$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: Bt18oBOyonjouaIcq2NIW4LSzuYftJIs2cPrejaHEoI= Subject key identifier: 8C:52:9D:00:B1:0B:34:09:FC:4F:9C:EC:3E:67:17:7E:C4:81:C4:62 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 5A8A603D44100F69102584FE1BAEAD13FAA7AF1F Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa Signing time: Sun 15 Sep 2024 14:36:46 +0000 ROA not before: Sun 15 Sep 2024 14:31:46 +0000 ROA not after: Sun 14 Sep 2025 14:36:46 +0000 asID: 216065 IP address blocks: 2a06:1283:c02f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8a:60:3d:44:10:0f:69:10:25:84:fe:1b:ae:ad:13:fa:a7:af:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:46 2024 GMT Not After : Sep 14 14:36:46 2025 GMT Subject: CN=8C529D00B10B3409FC4F9CEC3E67177EC481C462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:76:90:88:ee:6e:ad:6d:9b:00:f9:ac:61: 13:bf:bf:f5:bc:26:6f:5f:e4:2c:11:fa:0a:cd:65: 00:f5:de:6a:af:19:6f:1c:72:ec:28:b0:f1:dd:68: 09:6d:b3:80:da:a7:fa:45:9b:82:0a:28:5c:5b:b6: ee:1a:ed:1d:ae:c0:9a:1b:ec:ff:9d:6f:69:75:82: 58:76:ed:78:58:01:1d:58:f9:65:8d:13:4c:c1:4b: 12:ca:1d:6e:32:45:30:03:7d:0d:d0:1f:4b:e8:ee: db:19:9b:5a:06:ec:c6:9b:d0:63:57:35:08:ac:0a: 72:8b:3c:fb:ff:59:32:bc:64:c5:5b:a0:95:c3:1b: e4:58:30:56:7d:ca:f5:57:33:4f:a5:54:2e:fb:db: 67:fa:ec:94:b0:82:34:63:c2:21:53:3a:46:cd:f2: dc:05:80:6f:51:32:73:5e:21:54:f6:7d:31:c9:e6: 42:f7:ca:99:cc:7c:44:b1:42:e9:9a:ee:cd:6d:9c: 6a:ab:8a:03:f9:ec:22:2a:69:f1:47:15:7b:12:46: f1:f3:d1:c4:f7:3d:81:3c:7d:24:22:9a:f5:d3:b4: dc:e4:d7:e4:c9:bb:1f:30:60:f5:f4:1e:2e:98:94: 97:89:d5:12:0d:5f:24:98:d5:8c:74:be:91:2e:37: 8b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:52:9D:00:B1:0B:34:09:FC:4F:9C:EC:3E:67:17:7E:C4:81:C4:62 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c02f::/48 Signature Algorithm: sha256WithRSAEncryption 5c:0f:c7:a7:7c:7e:e9:08:fa:30:0a:a9:d9:89:e8:fc:c3:17: 59:4d:ff:07:8b:83:42:f1:63:ce:63:1c:dc:6f:7a:f7:0d:4e: 04:f5:0f:aa:58:96:0e:48:96:52:8c:2c:e7:fd:ef:5f:82:aa: a8:5a:20:a3:e3:f4:14:79:2e:b0:29:fb:91:13:dd:7f:ce:03: e7:6c:d2:6a:9c:b6:77:82:90:4d:a1:29:8f:6e:70:a3:e5:30: 9c:f5:ab:78:13:ff:3f:c5:74:ad:21:c6:dc:48:f2:9d:1c:34: 2b:7d:7e:1f:ad:6a:cf:17:2a:d8:1e:f9:97:c1:86:04:7c:be: 9a:8b:cd:88:60:bd:c6:9b:5a:c1:af:4f:9b:c8:a4:f9:98:1a: ae:9d:ec:88:86:d7:68:d3:80:b2:f0:0a:6b:2f:cd:6d:20:95: 97:7c:fd:e3:e0:19:69:bb:16:c3:77:cb:dd:1e:c0:a4:98:f8: f5:ef:02:b2:29:32:e8:f4:b8:a7:1c:83:2f:39:fe:be:49:79: 36:c6:bb:39:06:af:bb:35:d5:cb:e8:13:e0:94:07:21:3a:28: 2b:f1:ab:0e:90:08:cd:a4:3f:1f:9a:84:0d:e4:64:9c:c1:8e: bc:24:e7:0d:25:db:bd:e3:16:05:06:63:2e:40:22:9d:55:4e: 64:b2:cb:35 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUWopgPUQQD2kQJYT+G66tE/qnrx8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxNDZaFw0yNTA5MTQxNDM2NDZaMDMxMTAvBgNV BAMTKDhDNTI5RDAwQjEwQjM0MDlGQzRGOUNFQzNFNjcxNzdFQzQ4MUM0NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/qHaQiO5urW2bAPmsYRO/v/W8 Jm9f5CwR+grNZQD13mqvGW8ccuwosPHdaAlts4Dap/pFm4IKKFxbtu4a7R2uwJob 7P+db2l1glh27XhYAR1Y+WWNE0zBSxLKHW4yRTADfQ3QH0vo7tsZm1oG7Mab0GNX NQisCnKLPPv/WTK8ZMVboJXDG+RYMFZ9yvVXM0+lVC7722f67JSwgjRjwiFTOkbN 8twFgG9RMnNeIVT2fTHJ5kL3ypnMfESxQuma7s1tnGqrigP57CIqafFHFXsSRvHz 0cT3PYE8fSQimvXTtNzk1+TJux8wYPX0Hi6YlJeJ1RINXySY1Yx0vpEuN4sBAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUjFKdALELNAn8T5zsPmcXfsSBxGIwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzI2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPALzANBgkqhkiG9w0BAQsFAAOCAQEAXA/Hp3x+6Qj6MAqp 2Yno/MMXWU3/B4uDQvFjzmMc3G969w1OBPUPqliWDkiWUows5/3vX4KqqFogo+P0 FHkusCn7kRPdf84D52zSapy2d4KQTaEpj25wo+UwnPWreBP/P8V0rSHG3EjynRw0 K31+H61qzxcq2B75l8GGBHy+movNiGC9xptawa9Pm8ik+Zgarp3siIbXaNOAsvAK ay/NbSCVl3z94+AZabsWw3fL3R7ApJj49e8Csiky6PS4pxyDLzn+vkl5Nsa7OQav uzXVy+gT4JQHITooK/GrDpAIzaQ/H5qEDeRknMGOvCTnDSXbveMWBQZjLkAinVVO ZLLLNQ== -----END CERTIFICATE-----Generated at Mon Nov 25 12:00:54 2024 by rpki-client on console-ams.rpki-client.org