$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: GZT467AXX/+tb3Ikp/ImydGnUvQ9srMqVRY5WSAPe8M= Subject key identifier: EB:82:46:97:9E:BB:1A:D7:58:4B:C4:DD:0C:CB:55:F7:0D:26:6E:7F Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 684924558CE8AF14B47AD879B596E47A5C981F3A Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 28 Apr 2024 20:16:38 +0000 ROA not before: Sun 28 Apr 2024 20:11:38 +0000 ROA not after: Sun 27 Apr 2025 20:16:38 +0000 asID: 212049 IP address blocks: 2a06:1283:b335::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:49:24:55:8c:e8:af:14:b4:7a:d8:79:b5:96:e4:7a:5c:98:1f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:11:38 2024 GMT Not After : Apr 27 20:16:38 2025 GMT Subject: CN=EB8246979EBB1AD7584BC4DD0CCB55F70D266E7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:ed:f5:fc:d8:76:80:ff:6d:e2:52:04:de: 47:58:3e:6a:ef:cf:53:1b:9e:6a:37:b6:8b:45:19: b0:2d:0f:5f:a3:34:05:86:7b:47:ef:03:ad:bb:62: 74:2a:4e:3c:1b:34:af:d4:46:62:d6:fe:e8:25:27: f2:d4:91:39:c1:20:80:75:4e:36:46:3b:0f:a7:55: 72:9f:63:c8:57:c9:4f:4e:6f:75:46:1a:62:bd:ef: d1:7a:aa:89:9d:8a:49:a1:5d:10:e3:bc:6c:d2:95: 03:a5:e0:de:34:3a:80:db:55:3c:7b:cd:d2:79:f2: 5f:97:00:3a:31:3b:39:e2:4b:af:71:3c:52:bf:8b: 5a:27:09:ea:ac:6d:0c:f3:65:d9:ed:8e:52:cb:86: d9:10:a2:e2:e8:1b:66:fc:90:b6:b0:0a:c9:1b:86: d4:dc:55:59:67:11:e8:d2:88:25:23:56:1e:3f:ff: 47:1f:43:f9:9c:84:c6:b8:11:b2:db:09:55:d6:53: 3b:ee:80:7e:e0:6c:01:28:33:0b:59:78:ac:39:2a: 5f:cd:85:01:9e:29:c2:d9:35:98:2f:5d:fb:5f:2a: 8c:da:30:ab:44:5c:3d:9d:a7:af:98:cb:80:d0:99: 22:05:bd:f9:50:08:a2:60:4a:f9:6b:08:e0:db:41: 68:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:82:46:97:9E:BB:1A:D7:58:4B:C4:DD:0C:CB:55:F7:0D:26:6E:7F X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b335::/48 Signature Algorithm: sha256WithRSAEncryption 98:2f:b0:1d:ea:61:23:2b:4a:8d:5b:de:e8:a6:aa:17:ad:a0: c9:53:d4:d2:a1:55:10:11:b8:3a:99:9a:1c:32:86:87:90:0b: df:77:3f:be:bd:5c:fa:3a:b7:ee:17:a4:78:6d:65:9e:52:68: 9f:a5:17:db:94:21:86:1b:6f:68:06:22:a6:07:f9:69:64:af: 81:4a:41:92:b5:48:9f:d1:3e:9f:fe:39:42:b8:a8:6e:1b:65: 38:86:d8:c9:3d:b1:46:39:2c:ce:96:12:29:5f:1b:b2:a1:50: 38:3c:db:fc:15:da:24:d0:51:48:92:cd:2b:88:6b:02:3a:ea: 0b:0b:a5:cd:25:69:c6:54:14:47:2e:10:6c:c3:9e:88:6a:44: e8:c6:c4:c9:c2:fd:36:f4:d3:a1:7f:23:47:e3:b0:47:77:dc: 55:22:3a:c6:fd:bc:53:10:97:29:71:02:6a:81:52:69:08:c7: b7:22:0c:8c:d2:55:7c:c1:55:6a:4f:06:dc:c3:70:1a:e1:85: 37:f6:da:62:f5:7d:19:a0:94:af:97:18:b0:ff:8a:2a:aa:4a: b5:74:ce:f2:af:c8:85:c5:a1:8e:98:f8:0d:5d:b2:00:fb:b3: e3:7a:17:19:98:d9:7e:f2:0d:f6:64:31:78:b6:6e:22:8d:36: f0:66:86:da -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUaEkkVYzorxS0eth5tZbkelyYHzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDExMzhaFw0yNTA0MjcyMDE2MzhaMDMxMTAvBgNV BAMTKEVCODI0Njk3OUVCQjFBRDc1ODRCQzRERDBDQ0I1NUY3MEQyNjZFN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw7u31/Nh2gP9t4lIE3kdYPmrv z1Mbnmo3totFGbAtD1+jNAWGe0fvA627YnQqTjwbNK/URmLW/uglJ/LUkTnBIIB1 TjZGOw+nVXKfY8hXyU9Ob3VGGmK979F6qomdikmhXRDjvGzSlQOl4N40OoDbVTx7 zdJ58l+XADoxOzniS69xPFK/i1onCeqsbQzzZdntjlLLhtkQouLoG2b8kLawCskb htTcVVlnEejSiCUjVh4//0cfQ/mchMa4EbLbCVXWUzvugH7gbAEoMwtZeKw5Kl/N hQGeKcLZNZgvXftfKozaMKtEXD2dp6+Yy4DQmSIFvflQCKJgSvlrCODbQWh7AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU64JGl567GtdYS8TdDMtV9w0mbn8wHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNTANBgkqhkiG9w0BAQsFAAOCAQEAmC+wHephIytKjVve 6KaqF62gyVPU0qFVEBG4OpmaHDKGh5AL33c/vr1c+jq37hekeG1lnlJon6UX25Qh hhtvaAYipgf5aWSvgUpBkrVIn9E+n/45QriobhtlOIbYyT2xRjkszpYSKV8bsqFQ ODzb/BXaJNBRSJLNK4hrAjrqCwulzSVpxlQURy4QbMOeiGpE6MbEycL9NvTToX8j R+OwR3fcVSI6xv28UxCXKXECaoFSaQjHtyIMjNJVfMFVak8G3MNwGuGFN/baYvV9 GaCUr5cYsP+KKqpKtXTO8q/IhcWhjpj4DV2yAPuz43oXGZjZfvIN9mQxeLZuIo02 8GaG2g== -----END CERTIFICATE-----Generated at Tue Jul 2 11:42:49 2024 by rpki-client on console-fra.rpki-client.org