$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa File: 326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa (raw, json) Hash identifier: JxIjl55ks+b7peG7kmdHsDnZqqBkhI3vmotDjVI49iw= Subject key identifier: BF:84:38:C7:27:99:7A:53:CB:05:95:93:07:74:38:67:C8:A8:2D:DB Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 27ADE1C80C1C9315BAB2AF95F52269A028FE1B2D Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa Signing time: Sun 15 Sep 2024 14:36:42 +0000 ROA not before: Sun 15 Sep 2024 14:31:42 +0000 ROA not after: Sun 14 Sep 2025 14:36:42 +0000 asID: 207252 IP address blocks: 2a06:1283:c010::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ad:e1:c8:0c:1c:93:15:ba:b2:af:95:f5:22:69:a0:28:fe:1b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:42 2024 GMT Not After : Sep 14 14:36:42 2025 GMT Subject: CN=BF8438C727997A53CB05959307743867C8A82DDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7f:20:b1:6e:85:05:9c:e2:3f:4a:a5:da:0b: 58:a7:1b:c6:03:b2:f0:67:77:d9:c2:a3:ac:c1:bf: b0:55:ad:e0:ad:af:f7:19:a8:2a:eb:0e:d4:2d:47: f1:e1:2b:36:47:1d:f7:5e:d6:88:0c:38:d7:51:16: fb:59:42:50:b3:b8:e7:08:88:af:e6:98:8c:42:e2: 2b:5d:e2:1b:fd:fd:29:59:d9:9f:74:2a:99:0c:be: 63:78:c2:8f:24:ed:6f:c2:5c:cd:72:3e:1c:25:87: 48:e5:44:37:3c:29:5f:ed:0d:04:53:0c:fe:cd:1f: 1a:a3:23:15:3f:01:5e:d9:f6:c2:7b:38:12:da:21: cd:5d:85:c1:11:f8:fc:f7:2b:85:df:6f:9f:11:b3: e7:dc:6a:25:1e:ef:cb:68:06:96:44:09:3c:77:e2: 5a:41:d9:9e:37:59:9b:0e:03:3e:fb:f1:0a:44:01: 1d:48:3b:ee:ff:ab:f2:9b:31:8f:a8:1d:d1:4b:44: ff:65:a1:1a:b5:97:34:05:21:2f:06:f3:4d:a2:b1: 55:bd:b4:c3:2a:f7:e8:41:c2:88:a2:bb:c9:d3:7f: d8:65:76:24:0c:9e:ef:40:68:04:2c:4c:8c:fa:b8: f4:e2:e2:e4:49:b3:11:37:f7:80:c2:fd:49:61:9a: 60:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:84:38:C7:27:99:7A:53:CB:05:95:93:07:74:38:67:C8:A8:2D:DB X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c010::/44 Signature Algorithm: sha256WithRSAEncryption 99:68:c6:c1:83:b9:ec:08:e0:cd:40:13:05:31:ac:d8:b5:04: 87:39:52:ff:eb:c7:4a:a8:31:a4:76:06:44:ad:5c:e4:97:10: 91:9c:fc:e4:a5:a7:3d:f8:bc:0d:de:79:97:a9:47:15:06:e2: 0b:46:40:3c:e6:d8:b8:b3:b9:8c:3d:be:93:1f:69:84:bf:b8: eb:47:ee:67:c6:b1:71:1d:84:d7:9e:0e:38:88:38:36:ef:d4: 5d:66:57:24:c1:50:45:fc:ec:5e:14:c0:a4:10:8d:12:bc:c8: 67:a4:b2:30:14:72:01:a7:07:f2:a3:fe:31:9d:a9:0e:de:cd: 76:c6:d2:0d:53:43:8f:e6:20:65:79:cf:67:d3:95:f1:54:94: 90:63:d8:81:8f:0b:b5:da:46:01:8b:b3:00:12:b7:24:1f:dc: 08:5f:b7:af:42:0a:ed:7f:42:f0:94:56:03:3f:b7:2c:77:d1: bc:dc:f3:90:ba:e1:74:5b:2c:d5:7a:f3:09:aa:6b:7f:23:b5: b4:f0:c2:5d:9a:5b:0e:58:7b:f8:74:74:fd:26:cd:1f:56:af: c3:c1:1b:15:c8:28:2a:bf:56:45:5b:bd:0c:2b:50:d9:86:a2: 5a:6a:e3:a8:27:66:b1:4b:44:4a:b7:89:c6:94:5c:b8:e7:d8: 77:72:61:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJ63hyAwckxW6sq+V9SJpoCj+Gy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDJaFw0yNTA5MTQxNDM2NDJaMDMxMTAvBgNV BAMTKEJGODQzOEM3Mjc5OTdBNTNDQjA1OTU5MzA3NzQzODY3QzhBODJEREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChfyCxboUFnOI/SqXaC1inG8YD svBnd9nCo6zBv7BVreCtr/cZqCrrDtQtR/HhKzZHHfde1ogMONdRFvtZQlCzuOcI iK/mmIxC4itd4hv9/SlZ2Z90KpkMvmN4wo8k7W/CXM1yPhwlh0jlRDc8KV/tDQRT DP7NHxqjIxU/AV7Z9sJ7OBLaIc1dhcER+Pz3K4Xfb58Rs+fcaiUe78toBpZECTx3 4lpB2Z43WZsOAz778QpEAR1IO+7/q/KbMY+oHdFLRP9loRq1lzQFIS8G802isVW9 tMMq9+hBwoiiu8nTf9hldiQMnu9AaAQsTIz6uPTi4uRJsxE394DC/UlhmmAfAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUv4Q4xyeZelPLBZWTB3Q4Z8ioLdswHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzAzNzMyMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAEDANBgkqhkiG9w0BAQsFAAOCAQEAmWjGwYO57AjgzUAT BTGs2LUEhzlS/+vHSqgxpHYGRK1c5JcQkZz85KWnPfi8Dd55l6lHFQbiC0ZAPObY uLO5jD2+kx9phL+460fuZ8axcR2E154OOIg4Nu/UXWZXJMFQRfzsXhTApBCNErzI Z6SyMBRyAacH8qP+MZ2pDt7NdsbSDVNDj+YgZXnPZ9OV8VSUkGPYgY8LtdpGAYuz ABK3JB/cCF+3r0IK7X9C8JRWAz+3LHfRvNzzkLrhdFss1XrzCaprfyO1tPDCXZpb Dlh7+HR0/SbNH1avw8EbFcgoKr9WRVu9DCtQ2YaiWmrjqCdmsUtESreJxpRcuOfY d3Jh9g== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:15 2024 by rpki-client on console-ams.rpki-client.org