$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: +gN42CZGCpiCZAC/4NZPtBtKcZLs/tpVuB/ahU49YS8= Subject key identifier: 64:5E:25:28:3B:18:0B:4C:C7:A4:46:9B:56:F8:24:FD:2B:C0:DA:8D Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 64F3C26FC815A9943C3E0DCC959FA24F40C04A61 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa Signing time: Sun 28 Apr 2024 20:18:26 +0000 ROA not before: Sun 28 Apr 2024 20:13:26 +0000 ROA not after: Sun 27 Apr 2025 20:18:26 +0000 asID: 216065 IP address blocks: 2a06:1283:c022::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f3:c2:6f:c8:15:a9:94:3c:3e:0d:cc:95:9f:a2:4f:40:c0:4a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:13:26 2024 GMT Not After : Apr 27 20:18:26 2025 GMT Subject: CN=645E25283B180B4CC7A4469B56F824FD2BC0DA8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:04:4a:88:52:79:0a:d3:3b:bf:09:ff:64:4e: c6:34:cf:ef:18:33:dc:b1:3c:5f:cf:b2:88:39:99: 48:ae:d5:ba:cd:f3:66:3f:1c:ea:eb:49:70:22:0c: 46:79:da:03:45:3e:1c:a3:9f:f2:a4:fa:52:5f:90: e7:e6:d3:4b:8e:97:bd:6e:fe:82:4b:9f:ab:58:b1: 36:a7:3c:28:ad:f4:64:65:aa:fe:70:4b:ab:44:26: b7:3a:dc:68:b5:d7:b0:12:fd:d5:7c:03:d5:be:7b: c0:62:06:f2:1a:66:f1:ff:f0:0e:c8:68:ee:85:6f: bd:fc:73:00:85:be:7d:e3:85:c2:a5:75:d3:72:47: 3f:82:8d:1b:d0:d2:f8:07:a2:5c:ca:cc:a0:7d:6c: e5:4b:af:12:3f:ae:65:0d:e7:53:a5:0f:7e:2d:dd: a1:83:bf:71:02:b8:cd:df:d8:d0:7d:fb:8a:51:7b: 00:10:89:9d:ba:73:3b:15:f5:3a:e7:e8:34:05:36: f8:96:a1:cf:2b:db:f1:65:07:26:24:dc:1d:95:85: a1:be:c8:9a:ad:44:90:39:f4:41:75:f2:ff:68:f0: 57:c5:05:89:9f:71:8e:ce:8e:4e:f1:e6:e8:13:02: 7d:e4:d6:29:08:5b:b6:e9:b7:12:88:c1:8d:69:5a: 66:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5E:25:28:3B:18:0B:4C:C7:A4:46:9B:56:F8:24:FD:2B:C0:DA:8D X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c022::/48 Signature Algorithm: sha256WithRSAEncryption 05:d8:ce:94:bf:ad:90:e2:9a:e4:d6:0b:c4:ef:44:ec:9c:5a: 3d:88:ee:22:a9:71:e7:ce:f7:36:67:fb:f3:68:e8:e8:a5:82: 80:6c:57:18:29:dc:62:df:c6:34:d4:e1:48:8d:62:fa:ef:79: ec:70:44:1d:f4:b0:15:57:89:2a:5b:37:09:e6:00:44:5b:38: bc:88:aa:0c:48:49:7e:09:a3:4f:3f:b9:88:f7:9c:5b:24:19: 53:ec:f2:5e:ca:59:d9:f9:04:a0:67:c2:38:39:f7:11:ab:8e: 42:3a:77:61:7f:de:91:96:4b:c9:f5:1d:d5:93:96:e2:b0:fa: 6c:91:f4:34:1d:2f:0c:80:e1:39:52:3d:fe:6e:49:d2:0e:ca: 62:b2:77:9c:bf:46:6b:53:f8:01:9c:0a:b4:63:75:e8:61:77: 95:bd:9e:b8:8f:d1:e1:69:01:f8:40:c5:96:b8:e1:d2:d0:2b: 40:b3:ec:6b:f4:c5:d2:e2:b5:e8:08:0b:95:28:a7:2b:6b:b4: 9c:7b:97:b6:f1:76:c9:a8:6d:1c:c3:23:56:23:e2:b0:18:7a: 5d:42:0c:77:19:82:fa:1c:62:f6:e2:28:3d:d9:d8:b7:1b:83: c3:5f:dd:0d:d9:05:0d:fa:0c:3d:19:50:f3:e5:b7:36:a8:6c: 9f:42:d5:68 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZPPCb8gVqZQ8Pg3MlZ+iT0DASmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDEzMjZaFw0yNTA0MjcyMDE4MjZaMDMxMTAvBgNV BAMTKDY0NUUyNTI4M0IxODBCNENDN0E0NDY5QjU2RjgyNEZEMkJDMERBOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0BEqIUnkK0zu/Cf9kTsY0z+8Y M9yxPF/Psog5mUiu1brN82Y/HOrrSXAiDEZ52gNFPhyjn/Kk+lJfkOfm00uOl71u /oJLn6tYsTanPCit9GRlqv5wS6tEJrc63Gi117AS/dV8A9W+e8BiBvIaZvH/8A7I aO6Fb738cwCFvn3jhcKlddNyRz+CjRvQ0vgHolzKzKB9bOVLrxI/rmUN51OlD34t 3aGDv3ECuM3f2NB9+4pRewAQiZ26czsV9Trn6DQFNviWoc8r2/FlByYk3B2VhaG+ yJqtRJA59EF18v9o8FfFBYmfcY7Ojk7x5ugTAn3k1ikIW7bptxKIwY1pWmZzAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUZF4lKDsYC0zHpEabVvgk/SvA2o0wHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIjANBgkqhkiG9w0BAQsFAAOCAQEABdjOlL+tkOKa5NYL xO9E7JxaPYjuIqlx5873Nmf782jo6KWCgGxXGCncYt/GNNThSI1i+u957HBEHfSw FVeJKls3CeYARFs4vIiqDEhJfgmjTz+5iPecWyQZU+zyXspZ2fkEoGfCODn3EauO Qjp3YX/ekZZLyfUd1ZOW4rD6bJH0NB0vDIDhOVI9/m5J0g7KYrJ3nL9Ga1P4AZwK tGN16GF3lb2euI/R4WkB+EDFlrjh0tArQLPsa/TF0uK16AgLlSinK2u0nHuXtvF2 yahtHMMjViPisBh6XUIMdxmC+hxi9uIoPdnYtxuDw1/dDdkFDfoMPRlQ8+W3Nqhs n0LVaA== -----END CERTIFICATE-----Generated at Tue Jul 2 11:42:49 2024 by rpki-client on console-fra.rpki-client.org