$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa File: 326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa (raw, json) Hash identifier: 8zLTAnKeEdHkOXN0htUMZO2XgAasiVTpXfh80L7f5KM= Subject key identifier: 64:6F:1C:47:2B:90:DB:40:99:73:21:40:2C:03:66:84:06:48:85:E0 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 4DEFA84BE4A8A31A529EF51DBEE59B158D1F45D8 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa Signing time: Sun 28 Apr 2024 20:16:48 +0000 ROA not before: Sun 28 Apr 2024 20:11:48 +0000 ROA not after: Sun 27 Apr 2025 20:16:48 +0000 asID: 215649 IP address blocks: 2a06:1283:b401::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ef:a8:4b:e4:a8:a3:1a:52:9e:f5:1d:be:e5:9b:15:8d:1f:45:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:11:48 2024 GMT Not After : Apr 27 20:16:48 2025 GMT Subject: CN=646F1C472B90DB40997321402C036684064885E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:79:b4:3c:85:a2:2f:5f:d9:a3:19:a8:e5:98: 32:f1:24:5b:7d:d5:4a:3d:53:64:b5:97:5c:ae:9a: ca:97:9f:ba:de:ad:c4:92:e0:00:af:22:3a:81:07: 4e:5e:bd:7b:d1:96:54:30:48:3b:b0:5f:f6:54:9d: 0c:ad:34:2c:b4:11:cc:dc:c2:5b:45:73:83:33:60: 68:1b:d6:b8:8e:33:e0:96:ca:8c:6b:fb:29:82:ee: 1e:bf:39:77:2a:64:f7:b0:54:f4:43:02:dc:fa:31: 60:fc:cc:b3:6c:cf:8f:6c:8c:fa:7d:88:44:88:90: ef:2a:b7:d6:fc:4b:4b:bf:8a:fe:13:bb:4c:99:71: 58:9e:ca:00:65:a3:7a:03:6c:53:5a:69:48:89:39: 19:5e:49:e2:7b:b2:1c:c5:17:1e:49:81:d1:62:ca: 70:18:72:f8:f8:aa:93:cd:e8:c3:2d:c6:cf:f5:8a: bf:7f:1b:fb:39:4f:02:d8:57:e5:84:ef:45:89:fd: 7a:27:23:14:5e:aa:9e:49:e8:09:b4:e5:a4:68:db: 5f:30:44:bd:98:72:52:bd:b8:ac:06:33:d7:72:87: b9:76:0d:6c:ee:a0:64:36:19:79:a6:fa:98:4b:55: a2:7b:26:32:dd:0a:b1:b4:6a:f5:10:3e:b8:6c:1e: d0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6F:1C:47:2B:90:DB:40:99:73:21:40:2C:03:66:84:06:48:85:E0 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a623430313a3a2f34382d3438203d3e20323135363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b401::/48 Signature Algorithm: sha256WithRSAEncryption 3d:b6:ca:fd:75:a2:91:c6:3c:3e:ad:ca:e1:ed:dc:0e:92:81: 3c:26:2f:cf:b5:d9:9c:bf:51:8b:5c:0f:c9:c3:7b:1e:77:36: 4b:ce:b6:29:ed:ac:31:b2:5d:a3:e4:b3:1e:55:e1:c6:f9:b9: d4:cb:e8:8a:a2:76:de:eb:f2:e3:80:c9:94:28:06:7a:3e:19: 8d:37:c4:89:01:a1:b9:6d:0b:07:cc:32:9c:07:74:bf:4c:4e: 4c:81:71:16:d3:98:f4:61:57:a5:ca:8b:77:cc:27:3c:12:9e: 16:cb:54:0c:22:85:88:68:24:7a:22:06:1c:26:1d:5d:89:0e: 7a:b2:4f:da:98:e2:15:69:83:6e:c5:cb:e8:a7:62:7b:8c:1e: 3b:d7:f9:7d:9e:21:de:11:18:fa:5a:2e:c6:4d:9e:b9:97:4e: 44:fc:e1:b0:8b:9f:af:b3:29:cb:a2:49:d2:eb:a6:82:34:12: cc:52:11:22:cb:a7:51:8e:ca:fd:f4:fb:49:b3:eb:0d:98:a4: a0:45:8c:54:06:7d:ed:63:a5:d2:8a:fa:c6:0e:7a:ea:2d:8a: 7f:22:b6:3f:38:41:71:50:01:4c:b4:9b:6c:db:36:b8:b8:9f: 59:3b:ed:35:16:69:8b:5b:34:8e:2d:05:5c:f1:8c:e7:c6:a8: e8:aa:0c:de -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUTe+oS+SooxpSnvUdvuWbFY0fRdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDExNDhaFw0yNTA0MjcyMDE2NDhaMDMxMTAvBgNV BAMTKDY0NkYxQzQ3MkI5MERCNDA5OTczMjE0MDJDMDM2Njg0MDY0ODg1RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ebQ8haIvX9mjGajlmDLxJFt9 1Uo9U2S1l1yumsqXn7rercSS4ACvIjqBB05evXvRllQwSDuwX/ZUnQytNCy0Eczc wltFc4MzYGgb1riOM+CWyoxr+ymC7h6/OXcqZPewVPRDAtz6MWD8zLNsz49sjPp9 iESIkO8qt9b8S0u/iv4Tu0yZcVieygBlo3oDbFNaaUiJORleSeJ7shzFFx5JgdFi ynAYcvj4qpPN6MMtxs/1ir9/G/s5TwLYV+WE70WJ/XonIxReqp5J6Am05aRo218w RL2YclK9uKwGM9dyh7l2DWzuoGQ2GXmm+phLVaJ7JjLdCrG0avUQPrhsHtDhAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUZG8cRyuQ20CZcyFALANmhAZIheAwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjM0MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTM2MzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoO0ATANBgkqhkiG9w0BAQsFAAOCAQEAPbbK/XWikcY8Pq3K 4e3cDpKBPCYvz7XZnL9Ri1wPycN7Hnc2S862Ke2sMbJdo+SzHlXhxvm51MvoiqJ2 3uvy44DJlCgGej4ZjTfEiQGhuW0LB8wynAd0v0xOTIFxFtOY9GFXpcqLd8wnPBKe FstUDCKFiGgkeiIGHCYdXYkOerJP2pjiFWmDbsXL6Kdie4weO9f5fZ4h3hEY+lou xk2euZdORPzhsIufr7Mpy6JJ0uumgjQSzFIRIsunUY7K/fT7SbPrDZikoEWMVAZ9 7WOl0or6xg566i2KfyK2PzhBcVABTLSbbNs2uLifWTvtNRZpi1s0ji0FXPGM58ao 6KoM3g== -----END CERTIFICATE-----Generated at Tue Jul 2 12:55:37 2024 by rpki-client on console-ams.rpki-client.org