$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa File: 326130363a396634313a3a2f33322d3438203d3e20323135303835.roa (raw, json) Hash identifier: ZKnqXWpL638YuDEQpZ7F3g5bqELtKVJQB4+caqr2NiE= Subject key identifier: 67:57:94:C7:6E:6E:76:30:75:79:C8:B3:8D:58:54:81:26:2E:A6:FA Certificate issuer: /CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Certificate serial: 5F2FE380D1BC2CE555CC25C141EAA0AFE266EE45 Authority key identifier: 75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa Signing time: Mon 02 Sep 2024 09:09:22 +0000 ROA not before: Mon 02 Sep 2024 09:04:22 +0000 ROA not after: Mon 01 Sep 2025 09:09:22 +0000 asID: 215085 IP address blocks: 2a06:9f41::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 19 Sep 2024 11:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2f:e3:80:d1:bc:2c:e5:55:cc:25:c1:41:ea:a0:af:e2:66:ee:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75D5C2ECD30F680DB5D16987F457FEB45D8BA970 Validity Not Before: Sep 2 09:04:22 2024 GMT Not After : Sep 1 09:09:22 2025 GMT Subject: CN=675794C76E6E76307579C8B38D585481262EA6FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f3:04:39:19:4f:26:57:24:3b:b2:1b:94:e2: 4d:4e:2b:38:a0:f6:2d:9f:3c:34:b9:09:cb:87:e5: 60:f0:b9:67:53:8f:ac:d3:84:25:36:fa:80:48:aa: 0b:c4:72:e3:4d:e9:70:7e:0c:99:b4:69:15:ab:16: 53:c8:49:6c:a6:c2:1c:fd:48:da:ea:46:fa:83:e9: 2e:4b:13:cc:e9:15:d6:39:5d:5f:c5:a3:c4:78:df: 58:e6:c7:22:c2:3d:e5:34:2d:b0:e4:36:55:9b:33: 61:06:cd:4a:06:bb:ab:fa:d0:55:bf:7b:0b:81:05: 21:8f:c4:c1:f7:c1:20:3f:e7:4c:b3:a2:9e:e2:c1: b8:56:04:cb:5a:7f:d5:15:32:af:1a:2f:0c:7e:07: cb:07:b1:fb:80:1d:e3:e6:b9:03:65:5c:54:0b:16: 46:fc:79:be:8f:1a:04:5e:97:d0:f3:a1:6f:c3:58: e9:8f:02:1b:31:04:45:f4:18:82:34:7e:c4:21:bf: 23:cb:64:c3:d3:1c:e2:14:f2:b5:a1:0c:17:0d:66: 6e:99:c2:0c:95:ca:19:b7:8b:7b:de:92:d4:e1:0d: 53:c5:37:63:eb:4a:f8:2a:c0:8b:1a:e1:c5:31:8b: 2a:e7:67:91:7c:ca:0e:4a:e3:da:33:23:2a:81:43: 72:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:57:94:C7:6E:6E:76:30:75:79:C8:B3:8D:58:54:81:26:2E:A6:FA X509v3 Authority Key Identifier: keyid:75:D5:C2:EC:D3:0F:68:0D:B5:D1:69:87:F4:57:FE:B4:5D:8B:A9:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/75D5C2ECD30F680DB5D16987F457FEB45D8BA970.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/1/326130363a396634313a3a2f33322d3438203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41::/32 Signature Algorithm: sha256WithRSAEncryption 21:15:f8:1e:21:49:43:e6:6e:ef:e7:b2:46:cc:4d:87:ab:c2: 01:a5:a4:ce:cf:0d:29:45:36:12:ee:bb:13:e5:fc:60:94:56: 89:93:1c:9b:98:b2:e3:c1:ce:32:db:06:0f:48:11:2a:4f:c8: 50:e5:67:4f:e6:ff:0f:8c:e8:2e:a7:c6:90:4d:bd:53:11:47: ad:e6:64:ac:d7:5c:37:3c:e8:9c:f0:c2:b8:5e:88:9f:41:1e: b9:b9:2a:83:af:dd:5c:1f:cd:54:c9:c9:e6:34:e9:75:4a:18: 0f:94:8d:40:4a:f3:85:c6:58:11:00:64:26:26:a0:df:46:2c: 2d:5b:6e:09:37:97:36:47:ac:fc:de:83:7a:cd:07:d2:b8:53: c3:39:0e:e6:0e:28:f7:31:fc:4b:ef:95:97:01:e2:14:bb:8d: 76:9b:6e:59:89:d2:f8:28:4b:c1:32:69:6d:41:18:45:40:a3: 61:d8:70:46:6b:6f:b8:99:d6:3a:ee:30:6a:d3:98:02:46:6a: 36:9b:63:60:0c:4a:94:26:6f:64:06:30:92:b5:61:74:8a:28: 9a:3a:17:36:d0:6f:8f:03:10:d1:37:98:cd:20:51:57:cd:5c: c1:1c:c2:0d:61:7f:d8:8a:97:24:ae:b8:1e:1e:23:6e:9f:fe: 76:ec:8f:24 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUXy/jgNG8LOVVzCXBQeqgr+Jm7kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1 RDhCQTk3MDAeFw0yNDA5MDIwOTA0MjJaFw0yNTA5MDEwOTA5MjJaMDMxMTAvBgNV BAMTKDY3NTc5NEM3NkU2RTc2MzA3NTc5QzhCMzhENTg1NDgxMjYyRUE2RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ8wQ5GU8mVyQ7shuU4k1OKzig 9i2fPDS5CcuH5WDwuWdTj6zThCU2+oBIqgvEcuNN6XB+DJm0aRWrFlPISWymwhz9 SNrqRvqD6S5LE8zpFdY5XV/Fo8R431jmxyLCPeU0LbDkNlWbM2EGzUoGu6v60FW/ ewuBBSGPxMH3wSA/50yzop7iwbhWBMtaf9UVMq8aLwx+B8sHsfuAHePmuQNlXFQL Fkb8eb6PGgRel9DzoW/DWOmPAhsxBEX0GII0fsQhvyPLZMPTHOIU8rWhDBcNZm6Z wgyVyhm3i3vektThDVPFN2PrSvgqwIsa4cUxiyrnZ5F8yg5K49ozIyqBQ3KRAgMB AAGjggJuMIICajAdBgNVHQ4EFgQUZ1eUx25udjB1ecizjVhUgSYupvowHwYDVR0j BBgwFoAUddXC7NMPaA210WmH9Ff+tF2LqXAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzEvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhCQTk3MC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzVENUMyRUNEMzBGNjgwREI1RDE2OTg3RjQ1N0ZFQjQ1RDhC QTk3MC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzEvMzI2MTMwMzYzYTM5NjYzNDMx M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgafQTANBgkqhkiG9w0BAQsFAAOCAQEAIRX4HiFJQ+Zu7+eyRsxNh6vCAaWkzs8N KUU2Eu67E+X8YJRWiZMcm5iy48HOMtsGD0gRKk/IUOVnT+b/D4zoLqfGkE29UxFH reZkrNdcNzzonPDCuF6In0Eeubkqg6/dXB/NVMnJ5jTpdUoYD5SNQErzhcZYEQBk Jiag30YsLVtuCTeXNkes/N6Des0H0rhTwzkO5g4o9zH8S++VlwHiFLuNdptuWYnS +ChLwTJpbUEYRUCjYdhwRmtvuJnWOu4watOYAkZqNptjYAxKlCZvZAYwkrVhdIoo mjoXNtBvjwMQ0TeYzSBRV81cwRzCDWF/2IqXJK64Hh4jbp/+duyPJA== -----END CERTIFICATE-----Generated at Wed Sep 18 14:48:49 2024 by rpki-client on console-ams.rpki-client.org