$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa File: 326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa (raw, json) Hash identifier: ShEzWqhPnurRSG8a6Q3ivShQbdUaqHxEOdT5yDjp47Y= Subject key identifier: 67:42:6B:FE:F5:0A:5A:20:A1:D5:1D:4D:E2:69:25:DD:BA:16:33:A7 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 0C52AF488EF09FA33871D767447B25307A097125 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa Signing time: Sun 15 Sep 2024 14:36:44 +0000 ROA not before: Sun 15 Sep 2024 14:31:44 +0000 ROA not after: Sun 14 Sep 2025 14:36:44 +0000 asID: 215649 IP address blocks: 2a06:1283:b401::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:52:af:48:8e:f0:9f:a3:38:71:d7:67:44:7b:25:30:7a:09:71:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:44 2024 GMT Not After : Sep 14 14:36:44 2025 GMT Subject: CN=67426BFEF50A5A20A1D51D4DE26925DDBA1633A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:b1:a5:32:97:65:db:99:70:7d:ab:22:92: 21:f1:b5:81:bc:74:a3:39:77:55:3b:06:57:f6:e3: a4:43:4a:27:c6:d4:bf:ad:bb:cb:ce:c6:b6:bc:e5: 2e:d9:01:58:67:99:5f:6c:11:5e:b1:0c:12:31:d4: 21:60:9b:8e:19:ec:d7:54:ab:83:ba:72:e9:40:36: ec:e9:d0:14:0d:a8:3e:41:25:1a:b2:a0:f3:e8:86: 3c:20:6d:77:c1:b8:18:3f:76:8c:f2:e2:12:7e:3e: 1f:7f:7d:39:cd:f2:98:f1:87:19:e8:62:bc:54:9e: 34:e0:d1:0b:f7:34:f7:09:e4:fa:ca:ad:c4:2a:f9: b9:9f:af:d9:2e:ac:c6:4a:43:a5:a6:ff:f4:52:e3: 87:5b:1a:05:03:bb:30:c5:6f:31:e0:5c:27:71:d6: 04:d3:8e:9d:48:f5:a7:4c:17:5f:67:05:c0:16:20: 83:f9:ce:75:0b:66:12:b4:52:67:68:2e:72:4f:bb: fd:a0:57:8f:78:93:36:46:81:c5:69:00:2b:31:37: ca:46:18:9a:50:09:1d:e3:1d:92:2a:b9:29:97:b8: a4:d0:cd:58:ce:09:00:f4:44:a4:39:f5:65:9d:d9: b9:70:be:ad:89:eb:b4:11:5b:8d:25:ee:68:4b:64: 9e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:42:6B:FE:F5:0A:5A:20:A1:D5:1D:4D:E2:69:25:DD:BA:16:33:A7 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b401::/48 Signature Algorithm: sha256WithRSAEncryption 17:70:dc:ac:0f:17:c5:28:15:72:dc:31:78:d6:3d:ab:1b:bb: cf:9b:91:87:a2:85:e7:72:48:b2:17:63:0b:1f:8f:58:df:b0: 54:94:4f:b9:cc:81:0e:38:4b:f2:f3:54:89:24:75:4d:c0:30: 50:ca:74:3c:31:c5:00:8c:05:65:71:fa:e4:49:94:ce:38:29: b3:9e:6c:cf:80:db:b1:23:66:1f:d8:18:b8:47:27:9a:f4:a3: 77:75:e9:8b:ff:8c:2b:1f:8c:16:2a:e3:4c:fc:f8:c6:66:fc: 4d:b8:64:91:6f:c4:37:d9:af:c5:ba:e8:e0:b4:27:61:a1:bf: df:3d:80:94:0d:d0:4f:58:91:30:d8:06:3b:5b:9b:76:8c:6f: 4f:f1:ea:63:49:0d:41:25:a2:62:4a:09:d7:05:2e:32:90:29: 1a:12:2e:dc:4c:28:b6:bd:5f:61:0d:72:0f:93:7a:ba:6c:3d: 06:15:ff:8c:69:bd:9d:f5:c0:fe:fd:83:6c:24:18:92:51:27: 73:11:d7:a8:26:12:22:4c:2e:72:08:f7:10:38:c6:f9:60:fa: 47:4a:c7:2e:8f:d7:29:c2:8e:b9:2c:3b:32:dc:23:77:7d:18: af:6c:31:1c:5f:12:2d:0a:2f:06:04:fd:c3:c8:5b:e4:0c:39: a2:92:aa:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUDFKvSI7wn6M4cddnRHslMHoJcSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDRaFw0yNTA5MTQxNDM2NDRaMDMxMTAvBgNV BAMTKDY3NDI2QkZFRjUwQTVBMjBBMUQ1MUQ0REUyNjkyNUREQkExNjMzQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzGbGlMpdl25lwfasikiHxtYG8 dKM5d1U7Blf246RDSifG1L+tu8vOxra85S7ZAVhnmV9sEV6xDBIx1CFgm44Z7NdU q4O6culANuzp0BQNqD5BJRqyoPPohjwgbXfBuBg/dozy4hJ+Ph9/fTnN8pjxhxno YrxUnjTg0Qv3NPcJ5PrKrcQq+bmfr9kurMZKQ6Wm//RS44dbGgUDuzDFbzHgXCdx 1gTTjp1I9adMF19nBcAWIIP5znULZhK0UmdoLnJPu/2gV494kzZGgcVpACsxN8pG GJpQCR3jHZIquSmXuKTQzVjOCQD0RKQ59WWd2blwvq2J67QRW40l7mhLZJ4ZAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUZ0Jr/vUKWiCh1R1N4mkl3boWM6cwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjM0MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoO0ATANBgkqhkiG9w0BAQsFAAOCAQEAF3DcrA8XxSgVctwx eNY9qxu7z5uRh6KF53JIshdjCx+PWN+wVJRPucyBDjhL8vNUiSR1TcAwUMp0PDHF AIwFZXH65EmUzjgps55sz4DbsSNmH9gYuEcnmvSjd3Xpi/+MKx+MFirjTPz4xmb8 TbhkkW/EN9mvxbro4LQnYaG/3z2AlA3QT1iRMNgGO1ubdoxvT/HqY0kNQSWiYkoJ 1wUuMpApGhIu3Ewotr1fYQ1yD5N6umw9BhX/jGm9nfXA/v2DbCQYklEncxHXqCYS Ikwucgj3EDjG+WD6R0rHLo/XKcKOuSw7Mtwjd30Yr2wxHF8SLQovBgT9w8hb5Aw5 opKqtg== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org