$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa File: 326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa (raw, json) Hash identifier: yA13hc/KDRFLjwfNWP8QZvx3IRicw6qDIPlZaBiNhhc= Subject key identifier: 35:07:B1:AD:4A:EF:F1:F5:E8:88:56:FC:B1:FC:14:24:0A:8D:EE:71 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 3F95709D38178B1F6EFE73D81379AABF90D5EDBE Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa Signing time: Sun 15 Sep 2024 14:36:38 +0000 ROA not before: Sun 15 Sep 2024 14:31:38 +0000 ROA not after: Sun 14 Sep 2025 14:36:38 +0000 asID: 216267 IP address blocks: 2a06:1283:b200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 12:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:95:70:9d:38:17:8b:1f:6e:fe:73:d8:13:79:aa:bf:90:d5:ed:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:38 2024 GMT Not After : Sep 14 14:36:38 2025 GMT Subject: CN=3507B1AD4AEFF1F5E88856FCB1FC14240A8DEE71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:e0:24:05:b1:47:00:51:d9:cb:fd:b3:02: 1e:6c:2f:9b:63:91:fd:06:92:4c:b6:7b:b1:38:7b: 3c:f4:31:66:10:9b:b6:7d:fd:55:fc:b5:96:ca:9a: 28:84:68:01:1b:a6:89:48:2d:14:9b:97:24:79:85: 8c:93:5d:85:42:d5:90:a6:4a:44:1d:9c:87:a7:77: 17:a1:2f:72:fc:09:9b:09:53:73:83:79:5a:ce:f9: 0d:cd:46:78:f8:48:d0:21:db:fc:6d:bf:de:91:39: fa:96:fe:f8:d9:e4:e3:0e:f0:4a:cb:d3:b4:b4:f4: 8b:f3:58:3f:c6:1c:81:13:6a:90:aa:00:97:07:c5: aa:b9:ff:cc:c6:20:83:d4:48:df:12:27:16:f3:70: 8e:61:bc:11:11:3f:fb:d3:f2:2c:e3:56:98:89:b1: 7b:3b:f3:4f:48:16:b3:71:1c:32:dd:71:c8:2f:8f: 89:a9:eb:a4:e2:21:4e:8a:7c:28:59:76:54:31:67: 33:8c:bb:37:24:eb:88:4e:48:30:2c:0a:8e:27:3d: 72:c2:b1:a7:5c:e0:b8:33:47:df:95:21:56:d8:24: 14:d6:e8:f1:b2:0d:70:ad:94:38:5e:a0:c3:d6:6e: 4e:29:1e:01:7f:73:b5:3c:54:5c:36:b8:61:9b:03: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:07:B1:AD:4A:EF:F1:F5:E8:88:56:FC:B1:FC:14:24:0A:8D:EE:71 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b200::/40 Signature Algorithm: sha256WithRSAEncryption b6:f1:ec:41:72:c3:76:5f:25:d4:dc:dd:4d:08:81:cf:ba:44: 98:b4:0d:64:68:48:e6:4e:7e:c8:ff:8e:81:b6:d9:79:df:f7: be:e1:e2:38:1f:1b:58:89:db:ff:f6:67:6f:46:76:5a:43:27: 41:70:11:b2:ca:ce:a0:20:ec:f5:2a:45:96:2c:20:36:0f:d6: 3e:e8:37:77:1b:30:ea:2d:fe:5a:1e:54:2e:63:19:e0:74:fa: f5:b1:6f:f5:ea:c1:20:8d:44:47:c1:dd:8e:b9:fb:e8:53:69: b7:c0:5b:f9:d6:10:c9:72:0f:53:96:37:be:12:cf:8b:9f:cd: 51:11:14:1f:ea:f2:64:d6:d8:db:93:fe:3c:20:d3:7b:4b:46: bc:a6:4f:32:8b:10:00:26:10:21:f1:94:32:6c:b0:69:37:25: 83:72:15:d0:d6:e3:00:81:11:99:ac:ec:f5:3e:cb:56:23:11: 69:eb:c6:05:d4:a0:e5:68:78:28:0d:46:c6:cc:d8:dd:b0:c2: f9:6e:7d:3b:7c:e9:68:50:1a:53:9b:51:73:d7:32:f2:4e:32: 17:8a:ed:9d:7d:b3:f5:03:e1:d7:b3:79:a5:f4:cb:4d:2e:27: d9:40:d3:25:dd:c7:f3:32:2b:87:9f:15:26:50:4e:3b:49:28: 05:5e:47:80 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUP5VwnTgXix9u/nPYE3mqv5DV7b4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzhaFw0yNTA5MTQxNDM2MzhaMDMxMTAvBgNV BAMTKDM1MDdCMUFENEFFRkYxRjVFODg4NTZGQ0IxRkMxNDI0MEE4REVFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9b+AkBbFHAFHZy/2zAh5sL5tj kf0Gkky2e7E4ezz0MWYQm7Z9/VX8tZbKmiiEaAEbpolILRSblyR5hYyTXYVC1ZCm SkQdnIendxehL3L8CZsJU3ODeVrO+Q3NRnj4SNAh2/xtv96ROfqW/vjZ5OMO8ErL 07S09IvzWD/GHIETapCqAJcHxaq5/8zGIIPUSN8SJxbzcI5hvBERP/vT8izjVpiJ sXs7809IFrNxHDLdccgvj4mp66TiIU6KfChZdlQxZzOMuzck64hOSDAsCo4nPXLC sadc4LgzR9+VIVbYJBTW6PGyDXCtlDheoMPWbk4pHgF/c7U8VFw2uGGbA3VnAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUNQexrUrv8fXoiFb8sfwUJAqN7nEwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMyMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNjMyMzYzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOyMA0GCSqGSIb3DQEBCwUAA4IBAQC28exBcsN2XyXU3N1N CIHPukSYtA1kaEjmTn7I/46Bttl53/e+4eI4HxtYidv/9mdvRnZaQydBcBGyys6g IOz1KkWWLCA2D9Y+6Dd3GzDqLf5aHlQuYxngdPr1sW/16sEgjURHwd2OufvoU2m3 wFv51hDJcg9Tlje+Es+Ln81RERQf6vJk1tjbk/48INN7S0a8pk8yixAAJhAh8ZQy bLBpNyWDchXQ1uMAgRGZrOz1PstWIxFp68YF1KDlaHgoDUbGzNjdsML5bn07fOlo UBpTm1Fz1zLyTjIXiu2dfbP1A+HXs3ml9MtNLifZQNMl3cfzMiuHnxUmUE47SSgF XkeA -----END CERTIFICATE-----Generated at Fri Sep 27 23:53:00 2024 by rpki-client on console-ams.rpki-client.org