$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: NlIxucV//WIrgZVep7rFJ3zzHr9WU0Gj4jdwWGYWja8= Subject key identifier: 8B:5B:2B:8C:A2:85:55:5E:B2:77:39:01:BB:79:77:50:9C:26:CF:75 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 3CA08E7FE2FEB79BBB921026A4D25CA0643C6D57 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:40 +0000 ROA not before: Sun 15 Sep 2024 14:31:40 +0000 ROA not after: Sun 14 Sep 2025 14:36:40 +0000 asID: 216043 IP address blocks: 2a06:1283:c01d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a0:8e:7f:e2:fe:b7:9b:bb:92:10:26:a4:d2:5c:a0:64:3c:6d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:40 2024 GMT Not After : Sep 14 14:36:40 2025 GMT Subject: CN=8B5B2B8CA285555EB2773901BB7977509C26CF75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9c:c2:b0:02:ce:4e:fe:91:a9:fa:eb:e2:b5: c7:17:df:78:cb:29:45:22:8e:e7:8c:6a:24:d5:62: f4:68:96:56:e5:e6:db:d1:df:23:a8:c4:cc:d3:3b: 75:7c:ef:6f:8c:8c:64:da:77:dd:90:cc:74:8d:e6: fa:ed:e1:6a:83:70:da:c5:75:77:23:ff:46:b0:86: 7e:61:8b:f5:3d:fc:0d:42:c6:66:f2:43:f9:b0:9a: 56:e0:b0:e6:24:9a:cb:ca:ac:17:02:b9:a9:02:81: 58:e4:aa:83:24:4b:7d:de:c8:a4:4d:e6:e4:eb:1b: be:bd:bd:e8:38:05:dc:db:e9:24:4d:4d:35:cc:62: 2e:82:b7:af:1f:58:5f:a4:36:cd:ca:ca:79:41:08: 49:1d:35:1b:c1:dd:19:fd:7c:5d:47:36:6c:ef:85: b2:e5:48:10:1e:30:b7:59:43:5e:c7:f3:a9:44:f1: 86:3a:0f:cc:41:27:63:e5:f5:bc:38:4c:d4:85:97: 84:57:a4:95:17:57:68:a5:00:de:d9:26:8d:68:18: 73:a3:55:07:d2:2a:3c:01:0e:77:ae:2c:3e:c3:98: 16:9c:49:5f:90:b1:8e:11:cf:89:ec:de:76:c7:09: c2:32:38:a2:59:04:44:4c:bd:a8:70:d0:11:37:50: be:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5B:2B:8C:A2:85:55:5E:B2:77:39:01:BB:79:77:50:9C:26:CF:75 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01d::/48 Signature Algorithm: sha256WithRSAEncryption 5e:15:78:a2:60:95:f7:ef:03:b4:22:8f:3c:82:6f:44:91:4c: ee:8c:2d:10:18:f3:a2:81:15:89:0d:12:31:51:08:7c:71:18: f8:ff:50:72:43:53:58:8f:65:1a:00:28:67:c6:e3:7b:70:ea: 43:9b:65:ca:d9:e6:21:b3:d8:97:6c:9b:bd:83:6d:24:fe:ea: ac:39:d9:23:8e:e4:05:8c:c2:99:34:54:55:85:9b:5a:46:fc: 99:cb:23:49:5e:67:c7:9a:ab:34:a9:0c:5d:04:77:0f:c1:59: 2e:73:d5:a6:c8:56:be:ec:f9:5b:5e:65:6e:73:72:5c:ed:1d: 6f:8c:6c:50:e7:c2:5e:7b:88:21:4a:45:13:12:5b:d2:84:5b: e3:7d:92:98:df:a3:95:34:5a:bf:1f:d2:bd:4b:55:5f:1f:eb: 61:59:83:2b:fb:eb:91:98:22:5d:2a:14:9d:81:73:19:e8:c8: d6:29:76:ec:4f:7f:e5:93:8e:1b:61:fd:63:0e:77:3a:b0:00: 04:fa:82:5c:eb:2c:bf:73:2c:be:d5:d7:ec:5a:3d:1f:30:57: 01:40:b5:1f:ba:69:01:f5:d1:f5:a5:12:d8:4a:ed:76:27:d2: 67:60:20:5e:c6:66:1d:11:b1:b0:49:00:20:e0:69:c1:9f:68: 6a:92:2f:93 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUPKCOf+L+t5u7khAmpNJcoGQ8bVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDBaFw0yNTA5MTQxNDM2NDBaMDMxMTAvBgNV BAMTKDhCNUIyQjhDQTI4NTU1NUVCMjc3MzkwMUJCNzk3NzUwOUMyNkNGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCynMKwAs5O/pGp+uvitccX33jL KUUijueMaiTVYvRollbl5tvR3yOoxMzTO3V872+MjGTad92QzHSN5vrt4WqDcNrF dXcj/0awhn5hi/U9/A1CxmbyQ/mwmlbgsOYkmsvKrBcCuakCgVjkqoMkS33eyKRN 5uTrG769veg4Bdzb6SRNTTXMYi6Ct68fWF+kNs3KynlBCEkdNRvB3Rn9fF1HNmzv hbLlSBAeMLdZQ17H86lE8YY6D8xBJ2Pl9bw4TNSFl4RXpJUXV2ilAN7ZJo1oGHOj VQfSKjwBDneuLD7DmBacSV+QsY4Rz4ns3nbHCcIyOKJZBERMvahw0BE3UL6fAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUi1srjKKFVV6ydzkBu3l3UJwmz3UwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHTANBgkqhkiG9w0BAQsFAAOCAQEAXhV4omCV9+8DtCKP PIJvRJFM7owtEBjzooEViQ0SMVEIfHEY+P9QckNTWI9lGgAoZ8bje3DqQ5tlytnm IbPYl2ybvYNtJP7qrDnZI47kBYzCmTRUVYWbWkb8mcsjSV5nx5qrNKkMXQR3D8FZ LnPVpshWvuz5W15lbnNyXO0db4xsUOfCXnuIIUpFExJb0oRb432SmN+jlTRavx/S vUtVXx/rYVmDK/vrkZgiXSoUnYFzGejI1il27E9/5ZOOG2H9Yw53OrAABPqCXOss v3MsvtXX7Fo9HzBXAUC1H7ppAfXR9aUS2ErtdifSZ2AgXsZmHRGxsEkAIOBpwZ9o apIvkw== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org