$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623434303a3a2f34382d3438203d3e20323135363439.roa File: 326130363a313238333a623434303a3a2f34382d3438203d3e20323135363439.roa (raw, json) Hash identifier: sHkN7EOIX7E4PoxEaaDOqqr+OcKCSATuPnw0DONIt5o= Subject key identifier: 80:CA:F7:98:C1:A8:C6:40:CC:6F:13:D8:A5:C2:5B:BD:96:EB:B2:4B Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 51C1B94F4215C8284A4A30C595C5BE63626C7D1D Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623434303a3a2f34382d3438203d3e20323135363439.roa Signing time: Sun 15 Sep 2024 14:36:43 +0000 ROA not before: Sun 15 Sep 2024 14:31:43 +0000 ROA not after: Sun 14 Sep 2025 14:36:43 +0000 asID: 215649 IP address blocks: 2a06:1283:b440::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:c1:b9:4f:42:15:c8:28:4a:4a:30:c5:95:c5:be:63:62:6c:7d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:43 2024 GMT Not After : Sep 14 14:36:43 2025 GMT Subject: CN=80CAF798C1A8C640CC6F13D8A5C25BBD96EBB24B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c6:71:53:0a:f5:7e:34:f6:d9:27:d5:91:f2: f6:32:5a:42:cc:3a:b9:47:f7:f0:26:cd:ca:d8:0a: 47:ac:ac:b7:9b:4a:c3:78:80:8b:79:49:3c:98:8e: 0e:54:5a:6a:e7:27:fd:86:e2:5f:c3:ed:1a:48:12: f9:01:15:99:74:eb:9e:af:cb:12:32:85:6d:bb:d7: a0:6c:94:df:98:c9:73:15:c3:31:ac:d9:5d:8e:61: b5:ed:20:5f:a2:f7:2d:d6:aa:f0:b3:73:5c:84:21: 5d:7f:45:e3:e7:7e:2a:a2:37:91:38:85:a3:52:45: a0:d0:fa:f7:c3:9b:a5:bc:39:e2:4f:10:09:49:5e: 28:68:52:c0:48:73:0e:6e:da:45:bf:1a:2c:bd:a5: d1:bf:30:3f:76:90:82:77:bb:3a:c4:1d:7f:96:76: a2:6a:b7:20:70:81:b6:0b:bc:85:8f:a4:f8:8f:06: 1d:74:8c:0c:a6:6b:66:05:9d:41:af:5e:e5:ea:31: ee:83:29:1d:df:56:d1:12:26:5d:ab:3f:b0:50:c0: 79:2f:8e:a1:b4:85:d8:35:3b:c3:56:1e:78:99:b4: 06:da:5b:68:27:13:1a:b4:18:d6:47:13:bd:10:4f: 9f:22:e1:82:a2:30:b2:4a:b1:bb:85:14:fc:6f:8e: 17:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CA:F7:98:C1:A8:C6:40:CC:6F:13:D8:A5:C2:5B:BD:96:EB:B2:4B X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623434303a3a2f34382d3438203d3e20323135363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b440::/48 Signature Algorithm: sha256WithRSAEncryption 6f:95:3d:35:40:ba:8b:63:af:03:70:f2:52:71:c9:90:9f:1a: f7:80:15:ee:fe:b1:77:09:aa:21:67:7d:3c:34:6e:eb:08:c1: 22:51:75:ae:e2:0b:84:46:cd:85:70:88:d8:6e:5b:99:56:c3: f4:dd:c3:e1:25:c4:a3:a6:3e:9f:d8:dd:b9:d3:af:1c:8c:18: 80:8d:4e:48:02:e1:76:60:c7:11:ff:ff:2e:9f:fe:52:2a:9d: 6b:85:c7:43:2b:a2:cf:38:7f:4b:23:88:4f:7f:53:4d:08:27: 3e:12:fd:df:5e:0f:9d:4f:bb:71:46:60:da:ae:53:63:80:b3: 8c:b0:e1:0c:be:9b:67:61:34:5a:cb:17:fa:4a:eb:dc:43:3b: fb:96:9a:35:6e:43:68:26:a8:14:c2:3d:19:10:1a:77:e9:f8: 46:32:a0:c1:ff:4c:30:ba:bb:09:b2:4f:ca:14:23:9c:10:e1: 3f:ad:33:82:51:6c:a8:96:bb:77:23:0b:17:fe:97:2a:6d:ce: 4c:59:1b:3b:60:e6:49:f6:f9:b6:78:99:1e:f0:9f:cd:70:32: a1:12:b4:3b:b3:1d:c7:ec:b8:b4:3d:da:d9:a7:88:2e:73:13: 6c:4d:7d:6d:12:06:39:08:a0:80:6a:14:7f:bc:e1:a0:91:4c: 43:8c:87:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUUcG5T0IVyChKSjDFlcW+Y2JsfR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDNaFw0yNTA5MTQxNDM2NDNaMDMxMTAvBgNV BAMTKDgwQ0FGNzk4QzFBOEM2NDBDQzZGMTNEOEE1QzI1QkJEOTZFQkIyNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNxnFTCvV+NPbZJ9WR8vYyWkLM OrlH9/AmzcrYCkesrLebSsN4gIt5STyYjg5UWmrnJ/2G4l/D7RpIEvkBFZl0656v yxIyhW2716BslN+YyXMVwzGs2V2OYbXtIF+i9y3WqvCzc1yEIV1/RePnfiqiN5E4 haNSRaDQ+vfDm6W8OeJPEAlJXihoUsBIcw5u2kW/Giy9pdG/MD92kIJ3uzrEHX+W dqJqtyBwgbYLvIWPpPiPBh10jAyma2YFnUGvXuXqMe6DKR3fVtESJl2rP7BQwHkv jqG0hdg1O8NWHniZtAbaW2gnExq0GNZHE70QT58i4YKiMLJKsbuFFPxvjheVAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUgMr3mMGoxkDMbxPYpcJbvZbrskswHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjM0MzQzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoO0QDANBgkqhkiG9w0BAQsFAAOCAQEAb5U9NUC6i2OvA3Dy UnHJkJ8a94AV7v6xdwmqIWd9PDRu6wjBIlF1ruILhEbNhXCI2G5bmVbD9N3D4SXE o6Y+n9jdudOvHIwYgI1OSALhdmDHEf//Lp/+Uiqda4XHQyuizzh/SyOIT39TTQgn PhL9314PnU+7cUZg2q5TY4CzjLDhDL6bZ2E0WssX+krr3EM7+5aaNW5DaCaoFMI9 GRAad+n4RjKgwf9MMLq7CbJPyhQjnBDhP60zglFsqJa7dyMLF/6XKm3OTFkbO2Dm Sfb5tniZHvCfzXAyoRK0O7Mdx+y4tD3a2aeILnMTbE19bRIGOQiggGoUf7zhoJFM Q4yHgA== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org