$ rpki-client -vvf rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f33322d3438203d3e2030.roa File: 326130363a313238323a3a2f33322d3438203d3e2030.roa (raw, json) Hash identifier: wB5g6nq2XpQePP/iqQEOyS8ihLvnOLXQwu/l75qsFWs= Subject key identifier: 7A:5D:B1:88:08:B9:8F:1C:AE:AA:46:40:55:80:40:CA:EB:60:78:6A Certificate issuer: /CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7 Certificate serial: 5CEAABDA19B5773EFA68830971ECF99094AE79AA Authority key identifier: 3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer Subject info access: rsync://rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f33322d3438203d3e2030.roa Signing time: Tue 12 Nov 2024 14:19:54 +0000 ROA not before: Tue 12 Nov 2024 14:14:54 +0000 ROA not after: Tue 11 Nov 2025 14:19:54 +0000 asID: 0 IP address blocks: 2a06:1282::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ea:ab:da:19:b5:77:3e:fa:68:83:09:71:ec:f9:90:94:ae:79:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7 Validity Not Before: Nov 12 14:14:54 2024 GMT Not After : Nov 11 14:19:54 2025 GMT Subject: CN=7A5DB18808B98F1CAEAA4640558040CAEB60786A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c1:0a:3b:0b:40:6d:87:37:88:ed:2e:e1:aa: 56:7b:98:d2:30:0c:6d:80:81:5f:20:2f:16:4e:08: f2:f6:b2:84:39:94:18:0b:54:1d:31:10:a4:23:a5: 61:bc:d9:0e:59:5e:84:5e:55:35:89:ed:96:b9:1f: 6f:b1:9b:f8:90:d2:40:ce:3e:04:6e:48:de:4e:2f: 9f:e2:03:b7:68:e0:16:6a:fc:4e:76:98:a1:c1:83: 78:73:85:24:69:15:0e:86:5e:2b:06:e8:29:f0:8e: 78:db:7b:76:39:7f:13:62:eb:5f:6f:3b:04:ed:43: 12:84:2d:46:ab:af:f9:27:87:1f:c0:7d:be:5c:0e: fe:9c:58:8e:13:07:fd:92:d1:c7:33:a0:77:24:1c: 3d:1f:33:85:18:fb:cb:71:f3:1e:9c:4a:2d:3b:3c: 8c:14:65:d0:08:ee:81:77:5e:bb:4a:2b:a4:36:fa: af:c7:29:a2:5b:e0:c4:d0:a2:25:38:d0:ed:c3:c1: 83:cc:45:67:84:ca:11:1b:fd:23:b6:3c:40:65:4b: be:56:ce:6e:ad:d9:f7:da:f5:d6:12:68:83:a9:39: 4c:b7:4e:8d:c8:88:ce:3b:ce:c6:22:9f:f8:1c:e3: fb:94:c6:45:3b:94:c6:74:96:ff:bb:f5:4d:60:ac: 24:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5D:B1:88:08:B9:8F:1C:AE:AA:46:40:55:80:40:CA:EB:60:78:6A X509v3 Authority Key Identifier: keyid:3B:3E:1B:DC:ED:8C:B8:95:97:FE:92:EA:F7:5B:E2:DF:98:AF:84:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/3B3E1BDCED8CB89597FE92EAF75BE2DF98AF84A7.cer Subject Information Access: Signed Object - URI:rsync://rpki.sn-p.io/repo/sn-p-io/0/326130363a313238323a3a2f33322d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1282::/32 Signature Algorithm: sha256WithRSAEncryption 82:90:30:c3:0c:ca:44:72:51:0d:c4:6e:e0:b7:6a:00:cb:bb: f7:6d:13:a4:86:69:d0:7d:32:53:96:a0:a4:5d:39:8f:d1:ba: 3c:e7:fd:58:6a:fa:e2:51:e9:7d:78:b8:ef:83:4b:13:77:96: 19:d2:2f:d7:2a:d8:87:08:b2:a6:a8:ca:0a:09:bd:4c:33:e5: 21:7e:a7:4b:06:1f:1e:09:1f:0d:01:60:1b:88:c9:e4:f6:a7: ea:13:e4:d1:12:0a:be:2c:6b:37:95:ba:15:e9:f0:ea:bd:fa: a8:b8:65:05:30:19:86:01:4a:66:b1:16:17:4a:33:56:f7:a9: df:8b:cf:f3:cb:9e:97:4b:9d:83:ea:d3:01:68:bb:a0:4c:76: a0:6a:b5:2a:0b:f4:97:b0:75:02:61:d3:85:67:25:70:79:d3: f1:fa:ed:60:40:17:04:21:d7:d5:e1:c7:4c:f7:d5:b3:d4:7c: 97:49:e2:02:49:ef:30:ee:82:1a:1e:5e:5c:ba:91:39:a3:9d: eb:0d:83:ea:ec:28:bb:a7:c2:bd:44:26:84:5c:ef:a4:8e:ed: 20:72:6b:e5:1a:53:70:12:55:3a:42:d4:ac:cf:48:82:43:0b: 39:71:df:4a:62:c3:b6:32:cc:15:66:64:9b:69:3a:28:92:3b: e3:15:e1:a7 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUXOqr2hm1dz76aIMJcez5kJSueaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IzRTFCRENFRDhDQjg5NTk3RkU5MkVBRjc1QkUyREY5 OEFGODRBNzAeFw0yNDExMTIxNDE0NTRaFw0yNTExMTExNDE5NTRaMDMxMTAvBgNV BAMTKDdBNURCMTg4MDhCOThGMUNBRUFBNDY0MDU1ODA0MENBRUI2MDc4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCewQo7C0BthzeI7S7hqlZ7mNIw DG2AgV8gLxZOCPL2soQ5lBgLVB0xEKQjpWG82Q5ZXoReVTWJ7Za5H2+xm/iQ0kDO PgRuSN5OL5/iA7do4BZq/E52mKHBg3hzhSRpFQ6GXisG6Cnwjnjbe3Y5fxNi619v OwTtQxKELUarr/knhx/Afb5cDv6cWI4TB/2S0cczoHckHD0fM4UY+8tx8x6cSi07 PIwUZdAI7oF3XrtKK6Q2+q/HKaJb4MTQoiU40O3DwYPMRWeEyhEb/SO2PEBlS75W zm6t2ffa9dYSaIOpOUy3To3IiM47zsYin/gc4/uUxkU7lMZ0lv+79U1grCQnAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUel2xiAi5jxyuqkZAVYBAyutgeGowHwYDVR0j BBgwFoAUOz4b3O2MuJWX/pLq91vi35ivhKcwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraS5zbi1wLmlvL3JlcG8vc24tcC1pby8w LzNCM0UxQkRDRUQ4Q0I4OTU5N0ZFOTJFQUY3NUJFMkRGOThBRjg0QTcuY3JsMIGT BggrBgEFBQcBAQSBhjCBgzCBgAYIKwYBBQUHMAKGdHJzeW5jOi8vcnBraS1ycHMu YXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJl M2Y5ZC8yLzNCM0UxQkRDRUQ4Q0I4OTU5N0ZFOTJFQUY3NUJFMkRGOThBRjg0QTcu Y2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLnNu LXAuaW8vcmVwby9zbi1wLWlvLzAvMzI2MTMwMzYzYTMxMzIzODMyM2EzYTJmMzMz MjJkMzQzODIwM2QzZTIwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw IAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAqBhKCMA0GCSqGSIb3DQEBCwUA A4IBAQCCkDDDDMpEclENxG7gt2oAy7v3bROkhmnQfTJTlqCkXTmP0bo85/1Yavri Uel9eLjvg0sTd5YZ0i/XKtiHCLKmqMoKCb1MM+UhfqdLBh8eCR8NAWAbiMnk9qfq E+TREgq+LGs3lboV6fDqvfqouGUFMBmGAUpmsRYXSjNW96nfi8/zy56XS52D6tMB aLugTHagarUqC/SXsHUCYdOFZyVwedPx+u1gQBcEIdfV4cdM99Wz1HyXSeICSe8w 7oIaHl5cupE5o53rDYPq7Ci7p8K9RCaEXO+kju0gcmvlGlNwElU6QtSsz0iCQws5 cd9KYsO2MswVZmSbaTookjvjFeGn -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:35 2024 by rpki-client on console-ams.rpki-client.org