$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616130333a3a2f34382d3438203d3e20313937393633.roa File: 326130613a363034343a616130333a3a2f34382d3438203d3e20313937393633.roa (raw, json) Hash identifier: VTw6/Xc51vd91ViUtnspK8OBwbApHrqJfKTtrfO7sDc= Subject key identifier: CA:A3:65:2D:42:7F:84:C7:C7:7E:64:DE:3D:81:AD:D0:E9:18:60:7A Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 4C6C7E14066A48C1A3EA8B39B65DE58159CA4EFE Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616130333a3a2f34382d3438203d3e20313937393633.roa Signing time: Mon 29 Apr 2024 15:45:03 +0000 ROA not before: Mon 29 Apr 2024 15:40:03 +0000 ROA not after: Mon 28 Apr 2025 15:45:03 +0000 asID: 197963 IP address blocks: 2a0a:6044:aa03::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Jun 2024 20:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:6c:7e:14:06:6a:48:c1:a3:ea:8b:39:b6:5d:e5:81:59:ca:4e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Apr 29 15:40:03 2024 GMT Not After : Apr 28 15:45:03 2025 GMT Subject: CN=CAA3652D427F84C7C77E64DE3D81ADD0E918607A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0c:2e:00:d6:e5:1a:69:3c:3f:e5:5f:1b:5e: fa:61:fe:69:3e:56:4f:0b:19:76:3b:6b:ff:67:1b: 69:1a:64:56:eb:a2:90:d6:11:5b:fb:5a:7b:c0:47: e1:29:ed:64:78:3d:d4:e0:a3:c7:a2:aa:1e:21:ae: a1:45:f0:86:16:64:fb:d0:3e:ed:cd:b0:32:b9:e6: 2f:2a:da:97:a9:73:e1:16:c7:6a:1b:16:88:91:bb: 02:6e:9a:a6:64:2a:63:f0:f2:e6:3e:2f:1f:d7:f7: 1f:cf:bd:4a:f8:6d:3f:43:4b:f3:28:67:a3:e2:27: 38:fd:55:b9:fa:5e:ce:70:b5:cd:29:b0:d6:ab:79: aa:3d:4f:71:47:73:2b:93:2e:e9:a2:55:4e:2d:17: e8:a8:03:2f:5a:95:13:fd:db:18:d9:35:74:fe:48: 92:57:71:4f:c8:ac:41:c1:4d:0e:6a:25:0a:89:de: 4e:bb:25:33:08:73:bb:90:af:5f:8a:fd:8a:9e:e2: 7a:42:57:78:78:f5:a8:96:45:05:a1:93:7e:7f:21: ca:59:93:41:1a:16:15:dc:dd:1e:69:84:23:e4:b7: 52:c4:37:4e:10:6a:81:db:83:db:bd:d5:a3:3a:15: d3:12:ae:3e:37:d5:40:e1:a5:60:63:57:15:6e:0b: a9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A3:65:2D:42:7F:84:C7:C7:7E:64:DE:3D:81:AD:D0:E9:18:60:7A X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616130333a3a2f34382d3438203d3e20313937393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa03::/48 Signature Algorithm: sha256WithRSAEncryption 12:d4:c1:97:42:62:35:b1:fa:f0:86:f9:1f:6c:29:20:e5:34: b5:58:e6:b1:1c:21:d7:06:0e:dc:74:b7:ec:27:6f:ad:ec:20: 92:9a:ca:fc:7b:b8:d9:af:ec:0c:df:d5:15:b9:aa:0f:97:b3: cb:3c:7a:80:d7:f9:7e:d6:73:ac:c0:aa:01:5f:69:6b:8b:21: 8d:71:04:62:da:83:d5:3e:c4:28:44:1a:b6:8e:d6:92:82:b9: d0:ea:a5:3c:d6:34:21:8d:c8:06:10:14:28:92:46:1d:02:a4: ac:22:fb:9c:22:4b:d6:2e:23:a0:fb:3e:72:6c:1d:f6:a6:9e: e0:df:e0:3f:6b:8e:e3:5e:46:f3:05:58:f6:1f:2a:55:34:3c: 78:6b:5d:53:c0:a3:e0:fa:dc:3b:85:51:85:7b:2d:0a:af:70: 4e:8f:b1:af:cc:a7:f7:1f:1e:d8:40:87:09:d5:49:fe:51:90: 9e:aa:a8:f0:e9:a9:73:63:e9:dd:85:72:51:41:c6:4a:38:ed: 9a:64:9d:50:6c:47:cd:b0:eb:7d:7f:e3:05:e0:8f:3f:1c:40: d5:3e:04:b0:ed:47:c5:a3:fc:92:6b:cb:dc:26:6a:5b:30:8d: cc:1f:4d:ce:0b:c3:95:d7:8e:dc:42:6b:66:8e:f4:9e:70:93: 96:7d:54:d0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUTGx+FAZqSMGj6os5tl3lgVnKTv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA0MjkxNTQwMDNaFw0yNTA0MjgxNTQ1MDNaMDMxMTAvBgNV BAMTKENBQTM2NTJENDI3Rjg0QzdDNzdFNjRERTNEODFBREQwRTkxODYwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRDC4A1uUaaTw/5V8bXvph/mk+ Vk8LGXY7a/9nG2kaZFbropDWEVv7WnvAR+Ep7WR4PdTgo8eiqh4hrqFF8IYWZPvQ Pu3NsDK55i8q2pepc+EWx2obFoiRuwJumqZkKmPw8uY+Lx/X9x/PvUr4bT9DS/Mo Z6PiJzj9Vbn6Xs5wtc0psNareao9T3FHcyuTLumiVU4tF+ioAy9alRP92xjZNXT+ SJJXcU/IrEHBTQ5qJQqJ3k67JTMIc7uQr1+K/Yqe4npCV3h49aiWRQWhk35/IcpZ k0EaFhXc3R5phCPkt1LEN04QaoHbg9u91aM6FdMSrj431UDhpWBjVxVuC6n5AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUyqNlLUJ/hMfHfmTePYGt0OkYYHowHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzAvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTYxMzAzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzkzNzM5MzYzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoKYESqAzANBgkqhkiG9w0BAQsFAAOCAQEAEtTBl0JiNbH68Ib5 H2wpIOU0tVjmsRwh1wYO3HS37CdvrewgkprK/Hu42a/sDN/VFbmqD5ezyzx6gNf5 ftZzrMCqAV9pa4shjXEEYtqD1T7EKEQato7WkoK50OqlPNY0IY3IBhAUKJJGHQKk rCL7nCJL1i4joPs+cmwd9qae4N/gP2uO415G8wVY9h8qVTQ8eGtdU8Cj4PrcO4VR hXstCq9wTo+xr8yn9x8e2ECHCdVJ/lGQnqqo8Ompc2Pp3YVyUUHGSjjtmmSdUGxH zbDrfX/jBeCPPxxA1T4EsO1HxaP8kmvL3CZqWzCNzB9NzgvDldeO3EJrZo70nnCT ln1U0A== -----END CERTIFICATE-----Generated at Fri Jun 28 05:43:44 2024 by rpki-client on console-ams.rpki-client.org