$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: RHMNVLENk+MzWZXz1+9uiMtsOZHDzIdiKn2QbhsEtFs= Subject key identifier: E6:BD:E6:F6:42:50:A2:A4:AA:77:50:C7:F9:73:DE:3E:42:90:36:17 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 2518DBF2E49F67A2D7BE510CFF02F2FFF0F94D78 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 15 Sep 2024 14:36:37 +0000 ROA not before: Sun 15 Sep 2024 14:31:37 +0000 ROA not after: Sun 14 Sep 2025 14:36:37 +0000 asID: 212049 IP address blocks: 2a06:1283:b335::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:18:db:f2:e4:9f:67:a2:d7:be:51:0c:ff:02:f2:ff:f0:f9:4d:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:37 2024 GMT Not After : Sep 14 14:36:37 2025 GMT Subject: CN=E6BDE6F64250A2A4AA7750C7F973DE3E42903617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:db:3c:0e:58:f8:f4:45:79:35:21:42:f8:29: b6:69:e1:6f:a9:90:bf:5d:d2:b0:48:31:0b:48:23: ac:67:21:7b:c8:ae:30:47:1c:b6:a4:31:cf:43:35: b5:79:19:51:5e:68:9a:1b:10:df:87:16:4a:22:19: cc:3e:34:1a:a1:50:f1:93:0d:07:76:de:4d:d9:75: 9c:d1:79:65:51:a5:83:67:8c:bc:09:92:fd:df:ac: b8:7f:c0:8e:12:bd:4e:e7:d1:6d:e8:2d:e3:7e:4e: 88:08:58:a1:b2:83:f2:fb:96:cc:f9:16:a2:61:72: 76:8c:34:1e:17:2d:0a:72:09:5b:4d:2f:85:4b:61: 48:77:38:d7:9e:b5:02:51:3b:54:b1:8f:a3:50:3d: 05:ee:ca:d3:04:5b:f3:33:f5:92:ee:2f:c8:4e:5a: 3b:32:05:68:62:06:e0:b0:4a:52:1c:a4:90:e0:c4: 53:b8:1e:5a:36:7e:1f:85:22:b1:f5:3b:81:b9:47: 82:65:aa:64:d0:3b:13:eb:31:ee:a7:fb:7d:72:8f: f6:85:e7:75:62:ea:21:23:4b:3c:8b:31:44:06:0f: 0e:6e:f5:57:b2:95:46:1f:43:fa:42:cb:92:c1:7d: a9:d5:ab:aa:1f:dc:13:07:48:61:f1:a1:7e:8d:ef: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BD:E6:F6:42:50:A2:A4:AA:77:50:C7:F9:73:DE:3E:42:90:36:17 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b335::/48 Signature Algorithm: sha256WithRSAEncryption 2a:1b:1e:1f:07:b4:93:71:c4:cd:e9:ca:56:62:27:6e:61:2f: 87:d1:c9:fe:13:e8:f2:ec:80:8f:6e:50:4d:a7:b1:0f:29:70: fd:31:5c:c9:e7:7e:7c:45:ed:40:26:82:f7:1b:25:40:5d:c2: 82:ea:c3:d3:81:8e:89:b6:1f:69:4f:d6:76:fb:69:63:29:c5: cc:5f:be:ba:e0:5c:4a:7a:13:51:95:48:c7:34:34:a5:a2:0b: 7d:29:d9:cb:07:4b:4e:04:1f:26:98:ff:ce:23:98:c8:c9:6f: e7:5e:44:b8:12:97:bc:0f:43:51:54:1e:4f:26:f0:05:9e:59: 5b:c6:00:21:db:61:df:2c:2a:ee:fa:74:a8:a5:da:80:51:e8: 83:cf:7d:c8:c8:54:f9:cb:6a:61:a0:aa:79:a7:40:c9:76:07: 6b:5d:4f:77:6c:7d:27:36:bc:4e:15:2f:5c:e2:53:72:fb:42: ff:df:ed:5c:a3:83:8c:34:f7:3f:71:72:ca:6b:98:00:d4:83: d7:57:4a:d0:41:20:5d:ae:35:54:f9:5f:33:c8:20:fb:d5:5e: 5b:e5:79:a7:c6:1a:0a:4c:ca:17:ba:68:d5:72:23:96:28:7f: a4:ed:c7:ae:1d:da:27:39:a7:9e:64:62:10:c4:80:26:e7:3e: 6a:0b:5c:a9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJRjb8uSfZ6LXvlEM/wLy//D5TXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzdaFw0yNTA5MTQxNDM2MzdaMDMxMTAvBgNV BAMTKEU2QkRFNkY2NDI1MEEyQTRBQTc3NTBDN0Y5NzNERTNFNDI5MDM2MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92zwOWPj0RXk1IUL4KbZp4W+p kL9d0rBIMQtII6xnIXvIrjBHHLakMc9DNbV5GVFeaJobEN+HFkoiGcw+NBqhUPGT DQd23k3ZdZzReWVRpYNnjLwJkv3frLh/wI4SvU7n0W3oLeN+TogIWKGyg/L7lsz5 FqJhcnaMNB4XLQpyCVtNL4VLYUh3ONeetQJRO1Sxj6NQPQXuytMEW/Mz9ZLuL8hO WjsyBWhiBuCwSlIcpJDgxFO4Hlo2fh+FIrH1O4G5R4JlqmTQOxPrMe6n+31yj/aF 53Vi6iEjSzyLMUQGDw5u9VeylUYfQ/pCy5LBfanVq6of3BMHSGHxoX6N7zRlAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU5r3m9kJQoqSqd1DH+XPePkKQNhcwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNTANBgkqhkiG9w0BAQsFAAOCAQEAKhseHwe0k3HEzenK VmInbmEvh9HJ/hPo8uyAj25QTaexDylw/TFcyed+fEXtQCaC9xslQF3CgurD04GO ibYfaU/WdvtpYynFzF++uuBcSnoTUZVIxzQ0paILfSnZywdLTgQfJpj/ziOYyMlv 515EuBKXvA9DUVQeTybwBZ5ZW8YAIdth3ywq7vp0qKXagFHog899yMhU+ctqYaCq eadAyXYHa11Pd2x9Jza8ThUvXOJTcvtC/9/tXKODjDT3P3FyymuYANSD11dK0EEg Xa41VPlfM8gg+9VeW+V5p8YaCkzKF7po1XIjlih/pO3Hrh3aJzmnnmRiEMSAJuc+ agtcqQ== -----END CERTIFICATE-----Generated at Mon Nov 25 11:54:13 2024 by rpki-client on console-fra.rpki-client.org