$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa File: 326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa (raw, json) Hash identifier: CYjJYgaeQ6QLzyCoz9/Nj4auQjwkM3MUi27U30pKYoY= Subject key identifier: CA:6D:D7:6C:9F:E4:75:73:E2:D5:D8:E2:4F:EC:67:F6:A8:D8:5B:C8 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 240F97328C81A97A56743319E75F88C7016552B3 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa Signing time: Sun 28 Apr 2024 20:16:45 +0000 ROA not before: Sun 28 Apr 2024 20:11:45 +0000 ROA not after: Sun 27 Apr 2025 20:16:45 +0000 asID: 215147 IP address blocks: 2a06:1283:c110::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jul 2024 03:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:0f:97:32:8c:81:a9:7a:56:74:33:19:e7:5f:88:c7:01:65:52:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:11:45 2024 GMT Not After : Apr 27 20:16:45 2025 GMT Subject: CN=CA6DD76C9FE47573E2D5D8E24FEC67F6A8D85BC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:31:22:ee:ab:21:98:72:59:3e:99:60:cf:a7: 25:d1:1b:87:b4:e3:27:da:59:74:0c:0e:7d:5e:60: 26:6b:9a:d8:56:eb:31:ef:db:2f:06:de:d7:89:b3: b9:f9:76:12:a2:0a:fe:51:68:1b:bc:9d:cf:48:bb: 02:76:6b:de:6a:19:cb:f4:a2:41:6a:ce:d6:5d:31: 6f:c9:0e:dd:3b:a1:14:1c:52:77:8c:71:bb:ee:44: 6d:4f:6c:db:48:7f:8e:6e:0f:ab:c5:a3:f3:6c:75: c0:40:ce:24:8f:3c:4a:c1:58:59:8e:9f:e0:a1:a5: 82:a2:bf:9d:6c:14:00:50:12:91:06:c1:ce:0b:d7: 5b:c0:d7:ce:34:ff:ba:dc:f0:f1:73:0e:ab:bc:a6: 23:f2:48:0d:9a:e8:17:e4:a4:e3:f0:cc:98:f2:c8: 9f:58:49:6a:49:b7:da:8c:99:a4:4d:a4:d6:1d:72: b0:03:32:5c:c1:08:80:24:84:e3:15:31:e1:71:a1: 2f:9e:72:28:40:6c:b0:e6:66:c9:4f:35:58:06:ff: 06:8f:ca:6e:4b:6e:8f:fc:62:35:20:4a:b2:28:13: c1:ca:09:b7:7e:6e:99:7a:01:a6:3d:eb:3f:a0:7f: 35:7b:80:b2:77:95:83:b9:31:c8:03:b2:1f:1c:4d: e0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6D:D7:6C:9F:E4:75:73:E2:D5:D8:E2:4F:EC:67:F6:A8:D8:5B:C8 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c110::/44 Signature Algorithm: sha256WithRSAEncryption 90:95:be:27:14:c0:7b:3f:ec:da:2c:b9:2a:93:b8:ca:81:3b: 51:97:26:94:dd:66:8c:3f:08:f7:7a:80:8c:b8:ea:55:e0:89: 3a:47:b7:72:f7:a8:7e:f4:17:c0:8a:83:6d:7c:37:a4:18:12: a6:60:33:00:fa:99:bc:af:09:a0:9a:13:95:47:c2:00:c8:13: ff:9f:2a:51:26:07:18:f3:1f:2a:e0:c4:27:39:d7:ee:cb:5e: 57:4c:b6:4f:1d:05:73:0d:09:cf:10:b1:b4:b3:f9:12:22:43: 86:1f:68:40:d3:5f:e3:a3:f6:ca:a7:8f:b5:3d:01:ff:d9:7a: bb:c3:56:b2:5a:17:68:6c:37:42:e3:67:99:a3:4d:92:f1:de: 0e:d8:50:00:a0:2a:ad:ff:7d:74:fd:0d:07:dc:34:50:61:c5: cf:af:dd:cd:f2:c7:91:5c:79:3d:55:43:c6:d1:80:3c:11:1a: b1:a3:07:7d:36:03:3b:47:d9:45:3f:bb:8d:af:7a:57:a7:ae: b9:a8:c3:85:5d:4c:a9:d8:fa:e1:04:56:8b:3b:9e:7c:16:1d: dc:69:9d:34:1f:bc:e3:46:73:7c:ee:59:e2:ba:64:e4:05:c1: f3:d6:a7:4c:85:fc:33:f3:9f:cd:ed:8c:db:15:e1:eb:68:c9: bb:bb:74:a0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJA+XMoyBqXpWdDMZ51+IxwFlUrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDExNDVaFw0yNTA0MjcyMDE2NDVaMDMxMTAvBgNV BAMTKENBNkRENzZDOUZFNDc1NzNFMkQ1RDhFMjRGRUM2N0Y2QThEODVCQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7MSLuqyGYclk+mWDPpyXRG4e0 4yfaWXQMDn1eYCZrmthW6zHv2y8G3teJs7n5dhKiCv5RaBu8nc9IuwJ2a95qGcv0 okFqztZdMW/JDt07oRQcUneMcbvuRG1PbNtIf45uD6vFo/NsdcBAziSPPErBWFmO n+ChpYKiv51sFABQEpEGwc4L11vA1840/7rc8PFzDqu8piPySA2a6BfkpOPwzJjy yJ9YSWpJt9qMmaRNpNYdcrADMlzBCIAkhOMVMeFxoS+ecihAbLDmZslPNVgG/waP ym5Lbo/8YjUgSrIoE8HKCbd+bpl6AaY96z+gfzV7gLJ3lYO5McgDsh8cTeDrAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUym3XbJ/kdXPi1djiT+xn9qjYW8gwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNTMxMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPBEDANBgkqhkiG9w0BAQsFAAOCAQEAkJW+JxTAez/s2iy5 KpO4yoE7UZcmlN1mjD8I93qAjLjqVeCJOke3cveofvQXwIqDbXw3pBgSpmAzAPqZ vK8JoJoTlUfCAMgT/58qUSYHGPMfKuDEJznX7steV0y2Tx0Fcw0JzxCxtLP5EiJD hh9oQNNf46P2yqePtT0B/9l6u8NWsloXaGw3QuNnmaNNkvHeDthQAKAqrf99dP0N B9w0UGHFz6/dzfLHkVx5PVVDxtGAPBEasaMHfTYDO0fZRT+7ja96V6euuajDhV1M qdj64QRWizuefBYd3GmdNB+840ZzfO5Z4rpk5AXB89anTIX8M/Ofze2M2xXh62jJ u7t0oA== -----END CERTIFICATE-----Generated at Tue Jul 2 11:42:49 2024 by rpki-client on console-fra.rpki-client.org