$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa File: 326130353a646663353a3a2f33322d3438203d3e20323033303639.roa (raw, json) Hash identifier: +/otIOQrixg9qPBTMg2Vf6tme6VZset2XTwh7oHPt1w= Subject key identifier: E0:83:5F:4E:2D:B2:9A:D0:F6:73:C0:54:09:87:51:3C:9F:B4:AA:B9 Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5 Certificate serial: 772BD6959F7D1FFDBAC836EF0F73F11FC168D36E Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa Signing time: Tue 19 Mar 2024 22:22:31 +0000 ROA not before: Tue 19 Mar 2024 22:17:31 +0000 ROA not after: Tue 18 Mar 2025 22:22:31 +0000 asID: 203069 IP address blocks: 2a05:dfc5::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2b:d6:95:9f:7d:1f:fd:ba:c8:36:ef:0f:73:f1:1f:c1:68:d3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5 Validity Not Before: Mar 19 22:17:31 2024 GMT Not After : Mar 18 22:22:31 2025 GMT Subject: CN=E0835F4E2DB29AD0F673C0540987513C9FB4AAB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d1:86:23:a8:bd:ef:c6:40:b4:2d:0d:b8:6d: 98:2e:aa:18:ae:ab:1c:d7:33:b2:54:75:33:38:31: 1e:19:86:3b:cc:de:2a:b5:a8:86:8e:06:69:85:f0: 18:bf:7e:85:b4:cd:24:83:88:27:3d:c9:69:11:66: d3:16:ac:ba:5e:46:f5:fa:1e:5a:c6:80:b2:8d:80: eb:e9:38:69:4f:87:8a:40:fa:e4:89:33:58:6c:03: 05:44:11:fb:e0:35:27:7d:7d:69:c5:93:44:09:03: 0b:fe:c8:aa:ed:c2:0b:32:5d:48:f4:e4:47:e3:c5: 52:cf:04:58:a5:38:36:a1:a2:c3:68:76:cc:1a:0b: b5:06:c8:1a:45:09:4c:12:a9:2a:f3:76:54:5c:3e: 24:33:1c:2d:fd:ec:e1:36:a5:14:4c:51:84:8b:9c: ba:54:7a:c9:f9:67:50:9b:d2:e2:ae:18:83:7e:84: eb:41:5c:f3:0e:45:9b:92:dd:d8:cf:8d:45:4f:3b: c3:79:4f:c0:c9:2e:6a:62:fb:d7:4c:2d:94:15:29: 33:a5:15:9f:62:4d:47:e3:a7:fb:a9:44:55:6e:3b: d3:ba:27:92:8b:54:03:81:bd:59:1f:a9:60:6b:3e: ca:6d:d3:90:ca:67:48:df:62:cf:c5:0f:61:14:db: ee:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:83:5F:4E:2D:B2:9A:D0:F6:73:C0:54:09:87:51:3C:9F:B4:AA:B9 X509v3 Authority Key Identifier: keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f33322d3438203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5::/32 Signature Algorithm: sha256WithRSAEncryption 23:c8:f4:f8:54:f8:f2:31:c5:45:1c:c0:ff:d1:ed:63:28:46: 2d:b0:ad:6b:65:27:1d:d7:c5:62:15:e0:1b:6a:6b:c6:ca:2d: 57:69:6b:bc:cd:4c:f7:2f:72:c5:39:cd:6e:9f:52:4f:2d:54: 5a:74:9a:1e:f5:6a:f7:c0:00:84:80:3a:07:00:8b:4c:8b:83: ca:27:dd:b0:a5:f4:39:df:f9:b7:a4:28:e7:0f:1f:f0:f2:db: f0:e1:f6:c8:6e:3a:27:9a:54:70:f5:6c:59:ea:bb:ca:e1:f0: 5b:b3:d6:d0:ec:b4:05:de:6a:47:da:38:c2:ab:fe:c3:f5:c7: 1c:9c:7d:d7:fc:56:4a:ff:a8:11:e9:59:74:c3:6e:fb:ed:93: 39:85:e9:8f:5e:73:ce:4b:88:c6:f1:bb:03:e6:43:52:21:0f: 11:82:a7:36:c6:4a:d5:9a:3a:7c:89:5c:b0:8c:20:dc:15:81: 1a:8a:2b:51:a9:54:1d:55:4d:50:04:d5:8a:63:da:62:b2:c3: 19:2c:d2:51:b6:84:29:90:12:ea:06:51:5f:0b:94:8a:8b:fc: c5:0d:58:66:36:dc:87:a6:21:5c:2d:fe:87:b9:17:f2:49:40: fd:8f:24:a0:53:9e:ee:72:96:65:8e:20:18:85:f8:56:f1:d7: 0d:ed:5e:7b -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUdyvWlZ99H/26yDbvD3PxH8Fo024wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0 MEIyQjZCNTAeFw0yNDAzMTkyMjE3MzFaFw0yNTAzMTgyMjIyMzFaMDMxMTAvBgNV BAMTKEUwODM1RjRFMkRCMjlBRDBGNjczQzA1NDA5ODc1MTNDOUZCNEFBQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm0YYjqL3vxkC0LQ24bZguqhiu qxzXM7JUdTM4MR4ZhjvM3iq1qIaOBmmF8Bi/foW0zSSDiCc9yWkRZtMWrLpeRvX6 HlrGgLKNgOvpOGlPh4pA+uSJM1hsAwVEEfvgNSd9fWnFk0QJAwv+yKrtwgsyXUj0 5EfjxVLPBFilODahosNodswaC7UGyBpFCUwSqSrzdlRcPiQzHC397OE2pRRMUYSL nLpUesn5Z1Cb0uKuGIN+hOtBXPMORZuS3djPjUVPO8N5T8DJLmpi+9dMLZQVKTOl FZ9iTUfjp/upRFVuO9O6J5KLVAOBvVkfqWBrPspt05DKZ0jfYs/FD2EU2+7hAgMB AAGjggJuMIICajAdBgNVHQ4EFgQU4INfTi2ymtD2c8BUCYdRPJ+0qrkwHwYDVR0j BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy QjZCNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgXfxTANBgkqhkiG9w0BAQsFAAOCAQEAI8j0+FT48jHFRRzA/9HtYyhGLbCta2Un HdfFYhXgG2prxsotV2lrvM1M9y9yxTnNbp9STy1UWnSaHvVq98AAhIA6BwCLTIuD yifdsKX0Od/5t6Qo5w8f8PLb8OH2yG46J5pUcPVsWeq7yuHwW7PW0Oy0Bd5qR9o4 wqv+w/XHHJx91/xWSv+oEelZdMNu++2TOYXpj15zzkuIxvG7A+ZDUiEPEYKnNsZK 1Zo6fIlcsIwg3BWBGoorUalUHVVNUATVimPaYrLDGSzSUbaEKZAS6gZRXwuUiov8 xQ1YZjbch6YhXC3+h7kX8klA/Y8koFOe7nKWZY4gGIX4VvHXDe1eew== -----END CERTIFICATE-----Generated at Thu Nov 21 17:13:49 2024 by rpki-client on console-ams.rpki-client.org