$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: ONIYwBDBSMM1rvN8pFw8IVENGgF1I5UoAbWfipAOydQ= Subject key identifier: E4:A4:D6:F5:38:FF:46:C6:F1:63:EC:40:11:66:DD:A9:09:CF:5F:40 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 019FEB57F7889B42B41794AEF6FFEE0DDD2FDF09 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 15 Sep 2024 14:36:41 +0000 ROA not before: Sun 15 Sep 2024 14:31:41 +0000 ROA not after: Sun 14 Sep 2025 14:36:41 +0000 asID: 212049 IP address blocks: 2a06:1283:b330::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:eb:57:f7:88:9b:42:b4:17:94:ae:f6:ff:ee:0d:dd:2f:df:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:41 2024 GMT Not After : Sep 14 14:36:41 2025 GMT Subject: CN=E4A4D6F538FF46C6F163EC401166DDA909CF5F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:82:d6:c6:c6:3b:fe:a4:f2:f0:2e:32:db:ca: 9f:f4:d2:33:33:43:0e:97:d7:28:35:c3:95:1a:83: 54:5b:ba:05:2a:c3:a6:4f:5f:76:ed:30:58:fc:15: 21:86:76:86:39:5e:5a:92:5f:05:89:3b:9a:f4:5f: 30:9c:11:8f:8f:1b:cc:75:62:fb:06:44:48:cc:3e: 17:de:45:43:52:e3:ca:87:fa:ab:80:ef:68:a0:19: d7:73:0e:c0:6a:ea:86:39:c6:91:22:8a:f5:4b:e7: d5:44:3a:57:ba:b8:1c:c8:dc:ac:e2:2d:94:fd:d8: 14:dd:59:4e:61:d6:1a:f9:08:e1:39:9f:f9:a9:83: 51:91:95:08:6b:e3:08:a8:1d:1a:53:a8:96:90:e0: 16:0f:6c:2d:28:de:eb:6c:58:53:0b:6c:2a:88:8f: 1e:32:1c:6c:bb:cb:ab:51:3e:cb:9f:55:61:b9:a0: 00:7c:b0:04:1e:7c:4f:0d:40:75:92:78:4e:c4:f1: ff:2e:54:22:f1:28:5d:bc:c0:32:31:65:d5:33:be: 4c:85:5b:ae:98:4e:ab:4d:1c:e4:c0:2e:ab:9c:54: 31:60:09:8c:2b:d2:2f:e6:0f:4e:e7:c0:5f:f8:2f: f1:19:9d:d4:08:55:1a:f9:eb:03:14:e0:14:06:bf: 02:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A4:D6:F5:38:FF:46:C6:F1:63:EC:40:11:66:DD:A9:09:CF:5F:40 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b330::/48 Signature Algorithm: sha256WithRSAEncryption 1f:27:2b:ba:5c:d6:59:06:b2:de:47:5e:f6:66:bc:0b:4d:65: 50:cd:db:ef:3f:19:1a:d9:09:ff:5d:70:b8:92:6c:5e:c3:c0: f7:c7:55:c5:a4:01:1f:02:a8:8e:e8:1c:57:50:f3:6e:96:1c: eb:92:fe:de:2f:00:34:c5:43:55:01:32:e0:5b:bc:f7:35:d3: 01:29:ee:2c:e6:01:e1:c5:23:2f:b7:f1:09:05:2e:6b:ac:a1: ee:dc:4d:ea:ac:83:f9:4b:5b:21:20:21:83:d5:00:78:00:4e: f9:4c:b1:5b:8d:e7:1f:21:a6:72:08:3d:af:7a:fe:88:46:c3: 17:cb:30:da:a2:e1:45:1d:bf:b9:94:e3:0c:f9:d4:eb:56:89: ac:a5:dc:1d:f2:b5:19:38:ce:00:61:af:6f:19:54:fb:03:5a: 4e:53:cd:a4:ec:bd:f8:18:56:1c:27:f0:7c:24:48:b4:4b:06: e2:6f:a6:8f:dc:e5:76:e0:cc:89:8a:b3:73:5b:7f:41:ca:25: 17:fa:b3:98:1e:10:e5:2f:83:7f:4b:60:49:bc:6d:46:b2:fa: 54:63:40:21:b6:b2:87:9c:22:d4:a1:00:ff:4f:c9:f5:35:37: ed:d5:1d:a8:48:59:7a:e3:c8:d0:63:13:ae:8e:95:c5:0e:0c: 92:88:1c:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUAZ/rV/eIm0K0F5Su9v/uDd0v3wkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDFaFw0yNTA5MTQxNDM2NDFaMDMxMTAvBgNV BAMTKEU0QTRENkY1MzhGRjQ2QzZGMTYzRUM0MDExNjZEREE5MDlDRjVGNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQgtbGxjv+pPLwLjLbyp/00jMz Qw6X1yg1w5Uag1RbugUqw6ZPX3btMFj8FSGGdoY5XlqSXwWJO5r0XzCcEY+PG8x1 YvsGREjMPhfeRUNS48qH+quA72igGddzDsBq6oY5xpEiivVL59VEOle6uBzI3Kzi LZT92BTdWU5h1hr5COE5n/mpg1GRlQhr4wioHRpTqJaQ4BYPbC0o3utsWFMLbCqI jx4yHGy7y6tRPsufVWG5oAB8sAQefE8NQHWSeE7E8f8uVCLxKF28wDIxZdUzvkyF W66YTqtNHOTALqucVDFgCYwr0i/mD07nwF/4L/EZndQIVRr56wMU4BQGvwKrAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU5KTW9Tj/RsbxY+xAEWbdqQnPX0AwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzMDANBgkqhkiG9w0BAQsFAAOCAQEAHycrulzWWQay3kde 9ma8C01lUM3b7z8ZGtkJ/11wuJJsXsPA98dVxaQBHwKojugcV1DzbpYc65L+3i8A NMVDVQEy4Fu89zXTASnuLOYB4cUjL7fxCQUua6yh7txN6qyD+UtbISAhg9UAeABO +UyxW43nHyGmcgg9r3r+iEbDF8sw2qLhRR2/uZTjDPnU61aJrKXcHfK1GTjOAGGv bxlU+wNaTlPNpOy9+BhWHCfwfCRItEsG4m+mj9zlduDMiYqzc1t/QcolF/qzmB4Q 5S+Df0tgSbxtRrL6VGNAIbayh5wi1KEA/0/J9TU37dUdqEhZeuPI0GMTro6VxQ4M kogc6g== -----END CERTIFICATE-----Generated at Mon Nov 25 12:00:54 2024 by rpki-client on console-ams.rpki-client.org