$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa File: 326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa (raw, json) Hash identifier: 91hpWfd3FvR1TQNm1yBXvB7fyKZY01y4gGTab/sfp4U= Subject key identifier: DF:27:23:12:85:99:67:28:6E:75:0E:93:20:B8:73:F9:71:42:9F:34 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 7E2F9F1CBBBDFD80ADB89CD56EA8352FF23F54C7 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa Signing time: Sun 15 Sep 2024 14:36:37 +0000 ROA not before: Sun 15 Sep 2024 14:31:37 +0000 ROA not after: Sun 14 Sep 2025 14:36:37 +0000 asID: 215738 IP address blocks: 2a06:1283:c0a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2f:9f:1c:bb:bd:fd:80:ad:b8:9c:d5:6e:a8:35:2f:f2:3f:54:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Sep 15 14:31:37 2024 GMT Not After : Sep 14 14:36:37 2025 GMT Subject: CN=DF272312859967286E750E9320B873F971429F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2d:ef:e6:f8:c6:ab:2f:fc:cb:fc:b8:1d:e3: 36:47:0a:f2:dd:9e:79:40:95:fb:72:da:25:1f:65: 00:05:c5:83:2b:92:94:b4:40:e4:2f:f7:a7:25:51: 56:8b:5b:40:c5:a4:bf:d0:a8:24:c5:da:7b:81:61: 26:d3:ed:9a:44:bf:fe:7b:15:40:4f:e8:b6:cc:36: d3:87:30:30:a4:17:87:52:f5:d8:c0:be:82:ff:76: 23:67:37:fc:c8:1d:7a:9e:45:d2:97:ec:b6:fb:43: cf:5b:22:6a:d2:8e:0c:3c:41:09:cf:81:33:5a:0b: 43:f4:8e:ed:dd:ad:33:68:72:35:73:0a:68:ad:64: fa:1b:18:1b:94:f4:16:42:70:0a:8c:5f:70:46:0a: 14:0b:a0:de:fb:44:8f:aa:f2:00:99:7f:3f:ed:31: 05:b4:d5:9f:8b:8a:15:47:e6:ee:17:10:b7:b2:26: 37:6b:f7:07:b6:95:31:7b:5c:7a:5e:bf:40:99:30: 11:4a:f0:99:d2:15:84:f7:2c:3f:3a:f3:78:90:1a: a7:aa:e0:c6:85:9d:9c:f5:8e:a1:67:ba:74:c2:91: 6d:21:86:4f:09:1b:80:30:8f:68:37:e4:dc:62:69: 5e:a3:32:74:f5:19:4d:d3:ed:fa:8f:f5:d6:8d:a8: 49:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:27:23:12:85:99:67:28:6E:75:0E:93:20:B8:73:F9:71:42:9F:34 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c0a0::/44 Signature Algorithm: sha256WithRSAEncryption be:ad:7a:66:5a:20:00:9b:8a:36:51:83:66:4a:52:1c:b4:ad: 54:2c:26:22:aa:3e:2a:07:d7:b9:25:fd:36:0f:f0:4d:0a:59: e1:7b:65:94:5b:0b:6f:ab:fe:59:29:79:79:6b:bd:d0:7c:53: ce:e0:ac:ed:01:ac:a7:2b:14:d1:c1:15:19:52:e4:71:0b:c6: 9d:00:e6:10:20:83:6c:42:1c:4d:f7:df:9a:3a:45:9d:96:91: f6:80:31:b8:21:50:4f:72:b6:99:40:a8:2a:3e:5f:dd:48:9e: ca:d3:aa:a9:1b:97:80:22:29:26:ee:35:47:50:43:ee:b3:a1: f1:7a:f9:12:0d:f6:b7:34:5f:80:b3:7a:5d:95:52:49:82:a3: 88:31:2e:b3:a1:4e:17:99:6c:c7:71:79:be:1c:0d:fe:9c:89: 20:9e:54:1e:07:b4:71:98:cc:b2:84:4f:5c:f5:be:7f:d4:47: 9b:b4:30:e4:a1:63:99:ed:5b:87:36:31:0b:c0:3e:c3:22:18: 70:aa:4c:bd:6d:3a:9a:5c:88:86:a5:d5:7e:d1:e5:21:2d:36: ad:c3:a6:04:9f:c7:6f:05:93:9c:d7:53:f0:04:7a:73:a2:b0: 02:6b:44:87:d6:97:46:90:9c:89:82:eb:d9:a2:bc:f5:a8:25: ba:10:65:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUfi+fHLu9/YCtuJzVbqg1L/I/VMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDA5MTUxNDMxMzdaFw0yNTA5MTQxNDM2MzdaMDMxMTAvBgNV BAMTKERGMjcyMzEyODU5OTY3Mjg2RTc1MEU5MzIwQjg3M0Y5NzE0MjlGMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlLe/m+MarL/zL/Lgd4zZHCvLd nnlAlfty2iUfZQAFxYMrkpS0QOQv96clUVaLW0DFpL/QqCTF2nuBYSbT7ZpEv/57 FUBP6LbMNtOHMDCkF4dS9djAvoL/diNnN/zIHXqeRdKX7Lb7Q89bImrSjgw8QQnP gTNaC0P0ju3drTNocjVzCmitZPobGBuU9BZCcAqMX3BGChQLoN77RI+q8gCZfz/t MQW01Z+LihVH5u4XELeyJjdr9we2lTF7XHpev0CZMBFK8JnSFYT3LD8683iQGqeq 4MaFnZz1jqFnunTCkW0hhk8JG4Awj2g35NxiaV6jMnT1GU3T7fqP9daNqEl3AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU3ycjEoWZZyhudQ6TILhz+XFCnzQwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwNjEzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNTM3MzMzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAoDANBgkqhkiG9w0BAQsFAAOCAQEAvq16ZlogAJuKNlGD ZkpSHLStVCwmIqo+KgfXuSX9Ng/wTQpZ4XtllFsLb6v+WSl5eWu90HxTzuCs7QGs pysU0cEVGVLkcQvGnQDmECCDbEIcTfffmjpFnZaR9oAxuCFQT3K2mUCoKj5f3Uie ytOqqRuXgCIpJu41R1BD7rOh8Xr5Eg32tzRfgLN6XZVSSYKjiDEus6FOF5lsx3F5 vhwN/pyJIJ5UHge0cZjMsoRPXPW+f9RHm7Qw5KFjme1bhzYxC8A+wyIYcKpMvW06 mlyIhqXVftHlIS02rcOmBJ/HbwWTnNdT8AR6c6KwAmtEh9aXRpCciYLr2aK89agl uhBlqg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org