$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633038303a3a2f34342d3434203d3e203438373030.roa File: 326130363a313238333a633038303a3a2f34342d3434203d3e203438373030.roa (raw, json) Hash identifier: r1GnXr4X5MOqOuLx3i6CpZobL0T32xSPM1Q5PGaPWtI= Subject key identifier: AD:B1:79:9C:33:CF:B1:7C:73:5C:85:99:8E:7A:CA:14:DD:BC:80:3D Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 7BC27F3BBC171ED7F5E38B6A6BBDFEB2364098D6 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633038303a3a2f34342d3434203d3e203438373030.roa Signing time: Sun 15 Sep 2024 14:36:41 +0000 ROA not before: Sun 15 Sep 2024 14:31:41 +0000 ROA not after: Sun 14 Sep 2025 14:36:41 +0000 asID: 48700 IP address blocks: 2a06:1283:c080::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c2:7f:3b:bc:17:1e:d7:f5:e3:8b:6a:6b:bd:fe:b2:36:40:98:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:41 2024 GMT Not After : Sep 14 14:36:41 2025 GMT Subject: CN=ADB1799C33CFB17C735C85998E7ACA14DDBC803D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a9:22:98:b2:e6:46:96:c6:45:d6:66:9b:d2: f4:fd:f1:e1:1a:84:8e:46:5b:f0:8c:cd:49:8f:f1: 42:8c:f1:1d:97:0b:14:d7:0d:a6:7a:51:b3:ee:86: d4:c1:8e:ab:f0:e5:15:78:89:09:32:69:85:6b:40: 9a:57:57:91:01:4d:40:12:c6:66:2d:07:62:53:32: f7:d9:41:63:b3:9c:6f:c4:50:37:df:8c:d1:26:a1: 44:35:4d:e3:8c:e6:47:30:74:d6:47:fd:20:b2:f2: 00:27:47:1d:d6:97:47:86:a9:67:7c:be:2d:e9:29: e0:0a:fe:c2:52:a4:77:33:06:45:26:12:22:7c:de: 08:77:37:85:f2:5b:7f:25:97:62:5b:41:fc:e0:8e: 33:b4:d9:af:01:a7:f0:14:7e:b3:2d:c0:38:6a:37: 6c:a1:58:18:5e:2e:9a:01:6c:a8:85:97:4b:36:bd: 75:00:3e:d7:a1:1f:d0:1d:25:5f:cd:b1:4a:9d:78: 7a:93:03:c3:16:68:01:ed:66:32:37:af:1b:00:64: 77:db:1f:35:86:8e:c2:6a:f0:1d:ba:6c:5d:ba:41: 90:df:eb:61:f0:a6:49:70:d2:18:54:42:0c:bb:14: 25:da:1e:e1:98:e0:ed:38:de:0a:f7:12:e3:1d:75: 11:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B1:79:9C:33:CF:B1:7C:73:5C:85:99:8E:7A:CA:14:DD:BC:80:3D X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633038303a3a2f34342d3434203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c080::/44 Signature Algorithm: sha256WithRSAEncryption 92:05:25:53:93:f7:e2:da:6e:2c:bc:3c:6f:72:f8:7a:28:51: 43:3f:f1:35:9a:98:f4:4d:d6:e5:dc:52:d0:e5:f8:ab:84:97: 88:76:16:65:fc:c4:3d:2e:79:6c:7c:42:85:e0:bc:4f:48:11: c4:54:dd:7f:51:de:5d:10:b1:4f:6d:03:6c:6c:21:50:ce:d7: 0a:f5:eb:bf:60:8a:f3:5b:5e:40:57:44:16:c9:98:4a:97:42: 9e:80:67:b3:e0:e7:ea:a9:bb:e2:ac:72:ca:a5:ce:df:f9:be: a0:1a:9a:e0:8b:24:a4:fd:e9:3a:d1:bf:40:93:53:d7:2f:ed: 11:86:b5:27:99:6f:ca:6b:09:4e:7b:b8:13:e4:55:ba:6d:9f: 70:87:7d:ff:e0:3e:00:4b:18:aa:51:d5:2e:3c:6f:3c:02:91: 16:7d:f1:7c:68:58:26:e3:67:59:30:2f:f4:f9:dc:06:68:8b: d6:b8:b6:be:07:bc:a0:86:0f:14:f5:79:0e:19:0a:fa:8f:88: 15:9a:22:c8:29:d4:c4:33:bf:64:70:d3:e4:12:ca:d3:93:38: a2:87:f4:dd:64:f4:e5:db:20:cf:58:14:e4:34:11:47:18:dc: 4e:a5:50:94:a3:73:0f:6f:4c:61:e5:14:3b:55:13:cc:1c:38: 6d:ca:c6:31 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUe8J/O7wXHtf144tqa73+sjZAmNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDFaFw0yNTA5MTQxNDM2NDFaMDMxMTAvBgNV BAMTKEFEQjE3OTlDMzNDRkIxN0M3MzVDODU5OThFN0FDQTE0RERCQzgwM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZqSKYsuZGlsZF1mab0vT98eEa hI5GW/CMzUmP8UKM8R2XCxTXDaZ6UbPuhtTBjqvw5RV4iQkyaYVrQJpXV5EBTUAS xmYtB2JTMvfZQWOznG/EUDffjNEmoUQ1TeOM5kcwdNZH/SCy8gAnRx3Wl0eGqWd8 vi3pKeAK/sJSpHczBkUmEiJ83gh3N4XyW38ll2JbQfzgjjO02a8Bp/AUfrMtwDhq N2yhWBheLpoBbKiFl0s2vXUAPtehH9AdJV/NsUqdeHqTA8MWaAHtZjI3rxsAZHfb HzWGjsJq8B26bF26QZDf62Hwpklw0hhUQgy7FCXaHuGY4O043gr3EuMddRFZAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUrbF5nDPPsXxzXIWZjnrKFN28gD0wHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzgzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDM0MzgzNzMwMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqBhKDwIAwDQYJKoZIhvcNAQELBQADggEBAJIFJVOT9+Labiy8PG9y +HooUUM/8TWamPRN1uXcUtDl+KuEl4h2FmX8xD0ueWx8QoXgvE9IEcRU3X9R3l0Q sU9tA2xsIVDO1wr1679givNbXkBXRBbJmEqXQp6AZ7Pg5+qpu+Kscsqlzt/5vqAa muCLJKT96TrRv0CTU9cv7RGGtSeZb8prCU57uBPkVbptn3CHff/gPgBLGKpR1S48 bzwCkRZ98XxoWCbjZ1kwL/T53AZoi9a4tr4HvKCGDxT1eQ4ZCvqPiBWaIsgp1MQz v2Rw0+QSytOTOKKH9N1k9OXbIM9YFOQ0EUcY3E6lUJSjcw9vTGHlFDtVE8wcOG3K xjE= -----END CERTIFICATE-----Generated at Sat Sep 28 17:45:02 2024 by rpki-client on console-ams.rpki-client.org