$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: oIbkDGM25IkOf/rMtq4KLdUxHB83t7kg8kzqUGM+R98= Subject key identifier: 41:EB:C8:47:CD:15:A0:3E:4C:4E:99:02:DA:04:70:AD:22:1A:C6:48 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 18249E39EC52BC831CF63F9A75DEA33B47194325 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 15 Sep 2024 14:36:41 +0000 ROA not before: Sun 15 Sep 2024 14:31:41 +0000 ROA not after: Sun 14 Sep 2025 14:36:41 +0000 asID: 212049 IP address blocks: 2a06:1283:b334::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:24:9e:39:ec:52:bc:83:1c:f6:3f:9a:75:de:a3:3b:47:19:43:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:41 2024 GMT Not After : Sep 14 14:36:41 2025 GMT Subject: CN=41EBC847CD15A03E4C4E9902DA0470AD221AC648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:56:6b:b7:92:34:09:7b:a7:4f:ec:ab:f8:e3: 27:c8:4d:91:a3:16:3b:c9:ce:28:21:ba:82:97:d0: 4e:81:35:2d:05:f0:ad:44:26:bd:76:fc:09:e8:21: 1b:cd:d5:3b:20:c9:24:0a:d8:04:7b:4a:1c:95:16: 87:b1:a4:91:dc:5c:ff:b4:49:d5:66:c7:a8:8a:41: 8e:ac:3f:b9:53:ca:df:85:39:73:0d:ae:a6:c2:dc: b3:0f:15:31:88:5f:5c:f9:5f:78:6c:77:c4:a6:5c: 35:e7:3d:f4:07:58:ba:bc:48:90:e6:9e:5f:88:e7: b6:42:91:98:20:e1:5d:80:79:86:7f:6d:36:ed:fe: 04:20:fb:67:3f:7a:e0:77:65:7a:7d:ca:39:cb:84: 38:00:86:1c:43:d9:1d:01:6f:06:36:d1:30:b6:4f: 48:8c:ea:e3:c4:63:db:63:6c:95:ef:05:26:6a:e9: 6b:76:c8:b5:75:c1:12:22:af:66:c3:b8:9f:ba:22: c8:99:31:ed:27:f2:a1:93:a3:fe:1a:58:dd:c3:98: 21:4d:ba:c3:8a:a2:c7:c5:c0:41:00:d6:be:48:2f: 01:d4:61:34:d4:e9:98:b6:24:57:45:52:54:b8:ce: 69:ba:14:42:e1:58:21:af:67:3c:b2:25:d9:d5:14: 7e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EB:C8:47:CD:15:A0:3E:4C:4E:99:02:DA:04:70:AD:22:1A:C6:48 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b334::/48 Signature Algorithm: sha256WithRSAEncryption 1b:05:9b:09:b4:07:be:bc:d0:fd:e8:10:3a:f7:89:7f:92:38: 5d:f7:2d:ea:0e:be:9d:8e:f6:6f:f9:f7:74:6a:82:cf:39:06: 04:a6:bc:cb:a2:85:04:88:61:60:cc:94:15:c3:63:c0:3d:64: b2:89:5f:f5:a4:f1:38:13:a5:f6:ef:91:99:09:2f:62:be:a2: ac:95:8b:a3:e7:34:54:0b:ed:e6:ef:76:9d:f2:00:40:7d:ce: 21:d4:9a:e0:3f:b1:5e:8b:10:a2:1f:2a:4f:f6:63:b7:96:7c: a9:27:76:4a:6e:88:69:76:43:49:c4:71:ee:92:b9:d3:e4:0b: 3b:1a:c6:47:88:56:b3:71:7a:6f:e9:a4:d0:92:97:43:a5:76: 4e:aa:c7:ce:d6:89:e7:e7:e2:44:42:dc:74:a1:0d:b1:f4:ca: e2:17:cc:d0:6c:b9:f4:08:30:1e:ba:a5:cd:38:f4:d0:49:d3: b8:69:ea:cb:d7:c8:96:cf:a1:47:1e:2e:a9:25:b5:79:3b:15: a8:83:4c:97:6e:07:9f:e0:b8:87:e4:21:ba:52:ee:b1:21:ff: 59:74:fa:12:31:41:da:77:6d:24:0e:c4:29:3f:f5:d9:e8:8c: e9:d9:f7:69:33:df:f2:de:7b:6e:a3:b2:22:8f:a8:c9:7d:12: 98:3b:8c:b4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUGCSeOexSvIMc9j+add6jO0cZQyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDFaFw0yNTA5MTQxNDM2NDFaMDMxMTAvBgNV BAMTKDQxRUJDODQ3Q0QxNUEwM0U0QzRFOTkwMkRBMDQ3MEFEMjIxQUM2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrVmu3kjQJe6dP7Kv44yfITZGj FjvJzighuoKX0E6BNS0F8K1EJr12/AnoIRvN1TsgySQK2AR7ShyVFoexpJHcXP+0 SdVmx6iKQY6sP7lTyt+FOXMNrqbC3LMPFTGIX1z5X3hsd8SmXDXnPfQHWLq8SJDm nl+I57ZCkZgg4V2AeYZ/bTbt/gQg+2c/euB3ZXp9yjnLhDgAhhxD2R0BbwY20TC2 T0iM6uPEY9tjbJXvBSZq6Wt2yLV1wRIir2bDuJ+6IsiZMe0n8qGTo/4aWN3DmCFN usOKosfFwEEA1r5ILwHUYTTU6Zi2JFdFUlS4zmm6FELhWCGvZzyyJdnVFH7jAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUQevIR80VoD5MTpkC2gRwrSIaxkgwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNDANBgkqhkiG9w0BAQsFAAOCAQEAGwWbCbQHvrzQ/egQ OveJf5I4Xfct6g6+nY72b/n3dGqCzzkGBKa8y6KFBIhhYMyUFcNjwD1ksolf9aTx OBOl9u+RmQkvYr6irJWLo+c0VAvt5u92nfIAQH3OIdSa4D+xXosQoh8qT/Zjt5Z8 qSd2Sm6IaXZDScRx7pK50+QLOxrGR4hWs3F6b+mk0JKXQ6V2TqrHztaJ5+fiRELc dKENsfTK4hfM0Gy59AgwHrqlzTj00EnTuGnqy9fIls+hRx4uqSW1eTsVqINMl24H n+C4h+QhulLusSH/WXT6EjFB2ndtJA7EKT/12eiM6dn3aTPf8t57bqOyIo+oyX0S mDuMtA== -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org