$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa File: 326130363a313238333a3a2f33322d3438203d3e203438373030.roa (raw, json) Hash identifier: ha9nNfo9jMELVZhwxYBoeVLOpvfN3ACE+45GODs4USo= Subject key identifier: 4F:F9:1F:C5:D4:83:66:E1:D5:1E:B5:DB:E2:38:EC:6E:49:F4:38:FF Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 25653E63F6E55F53867DAF0C6FE79C5D8C3B375B Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa Signing time: Sat 19 Oct 2024 08:32:04 +0000 ROA not before: Sat 19 Oct 2024 08:27:04 +0000 ROA not after: Sat 18 Oct 2025 08:32:04 +0000 asID: 48700 IP address blocks: 2a06:1283::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:65:3e:63:f6:e5:5f:53:86:7d:af:0c:6f:e7:9c:5d:8c:3b:37:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Oct 19 08:27:04 2024 GMT Not After : Oct 18 08:32:04 2025 GMT Subject: CN=4FF91FC5D48366E1D51EB5DBE238EC6E49F438FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:80:39:3b:99:e3:80:3b:bf:13:c6:07:63:95: fe:ac:5d:5d:fc:0a:be:3b:5f:07:0b:6e:53:76:de: 24:f9:0c:da:05:32:e4:bc:fd:e3:44:2e:3a:36:a1: ab:28:63:20:13:45:fa:93:4c:bb:3b:cc:bf:cb:2c: 92:92:8f:b7:30:30:0c:33:fa:1f:b9:4a:75:84:11: 1a:36:34:33:4a:e4:a7:82:40:f8:d4:50:c0:58:b8: 54:e1:79:f6:51:8c:21:21:ce:1f:ff:5e:0b:90:96: 5b:d1:72:d6:a7:f1:aa:a3:d8:83:e2:a5:1a:7d:e4: 3d:9f:b7:d7:14:bc:0d:b8:b7:65:94:fa:f6:c2:23: 22:a0:4e:42:87:8e:38:96:2e:88:dc:cb:ef:37:f8: 54:45:3e:d8:26:a3:12:76:a7:b6:03:15:d3:b2:c3: a2:fe:9a:eb:4b:8e:a9:ba:a8:ca:f5:3f:56:c7:b4: e4:23:82:4d:d0:33:a2:c3:0b:55:40:98:ba:7e:65: 57:ae:16:a7:a2:25:d1:97:62:e7:64:20:b4:a6:9d: f3:5b:2d:43:3f:57:b9:09:24:2f:7f:db:ef:b9:e7: 26:16:c5:dc:6e:11:27:c6:32:4e:fc:e6:29:54:b0: 5e:f6:bf:87:7b:43:59:e9:d3:87:6d:70:ba:0b:87: 6b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F9:1F:C5:D4:83:66:E1:D5:1E:B5:DB:E2:38:EC:6E:49:F4:38:FF X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33322d3438203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/32 Signature Algorithm: sha256WithRSAEncryption 31:85:58:19:86:60:8d:b5:e7:7f:c2:01:dc:56:93:a2:da:79: d9:5a:ae:f9:da:14:0c:40:32:c4:2b:d2:3f:f5:51:91:07:7f: 64:9a:26:ae:8f:ea:29:19:d5:60:a0:16:a2:ee:da:ee:61:1e: 11:cf:72:77:9d:10:d6:2e:ce:c1:6c:2c:c7:70:95:d2:cd:61: 62:5e:17:42:89:77:15:b3:3d:71:7c:bf:a7:e0:9e:44:cf:15: d8:ac:c4:9f:94:47:e1:9f:90:a1:65:cf:8e:e8:b3:0b:d3:8b: d3:81:02:98:56:c3:af:e6:20:5b:d7:c4:0f:9c:bf:c6:48:70: c7:45:74:f5:97:63:04:ba:69:d3:7c:6f:be:7f:e2:42:0f:7b: be:63:e2:f1:59:55:1c:a7:07:a0:43:a9:ff:1f:d1:97:8f:e9: 05:32:ce:03:bb:79:de:a6:93:54:7d:b5:af:2a:78:0d:b0:37: 8c:b6:7a:5a:eb:be:33:f1:aa:87:df:ff:24:da:a4:c9:c3:ca: 57:bf:3f:26:f6:13:ad:88:83:9f:f5:ef:b9:ff:f8:cb:cf:04: 5e:19:a1:f7:32:fa:93:10:2d:4e:c3:f4:12:59:5c:0b:c5:ab: df:73:90:1d:fd:de:46:81:91:dc:05:1e:14:7d:88:25:6a:a6: 91:b6:15:09 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUJWU+Y/blX1OGfa8Mb+ecXYw7N1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDEwMTkwODI3MDRaFw0yNTEwMTgwODMyMDRaMDMxMTAvBgNV BAMTKDRGRjkxRkM1RDQ4MzY2RTFENTFFQjVEQkUyMzhFQzZFNDlGNDM4RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcgDk7meOAO78Txgdjlf6sXV38 Cr47XwcLblN23iT5DNoFMuS8/eNELjo2oasoYyATRfqTTLs7zL/LLJKSj7cwMAwz +h+5SnWEERo2NDNK5KeCQPjUUMBYuFThefZRjCEhzh//XguQllvRctan8aqj2IPi pRp95D2ft9cUvA24t2WU+vbCIyKgTkKHjjiWLojcy+83+FRFPtgmoxJ2p7YDFdOy w6L+mutLjqm6qMr1P1bHtOQjgk3QM6LDC1VAmLp+ZVeuFqeiJdGXYudkILSmnfNb LUM/V7kJJC9/2++55yYWxdxuESfGMk785ilUsF72v4d7Q1np04dtcLoLh2sVAgMB AAGjggJsMIICaDAdBgNVHQ4EFgQUT/kfxdSDZuHVHrXb4jjsbkn0OP8wHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG EoMwDQYJKoZIhvcNAQELBQADggEBADGFWBmGYI2153/CAdxWk6LaedlarvnaFAxA MsQr0j/1UZEHf2SaJq6P6ikZ1WCgFqLu2u5hHhHPcnedENYuzsFsLMdwldLNYWJe F0KJdxWzPXF8v6fgnkTPFdisxJ+UR+GfkKFlz47oswvTi9OBAphWw6/mIFvXxA+c v8ZIcMdFdPWXYwS6adN8b75/4kIPe75j4vFZVRynB6BDqf8f0ZeP6QUyzgO7ed6m k1R9ta8qeA2wN4y2elrrvjPxqoff/yTapMnDyle/Pyb2E62Ig5/177n/+MvPBF4Z ofcy+pMQLU7D9BJZXAvFq99zkB393kaBkdwFHhR9iCVqppG2FQk= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:20 2024 by rpki-client on console-fra.rpki-client.org