0:08:51:E1:BD:78:6A:22:C8:04:F0:5D:57:4E:32:79:85:C8:91:94 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 3099CFE3387DC0B8281DDA5B30DEF441FB5C020B Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa Signing time: Sun 15 Sep 2024 14:36:38 +0000 ROA not before: Sun 15 Sep 2024 14:31:38 +0000 ROA not after: Sun 14 Sep 2025 14:36:38 +0000 asID: 216052 IP address blocks: 2a06:1283:b1b0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:99:cf:e3:38:7d:c0:b8:28:1d:da:5b:30:de:f4:41:fb:5c:02:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:38 2024 GMT Not After : Sep 14 14:36:38 2025 GMT Subject: CN=D00851E1BD786A22C804F05D574E327985C89194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:85:a0:e5:fd:20:f1:87:2e:e5:fe:bf:14: 2d:b6:fa:1c:ca:6c:ae:c7:0b:43:f1:7d:7c:43:ed: 7e:96:a4:1e:5d:76:dd:a6:24:f1:b6:a8:d3:fc:f2: 55:2f:6c:00:6c:23:51:96:74:36:2b:c1:1b:8f:7e: 44:c0:d4:a6:f7:3b:ba:66:e9:53:1e:42:23:43:fc: f2:04:52:3d:55:19:73:a4:8d:58:a7:98:c5:7f:0f: cd:10:4b:48:5d:15:4a:7b:a3:36:bc:db:6e:00:2b: d1:52:c9:d9:6f:57:ed:8b:0c:5d:14:20:e5:d7:61: 86:1b:93:45:69:ab:a2:8e:f4:07:90:b9:a0:25:48: 2f:89:65:66:fb:89:09:e4:83:c6:98:c9:58:fc:02: c4:17:87:4d:05:3f:da:d7:df:7d:89:56:95:d9:bd: 2a:73:f8:e9:19:06:16:65:b8:91:66:7f:2f:73:e3: f5:de:b2:f3:04:2a:10:28:28:f9:65:2b:33:2b:ba: 5b:5a:c6:e7:c8:56:47:fe:a2:1b:87:f7:36:0e:89: 05:60:b6:82:b0:d5:77:7c:e7:44:39:bc:fd:14:80: 01:9d:16:d2:f3:02:55:6f:31:ac:f1:64:d0:51:e5: a9:be:8d:25:06:11:e4:f9:96:08:f8:e2:ab:07:65: d5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:08:51:E1:BD:78:6A:22:C8:04:F0:5D:57:4E:32:79:85:C8:91:94 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b1b0::/44 Signature Algorithm: sha256WithRSAEncryption c1:47:6c:18:02:1d:37:89:19:4b:da:9b:7e:d9:dd:30:7f:da: de:43:4a:74:b5:f6:bd:9e:f8:22:00:4d:04:a8:c1:80:03:c2: f5:2f:19:9a:7e:d9:fa:b4:3d:7a:17:e4:f6:9b:51:8e:4a:44: 5e:9e:28:c1:e3:3c:ee:73:e1:30:72:fe:94:11:d1:1e:35:07: f2:0b:34:d0:67:28:fd:4b:9a:c5:69:bb:42:66:66:75:c0:0e: 51:e5:58:51:cf:fd:59:a1:23:bd:ed:4d:53:c8:5a:1d:16:91: 4c:eb:66:fe:05:7c:42:bb:32:21:e1:a6:99:17:09:c8:ef:ab: c1:20:e1:d3:1b:5e:df:ce:44:dd:5e:32:a5:83:76:d0:4f:c3: 6c:bd:f8:61:48:0d:3e:0f:77:ca:36:96:6a:6b:c7:23:3d:aa: eb:dc:bd:e3:c6:d2:ea:b9:4f:7d:6e:29:44:b9:fc:45:e1:16: 3c:1a:16:1e:c3:cc:63:2b:d5:db:9e:93:a9:30:86:99:8d:21: 2b:ba:76:94:ab:00:1d:f6:41:3d:79:e5:d2:65:c6:bd:af:6f: b7:b6:b9:15:f2:93:f2:67:26:fa:2a:fa:98:6f:fe:76:49:84: e8:b3:6c:b0:13:52:bc:e9:f6:0c:9b:04:fb:ae:2d:bc:a0:d1: f6:36:12:98 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUMJnP4zh9wLgoHdpbMN70QftcAgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzhaFw0yNTA5MTQxNDM2MzhaMDMxMTAvBgNV BAMTKEQwMDg1MUUxQkQ3ODZBMjJDODA0RjA1RDU3NEUzMjc5ODVDODkxOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kIWg5f0g8Ycu5f6/FC22+hzK bK7HC0PxfXxD7X6WpB5ddt2mJPG2qNP88lUvbABsI1GWdDYrwRuPfkTA1Kb3O7pm 6VMeQiND/PIEUj1VGXOkjVinmMV/D80QS0hdFUp7oza8224AK9FSydlvV+2LDF0U IOXXYYYbk0Vpq6KO9AeQuaAlSC+JZWb7iQnkg8aYyVj8AsQXh00FP9rX332JVpXZ vSpz+OkZBhZluJFmfy9z4/XesvMEKhAoKPllKzMrultaxufIVkf+ohuH9zYOiQVg toKw1Xd850Q5vP0UgAGdFtLzAlVvMazxZNBR5am+jSUGEeT5lgj44qsHZdWrAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU0AhR4b14aiLIBPBdV04yeYXIkZQwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxNjIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoOxsDANBgkqhkiG9w0BAQsFAAOCAQEAwUdsGAIdN4kZS9qb ftndMH/a3kNKdLX2vZ74IgBNBKjBgAPC9S8Zmn7Z+rQ9ehfk9ptRjkpEXp4oweM8 7nPhMHL+lBHRHjUH8gs00Gco/UuaxWm7QmZmdcAOUeVYUc/9WaEjve1NU8haHRaR TOtm/gV8QrsyIeGmmRcJyO+rwSDh0xte385E3V4ypYN20E/DbL34YUgNPg93yjaW amvHIz2q69y948bS6rlPfW4pRLn8ReEWPBoWHsPMYyvV256TqTCGmY0hK7p2lKsA HfZBPXnl0mXGva9vt7a5FfKT8mcm+ir6mG/+dkmE6LNssBNSvOn2DJsE+64tvKDR 9jYSmA== -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org