$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa File: 326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: DJD4nIUcTqP5uVSKfwGkra8CP1k8tQO3/Z0+dNO0Cc4= Subject key identifier: 9A:5C:03:4E:FE:D0:B1:8B:4C:81:11:A3:7A:B2:45:48:A1:69:D5:6C Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 45519E2A502CE7D5CA4E0F2D58A9F9CFB51828FD Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa Signing time: Fri 04 Oct 2024 20:48:50 +0000 ROA not before: Fri 04 Oct 2024 20:43:50 +0000 ROA not after: Fri 03 Oct 2025 20:48:50 +0000 asID: 0 IP address blocks: 2a06:1283:c120::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Oct 2024 23:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:51:9e:2a:50:2c:e7:d5:ca:4e:0f:2d:58:a9:f9:cf:b5:18:28:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Oct 4 20:43:50 2024 GMT Not After : Oct 3 20:48:50 2025 GMT Subject: CN=9A5C034EFED0B18B4C8111A37AB24548A169D56C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:35:58:32:bf:55:03:85:e5:7e:1d:90:bf:70: f4:3e:b8:98:ec:e2:d8:ed:81:fb:8a:e7:bb:0c:b1: 6e:7d:f8:68:14:e1:f9:00:ed:e8:2b:9f:62:d0:4b: 01:c7:4e:bf:89:2b:26:f8:24:c1:88:6f:91:b5:d6: cd:b6:21:24:0d:c8:fc:e2:05:16:28:ac:aa:7c:11: 07:7b:86:20:4a:69:be:b4:6e:a4:61:67:d1:58:be: a8:f7:64:2a:b1:7d:cf:f7:2d:de:0b:57:43:95:7e: bf:f6:37:15:55:34:66:45:42:24:a1:4c:d3:f3:34: 5c:10:71:13:b7:bd:21:72:fb:c7:1b:4b:dd:47:96: fe:98:95:33:69:dc:04:2b:14:31:fc:01:4f:d5:2e: 1a:ed:3a:33:48:82:18:99:25:69:5a:c6:1a:bd:a6: 32:d5:17:ad:e2:0c:b3:40:7c:4b:3d:61:ce:cb:aa: c0:77:86:73:bd:20:30:fd:55:7d:fd:a8:36:a3:b2: ed:66:d8:9e:af:c6:d5:cf:fd:e0:95:72:0c:6e:bc: 75:6c:57:29:d3:e4:f6:24:4e:21:f6:f6:39:c6:af: 34:61:5b:40:9c:3d:92:56:5f:01:3d:90:07:21:3a: 1f:a7:22:25:7e:10:4d:83:61:23:9c:d6:7a:e3:87: c8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5C:03:4E:FE:D0:B1:8B:4C:81:11:A3:7A:B2:45:48:A1:69:D5:6C X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c120::/44 Signature Algorithm: sha256WithRSAEncryption 25:b2:f1:62:da:b7:7a:bc:c2:e9:53:fb:f7:e2:6f:98:37:5b: a3:b3:68:e3:cc:0b:3a:e5:b9:42:a7:3b:6a:27:b5:dd:b0:c3: 4b:79:c5:fa:d3:70:98:e2:ae:ad:b7:de:77:29:20:69:3c:59: 29:d6:09:a9:ad:20:48:1d:58:cc:be:a6:86:98:54:cc:c0:1c: 68:e8:cb:2c:10:08:fa:09:2a:62:7a:ef:32:fa:16:e4:10:60: d9:04:cc:f5:47:04:ba:f6:dc:8e:8c:a4:73:90:e6:5d:18:86: b8:11:65:d5:3f:a8:1f:cd:61:4c:a8:19:b1:ca:46:a6:63:7d: 03:cb:52:2d:e1:d4:30:f5:ac:7f:65:e3:39:01:79:d8:43:33: fb:63:a4:a9:0e:80:db:7d:ba:8e:5c:68:e2:17:7f:7f:e2:61: 27:66:dc:cf:bd:fc:67:ab:30:1b:23:d2:5b:ff:75:2b:ef:db: aa:d4:64:c1:ab:93:96:bf:b7:5e:8d:82:04:8f:5e:31:36:cf: 33:e7:3c:86:26:4c:4f:d9:4b:27:d8:db:e3:47:73:ce:f6:06: bd:5c:be:66:44:91:b1:22:cc:86:d5:12:19:e3:2b:d7:5a:e8: 6a:0a:0a:e6:25:3b:4f:a3:e4:fe:82:1f:f0:fd:77:a4:1d:90: b9:3e:b4:cf -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIURVGeKlAs59XKTg8tWKn5z7UYKP0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNDEwMDQyMDQzNTBaFw0yNTEwMDMyMDQ4NTBaMDMxMTAvBgNV BAMTKDlBNUMwMzRFRkVEMEIxOEI0QzgxMTFBMzdBQjI0NTQ4QTE2OUQ1NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQNVgyv1UDheV+HZC/cPQ+uJjs 4tjtgfuK57sMsW59+GgU4fkA7egrn2LQSwHHTr+JKyb4JMGIb5G11s22ISQNyPzi BRYorKp8EQd7hiBKab60bqRhZ9FYvqj3ZCqxfc/3Ld4LV0OVfr/2NxVVNGZFQiSh TNPzNFwQcRO3vSFy+8cbS91Hlv6YlTNp3AQrFDH8AU/VLhrtOjNIghiZJWlaxhq9 pjLVF63iDLNAfEs9Yc7LqsB3hnO9IDD9VX39qDajsu1m2J6vxtXP/eCVcgxuvHVs VynT5PYkTiH29jnGrzRhW0CcPZJWXwE9kAchOh+nIiV+EE2DYSOc1nrjh8g7AgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUmlwDTv7QsYtMgRGjerJFSKFp1WwwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgYSg8EgMA0GCSqGSIb3DQEBCwUAA4IBAQAlsvFi2rd6vMLpU/v34m+YN1ujs2jj zAs65blCpztqJ7XdsMNLecX603CY4q6tt953KSBpPFkp1gmprSBIHVjMvqaGmFTM wBxo6MssEAj6CSpieu8y+hbkEGDZBMz1RwS69tyOjKRzkOZdGIa4EWXVP6gfzWFM qBmxykamY30Dy1It4dQw9ax/ZeM5AXnYQzP7Y6SpDoDbfbqOXGjiF39/4mEnZtzP vfxnqzAbI9Jb/3Ur79uq1GTBq5OWv7dejYIEj14xNs8z5zyGJkxP2Usn2NvjR3PO 9ga9XL5mRJGxIsyG1RIZ4yvXWuhqCgrmJTtPo+T+gh/w/XekHZC5PrTP -----END CERTIFICATE-----Generated at Tue Oct 22 08:29:56 2024 by rpki-client on console-fra.rpki-client.org