$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: dUv44vuUTTN0y9BNHpirzTn5XYCtRn+IP1KMxFrV9JQ= Subject key identifier: 46:DB:EA:E4:A0:98:FA:3C:CD:F7:A1:D2:F2:8D:C0:C9:F7:B8:34:03 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 2F238A550F1EF8E1E4DACA74779053E8D6834F93 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 28 Apr 2024 20:16:41 +0000 ROA not before: Sun 28 Apr 2024 20:11:41 +0000 ROA not after: Sun 27 Apr 2025 20:16:41 +0000 asID: 212049 IP address blocks: 2a06:1283:b336::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:23:8a:55:0f:1e:f8:e1:e4:da:ca:74:77:90:53:e8:d6:83:4f:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:11:41 2024 GMT Not After : Apr 27 20:16:41 2025 GMT Subject: CN=46DBEAE4A098FA3CCDF7A1D2F28DC0C9F7B83403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:09:53:9d:b7:15:05:9c:58:bf:08:c3:17:15: 13:95:a0:82:1c:ab:47:29:46:5d:a0:bb:70:60:e4: 9f:2c:66:73:86:5e:14:14:2c:b0:2c:18:87:88:4e: e4:7d:05:f6:20:a3:fc:72:7f:6f:a4:40:4a:76:4d: 84:3a:71:f9:c5:48:a0:da:a5:cb:81:58:4a:31:a6: bc:74:77:60:0e:72:4c:bb:53:27:d7:7b:b8:93:31: 36:69:ef:0b:25:99:63:27:e6:1a:98:36:e5:92:6a: a7:2e:1f:b1:e9:6d:f6:97:7d:b6:fc:47:1c:c5:2f: c2:ff:ab:0d:a1:aa:2e:2a:5b:7d:9a:a8:d8:38:46: ac:81:c2:bc:89:63:72:b4:a8:05:3c:22:80:d0:42: c5:0a:50:0c:db:55:54:92:16:9b:7a:15:ae:f6:cc: 10:3a:b2:e5:65:5b:77:9f:07:31:60:23:cf:38:7d: 34:ca:03:35:7d:7e:1a:3a:19:f6:29:91:67:92:9a: 96:ba:6b:de:ff:34:32:c1:66:fc:b8:6c:42:c2:42: ab:6d:fd:d6:9f:d1:73:eb:f1:79:f7:dc:dc:f9:09: 82:02:18:c3:c7:71:d8:9f:d6:ba:20:91:76:af:5c: fa:4e:6c:81:54:e0:11:8f:48:a5:a1:fa:49:cb:da: 4a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DB:EA:E4:A0:98:FA:3C:CD:F7:A1:D2:F2:8D:C0:C9:F7:B8:34:03 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b336::/48 Signature Algorithm: sha256WithRSAEncryption 7a:a8:37:e0:02:94:e2:8c:7f:be:ce:b0:25:e2:bc:96:5f:5c: 10:58:cc:92:4c:79:7a:8c:9b:69:b9:0c:6c:ed:d6:8f:7b:08: 89:4a:cd:49:5c:45:5a:4a:6e:98:d0:42:65:02:cb:aa:de:74: 5c:4b:43:8a:cd:86:54:e8:f5:57:c6:7e:5e:c8:64:16:84:d3: 3d:93:2a:61:d5:cb:29:5e:f7:da:d1:f4:32:23:2f:cb:41:d5: b7:0e:bc:a1:fc:39:99:5f:65:30:60:23:5f:c1:a1:64:51:10: 51:6f:0b:53:a3:d0:ee:3f:c0:2b:ab:97:c7:4e:6c:e0:5a:e2: 36:c9:72:f7:6e:81:e1:db:bc:ce:b3:b5:13:93:aa:7e:df:5e: ba:05:39:d2:ff:d0:ad:a2:99:69:42:fc:05:22:fa:54:de:18: b2:7b:26:bf:4b:02:84:bc:a7:12:e6:48:d6:76:96:ff:54:f6: 34:06:77:ee:9c:e2:b1:81:8f:ea:1e:fc:e4:d6:f4:d0:f5:08: 08:da:f8:b8:94:c6:bf:04:2c:c7:b6:3d:ea:c3:fd:89:bd:6f: b0:f3:f0:d4:39:f3:13:27:df:d4:79:c5:c8:ee:82:89:16:6b: 09:79:22:09:2e:67:5a:be:fa:77:30:5e:f3:00:f9:54:67:b8: 4a:20:13:9e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIULyOKVQ8e+OHk2sp0d5BT6NaDT5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDExNDFaFw0yNTA0MjcyMDE2NDFaMDMxMTAvBgNV BAMTKDQ2REJFQUU0QTA5OEZBM0NDREY3QTFEMkYyOERDMEM5RjdCODM0MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVCVOdtxUFnFi/CMMXFROVoIIc q0cpRl2gu3Bg5J8sZnOGXhQULLAsGIeITuR9BfYgo/xyf2+kQEp2TYQ6cfnFSKDa pcuBWEoxprx0d2AOcky7UyfXe7iTMTZp7wslmWMn5hqYNuWSaqcuH7HpbfaXfbb8 RxzFL8L/qw2hqi4qW32aqNg4RqyBwryJY3K0qAU8IoDQQsUKUAzbVVSSFpt6Fa72 zBA6suVlW3efBzFgI884fTTKAzV9fho6GfYpkWeSmpa6a97/NDLBZvy4bELCQqtt /daf0XPr8Xn33Nz5CYICGMPHcdif1rogkXavXPpObIFU4BGPSKWh+knL2kpnAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQURtvq5KCY+jzN96HS8o3Ayfe4NAMwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNjANBgkqhkiG9w0BAQsFAAOCAQEAeqg34AKU4ox/vs6w JeK8ll9cEFjMkkx5eoybabkMbO3Wj3sIiUrNSVxFWkpumNBCZQLLqt50XEtDis2G VOj1V8Z+XshkFoTTPZMqYdXLKV732tH0MiMvy0HVtw68ofw5mV9lMGAjX8GhZFEQ UW8LU6PQ7j/AK6uXx05s4FriNsly926B4du8zrO1E5Oqft9eugU50v/QraKZaUL8 BSL6VN4Ysnsmv0sChLynEuZI1naW/1T2NAZ37pzisYGP6h785Nb00PUICNr4uJTG vwQsx7Y96sP9ib1vsPPw1DnzEyff1HnFyO6CiRZrCXkiCS5nWr76dzBe8wD5VGe4 SiATng== -----END CERTIFICATE-----Generated at Tue Jul 2 12:55:37 2024 by rpki-client on console-ams.rpki-client.org