$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: CnHfwe/IOzAXGCJLQ6dOmanmQ+hIO/jg9TvKK+NDRTU= Subject key identifier: A7:3D:56:C9:5F:92:E7:C7:2C:E2:47:1B:B5:57:03:E0:E0:4A:6A:39 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 7CAA394814BFEEEED925891A0A9008FFA6D11B72 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa Signing time: Sun 28 Apr 2024 20:18:37 +0000 ROA not before: Sun 28 Apr 2024 20:13:37 +0000 ROA not after: Sun 27 Apr 2025 20:18:37 +0000 asID: 216065 IP address blocks: 2a06:1283:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:aa:39:48:14:bf:ee:ee:d9:25:89:1a:0a:90:08:ff:a6:d1:1b:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:13:37 2024 GMT Not After : Apr 27 20:18:37 2025 GMT Subject: CN=A73D56C95F92E7C72CE2471BB55703E0E04A6A39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:82:59:f5:6f:ca:e8:60:c6:49:f9:54:97:34: 61:9c:96:1c:89:ef:2d:26:46:fd:70:01:59:aa:ca: d5:70:95:f6:51:a0:e0:91:6c:96:5d:f5:09:41:c2: 15:60:25:5b:8b:0a:23:f8:a7:8c:73:53:71:35:36: 9a:ba:27:85:f3:1b:3a:9b:d7:5f:f3:b1:72:fc:c4: b4:7b:f8:3e:ec:21:c2:dc:1e:c7:f2:35:f1:60:fd: f9:dc:5a:08:4d:e1:9e:45:9a:18:d4:19:a8:3f:31: ec:7c:c6:7d:81:8b:88:79:03:b2:5c:0f:07:83:e2: 10:d2:d3:5d:79:2c:9f:12:31:17:98:a5:2c:27:22: 4d:bc:bf:55:b0:19:40:9a:d5:ac:4d:81:3a:17:25: 0f:14:f4:76:0b:f3:f8:bd:06:85:18:cf:be:f3:7d: 27:a2:92:5c:ed:42:de:4f:69:fc:4f:79:88:63:60: 41:43:e4:cb:8a:a7:fa:85:8d:4d:ba:8f:ea:14:ae: 6e:3d:7d:48:aa:9d:9d:d7:35:ea:70:ea:96:68:1d: 46:7e:6d:3f:f7:e0:cf:88:02:7b:1c:f5:38:db:72: 12:89:54:20:a7:7a:85:cc:90:a0:31:24:2f:e5:be: e0:e2:28:3e:c1:28:9d:6e:bc:3b:7b:cd:4a:20:23: a8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3D:56:C9:5F:92:E7:C7:2C:E2:47:1B:B5:57:03:E0:E0:4A:6A:39 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c020::/48 Signature Algorithm: sha256WithRSAEncryption 3f:ad:aa:6b:6d:08:32:32:55:39:0a:91:8f:dd:74:79:98:0f: ba:f5:d8:84:77:ae:d9:de:97:4f:83:a8:38:e7:e8:8a:27:6d: 47:76:53:86:4b:d9:b9:24:d4:92:40:e9:c0:3e:35:ad:61:49: 11:be:46:7a:1e:86:d8:2d:c2:ff:ce:94:4d:3e:ce:3f:a2:5c: f1:a5:ff:7d:01:b1:26:5f:99:22:81:39:68:b9:5d:10:ae:05: 52:03:82:60:7a:a5:84:85:19:6b:48:71:56:ce:d6:ab:b9:2c: e7:e2:54:36:5e:ab:60:53:a7:0b:58:05:d2:e7:89:8a:95:4d: 70:e4:ef:ce:0f:74:6b:57:f3:d0:66:24:72:96:bb:c9:d4:ef: fb:b9:47:16:78:78:c3:ed:cb:d7:47:18:06:07:0e:be:59:76: 00:dd:c7:62:0b:51:73:47:d7:42:c6:85:22:66:c3:10:1a:9a: b9:d7:ba:72:ee:ee:51:4a:99:f2:db:d2:93:97:62:d9:9f:96: 92:fa:fe:e7:b9:8e:a9:e7:d3:aa:2f:f1:82:44:a5:69:8b:bc: 68:94:89:14:8b:16:40:d1:f9:af:9e:f2:8e:25:3c:58:38:00: 78:fa:82:19:9f:90:66:37:82:1d:9f:74:21:06:bb:de:65:51: 0c:99:a7:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUfKo5SBS/7u7ZJYkaCpAI/6bRG3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDEzMzdaFw0yNTA0MjcyMDE4MzdaMDMxMTAvBgNV BAMTKEE3M0Q1NkM5NUY5MkU3QzcyQ0UyNDcxQkI1NTcwM0UwRTA0QTZBMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1gln1b8roYMZJ+VSXNGGclhyJ 7y0mRv1wAVmqytVwlfZRoOCRbJZd9QlBwhVgJVuLCiP4p4xzU3E1Npq6J4XzGzqb 11/zsXL8xLR7+D7sIcLcHsfyNfFg/fncWghN4Z5FmhjUGag/Mex8xn2Bi4h5A7Jc DweD4hDS0115LJ8SMReYpSwnIk28v1WwGUCa1axNgToXJQ8U9HYL8/i9BoUYz77z fSeiklztQt5PafxPeYhjYEFD5MuKp/qFjU26j+oUrm49fUiqnZ3XNepw6pZoHUZ+ bT/34M+IAnsc9TjbchKJVCCneoXMkKAxJC/lvuDiKD7BKJ1uvDt7zUogI6jXAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUpz1WyV+S58cs4kcbtVcD4OBKajkwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIDANBgkqhkiG9w0BAQsFAAOCAQEAP62qa20IMjJVOQqR j910eZgPuvXYhHeu2d6XT4OoOOfoiidtR3ZThkvZuSTUkkDpwD41rWFJEb5Geh6G 2C3C/86UTT7OP6Jc8aX/fQGxJl+ZIoE5aLldEK4FUgOCYHqlhIUZa0hxVs7Wq7ks 5+JUNl6rYFOnC1gF0ueJipVNcOTvzg90a1fz0GYkcpa7ydTv+7lHFnh4w+3L10cY BgcOvll2AN3HYgtRc0fXQsaFImbDEBqaude6cu7uUUqZ8tvSk5di2Z+Wkvr+57mO qefTqi/xgkSlaYu8aJSJFIsWQNH5r57yjiU8WDgAePqCGZ+QZjeCHZ90IQa73mVR DJmnEw== -----END CERTIFICATE-----Generated at Tue Jul 2 11:42:49 2024 by rpki-client on console-fra.rpki-client.org