$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa File: 326130363a313238333a3a2f33322d3332203d3e203438373030.roa (raw, json) Hash identifier: wXN6cBgAgCtpx2fvIZRNRBWccSUO+oXTOiGEWDwuXOo= Subject key identifier: 9B:EC:33:B7:3B:85:A1:1F:BC:1B:26:80:CF:06:8E:35:A4:8A:77:DB Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 619A1676F5873617372A91EA57B01A9277F41A57 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa Signing time: Sun 28 Apr 2024 20:11:27 +0000 ROA not before: Sun 28 Apr 2024 20:06:27 +0000 ROA not after: Sun 27 Apr 2025 20:11:27 +0000 asID: 48700 IP address blocks: 2a06:1283::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9a:16:76:f5:87:36:17:37:2a:91:ea:57:b0:1a:92:77:f4:1a:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:06:27 2024 GMT Not After : Apr 27 20:11:27 2025 GMT Subject: CN=9BEC33B73B85A11FBC1B2680CF068E35A48A77DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:94:b7:c6:83:3b:25:ce:f3:df:a5:66:50: 3c:fa:4c:3d:c7:5e:ff:1d:94:84:9a:a8:4d:53:dc: 08:5b:a8:d1:f3:a3:59:18:32:dc:ab:d6:b9:a9:a9: 4c:2d:80:03:95:eb:d5:8a:a7:80:fe:70:68:a7:fc: ca:b6:15:92:b8:83:11:7e:f5:59:c0:e8:00:91:4f: c7:2a:a2:47:a4:d5:0b:98:1d:2a:8c:f1:27:fd:73: e9:85:d3:fe:20:8f:ad:0b:62:12:07:9d:50:94:d6: 4b:5c:6b:e3:af:62:44:88:20:7b:52:7a:e0:69:b5: 37:06:80:d3:31:33:eb:2e:7a:70:7b:71:05:ac:61: c2:cf:7e:ad:fd:57:51:c9:be:c9:8d:03:a4:bc:94: 99:32:22:2c:23:bb:b3:c7:a2:97:44:b1:b8:1a:61: 25:0d:79:62:b2:46:32:59:c6:8e:22:27:e6:0b:08: 03:dc:30:3e:17:9b:d3:41:b9:1c:7c:a0:f5:35:d8: 89:bd:76:79:e2:1b:6f:25:82:84:fc:ab:63:9b:47: 21:ac:7e:69:6b:db:25:8c:66:98:16:76:8d:2b:11: a7:df:d7:88:9c:89:d1:30:4c:74:23:7b:46:dd:88: 39:e9:18:39:6f:9e:98:74:ff:2d:44:5e:14:f6:dd: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:EC:33:B7:3B:85:A1:1F:BC:1B:26:80:CF:06:8E:35:A4:8A:77:DB X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a3a2f33322d3332203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/32 Signature Algorithm: sha256WithRSAEncryption 42:3f:b4:4d:b1:c9:4e:14:eb:ee:87:e6:bf:36:d2:5f:33:a0: 0b:93:80:9c:5e:78:74:9c:a4:35:97:03:aa:fd:bd:49:e7:1c: f0:87:97:90:dd:1c:8f:6c:3c:3e:44:63:b0:74:9f:bc:7f:11: 88:52:75:35:c9:a2:b4:02:9c:52:f9:ca:29:8d:55:34:2d:42: 1c:c8:83:90:4c:a9:43:8f:fb:67:fe:2d:2f:19:f2:0c:41:19: 1b:c4:f2:a4:67:76:b1:50:ac:d2:91:07:82:41:a1:dc:1f:3e: a9:ca:d0:b7:a0:88:2d:4e:26:2e:7a:34:0f:8b:e8:d9:72:39: 0e:2b:f0:5c:1f:bf:1f:63:53:47:d9:93:fc:12:63:b9:9d:7c: b8:d2:e1:a8:69:6e:b4:74:88:70:cf:7f:35:66:56:95:36:ad: 26:8d:35:6a:43:1f:de:4e:bd:29:1e:23:91:e8:29:c8:17:46: 5c:b6:af:c0:8c:0f:a7:c7:f1:64:6a:63:28:40:b0:85:9f:f3: db:82:36:0b:0d:15:c2:87:f0:be:c6:5a:e7:95:1d:ec:d8:0b: 99:ee:d7:07:dd:42:73:a3:2a:2f:e5:59:37:35:5f:d5:d8:75: 3f:60:bf:c4:15:2d:fc:f4:c5:08:60:e1:61:f7:ba:84:07:89: 5e:04:23:e5 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUYZoWdvWHNhc3KpHqV7Aaknf0GlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDA2MjdaFw0yNTA0MjcyMDExMjdaMDMxMTAvBgNV BAMTKDlCRUMzM0I3M0I4NUExMUZCQzFCMjY4MENGMDY4RTM1QTQ4QTc3REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/vJS3xoM7Jc7z36VmUDz6TD3H Xv8dlISaqE1T3AhbqNHzo1kYMtyr1rmpqUwtgAOV69WKp4D+cGin/Mq2FZK4gxF+ 9VnA6ACRT8cqokek1QuYHSqM8Sf9c+mF0/4gj60LYhIHnVCU1ktca+OvYkSIIHtS euBptTcGgNMxM+suenB7cQWsYcLPfq39V1HJvsmNA6S8lJkyIiwju7PHopdEsbga YSUNeWKyRjJZxo4iJ+YLCAPcMD4Xm9NBuRx8oPU12Im9dnniG28lgoT8q2ObRyGs fmlr2yWMZpgWdo0rEaff14icidEwTHQje0bdiDnpGDlvnph0/y1EXhT23emlAgMB AAGjggJsMIICaDAdBgNVHQ4EFgQUm+wztzuFoR+8GyaAzwaONaSKd9swHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG EoMwDQYJKoZIhvcNAQELBQADggEBAEI/tE2xyU4U6+6H5r820l8zoAuTgJxeeHSc pDWXA6r9vUnnHPCHl5DdHI9sPD5EY7B0n7x/EYhSdTXJorQCnFL5yimNVTQtQhzI g5BMqUOP+2f+LS8Z8gxBGRvE8qRndrFQrNKRB4JBodwfPqnK0LegiC1OJi56NA+L 6NlyOQ4r8Fwfvx9jU0fZk/wSY7mdfLjS4ahpbrR0iHDPfzVmVpU2rSaNNWpDH95O vSkeI5HoKcgXRly2r8CMD6fH8WRqYyhAsIWf89uCNgsNFcKH8L7GWueVHezYC5nu 1wfdQnOjKi/lWTc1X9XYdT9gv8QVLfz0xQhg4WH3uoQHiV4EI+U= -----END CERTIFICATE-----Generated at Tue Jul 2 12:55:37 2024 by rpki-client on console-ams.rpki-client.org