$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: /DDu9hk0sJsZFVY6XppLxG73U+eI44B02YflviiCF0k= Subject key identifier: 41:F6:35:46:C7:5B:C3:65:98:64:40:D1:30:37:82:B7:EC:6B:93:88 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 2D7F292F5A48EC5989874113FB63D10B4CE54856 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa Signing time: Sun 15 Sep 2024 14:36:41 +0000 ROA not before: Sun 15 Sep 2024 14:31:41 +0000 ROA not after: Sun 14 Sep 2025 14:36:41 +0000 asID: 216065 IP address blocks: 2a06:1283:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7f:29:2f:5a:48:ec:59:89:87:41:13:fb:63:d1:0b:4c:e5:48:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:41 2024 GMT Not After : Sep 14 14:36:41 2025 GMT Subject: CN=41F63546C75BC365986440D1303782B7EC6B9388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ac:f0:95:c8:70:52:a3:d1:75:21:1f:36:ba: 59:b8:ce:dc:80:05:63:4d:ff:cd:69:9a:e5:24:91: 3a:c5:08:88:35:c3:dd:66:a0:5f:89:45:84:7f:ab: ed:d4:09:5c:c1:b3:53:7e:46:84:af:a5:a8:1c:75: 86:0f:fd:e7:6d:f5:29:c8:87:34:e6:42:c2:e1:c6: f7:0f:71:53:0a:d1:a6:a3:44:5c:43:9e:c1:b9:63: 6b:11:7f:a0:65:73:1b:48:2d:b4:24:48:68:70:bd: 80:bc:5d:16:e8:3b:2a:68:8b:4c:ed:36:56:ef:86: 0d:6b:4d:55:0e:6f:77:4a:a4:b8:dd:ae:df:55:51: 8a:e9:f3:6f:68:f0:c2:5c:ef:7d:40:f3:57:37:da: 29:92:09:44:03:1a:b2:7e:d5:20:3b:06:f5:91:fe: 20:6d:d0:e3:d5:b8:fe:0c:18:38:94:54:2e:36:a2: e6:c7:66:30:44:07:fb:6e:55:60:6d:e6:8f:0a:84: 1d:ab:0a:d1:96:6c:0b:14:9e:67:26:ff:43:c1:3c: dc:0e:c3:38:0c:a2:bf:e0:0a:0b:29:fa:56:8e:4a: 8f:ca:57:be:9f:23:3f:89:62:92:9b:d2:27:13:a4: fc:6d:55:20:43:39:f7:c8:aa:14:2d:11:48:a0:c8: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F6:35:46:C7:5B:C3:65:98:64:40:D1:30:37:82:B7:EC:6B:93:88 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c020::/48 Signature Algorithm: sha256WithRSAEncryption 76:55:2c:27:e3:b0:e2:32:57:96:c5:cc:42:0c:e7:0b:95:a2: 6a:bc:4a:a4:94:54:50:9c:7a:e0:65:3f:62:c7:04:3e:c1:ea: 8a:4e:b5:fb:75:10:0b:3a:1b:84:47:b0:65:dd:b4:dd:91:ba: 98:0f:32:ab:7c:73:42:b2:1f:82:fe:b8:52:5f:72:74:0e:0e: 89:c7:ba:30:8a:85:40:39:08:43:bf:5c:57:2b:6c:fb:ee:e9: cf:8f:dc:e9:82:22:d0:fc:3b:aa:ab:fc:d0:a6:3e:b3:5a:87: 1d:a0:38:16:83:73:64:a8:af:ec:4e:ad:f3:aa:ed:a6:93:4e: 74:e8:54:b4:01:41:b1:b5:09:00:1a:39:a6:e2:f6:b8:cc:69: 5c:64:77:91:42:4e:08:cf:07:7f:25:18:82:84:e7:66:e1:bf: 84:da:28:81:59:d8:e2:7b:fb:2e:54:c6:74:71:28:aa:46:0a: 09:0c:b0:00:ca:3e:0c:d9:c2:be:87:99:b8:e8:8b:94:26:fb: 81:5b:2b:49:e6:d3:ea:fa:72:26:6a:93:b8:28:7f:e3:be:73: 7c:4b:26:d4:6d:62:6c:3d:60:b8:45:8a:2d:2d:b6:29:de:5d: a3:d9:52:56:73:4e:8a:e4:f4:24:8a:ba:03:b9:ca:0c:d4:2e: c3:2c:e7:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIULX8pL1pI7FmJh0ET+2PRC0zlSFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDFaFw0yNTA5MTQxNDM2NDFaMDMxMTAvBgNV BAMTKDQxRjYzNTQ2Qzc1QkMzNjU5ODY0NDBEMTMwMzc4MkI3RUM2QjkzODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgrPCVyHBSo9F1IR82ulm4ztyA BWNN/81pmuUkkTrFCIg1w91moF+JRYR/q+3UCVzBs1N+RoSvpagcdYYP/edt9SnI hzTmQsLhxvcPcVMK0aajRFxDnsG5Y2sRf6BlcxtILbQkSGhwvYC8XRboOypoi0zt Nlbvhg1rTVUOb3dKpLjdrt9VUYrp829o8MJc731A81c32imSCUQDGrJ+1SA7BvWR /iBt0OPVuP4MGDiUVC42oubHZjBEB/tuVWBt5o8KhB2rCtGWbAsUnmcm/0PBPNwO wzgMor/gCgsp+laOSo/KV76fIz+JYpKb0icTpPxtVSBDOffIqhQtEUigyPK1AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUQfY1Rsdbw2WYZEDRMDeCt+xrk4gwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIDANBgkqhkiG9w0BAQsFAAOCAQEAdlUsJ+Ow4jJXlsXM QgznC5WiarxKpJRUUJx64GU/YscEPsHqik61+3UQCzobhEewZd203ZG6mA8yq3xz QrIfgv64Ul9ydA4Oice6MIqFQDkIQ79cVyts++7pz4/c6YIi0Pw7qqv80KY+s1qH HaA4FoNzZKiv7E6t86rtppNOdOhUtAFBsbUJABo5puL2uMxpXGR3kUJOCM8HfyUY goTnZuG/hNoogVnY4nv7LlTGdHEoqkYKCQywAMo+DNnCvoeZuOiLlCb7gVsrSebT 6vpyJmqTuCh/475zfEsm1G1ibD1guEWKLS22Kd5do9lSVnNOiuT0JIq6A7nKDNQu wyzn5Q== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org