$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: fPPycTcqfMwz+2lwsTpSIAcsah326CaRrvnITXk1ePw= Subject key identifier: 10:BF:86:1A:7D:80:10:47:F9:CB:86:79:80:9D:88:15:E6:51:18:22 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 776DE433D2F456C07D61F86D83971260CD055B67 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:36 +0000 ROA not before: Sun 15 Sep 2024 14:31:36 +0000 ROA not after: Sun 14 Sep 2025 14:36:36 +0000 asID: 216043 IP address blocks: 2a06:1283:c01b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6d:e4:33:d2:f4:56:c0:7d:61:f8:6d:83:97:12:60:cd:05:5b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:36 2024 GMT Not After : Sep 14 14:36:36 2025 GMT Subject: CN=10BF861A7D801047F9CB8679809D8815E6511822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:31:46:68:0e:85:72:b2:49:07:7a:60:54: 8b:cc:95:04:a4:69:f3:6f:bb:03:80:ec:a6:cb:5e: a0:92:50:26:3a:f9:db:59:66:e2:6d:d2:ce:e4:ec: fd:dc:4d:a4:38:90:34:63:31:a0:0f:53:0f:e2:f9: 9d:0c:a3:69:f8:e9:be:2b:94:41:d9:d5:84:b6:d9: c7:64:d2:7c:34:1d:6d:56:34:5f:11:dd:a3:d7:c6: 32:30:53:1e:ac:28:5a:7b:45:6c:ab:ad:72:3f:8a: 62:43:0f:5e:86:61:dd:8f:3e:86:c2:ac:16:b7:62: 43:d8:4b:cc:9e:45:94:01:43:c7:7d:d9:d2:62:a9: 9e:4e:54:9a:99:a9:81:6c:ed:51:97:82:d6:fa:57: 1c:3a:cd:49:11:14:e1:67:c0:bc:b8:bc:fa:0f:0c: a8:84:49:67:5b:1d:54:29:a0:e4:52:86:70:02:d0: fb:82:ca:67:71:4a:6f:7a:95:18:1d:e8:df:89:3b: 43:f4:3e:e4:b6:ed:cc:74:68:92:dd:c6:c7:cc:f1: f0:54:fe:a9:1c:cd:0d:84:60:ea:5c:71:b9:a9:48: b7:93:6a:a2:c6:57:a0:65:c1:dc:de:6f:59:55:4e: 07:0b:22:87:c4:c6:26:e5:2b:dc:c4:a0:ae:3c:b1: e4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BF:86:1A:7D:80:10:47:F9:CB:86:79:80:9D:88:15:E6:51:18:22 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01b::/48 Signature Algorithm: sha256WithRSAEncryption 44:8a:bc:c4:dd:ba:58:88:91:e8:5a:29:56:09:92:f1:6d:c6: 39:53:90:06:81:15:ac:7e:34:49:ec:7b:a9:ad:78:65:43:6b: 00:8b:37:02:48:28:28:a1:03:fc:55:37:b2:31:35:8d:ea:f9: ea:8a:7c:a1:23:16:20:eb:59:3b:9a:a8:ec:c9:f3:93:b7:4e: eb:22:63:e8:b8:68:ed:04:73:01:c4:20:1b:32:f9:ce:be:ca: 28:69:f6:40:b2:bb:d2:1a:b9:eb:2e:d0:48:e6:9b:51:67:75: 3c:eb:37:4b:43:e3:50:90:d2:b0:c6:1f:f3:36:f8:49:29:09: 5b:4c:08:de:32:dc:ab:b0:a5:db:76:1e:81:d5:82:17:48:f2: a5:da:5c:e1:a7:c7:36:ea:b0:a3:b0:c2:44:eb:e7:b0:50:a0: b0:19:01:c9:e3:cd:80:9a:5d:d2:e5:8d:64:6f:44:6a:e4:9f: 54:43:4e:d4:3a:9d:c8:7b:3c:e9:86:a2:4b:32:94:df:7e:f0: d7:e6:f8:08:c1:cc:72:70:0e:41:19:be:4d:cf:f8:b9:38:d5: e8:25:07:ac:13:f5:c7:ee:f8:50:4c:cc:cc:a6:65:bc:21:61: 32:8b:b2:42:a8:fe:92:02:e9:35:dd:82:bf:50:41:71:0f:6d: eb:ee:45:3c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUd23kM9L0VsB9Yfhtg5cSYM0FW2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzZaFw0yNTA5MTQxNDM2MzZaMDMxMTAvBgNV BAMTKDEwQkY4NjFBN0Q4MDEwNDdGOUNCODY3OTgwOUQ4ODE1RTY1MTE4MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGpTFGaA6FcrJJB3pgVIvMlQSk afNvuwOA7KbLXqCSUCY6+dtZZuJt0s7k7P3cTaQ4kDRjMaAPUw/i+Z0Mo2n46b4r lEHZ1YS22cdk0nw0HW1WNF8R3aPXxjIwUx6sKFp7RWyrrXI/imJDD16GYd2PPobC rBa3YkPYS8yeRZQBQ8d92dJiqZ5OVJqZqYFs7VGXgtb6Vxw6zUkRFOFnwLy4vPoP DKiESWdbHVQpoORShnAC0PuCymdxSm96lRgd6N+JO0P0PuS27cx0aJLdxsfM8fBU /qkczQ2EYOpccbmpSLeTaqLGV6Blwdzeb1lVTgcLIofExiblK9zEoK48seStAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUEL+GGn2AEEf5y4Z5gJ2IFeZRGCIwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAGzANBgkqhkiG9w0BAQsFAAOCAQEARIq8xN26WIiR6Fop VgmS8W3GOVOQBoEVrH40Sex7qa14ZUNrAIs3AkgoKKED/FU3sjE1jer56op8oSMW IOtZO5qo7Mnzk7dO6yJj6Lho7QRzAcQgGzL5zr7KKGn2QLK70hq56y7QSOabUWd1 POs3S0PjUJDSsMYf8zb4SSkJW0wI3jLcq7Cl23YegdWCF0jypdpc4afHNuqwo7DC ROvnsFCgsBkByePNgJpd0uWNZG9EauSfVENO1DqdyHs86YaiSzKU337w1+b4CMHM cnAOQRm+Tc/4uTjV6CUHrBP1x+74UEzMzKZlvCFhMouyQqj+kgLpNd2Cv1BBcQ9t 6+5FPA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:15 2024 by rpki-client on console-ams.rpki-client.org