$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: QfrqNN6j9QEnLv8AYp6lAcX0RlmiZ6Ia73tAT21sJps= Subject key identifier: B8:12:E0:CF:64:D9:25:A1:2A:1E:32:0B:FF:D0:35:AD:95:72:71:63 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 184A4F5B3F1F0A7F601A048643830A840F86416F Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:40 +0000 ROA not before: Sun 15 Sep 2024 14:31:40 +0000 ROA not after: Sun 14 Sep 2025 14:36:40 +0000 asID: 216043 IP address blocks: 2a06:1283:c01c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:4a:4f:5b:3f:1f:0a:7f:60:1a:04:86:43:83:0a:84:0f:86:41:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:40 2024 GMT Not After : Sep 14 14:36:40 2025 GMT Subject: CN=B812E0CF64D925A12A1E320BFFD035AD95727163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:12:29:d7:2b:7d:fd:fd:f7:7b:8e:26:35:33: 98:96:3e:1e:6d:12:5a:e5:70:25:c8:ca:df:45:8f: a8:34:ad:c9:53:32:d3:a8:92:0b:2d:b3:26:e3:23: b9:0e:2c:b9:84:0c:f6:29:3e:52:68:a2:bd:06:ef: fd:76:ca:f1:cc:2f:7f:58:5f:ce:0d:58:b7:c5:3c: 89:32:c7:72:08:42:78:b9:06:3a:b4:99:d4:32:db: 73:8d:11:b2:67:9c:44:a4:ea:10:ed:bf:d0:ee:e7: bd:49:bb:25:93:8b:39:55:b8:50:2d:ae:f6:fd:1d: 84:52:9c:d9:20:16:d7:df:a7:45:19:b2:27:0c:d8: 1d:ac:7a:d6:32:93:89:9f:dd:5d:8e:33:09:04:7e: 60:a0:a0:01:97:4c:f1:2c:7a:65:96:0b:c6:3a:39: bc:69:d6:dd:39:52:d2:31:6a:0b:41:71:e3:61:09: 32:06:a4:21:d9:a3:b1:75:f5:3a:f1:33:0a:ed:ec: 2a:67:10:ed:df:15:38:97:91:1a:be:99:94:bc:4c: 07:9d:78:75:8a:e5:9b:21:0c:28:3e:07:ba:f3:37: 3a:e1:f8:e2:ef:e1:8f:82:0a:ef:18:13:70:89:ca: b4:37:d0:b7:31:56:9e:c3:5d:b6:95:9d:2d:fb:a4: 0c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:12:E0:CF:64:D9:25:A1:2A:1E:32:0B:FF:D0:35:AD:95:72:71:63 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01c::/48 Signature Algorithm: sha256WithRSAEncryption c5:cb:86:2e:59:87:e3:ca:32:cc:ee:22:09:43:b1:62:ab:65: c2:84:e8:f2:b1:de:81:2e:e7:7d:bd:b2:8c:d2:eb:94:07:ee: 43:7c:54:d4:b1:f4:12:8b:1e:10:74:43:08:00:f2:e0:8f:c6: a3:fc:20:f1:5e:d9:00:93:f5:48:c1:1b:d5:f8:52:99:75:0f: 4b:ef:75:15:e3:a7:45:fe:8a:48:1c:7c:91:ce:5b:a8:55:27: e4:0d:64:a8:df:d0:57:71:5e:47:e7:67:e5:0b:50:ad:5d:18: 53:b1:be:29:29:c8:78:9f:50:03:a4:85:21:27:3f:c2:63:93: 31:c4:db:d7:b8:63:88:5c:e0:c5:51:20:8d:93:0e:6b:ee:f8: fb:9c:8b:22:42:40:23:92:09:d6:39:2a:77:21:a6:7c:7f:9f: 90:a0:fd:70:51:b3:ff:af:c2:3d:2d:31:99:37:47:eb:ac:1c: 81:a5:d3:df:32:e7:82:85:33:4e:5b:4e:28:fb:91:8f:a3:0b: 35:22:a9:68:db:e6:0c:d6:90:73:88:0a:c2:14:af:4f:cd:cc: e9:fd:38:04:c8:61:b5:bb:f2:83:3a:eb:79:1f:bd:a5:ba:fd: bf:62:a3:f5:42:a9:62:c4:18:75:3b:99:0f:62:bd:9d:dc:83: f0:12:80:4a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUGEpPWz8fCn9gGgSGQ4MKhA+GQW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDBaFw0yNTA5MTQxNDM2NDBaMDMxMTAvBgNV BAMTKEI4MTJFMENGNjREOTI1QTEyQTFFMzIwQkZGRDAzNUFEOTU3MjcxNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChEinXK339/fd7jiY1M5iWPh5t ElrlcCXIyt9Fj6g0rclTMtOokgstsybjI7kOLLmEDPYpPlJoor0G7/12yvHML39Y X84NWLfFPIkyx3IIQni5Bjq0mdQy23ONEbJnnESk6hDtv9Du571JuyWTizlVuFAt rvb9HYRSnNkgFtffp0UZsicM2B2setYyk4mf3V2OMwkEfmCgoAGXTPEsemWWC8Y6 Obxp1t05UtIxagtBceNhCTIGpCHZo7F19TrxMwrt7CpnEO3fFTiXkRq+mZS8TAed eHWK5ZshDCg+B7rzNzrh+OLv4Y+CCu8YE3CJyrQ30LcxVp7DXbaVnS37pAyDAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUuBLgz2TZJaEqHjIL/9A1rZVycWMwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHDANBgkqhkiG9w0BAQsFAAOCAQEAxcuGLlmH48oyzO4i CUOxYqtlwoTo8rHegS7nfb2yjNLrlAfuQ3xU1LH0EoseEHRDCADy4I/Go/wg8V7Z AJP1SMEb1fhSmXUPS+91FeOnRf6KSBx8kc5bqFUn5A1kqN/QV3FeR+dn5QtQrV0Y U7G+KSnIeJ9QA6SFISc/wmOTMcTb17hjiFzgxVEgjZMOa+74+5yLIkJAI5IJ1jkq dyGmfH+fkKD9cFGz/6/CPS0xmTdH66wcgaXT3zLngoUzTltOKPuRj6MLNSKpaNvm DNaQc4gKwhSvT83M6f04BMhhtbvygzrreR+9pbr9v2Kj9UKpYsQYdTuZD2K9ndyD 8BKASg== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org