$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031663a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031663a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: /tp20osNJgBVB9xn43urdmRf7212fAK7b7WrtWMtAX0= Subject key identifier: 66:BE:B7:5E:EF:52:D6:21:63:B1:5B:3D:AA:2C:2F:9E:77:22:BB:0E Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 5A8E8AD789F89203C5FD32742E4E6A62162B861C Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031663a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:35 +0000 ROA not before: Sun 15 Sep 2024 14:31:35 +0000 ROA not after: Sun 14 Sep 2025 14:36:35 +0000 asID: 216043 IP address blocks: 2a06:1283:c01f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8e:8a:d7:89:f8:92:03:c5:fd:32:74:2e:4e:6a:62:16:2b:86:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:35 2024 GMT Not After : Sep 14 14:36:35 2025 GMT Subject: CN=66BEB75EEF52D62163B15B3DAA2C2F9E7722BB0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e1:57:b5:44:64:6a:5d:7e:65:00:21:75:d7: b8:3a:4a:e2:93:03:e3:cc:90:a3:1b:cf:73:41:5d: bd:e7:dd:45:88:02:ae:42:a8:7c:2a:1d:89:bc:fb: 8b:8f:a1:fb:f6:d4:76:42:1d:aa:d6:40:4c:b1:2b: 86:e1:97:8d:08:88:5e:27:b0:cc:7b:88:69:b7:56: 42:4a:72:60:a7:35:b6:46:ae:5f:b7:1e:8f:06:83: 02:ab:54:62:df:05:5f:12:3d:ee:62:f6:38:8e:8a: 14:61:13:c8:db:43:b6:62:a7:50:2e:7c:86:c9:93: 1e:4f:47:ac:81:6a:d2:80:c8:91:ef:1f:4a:a1:5c: 7a:35:d7:9f:f8:c5:2b:5c:b4:89:5d:52:25:9c:42: d8:22:7b:e6:40:a2:b2:bc:fd:6f:28:a4:30:53:06: a8:fa:db:fe:29:fc:e4:5f:8e:8c:e0:6f:b7:d6:63: a3:70:ca:73:31:43:55:de:e9:78:17:55:28:83:15: 93:28:0e:6d:c5:fb:6f:a8:47:de:c3:89:ec:4a:f9: dd:55:be:15:1a:15:b6:04:24:9f:f7:7c:20:a7:78: e7:e8:30:d3:5c:78:8e:53:ba:1f:3f:f2:92:ef:59: 91:d7:2a:90:52:43:36:66:8f:37:a2:63:0b:68:5b: f8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:BE:B7:5E:EF:52:D6:21:63:B1:5B:3D:AA:2C:2F:9E:77:22:BB:0E X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031663a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01f::/48 Signature Algorithm: sha256WithRSAEncryption 3b:64:e7:cd:b5:90:ef:20:a2:dd:70:7a:e8:3d:8c:a8:cd:6d: af:a3:f8:d0:09:02:81:af:2d:6b:77:10:5a:fa:2d:59:bd:62: c2:91:9c:9f:fb:67:59:9a:72:e9:90:a8:ca:bf:96:0e:c7:01: f1:18:ba:53:1a:94:a2:43:63:d3:39:62:9e:ad:e2:f8:0c:dc: 88:93:f4:79:2d:29:43:28:53:66:c4:e6:c8:8f:fb:31:a0:b1: 93:5c:50:5e:64:9c:69:f1:51:98:b0:6c:a7:81:78:76:89:bf: c4:bd:d0:5f:33:3e:cd:77:27:e2:24:06:10:4f:b5:41:59:03: 87:c6:cd:cb:00:bd:e5:21:45:36:9e:5b:b2:79:49:1a:7b:0e: 87:3d:b1:dc:5a:21:79:cd:0a:1e:0e:f4:0b:88:cf:e8:ce:6d: be:98:76:b5:e7:7d:fd:43:02:b0:8e:58:20:40:fa:e2:f1:51: 5d:94:e8:19:5f:07:df:49:00:f3:33:1e:29:3d:b8:b1:56:e3: ad:57:33:42:51:2e:e7:78:07:ea:d2:43:46:c5:46:1c:69:78: c7:a9:3b:81:13:54:aa:dc:9c:f0:e9:9e:a4:d7:38:5a:60:7c: db:f8:57:09:03:4b:a2:ce:51:ef:ec:60:fe:0f:9a:85:4c:9b: b4:49:7a:16 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUWo6K14n4kgPF/TJ0Lk5qYhYrhhwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzVaFw0yNTA5MTQxNDM2MzVaMDMxMTAvBgNV BAMTKDY2QkVCNzVFRUY1MkQ2MjE2M0IxNUIzREFBMkMyRjlFNzcyMkJCMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW4Ve1RGRqXX5lACF117g6SuKT A+PMkKMbz3NBXb3n3UWIAq5CqHwqHYm8+4uPofv21HZCHarWQEyxK4bhl40IiF4n sMx7iGm3VkJKcmCnNbZGrl+3Ho8GgwKrVGLfBV8SPe5i9jiOihRhE8jbQ7Zip1Au fIbJkx5PR6yBatKAyJHvH0qhXHo115/4xStctIldUiWcQtgie+ZAorK8/W8opDBT Bqj62/4p/ORfjozgb7fWY6NwynMxQ1Xe6XgXVSiDFZMoDm3F+2+oR97DiexK+d1V vhUaFbYEJJ/3fCCneOfoMNNceI5Tuh8/8pLvWZHXKpBSQzZmjzeiYwtoW/hdAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUZr63Xu9S1iFjsVs9qiwvnnciuw4wHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHzANBgkqhkiG9w0BAQsFAAOCAQEAO2TnzbWQ7yCi3XB6 6D2MqM1tr6P40AkCga8ta3cQWvotWb1iwpGcn/tnWZpy6ZCoyr+WDscB8Ri6UxqU okNj0zlinq3i+AzciJP0eS0pQyhTZsTmyI/7MaCxk1xQXmScafFRmLBsp4F4dom/ xL3QXzM+zXcn4iQGEE+1QVkDh8bNywC95SFFNp5bsnlJGnsOhz2x3Fohec0KHg70 C4jP6M5tvph2ted9/UMCsI5YIED64vFRXZToGV8H30kA8zMeKT24sVbjrVczQlEu 53gH6tJDRsVGHGl4x6k7gRNUqtyc8OmepNc4WmB82/hXCQNLos5R7+xg/g+ahUyb tEl6Fg== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org