$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: NTa3nHY3zs/dJQNqM60FDVBwhfZzyE/CTHd0QXZ2C0Q= Subject key identifier: 10:69:6C:8B:10:33:52:1D:84:D4:14:B5:04:6A:02:AC:55:23:A7:45 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 6F77730EE3CC466F7731F30E9EA62238869BB320 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 15 Sep 2024 14:36:42 +0000 ROA not before: Sun 15 Sep 2024 14:31:42 +0000 ROA not after: Sun 14 Sep 2025 14:36:42 +0000 asID: 216043 IP address blocks: 2a06:1283:c01e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 08:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:77:73:0e:e3:cc:46:6f:77:31:f3:0e:9e:a6:22:38:86:9b:b3:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:42 2024 GMT Not After : Sep 14 14:36:42 2025 GMT Subject: CN=10696C8B1033521D84D414B5046A02AC5523A745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:78:2f:2d:16:81:fe:10:3e:01:11:05:0c:ce: 8d:5f:d5:8c:c4:1b:3d:ed:4e:d6:53:64:e9:24:ff: e4:ad:45:1d:8c:28:21:a6:d2:c2:c1:b7:c0:7e:44: a8:1d:8d:60:9b:53:b2:20:79:59:90:59:bb:ba:cb: a8:c3:b5:d3:92:32:35:dc:85:38:ca:b1:8b:a7:90: eb:fb:b1:83:fb:ce:8f:1e:98:d8:20:45:dc:59:69: 60:01:12:b1:dd:77:db:f2:ec:cd:e9:b0:3b:90:f5: 93:49:fe:1d:36:92:4f:45:9e:c3:6a:89:ab:09:1d: b5:f7:e8:1d:95:9a:ae:d5:bf:15:08:5c:28:a2:e8: e8:8f:b3:c9:5d:37:da:8e:4d:51:8e:f4:22:8a:ef: 7c:29:16:f6:dc:73:85:a0:40:6a:29:14:8e:35:f4: 78:ad:01:59:7d:a0:a0:44:39:90:4b:26:d7:f5:ac: 66:0e:7f:76:ef:28:1d:f4:1f:d2:a5:4d:34:c6:b7: 96:a4:9f:7c:a4:61:bb:a5:f9:a1:38:9f:f8:34:50: 7c:22:44:87:9f:fc:09:53:26:75:b1:38:14:81:59: 01:0b:2e:f3:06:35:8c:a8:a0:f9:bf:d8:72:fc:87: 55:a7:1d:e0:fd:ae:57:8d:4d:d5:37:4f:66:89:ac: 8e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:69:6C:8B:10:33:52:1D:84:D4:14:B5:04:6A:02:AC:55:23:A7:45 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01e::/48 Signature Algorithm: sha256WithRSAEncryption 33:3d:dd:9e:66:bd:5d:33:53:58:d9:ce:8e:1d:97:94:ba:61: 6f:0e:83:c3:70:4d:4f:bd:e4:20:1b:1d:c6:5f:ce:2e:d1:24: 0d:cf:16:55:7f:ce:c4:7c:98:59:66:74:a2:22:8d:0b:f6:0e: 6c:b8:8c:3d:e2:a3:4d:62:70:d1:1f:73:80:1a:c6:de:e8:f7: 3e:0c:a7:95:70:3c:a6:dd:4a:b4:40:71:c9:21:3e:40:bc:06: cf:82:3d:13:84:be:12:08:5b:14:87:02:cd:a2:06:0e:c9:eb: d0:07:38:3a:fe:cc:db:ae:cc:b8:68:d2:75:bf:d5:19:98:f7: 9b:0f:1b:ef:1c:19:d1:cc:bd:9b:ef:9b:bd:0b:b8:79:c4:28: 1c:8f:85:98:e5:35:7f:df:55:ee:c2:10:9d:e3:9b:d5:82:97: 31:b0:45:cc:05:15:f3:f6:fe:e3:6e:13:c1:e9:d7:e8:03:57: 95:ae:20:aa:a3:95:6f:46:28:2d:4e:47:f8:d6:65:87:ba:61: d0:42:a2:d3:9a:6c:56:2f:98:73:8b:9b:e2:51:9c:0f:66:9a: cd:85:43:60:d3:a2:1b:0f:0a:ed:96:f1:86:61:73:e0:f2:16: 13:77:3a:1e:0b:b8:7f:f9:18:a0:f3:b0:fc:26:77:6d:dd:42: 09:2a:50:ff -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUb3dzDuPMRm93MfMOnqYiOIabsyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDJaFw0yNTA5MTQxNDM2NDJaMDMxMTAvBgNV BAMTKDEwNjk2QzhCMTAzMzUyMUQ4NEQ0MTRCNTA0NkEwMkFDNTUyM0E3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUeC8tFoH+ED4BEQUMzo1f1YzE Gz3tTtZTZOkk/+StRR2MKCGm0sLBt8B+RKgdjWCbU7IgeVmQWbu6y6jDtdOSMjXc hTjKsYunkOv7sYP7zo8emNggRdxZaWABErHdd9vy7M3psDuQ9ZNJ/h02kk9FnsNq iasJHbX36B2Vmq7VvxUIXCii6OiPs8ldN9qOTVGO9CKK73wpFvbcc4WgQGopFI41 9HitAVl9oKBEOZBLJtf1rGYOf3bvKB30H9KlTTTGt5akn3ykYbul+aE4n/g0UHwi RIef/AlTJnWxOBSBWQELLvMGNYyooPm/2HL8h1WnHeD9rleNTdU3T2aJrI7NAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUEGlsixAzUh2E1BS1BGoCrFUjp0UwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHjANBgkqhkiG9w0BAQsFAAOCAQEAMz3dnma9XTNTWNnO jh2XlLphbw6Dw3BNT73kIBsdxl/OLtEkDc8WVX/OxHyYWWZ0oiKNC/YObLiMPeKj TWJw0R9zgBrG3uj3PgynlXA8pt1KtEBxySE+QLwGz4I9E4S+EghbFIcCzaIGDsnr 0Ac4Ov7M267MuGjSdb/VGZj3mw8b7xwZ0cy9m++bvQu4ecQoHI+FmOU1f99V7sIQ neOb1YKXMbBFzAUV8/b+424TwenX6ANXla4gqqOVb0YoLU5H+NZlh7ph0EKi05ps Vi+Yc4ub4lGcD2aazYVDYNOiGw8K7ZbxhmFz4PIWE3c6Hgu4f/kYoPOw/CZ3bd1C CSpQ/w== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:15 2024 by rpki-client on console-ams.rpki-client.org