$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa File: 326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa (raw, json) Hash identifier: AqqA2ET/Xi5aJcR8g/Fdnvo7VN6ZI52QnQCYDtlP/Uc= Subject key identifier: 60:38:F7:04:62:26:A3:6F:53:DA:B7:B1:FF:08:8F:16:BA:C3:80:08 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 73CE4CA01775ED4347C0172D1D0B8842F08FBBAC Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa Signing time: Sun 15 Sep 2024 14:36:43 +0000 ROA not before: Sun 15 Sep 2024 14:31:43 +0000 ROA not after: Sun 14 Sep 2025 14:36:43 +0000 asID: 216079 IP address blocks: 2a06:1283:c070::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ce:4c:a0:17:75:ed:43:47:c0:17:2d:1d:0b:88:42:f0:8f:bb:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:43 2024 GMT Not After : Sep 14 14:36:43 2025 GMT Subject: CN=6038F7046226A36F53DAB7B1FF088F16BAC38008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:ab:1e:46:fd:15:2c:67:a4:21:24:6c:c9: b1:c0:f0:ae:d2:3b:1f:dc:72:e2:2a:53:50:c3:79: 4b:45:b5:cc:2b:f4:9f:04:ae:92:3d:66:47:15:ef: 3d:4b:3d:da:09:b5:99:97:ad:09:e4:06:43:cd:d2: 98:2c:fc:8b:9e:93:53:1c:4c:6a:c1:b6:6b:ff:66: 76:94:30:10:49:d4:7a:73:b5:8c:06:f4:b6:31:2c: 73:64:81:6c:88:79:e9:b9:89:86:93:47:70:6b:90: 5e:d9:b2:c1:cd:2d:33:7c:84:32:5c:a5:c9:3b:cb: fb:4e:2c:29:67:a0:86:46:3f:7a:7d:d9:fc:84:b3: ce:f6:a7:eb:e6:99:6a:50:bc:bc:c4:ac:30:6d:9a: 1a:57:54:b0:8f:c4:9b:82:37:07:bb:b7:7b:32:48: 4c:5f:15:e5:2c:06:e0:c0:b5:14:cb:7f:c3:57:51: 27:21:7a:7a:63:4e:b4:4c:80:45:7f:87:52:25:a5: 38:1e:a6:55:8a:f1:0e:41:33:25:8a:dd:37:9e:58: 37:fe:95:a0:18:b1:53:6d:22:1a:e8:4a:cc:b3:00: 23:f1:d8:78:d4:aa:fa:a6:30:9e:76:be:c4:5e:b9: 05:7d:22:5e:11:a6:f8:b4:be:75:18:58:e0:3e:f4: b2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:38:F7:04:62:26:A3:6F:53:DA:B7:B1:FF:08:8F:16:BA:C3:80:08 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c070::/44 Signature Algorithm: sha256WithRSAEncryption 1a:c2:ad:f8:d6:cd:4c:cf:ad:ef:55:ed:0d:00:1c:7f:91:4d: 76:61:ae:a6:80:51:3b:f4:95:05:e3:af:b1:22:7a:5b:a0:32: fb:97:b9:7a:35:20:39:c5:d1:a8:ca:66:8f:a8:0f:9d:3d:16: 20:b6:a8:54:ad:34:af:b9:f5:e6:be:7c:9e:0e:24:18:cc:92: 66:e3:cf:c6:a7:22:5b:e5:fe:ac:83:2b:ca:cb:24:42:d6:25: 0d:7b:37:81:04:06:d7:79:da:6e:7f:e6:41:56:a1:97:25:f0: 02:11:e1:3d:1f:c9:ed:8a:60:39:8e:22:09:7c:5e:78:d3:46: 97:7a:93:2b:a1:f5:77:8f:c7:4d:7f:a0:ec:e5:f2:2f:e3:50: 8a:7e:4a:69:06:77:1f:20:2d:84:ee:79:be:47:6c:5f:5c:49: ba:90:8d:14:5a:cc:af:96:b4:47:a2:05:2c:1c:b5:8a:e9:62: 18:da:1f:79:6b:75:e4:3a:89:17:d6:3e:b5:5c:bb:e8:e5:c6: a0:2c:b2:fb:c7:06:8b:86:fa:4b:a6:50:f8:2f:1d:7c:04:ae: 09:0e:32:9f:49:24:27:60:6b:a0:b1:35:9f:b2:db:30:ce:9f: 74:ab:47:f9:6e:b5:ba:11:99:ee:8d:58:dc:21:bb:6a:56:e4: 6d:72:f0:3e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUc85MoBd17UNHwBctHQuIQvCPu6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDNaFw0yNTA5MTQxNDM2NDNaMDMxMTAvBgNV BAMTKDYwMzhGNzA0NjIyNkEzNkY1M0RBQjdCMUZGMDg4RjE2QkFDMzgwMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC926seRv0VLGekISRsybHA8K7S Ox/ccuIqU1DDeUtFtcwr9J8ErpI9ZkcV7z1LPdoJtZmXrQnkBkPN0pgs/Iuek1Mc TGrBtmv/ZnaUMBBJ1HpztYwG9LYxLHNkgWyIeem5iYaTR3BrkF7ZssHNLTN8hDJc pck7y/tOLClnoIZGP3p92fyEs872p+vmmWpQvLzErDBtmhpXVLCPxJuCNwe7t3sy SExfFeUsBuDAtRTLf8NXUSchenpjTrRMgEV/h1IlpTgeplWK8Q5BMyWK3TeeWDf+ laAYsVNtIhroSsyzACPx2HjUqvqmMJ52vsReuQV9Il4Rpvi0vnUYWOA+9LJRAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUYDj3BGImo29T2rex/wiPFrrDgAgwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzczMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzczOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAcDANBgkqhkiG9w0BAQsFAAOCAQEAGsKt+NbNTM+t71Xt DQAcf5FNdmGupoBRO/SVBeOvsSJ6W6Ay+5e5ejUgOcXRqMpmj6gPnT0WILaoVK00 r7n15r58ng4kGMySZuPPxqciW+X+rIMrysskQtYlDXs3gQQG13nabn/mQVahlyXw AhHhPR/J7YpgOY4iCXxeeNNGl3qTK6H1d4/HTX+g7OXyL+NQin5KaQZ3HyAthO55 vkdsX1xJupCNFFrMr5a0R6IFLBy1iuliGNofeWt15DqJF9Y+tVy76OXGoCyy+8cG i4b6S6ZQ+C8dfASuCQ4yn0kkJ2BroLE1n7LbMM6fdKtH+W61uhGZ7o1Y3CG7albk bXLwPg== -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org