$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa File: 326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa (raw, json) Hash identifier: BM/sbuhgfSegxOJQrPc9SBXvHu9bcM01tNrvqGHhnf4= Subject key identifier: A1:1F:73:4F:59:F8:5C:24:2D:59:1B:70:28:1C:29:55:0D:EC:8B:AB Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 101ECCAB620BD4B2F5CE3133FFF6B604B5EE8A1E Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa Signing time: Sat 29 Jun 2024 17:02:08 +0000 ROA not before: Sat 29 Jun 2024 16:57:08 +0000 ROA not after: Sat 28 Jun 2025 17:02:08 +0000 asID: 214731 IP address blocks: 2a06:1281:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jul 2024 23:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1e:cc:ab:62:0b:d4:b2:f5:ce:31:33:ff:f6:b6:04:b5:ee:8a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Jun 29 16:57:08 2024 GMT Not After : Jun 28 17:02:08 2025 GMT Subject: CN=A11F734F59F85C242D591B70281C29550DEC8BAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:4b:c3:2e:50:5b:1f:10:21:fc:b7:d7:2b: 24:13:8d:00:8d:40:b1:61:33:dd:ec:ef:e1:18:27: 06:c1:68:ed:45:8e:3f:8a:90:07:9a:8f:11:e9:9a: d5:eb:4c:8b:81:5a:4b:36:f5:0f:fb:4e:d8:fb:27: 52:cd:e2:93:21:c8:d8:8c:46:47:7d:46:bb:05:df: 03:02:c3:af:3d:09:b2:a6:9d:f5:a3:f1:fa:cc:86: 11:ca:75:af:a7:5d:f8:10:1f:21:bc:78:43:d1:65: ed:3a:ac:83:8e:56:66:77:10:d4:be:67:ee:db:8b: 4e:11:5e:ad:36:d7:73:5c:10:3d:13:e3:d1:23:a3: d6:43:9f:a6:62:44:ae:90:fd:a6:a3:1f:f4:09:82: be:e5:36:d5:7f:a4:c5:91:ce:27:56:68:81:07:3d: 21:3b:cd:6b:e6:58:4c:16:a7:43:8f:f4:8b:37:34: 77:5d:4a:9c:77:55:f0:f7:07:19:ff:0c:3e:7e:44: 50:5d:67:be:74:b4:6f:b6:f0:34:c5:9d:5b:39:31: 0b:15:4f:f0:81:2b:0d:14:f5:cd:51:d8:7d:70:97: 7c:a8:1d:10:b0:bb:33:1d:f2:81:93:41:79:96:79: 79:ad:c2:d6:fe:7d:91:b4:47:3d:14:95:73:a0:88: bb:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1F:73:4F:59:F8:5C:24:2D:59:1B:70:28:1C:29:55:0D:EC:8B:AB X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:4000::/36 Signature Algorithm: sha256WithRSAEncryption 76:19:ef:3a:5e:d9:1e:65:46:e2:89:af:94:b2:6f:5c:b2:0f: fb:69:90:2a:36:2e:f6:f1:0b:c3:81:c9:a8:71:61:95:67:11: 8c:92:80:65:d0:f6:66:49:9c:08:d4:0c:5b:74:2d:2a:f4:41: cd:4b:02:8e:7b:b5:1f:37:f8:d5:0c:87:36:33:65:57:f6:65: 14:1a:7f:a2:e2:da:5e:a6:cd:d0:6b:7d:a0:9f:f1:41:81:e4: 95:82:83:d3:10:2c:c8:4e:d2:90:b4:03:b0:d2:d9:46:b7:ac: aa:6e:7c:ec:33:79:a6:9d:13:8a:50:82:ae:0b:7a:5a:61:ea: 2f:9c:cb:0d:af:3b:6d:5f:02:b7:96:5f:ba:3f:9a:2a:20:ee: 1a:73:c1:fd:73:54:cd:8a:21:6c:92:d8:d2:0a:79:cc:ff:e1: ff:58:56:35:cb:bc:10:62:94:e1:9f:a6:a0:a8:11:ce:b5:65: ec:26:e5:ef:71:ba:16:43:43:35:ce:36:71:f4:b4:8e:2d:ad: 89:ce:61:a7:80:88:1a:0d:bd:6e:20:20:1b:3e:b2:03:98:95: cd:8c:93:89:c6:4b:a1:69:d7:2f:e0:8c:5b:a0:0f:d5:2a:bb: 2b:96:97:47:a1:b3:aa:0a:05:47:72:3a:56:da:34:d6:d5:16: e2:a7:47:37 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUEB7Mq2IL1LL1zjEz//a2BLXuih4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA2MjkxNjU3MDhaFw0yNTA2MjgxNzAyMDhaMDMxMTAvBgNV BAMTKEExMUY3MzRGNTlGODVDMjQyRDU5MUI3MDI4MUMyOTU1MERFQzhCQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV4UvDLlBbHxAh/LfXKyQTjQCN QLFhM93s7+EYJwbBaO1Fjj+KkAeajxHpmtXrTIuBWks29Q/7Ttj7J1LN4pMhyNiM Rkd9RrsF3wMCw689CbKmnfWj8frMhhHKda+nXfgQHyG8eEPRZe06rIOOVmZ3ENS+ Z+7bi04RXq0213NcED0T49Ejo9ZDn6ZiRK6Q/aajH/QJgr7lNtV/pMWRzidWaIEH PSE7zWvmWEwWp0OP9Is3NHddSpx3VfD3Bxn/DD5+RFBdZ750tG+28DTFnVs5MQsV T/CBKw0U9c1R2H1wl3yoHRCwuzMd8oGTQXmWeXmtwtb+fZG0Rz0UlXOgiLvnAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUoR9zT1n4XCQtWRtwKBwpVQ3si6swHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzAvMzI2MTMwMzYzYTMxMzIzODMx M2EzNDMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoGEoFAMA0GCSqGSIb3DQEBCwUAA4IBAQB2Ge86XtkeZUbiia+U sm9csg/7aZAqNi728QvDgcmocWGVZxGMkoBl0PZmSZwI1AxbdC0q9EHNSwKOe7Uf N/jVDIc2M2VX9mUUGn+i4tpeps3Qa32gn/FBgeSVgoPTECzITtKQtAOw0tlGt6yq bnzsM3mmnROKUIKuC3paYeovnMsNrzttXwK3ll+6P5oqIO4ac8H9c1TNiiFsktjS CnnM/+H/WFY1y7wQYpThn6agqBHOtWXsJuXvcboWQ0M1zjZx9LSOLa2JzmGngIga Db1uICAbPrIDmJXNjJOJxkuhadcv4IxboA/VKrsrlpdHobOqCgVHcjpW2jTW1Rbi p0c3 -----END CERTIFICATE-----Generated at Sun Jul 7 04:18:48 2024 by rpki-client on console-fra.rpki-client.org