$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: IQLUqkmf1wG1XXFqkR9fcEWNOJMHvaRgQpzBUG/Qq0o= Subject key identifier: 17:D1:08:D4:AF:8A:94:B0:A1:36:52:5B:AD:E1:74:7D:E6:9D:23:14 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 217C4F0E159B0B57C9B60685E37F9BE080B81BF6 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa Signing time: Sun 15 Sep 2024 14:36:46 +0000 ROA not before: Sun 15 Sep 2024 14:31:46 +0000 ROA not after: Sun 14 Sep 2025 14:36:46 +0000 asID: 216065 IP address blocks: 2a06:1283:c021::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:7c:4f:0e:15:9b:0b:57:c9:b6:06:85:e3:7f:9b:e0:80:b8:1b:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:46 2024 GMT Not After : Sep 14 14:36:46 2025 GMT Subject: CN=17D108D4AF8A94B0A136525BADE1747DE69D2314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:6f:bb:9b:c6:8a:33:c6:f1:a4:05:ba:00:15: 82:f2:2c:71:b5:56:68:f5:ee:6e:9e:04:b9:19:58: 09:46:50:4a:b2:35:d0:31:92:cf:0c:95:a8:df:3a: 2f:3f:0e:45:33:9c:5f:d2:36:1b:dd:6a:52:99:f0: 5c:20:25:4b:89:97:10:d7:af:e8:8d:f6:fb:7b:ab: c7:17:c2:e5:2b:a5:86:79:e4:04:9a:91:26:e2:bf: 07:4b:db:74:e1:10:12:b6:1a:e7:5b:5f:a5:42:4a: ac:b4:5a:ce:61:6a:3c:0b:13:a2:06:3c:a8:12:2f: 24:f7:c3:76:fd:2f:fb:a8:c3:83:96:5b:a4:6d:b3: f1:03:e5:a1:5b:8b:08:cd:74:ac:8f:8b:b1:67:09: 12:83:b5:ee:c9:93:00:1c:c0:1d:55:5f:c4:5e:d4: 15:51:3b:7a:f1:4d:90:d4:fe:97:79:18:c3:f0:e4: 97:ff:e7:3f:8b:b3:e8:08:33:6c:49:fe:6c:83:f3: ed:43:4e:c9:50:e7:51:57:de:16:7a:ef:98:64:57: 55:4f:77:10:f4:c2:e4:42:45:07:1c:17:ae:61:be: 0e:4a:57:08:1e:9b:93:df:e3:f9:13:da:ad:64:8a: 17:22:c0:2f:3b:c7:bd:19:27:0b:aa:5d:26:c3:8a: bd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D1:08:D4:AF:8A:94:B0:A1:36:52:5B:AD:E1:74:7D:E6:9D:23:14 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c021::/48 Signature Algorithm: sha256WithRSAEncryption 20:0b:07:63:d8:05:cb:df:b5:87:9f:46:cd:11:79:c4:57:12: a5:5d:3b:11:90:ca:e4:98:3d:a0:38:4a:fc:8b:d0:c5:d9:ea: c6:ad:42:de:9c:b1:5b:99:94:4a:7a:ce:88:74:56:36:14:00: 32:f5:80:da:77:52:f3:22:b7:c7:76:96:f4:61:64:09:1f:1e: de:15:6b:e0:99:51:87:55:ce:53:4c:14:c2:67:d0:30:db:e5: 26:be:fd:8b:f8:c6:28:ca:4e:7c:b1:ae:b0:59:f3:2b:dc:39: 30:1d:14:20:12:01:ec:ca:11:71:4e:f9:b4:98:79:63:b8:ae: 31:4b:a4:65:ae:cf:04:de:85:ee:59:0f:08:9f:27:d4:30:3e: 04:80:54:e1:70:f2:8e:dc:b5:08:b1:64:00:de:b1:0e:3e:5c: 76:0d:3f:13:44:2a:45:6c:db:13:dc:b3:3d:62:c3:2f:32:36: d3:c0:86:a2:78:9c:a5:79:94:7b:17:78:bd:b8:74:3b:69:f8: d0:d3:8d:c3:30:fe:ef:31:04:35:67:93:92:57:47:5e:da:64: a3:96:0e:6e:67:36:2a:f6:5f:05:ad:89:66:f5:81:22:8d:59: ec:69:a3:13:b3:4b:4c:ec:54:07:44:9a:3a:c6:67:06:19:83: 10:76:d5:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUIXxPDhWbC1fJtgaF43+b4IC4G/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDZaFw0yNTA5MTQxNDM2NDZaMDMxMTAvBgNV BAMTKDE3RDEwOEQ0QUY4QTk0QjBBMTM2NTI1QkFERTE3NDdERTY5RDIzMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHb7ubxoozxvGkBboAFYLyLHG1 Vmj17m6eBLkZWAlGUEqyNdAxks8MlajfOi8/DkUznF/SNhvdalKZ8FwgJUuJlxDX r+iN9vt7q8cXwuUrpYZ55ASakSbivwdL23ThEBK2GudbX6VCSqy0Ws5hajwLE6IG PKgSLyT3w3b9L/uow4OWW6Rts/ED5aFbiwjNdKyPi7FnCRKDte7JkwAcwB1VX8Re 1BVRO3rxTZDU/pd5GMPw5Jf/5z+Ls+gIM2xJ/myD8+1DTslQ51FX3hZ675hkV1VP dxD0wuRCRQccF65hvg5KVwgem5Pf4/kT2q1kihciwC87x70ZJwuqXSbDir1FAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUF9EI1K+KlLChNlJbreF0feadIxQwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAITANBgkqhkiG9w0BAQsFAAOCAQEAIAsHY9gFy9+1h59G zRF5xFcSpV07EZDK5Jg9oDhK/IvQxdnqxq1C3pyxW5mUSnrOiHRWNhQAMvWA2ndS 8yK3x3aW9GFkCR8e3hVr4JlRh1XOU0wUwmfQMNvlJr79i/jGKMpOfLGusFnzK9w5 MB0UIBIB7MoRcU75tJh5Y7iuMUukZa7PBN6F7lkPCJ8n1DA+BIBU4XDyjty1CLFk AN6xDj5cdg0/E0QqRWzbE9yzPWLDLzI208CGonicpXmUexd4vbh0O2n40NONwzD+ 7zEENWeTkldHXtpko5YObmc2KvZfBa2JZvWBIo1Z7GmjE7NLTOxUB0SaOsZnBhmD EHbVdg== -----END CERTIFICATE-----Generated at Sat Sep 28 16:24:42 2024 by rpki-client on console-fra.rpki-client.org