$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa File: 326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa (raw, json) Hash identifier: WPwSkzQmftTMdP2NF4msAGlQy0pqynxEH9ybKWc3p34= Subject key identifier: E4:69:BA:17:0F:9D:B3:54:22:69:98:BA:92:C1:DB:B7:C3:12:C1:A5 Certificate issuer: /CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Certificate serial: 4AABC5C32CDB9FDC34D65FF0486DDB96CAA9C27F Authority key identifier: B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa Signing time: Tue 12 Dec 2023 14:49:14 +0000 ROA not before: Tue 12 Dec 2023 14:44:14 +0000 ROA not after: Tue 10 Dec 2024 14:49:14 +0000 asID: 213293 IP address blocks: 2a06:9f44:f100::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 08 Jun 2024 05:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ab:c5:c3:2c:db:9f:dc:34:d6:5f:f0:48:6d:db:96:ca:a9:c2:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9542CF5B0923A9011033E2F7CA543D6A25A48C1 Validity Not Before: Dec 12 14:44:14 2023 GMT Not After : Dec 10 14:49:14 2024 GMT Subject: CN=E469BA170F9DB354226998BA92C1DBB7C312C1A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:70:5d:41:a4:3d:8a:64:d9:4c:aa:2f:87: 6d:66:2a:b4:b6:c0:2c:5f:1e:5b:27:1a:eb:55:07: 7b:a6:80:89:88:2d:a1:b3:67:70:29:dc:39:f8:b3: 45:f6:c8:c5:92:e8:37:95:37:88:15:9c:1c:d1:fa: 69:25:6e:e9:f2:d6:65:9e:22:51:f6:cf:2d:3f:6c: 84:25:6e:27:db:e1:42:0a:8f:c7:af:cf:68:9f:30: c7:15:7f:1a:35:9d:a7:d2:34:46:76:6b:c6:2c:63: f5:eb:c3:f4:f2:7f:f2:47:87:00:1d:74:8e:9f:a6: 3a:6e:74:59:fb:eb:11:73:b4:3a:d3:ec:b3:41:ce: b8:59:91:8d:55:19:48:3f:d5:9f:96:91:60:4e:8a: b8:a7:11:63:fe:86:f7:c7:e5:62:11:a1:fd:a7:51: 93:8f:85:c9:a2:00:73:3c:d3:7a:82:07:14:d6:1d: 49:5f:29:8c:d5:09:36:31:f4:aa:cc:09:4a:0d:68: 12:24:61:ed:86:9c:1a:e5:f6:8f:47:46:78:1c:df: e3:ba:54:08:14:6a:1e:c5:01:b1:18:23:1b:8a:7d: 3f:94:c1:e5:88:88:b7:4d:f5:5c:15:b3:db:50:e1: df:6f:8f:0b:96:7c:9f:ab:b6:33:02:1a:e2:54:87: 62:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:69:BA:17:0F:9D:B3:54:22:69:98:BA:92:C1:DB:B7:C3:12:C1:A5 X509v3 Authority Key Identifier: keyid:B9:54:2C:F5:B0:92:3A:90:11:03:3E:2F:7C:A5:43:D6:A2:5A:48:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B9542CF5B0923A9011033E2F7CA543D6A25A48C1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/21e272e8-d70a-4793-8ac6-f3f4a72ae9ca/1/326130363a396634343a663130303a3a2f34342d3438203d3e20323133323933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f44:f100::/44 Signature Algorithm: sha256WithRSAEncryption 17:b1:fc:c9:a6:16:61:3f:54:d1:c0:ad:8c:7e:52:07:ee:75: f9:fb:0b:00:81:74:38:80:56:38:42:95:5c:72:1f:ac:81:3b: 58:ba:e3:70:f7:9a:7b:66:99:a1:54:e0:2c:26:32:55:87:f0: 65:c0:89:33:28:45:b5:5c:36:b6:24:4c:87:bd:aa:3d:b6:33: ba:4f:a4:f0:2c:af:66:89:a0:52:94:6c:c8:68:50:d7:8b:0d: d9:5d:25:ca:ff:c6:9e:b8:12:fb:d7:a7:7e:4a:61:dd:93:37: a8:1f:14:4c:01:fe:e0:dd:93:74:a0:be:5f:0e:28:c5:90:93: e7:98:4c:fc:35:98:b9:c5:1b:a0:4a:d3:40:60:5f:c8:01:01: 74:fc:1d:34:a3:3f:d8:78:cf:2e:db:cc:d4:0d:6a:f9:12:29: b3:07:be:2d:86:df:ad:09:24:e2:bd:43:53:0a:d3:8e:19:ab: 7f:14:db:ab:be:4e:a2:51:42:4d:f5:2f:f4:92:09:64:26:d0: 2f:98:6d:23:7e:b8:2c:4b:08:53:0e:31:18:b5:24:8e:bc:2e: 27:57:8f:57:ec:c6:f5:4e:c3:d0:68:c7:b4:d1:f1:e5:4b:87: cb:90:d2:21:cb:55:a4:9b:4f:27:ba:35:c7:e2:03:4d:6a:ac: a9:95:13:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUSqvFwyzbn9w01l/wSG3blsqpwn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZB MjVBNDhDMTAeFw0yMzEyMTIxNDQ0MTRaFw0yNDEyMTAxNDQ5MTRaMDMxMTAvBgNV BAMTKEU0NjlCQTE3MEY5REIzNTQyMjY5OThCQTkyQzFEQkI3QzMxMkMxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzjHBdQaQ9imTZTKovh21mKrS2 wCxfHlsnGutVB3umgImILaGzZ3Ap3Dn4s0X2yMWS6DeVN4gVnBzR+mklbuny1mWe IlH2zy0/bIQlbifb4UIKj8evz2ifMMcVfxo1nafSNEZ2a8YsY/Xrw/Tyf/JHhwAd dI6fpjpudFn76xFztDrT7LNBzrhZkY1VGUg/1Z+WkWBOirinEWP+hvfH5WIRof2n UZOPhcmiAHM803qCBxTWHUlfKYzVCTYx9KrMCUoNaBIkYe2GnBrl9o9HRngc3+O6 VAgUah7FAbEYIxuKfT+UweWIiLdN9VwVs9tQ4d9vjwuWfJ+rtjMCGuJUh2L/AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU5Gm6Fw+ds1QiaZi6ksHbt8MSwaUwHwYDVR0j BBgwFoAUuVQs9bCSOpARAz4vfKVD1qJaSMEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgtZDcwYS00NzkzLThhYzYtZjNmNGE3MmFl OWNhLzEvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVBNDhDMS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQjk1NDJDRjVCMDkyM0E5MDExMDMzRTJGN0NBNTQzRDZBMjVB NDhDMS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjFlMjcyZTgt ZDcwYS00NzkzLThhYzYtZjNmNGE3MmFlOWNhLzEvMzI2MTMwMzYzYTM5NjYzNDM0 M2E2NjMxMzAzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzMzMyMzkzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGn0TxADANBgkqhkiG9w0BAQsFAAOCAQEAF7H8yaYWYT9U0cCt jH5SB+51+fsLAIF0OIBWOEKVXHIfrIE7WLrjcPeae2aZoVTgLCYyVYfwZcCJMyhF tVw2tiRMh72qPbYzuk+k8CyvZomgUpRsyGhQ14sN2V0lyv/GnrgS+9enfkph3ZM3 qB8UTAH+4N2TdKC+Xw4oxZCT55hM/DWYucUboErTQGBfyAEBdPwdNKM/2HjPLtvM 1A1q+RIpswe+LYbfrQkk4r1DUwrTjhmrfxTbq75OolFCTfUv9JIJZCbQL5htI364 LEsIUw4xGLUkjrwuJ1ePV+zG9U7D0GjHtNHx5UuHy5DSIctVpJtPJ7o1x+IDTWqs qZUTdw== -----END CERTIFICATE-----Generated at Fri Jun 7 14:48:10 2024 by rpki-client on console-ams.rpki-client.org