$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33342d3334203d3e20313937343737.roa File: 326130363a313238333a3a2f33342d3334203d3e20313937343737.roa (raw, json) Hash identifier: vb4ByLv/+REWzNRQSN07P9g18WYHMTv/jI3Ro/oG7vM= Subject key identifier: 45:6E:EA:77:02:54:91:2F:F8:DF:07:28:9A:28:1C:38:CF:15:13:36 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 2B7D5AEE5671DF324BAEE92D2C3AA73723A2AC80 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33342d3334203d3e20313937343737.roa Signing time: Sun 15 Sep 2024 14:36:34 +0000 ROA not before: Sun 15 Sep 2024 14:31:34 +0000 ROA not after: Sun 14 Sep 2025 14:36:34 +0000 asID: 197477 IP address blocks: 2a06:1283::/34 maxlen: 34 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:7d:5a:ee:56:71:df:32:4b:ae:e9:2d:2c:3a:a7:37:23:a2:ac:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:34 2024 GMT Not After : Sep 14 14:36:34 2025 GMT Subject: CN=456EEA770254912FF8DF07289A281C38CF151336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:dd:db:a1:18:c0:a7:d7:07:7a:1a:99:08:1c: 31:78:98:80:9c:3b:b1:0d:5e:1b:ce:c4:a5:1e:3e: 55:92:af:fd:f3:ff:52:67:fb:c6:49:64:99:56:6c: 66:cd:1a:9d:b2:61:84:c1:2b:0e:97:39:89:2b:08: 9a:06:f0:64:e7:f4:d7:95:0c:a5:7a:93:b0:27:8f: 9b:20:bf:16:b8:20:be:4c:9e:03:20:d9:c8:b4:34: bd:86:b2:fc:2f:ac:68:1b:56:c7:08:82:51:66:6c: ed:dc:9a:2e:b2:8f:1c:c4:fe:d1:53:6a:e3:d9:c6: dd:67:6a:d3:5f:d2:a4:78:92:95:63:78:3e:e2:e2: bf:73:8c:6f:5f:20:d0:d9:51:19:dc:62:52:61:a6: 82:0c:6b:ae:52:12:91:da:c6:51:d7:d3:c5:47:6b: 3e:77:26:aa:78:bd:91:1c:71:4e:a0:c3:9d:9a:32: 26:f1:1d:77:7e:b1:eb:5d:c8:d6:1f:8a:18:96:32: 9c:9c:5a:81:be:93:30:db:e6:47:fa:a7:bb:0b:2a: b9:a0:23:86:e2:93:03:4d:b4:e5:8b:f9:2a:25:d2: a8:90:23:85:39:26:01:dd:cf:7f:f7:a3:e2:13:20: ba:ff:be:28:81:95:9a:f7:fb:60:b5:a0:ea:ed:1d: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6E:EA:77:02:54:91:2F:F8:DF:07:28:9A:28:1C:38:CF:15:13:36 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a3a2f33342d3334203d3e20313937343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/34 Signature Algorithm: sha256WithRSAEncryption b8:12:51:1d:bb:e1:f0:c6:a1:db:3f:04:0f:30:70:d9:ec:90: 21:90:7a:eb:f8:6d:f3:6f:4c:9b:51:10:83:90:81:9e:05:d6: 4f:cd:8f:47:72:a0:35:46:e4:b5:e3:d1:df:03:8c:c9:bb:d1: e3:0c:ae:73:b7:1f:4a:b8:b6:43:e6:3f:27:94:c9:cd:b1:fb: 08:a5:c6:9e:b5:19:56:2d:6a:8d:31:24:99:cf:63:a9:4e:44: e1:38:29:ac:7a:18:02:be:1b:d4:ce:f1:68:6b:d7:a6:5a:ea: 42:dc:51:0a:64:b9:01:53:cb:84:8a:42:a7:a9:4f:60:75:f9: 85:41:26:21:e2:e1:66:f8:0d:b3:9e:7d:bc:68:51:7b:b9:1e: a4:9f:1a:03:c2:bd:7b:16:5a:d1:84:2e:1c:dc:7a:6a:83:f4: 5e:60:46:28:57:b3:f6:46:87:a7:15:50:27:de:1c:49:51:27: 67:80:70:a4:3b:54:2b:01:b2:15:4f:2f:0b:8c:76:30:2c:bf: 86:a6:79:88:57:15:4f:e9:6f:24:eb:a0:30:02:f3:41:f3:79: a4:1a:f7:8c:6a:d3:c6:f9:bf:b1:6d:a3:64:c3:d3:6b:74:19: 36:ae:51:08:04:e4:43:d4:da:a2:b1:ff:b6:97:18:9c:64:83: 5d:6d:f9:ce -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUK31a7lZx3zJLruktLDqnNyOirIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzRaFw0yNTA5MTQxNDM2MzRaMDMxMTAvBgNV BAMTKDQ1NkVFQTc3MDI1NDkxMkZGOERGMDcyODlBMjgxQzM4Q0YxNTEzMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ3duhGMCn1wd6GpkIHDF4mICc O7ENXhvOxKUePlWSr/3z/1Jn+8ZJZJlWbGbNGp2yYYTBKw6XOYkrCJoG8GTn9NeV DKV6k7Anj5sgvxa4IL5MngMg2ci0NL2GsvwvrGgbVscIglFmbO3cmi6yjxzE/tFT auPZxt1natNf0qR4kpVjeD7i4r9zjG9fINDZURncYlJhpoIMa65SEpHaxlHX08VH az53Jqp4vZEccU6gw52aMibxHXd+setdyNYfihiWMpycWoG+kzDb5kf6p7sLKrmg I4bikwNNtOWL+Sol0qiQI4U5JgHdz3/3o+ITILr/viiBlZr3+2C1oOrtHbn/AgMB AAGjggJvMIICazAdBgNVHQ4EFgQURW7qdwJUkS/43wcomigcOM8VEzYwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzNDJkMzMzNDIwM2QzZTIwMzEzOTM3MzQzNzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYG KgYSgwAwDQYJKoZIhvcNAQELBQADggEBALgSUR274fDGods/BA8wcNnskCGQeuv4 bfNvTJtREIOQgZ4F1k/Nj0dyoDVG5LXj0d8DjMm70eMMrnO3H0q4tkPmPyeUyc2x +wilxp61GVYtao0xJJnPY6lOROE4Kax6GAK+G9TO8Whr16Za6kLcUQpkuQFTy4SK QqepT2B1+YVBJiHi4Wb4DbOefbxoUXu5HqSfGgPCvXsWWtGELhzcemqD9F5gRihX s/ZGh6cVUCfeHElRJ2eAcKQ7VCsBshVPLwuMdjAsv4ameYhXFU/pbyTroDAC80Hz eaQa94xq08b5v7Fto2TD02t0GTauUQgE5EPU2qKx/7aXGJxkg11t+c4= -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org