$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: aBzx/isf/3kLP3n+9by0U4hwjl+Zx3/nu7wON+zevgA= Subject key identifier: 68:97:9F:53:28:D8:2C:6E:5C:82:C3:C5:CA:11:6A:41:00:42:DC:42 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 64171567353940221BF95AA010E296FB41E3EA15 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:39 +0000 ROA not before: Sun 15 Sep 2024 14:31:39 +0000 ROA not after: Sun 14 Sep 2025 14:36:39 +0000 asID: 216043 IP address blocks: 2a06:1283:c01a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:17:15:67:35:39:40:22:1b:f9:5a:a0:10:e2:96:fb:41:e3:ea:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:39 2024 GMT Not After : Sep 14 14:36:39 2025 GMT Subject: CN=68979F5328D82C6E5C82C3C5CA116A410042DC42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:03:c3:b6:df:dc:d8:b3:52:e3:de:bf:d3:05: c2:b3:eb:99:f4:75:1b:02:f1:5a:1f:2b:57:18:28: d4:2f:49:ca:2d:39:b0:7c:c1:fa:26:60:df:22:43: 85:64:52:94:d6:37:5f:f8:c6:14:13:6e:d3:67:f1: 59:1d:1b:14:07:17:2a:d5:23:d8:39:7c:34:6b:37: d8:be:1c:47:71:a2:89:d1:d4:c3:f8:e1:c9:1b:15: 55:62:50:25:53:2b:21:0e:39:d5:01:f4:58:59:89: d2:51:a8:61:24:5f:93:d4:6b:cf:d9:49:ac:c7:57: 09:65:46:a9:e9:c2:63:a7:ef:41:57:4d:fb:0c:b1: fb:c8:37:99:3a:08:70:f1:65:5f:7b:be:92:ed:b6: fe:d8:82:ea:d4:eb:03:2e:0f:c3:4f:54:15:3f:f8: 45:7c:b7:b5:44:db:82:41:a5:d5:ad:46:70:f2:8c: 48:1c:bc:38:cb:e3:cc:1e:db:da:6d:69:35:a9:9c: 07:f0:24:d8:56:63:39:ae:8d:09:83:f1:06:8e:91: 15:e3:8f:7f:75:ee:47:62:f4:d4:48:9b:91:c9:99: 7a:25:89:9f:4c:b0:f1:2c:df:69:17:73:8e:b7:ba: ef:13:fb:0e:28:6f:7b:56:45:f4:d5:26:48:9d:5d: 1c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:97:9F:53:28:D8:2C:6E:5C:82:C3:C5:CA:11:6A:41:00:42:DC:42 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01a::/48 Signature Algorithm: sha256WithRSAEncryption 73:81:4c:88:34:76:68:2e:93:ea:09:f7:4a:03:45:b3:d1:5f: e7:21:ca:e1:9c:91:9c:4a:14:15:44:8f:90:ff:6f:a4:d9:ac: 72:97:9f:4a:8c:bf:65:20:b1:2d:fd:15:7a:16:10:70:f7:c9: 91:c1:a5:cb:2d:43:89:42:a0:9a:e2:a7:93:4a:4d:a2:48:33: 77:67:9b:0e:2b:cd:55:62:c8:02:8b:fa:9b:18:30:92:21:e9: 3c:77:f3:ea:7c:e9:fa:fc:1f:44:7f:da:a3:a1:55:92:04:25: 64:9c:4f:fa:3a:34:4a:3c:48:fc:57:8d:6c:cc:e5:52:83:04: 7d:28:17:a8:59:7a:93:bc:4e:b8:c7:d6:94:0f:d2:cf:fe:b3: f9:d2:37:e6:d4:8b:92:bc:4e:ae:a3:94:f5:f3:4c:a0:49:8c: fd:d9:b3:44:74:47:29:83:e5:d8:b0:b2:20:97:08:f0:0d:ca: 92:a7:e8:3c:93:7f:a9:a6:46:71:d1:18:8f:f9:c5:99:c8:40: be:44:5a:90:46:bd:41:1a:89:3e:78:98:0c:65:03:20:3d:2c: ca:45:5d:27:e2:47:e1:b7:58:98:63:b8:4e:cb:5f:88:5b:b2: ef:b3:ca:a7:11:4b:99:d7:5c:98:8d:0b:45:5e:5a:4d:04:41: c0:44:f2:7a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZBcVZzU5QCIb+VqgEOKW+0Hj6hUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzlaFw0yNTA5MTQxNDM2MzlaMDMxMTAvBgNV BAMTKDY4OTc5RjUzMjhEODJDNkU1QzgyQzNDNUNBMTE2QTQxMDA0MkRDNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVA8O239zYs1Lj3r/TBcKz65n0 dRsC8VofK1cYKNQvScotObB8wfomYN8iQ4VkUpTWN1/4xhQTbtNn8VkdGxQHFyrV I9g5fDRrN9i+HEdxoonR1MP44ckbFVViUCVTKyEOOdUB9FhZidJRqGEkX5PUa8/Z SazHVwllRqnpwmOn70FXTfsMsfvIN5k6CHDxZV97vpLttv7YgurU6wMuD8NPVBU/ +EV8t7VE24JBpdWtRnDyjEgcvDjL48we29ptaTWpnAfwJNhWYzmujQmD8QaOkRXj j3917kdi9NRIm5HJmXoliZ9MsPEs32kXc463uu8T+w4ob3tWRfTVJkidXRwtAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUaJefUyjYLG5cgsPFyhFqQQBC3EIwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAGjANBgkqhkiG9w0BAQsFAAOCAQEAc4FMiDR2aC6T6gn3 SgNFs9Ff5yHK4ZyRnEoUFUSPkP9vpNmscpefSoy/ZSCxLf0VehYQcPfJkcGlyy1D iUKgmuKnk0pNokgzd2ebDivNVWLIAov6mxgwkiHpPHfz6nzp+vwfRH/ao6FVkgQl ZJxP+jo0SjxI/FeNbMzlUoMEfSgXqFl6k7xOuMfWlA/Sz/6z+dI35tSLkrxOrqOU 9fNMoEmM/dmzRHRHKYPl2LCyIJcI8A3KkqfoPJN/qaZGcdEYj/nFmchAvkRakEa9 QRqJPniYDGUDID0sykVdJ+JH4bdYmGO4TstfiFuy77PKpxFLmddcmI0LRV5aTQRB wETyeg== -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org