$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162313a3a2f34382d3438203d3e20323136303532.roa File: 326130363a313238333a623162313a3a2f34382d3438203d3e20323136303532.roa (raw, json) Hash identifier: 3+0Vfaw65d2aWKCqi5jHZsDxz1fwiV1jCjTykcRyZlI= Subject key identifier: BC:42:3A:A7:B6:76:54:D7:CF:6D:E4:1A:F9:41:58:9A:54:3C:30:6B Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 5D8E83C7A554C72B61A8E35D3446C73E4F89DA67 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162313a3a2f34382d3438203d3e20323136303532.roa Signing time: Sun 15 Sep 2024 14:36:34 +0000 ROA not before: Sun 15 Sep 2024 14:31:34 +0000 ROA not after: Sun 14 Sep 2025 14:36:34 +0000 asID: 216052 IP address blocks: 2a06:1283:b1b1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:8e:83:c7:a5:54:c7:2b:61:a8:e3:5d:34:46:c7:3e:4f:89:da:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:34 2024 GMT Not After : Sep 14 14:36:34 2025 GMT Subject: CN=BC423AA7B67654D7CF6DE41AF941589A543C306B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ee:0a:59:ec:f5:a8:95:c2:cd:62:aa:92:5f: f3:87:f4:68:13:5d:12:e3:6f:6c:08:57:06:bc:85: a3:24:15:07:43:43:53:f0:6c:60:af:51:ca:f7:b8: 79:57:00:46:4e:e4:69:e2:a7:3a:c7:32:b8:d4:c1: 6b:22:5e:a9:61:13:50:f1:5a:b1:a8:8a:15:42:a2: bb:cf:cd:5b:a0:c6:47:07:2a:c6:8e:bb:35:ff:4a: f6:e7:64:e8:dc:4c:e6:f3:4b:99:9f:74:e3:74:97: c5:61:e0:fb:2a:42:68:c7:50:49:ec:75:dd:d6:ce: 6e:23:fb:28:7c:4d:af:e6:74:01:49:15:73:59:b3: e5:2e:76:cc:9d:55:d2:d9:69:3a:07:7e:3d:ad:56: f5:d1:1b:b2:1f:50:cd:fa:3d:cb:b6:94:f9:d6:7e: c6:b6:55:8a:77:1b:ed:68:93:8b:a1:8c:26:8a:b1: f0:c0:c8:d3:c2:6a:cd:87:8b:13:2d:99:16:98:db: 2f:61:05:b8:0b:63:6e:35:16:32:fa:51:ce:0a:27: 0f:0a:26:23:a1:c9:ef:74:14:4d:83:98:5d:82:16: 6b:31:65:8d:ea:66:c5:1b:c1:3c:49:e5:9f:83:6e: c6:35:b4:b9:d0:b8:55:df:84:19:f5:8c:77:df:c4: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:42:3A:A7:B6:76:54:D7:CF:6D:E4:1A:F9:41:58:9A:54:3C:30:6B X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623162313a3a2f34382d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b1b1::/48 Signature Algorithm: sha256WithRSAEncryption 9f:0a:4c:35:b8:fc:ac:66:1d:ba:54:12:b9:c5:5f:4d:91:da: f8:d6:db:e0:a9:51:57:1d:7d:9a:48:3c:80:7a:6a:da:4b:81: 67:dc:f3:6f:24:ac:23:96:b7:de:dc:08:24:cf:04:d1:e9:5c: 17:41:e3:8c:b9:4b:16:0c:ce:25:39:ca:8e:29:d1:11:59:2f: 83:2e:b4:8d:70:45:8a:5e:0c:8e:e3:6f:ff:5d:e2:ec:0f:ef: e8:69:ec:ce:25:bf:9f:5a:26:e9:5c:ee:8a:c9:a7:57:98:0c: ae:35:45:14:14:0b:09:59:0a:89:66:e8:8e:28:8d:79:88:94: ce:4f:95:69:34:83:75:8a:f9:5d:a7:9a:d3:a5:6a:75:67:e5: 8f:84:49:de:db:b4:00:4c:ae:15:58:a4:26:16:a7:60:10:20: 47:1c:ab:b1:0c:3c:8b:3a:66:0c:5e:b7:e8:fd:42:b1:06:4f: 75:ca:70:00:43:a2:ab:82:33:14:59:d3:b8:d2:9e:3a:5d:6b: 7a:74:a0:4e:58:d0:3c:50:c8:80:71:c6:83:a4:ce:77:4c:86: 6c:74:c8:27:ad:70:6c:7b:7c:74:dc:d2:53:72:1e:08:31:84: 9d:11:e4:38:93:6e:50:b2:cd:d1:41:d5:e9:30:a3:cb:84:10: 74:02:c7:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUXY6Dx6VUxythqONdNEbHPk+J2mcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzRaFw0yNTA5MTQxNDM2MzRaMDMxMTAvBgNV BAMTKEJDNDIzQUE3QjY3NjU0RDdDRjZERTQxQUY5NDE1ODlBNTQzQzMwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN7gpZ7PWolcLNYqqSX/OH9GgT XRLjb2wIVwa8haMkFQdDQ1PwbGCvUcr3uHlXAEZO5GnipzrHMrjUwWsiXqlhE1Dx WrGoihVCorvPzVugxkcHKsaOuzX/SvbnZOjcTObzS5mfdON0l8Vh4PsqQmjHUEns dd3Wzm4j+yh8Ta/mdAFJFXNZs+UudsydVdLZaToHfj2tVvXRG7IfUM36Pcu2lPnW fsa2VYp3G+1ok4uhjCaKsfDAyNPCas2HixMtmRaY2y9hBbgLY241FjL6Uc4KJw8K JiOhye90FE2DmF2CFmsxZY3qZsUbwTxJ5Z+DbsY1tLnQuFXfhBn1jHffxPtBAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUvEI6p7Z2VNfPbeQa+UFYmlQ8MGswHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxNjIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOxsTANBgkqhkiG9w0BAQsFAAOCAQEAnwpMNbj8rGYdulQS ucVfTZHa+Nbb4KlRVx19mkg8gHpq2kuBZ9zzbySsI5a33twIJM8E0elcF0HjjLlL FgzOJTnKjinREVkvgy60jXBFil4MjuNv/13i7A/v6GnsziW/n1om6VzuismnV5gM rjVFFBQLCVkKiWbojiiNeYiUzk+VaTSDdYr5Xaea06VqdWflj4RJ3tu0AEyuFVik JhanYBAgRxyrsQw8izpmDF636P1CsQZPdcpwAEOiq4IzFFnTuNKeOl1renSgTljQ PFDIgHHGg6TOd0yGbHTIJ61wbHt8dNzSU3IeCDGEnRHkOJNuULLN0UHV6TCjy4QQ dALH2Q== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org