$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: IwqTbXVpNx4C2ugASQf5Ojad+rLnc+1xRAy77XwC6L8= Subject key identifier: 39:3D:9B:62:3B:84:5E:72:0C:A7:04:35:55:E4:88:6C:F2:60:61:CB Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 3B33EC32BAB305CA2B0B4F8BF57101DAFFA89E5E Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa Signing time: Sun 15 Sep 2024 14:36:42 +0000 ROA not before: Sun 15 Sep 2024 14:31:42 +0000 ROA not after: Sun 14 Sep 2025 14:36:42 +0000 asID: 212049 IP address blocks: 2a06:1283:b336::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:33:ec:32:ba:b3:05:ca:2b:0b:4f:8b:f5:71:01:da:ff:a8:9e:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:42 2024 GMT Not After : Sep 14 14:36:42 2025 GMT Subject: CN=393D9B623B845E720CA7043555E4886CF26061CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3e:13:7b:f1:41:c3:15:4e:78:9f:ff:66:3b: ea:47:75:65:53:a8:46:22:3c:a8:36:5e:57:22:06: 41:8f:db:b6:4a:88:9f:09:87:bf:6a:40:19:e4:a8: be:dc:2d:c5:31:f1:ee:a0:e7:6a:5c:d0:4d:3b:b2: 8b:e9:1e:3d:76:9c:95:1f:49:8d:c6:5f:14:3f:91: 5a:a9:63:47:37:e0:4c:b1:65:e3:16:82:bc:7b:fc: 30:e5:d1:84:7e:cc:3c:97:15:7e:15:ad:a8:f3:9b: 85:9d:db:84:40:38:d9:59:21:85:af:67:1d:0e:16: 89:8b:7d:af:94:ff:51:8b:de:27:e0:94:4d:3e:97: f9:5e:d3:4e:61:9a:5c:e9:ff:6a:0b:4a:b7:bd:fb: e0:a0:f1:60:04:e2:1d:42:37:74:8d:18:91:db:73: 2c:64:b6:1d:d1:2f:93:e0:06:a9:3a:e2:9b:dd:2e: 4c:44:7d:56:94:26:a0:3b:ee:76:41:ff:02:02:35: d0:bc:1f:5f:92:33:ff:08:6b:af:f0:1e:c7:8a:4c: b5:74:1e:cf:d7:be:2b:aa:14:3d:da:bc:4e:da:95: 58:dd:69:7d:9f:11:43:4a:32:c3:f8:5b:3c:ce:51: 56:bb:3e:b4:6c:c0:2a:8a:55:a6:76:ff:98:93:b1: 20:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3D:9B:62:3B:84:5E:72:0C:A7:04:35:55:E4:88:6C:F2:60:61:CB X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b336::/48 Signature Algorithm: sha256WithRSAEncryption 15:d4:43:1f:d7:a3:2e:4f:66:ff:74:95:bf:5b:bb:ed:52:96: a7:50:4c:8c:1d:68:f3:af:6f:32:68:e9:cc:e5:b1:b9:3b:11: 54:a4:5f:6a:93:16:70:68:f2:e1:52:af:d5:06:ef:2b:be:26: f8:6b:05:94:05:ce:c2:6a:0a:69:9c:08:c4:8d:c3:c8:db:0d: 6f:56:b9:8a:97:8c:1e:d9:ff:ad:95:9e:8c:2a:40:ff:8f:2e: 7b:02:f7:9e:46:0c:c7:c4:d4:fe:40:da:42:15:c8:e8:19:4c: 16:50:fd:63:72:49:e7:b7:ee:cc:02:cc:85:93:b2:a2:1b:c5: ec:b3:36:5c:24:cc:29:11:be:d6:ff:54:81:e6:85:9d:67:28: 72:c7:48:72:d0:e0:d2:7d:30:a0:5f:64:26:7e:2b:06:76:0a: dd:7d:ab:ce:95:98:33:73:88:8f:8c:76:a8:13:af:95:74:0b: 2b:9d:66:c9:a7:25:75:5b:ea:b3:8b:f4:73:d2:28:ec:8a:1c: b5:02:08:b1:e8:99:31:60:5a:d1:27:81:33:70:9a:e4:88:3d: 95:08:b7:be:9e:3c:fe:63:f7:40:50:1d:b2:c3:91:2b:08:be: fd:19:dd:7d:2c:20:26:9f:95:7a:18:01:8c:86:99:22:39:9b: ab:33:a6:67 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUOzPsMrqzBcorC0+L9XEB2v+onl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDJaFw0yNTA5MTQxNDM2NDJaMDMxMTAvBgNV BAMTKDM5M0Q5QjYyM0I4NDVFNzIwQ0E3MDQzNTU1RTQ4ODZDRjI2MDYxQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPhN78UHDFU54n/9mO+pHdWVT qEYiPKg2XlciBkGP27ZKiJ8Jh79qQBnkqL7cLcUx8e6g52pc0E07sovpHj12nJUf SY3GXxQ/kVqpY0c34EyxZeMWgrx7/DDl0YR+zDyXFX4Vrajzm4Wd24RAONlZIYWv Zx0OFomLfa+U/1GL3ifglE0+l/le005hmlzp/2oLSre9++Cg8WAE4h1CN3SNGJHb cyxkth3RL5PgBqk64pvdLkxEfVaUJqA77nZB/wICNdC8H1+SM/8Ia6/wHseKTLV0 Hs/XviuqFD3avE7alVjdaX2fEUNKMsP4WzzOUVa7PrRswCqKVaZ2/5iTsSDHAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUOT2bYjuEXnIMpwQ1VeSIbPJgYcswHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNjANBgkqhkiG9w0BAQsFAAOCAQEAFdRDH9ejLk9m/3SV v1u77VKWp1BMjB1o869vMmjpzOWxuTsRVKRfapMWcGjy4VKv1QbvK74m+GsFlAXO wmoKaZwIxI3DyNsNb1a5ipeMHtn/rZWejCpA/48uewL3nkYMx8TU/kDaQhXI6BlM FlD9Y3JJ57fuzALMhZOyohvF7LM2XCTMKRG+1v9UgeaFnWcocsdIctDg0n0woF9k Jn4rBnYK3X2rzpWYM3OIj4x2qBOvlXQLK51myacldVvqs4v0c9Io7IoctQIIseiZ MWBa0SeBM3Ca5Ig9lQi3vp48/mP3QFAdssORKwi+/RndfSwgJp+VehgBjIaZIjmb qzOmZw== -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org