$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a663030303a3a2f33362d3336203d3e20323135323134.roa File: 326130613a363034343a663030303a3a2f33362d3336203d3e20323135323134.roa (raw, json) Hash identifier: QkKd+97BHDvnyuLFpD3QTwaOhJFm09fgPPAyXxJ/N7U= Subject key identifier: A9:58:5E:39:68:9A:B6:62:C8:A6:AE:75:F2:89:F2:99:9F:88:80:95 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 7CA22B353711737A5BED5771F38DD781B5CC754F Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a663030303a3a2f33362d3336203d3e20323135323134.roa Signing time: Wed 12 Jun 2024 12:27:07 +0000 ROA not before: Wed 12 Jun 2024 12:22:07 +0000 ROA not after: Wed 11 Jun 2025 12:27:07 +0000 asID: 215214 IP address blocks: 2a0a:6044:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Jun 2024 20:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a2:2b:35:37:11:73:7a:5b:ed:57:71:f3:8d:d7:81:b5:cc:75:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Jun 12 12:22:07 2024 GMT Not After : Jun 11 12:27:07 2025 GMT Subject: CN=A9585E39689AB662C8A6AE75F289F2999F888095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cd:26:df:bc:28:3a:2b:9f:c5:2e:c9:da:fa: 0e:67:0e:e1:37:25:66:2c:ea:d2:d1:0b:7b:5d:6c: c7:fa:d8:ff:f8:2f:d1:92:ba:90:fc:dc:e1:31:16: 0f:67:19:dd:e8:83:23:49:f4:06:fb:f1:62:68:7e: b5:2f:55:86:20:69:08:f7:59:b8:85:5e:ef:7b:c9: c7:1e:a7:79:6c:87:62:73:d2:a9:6e:8f:70:80:95: da:d4:c1:24:04:c3:fa:5d:86:5b:ff:a0:2a:4a:51: 63:2c:f2:96:aa:74:b5:30:cb:a6:68:20:9d:02:79: e9:18:52:87:fe:e9:d1:60:63:93:0a:3f:b8:b2:20: 9d:65:2b:5a:9c:75:5b:05:30:48:57:7e:63:ee:cc: 06:3f:3d:86:db:c5:1b:f5:7e:9e:38:ef:b9:e6:12: 78:0f:f3:14:72:c2:7d:0c:01:c4:6a:7d:9e:8d:88: 0d:19:7b:19:a8:4a:8f:16:ff:07:e5:56:39:b9:61: 53:0d:3c:70:69:93:ca:fe:b4:b6:3c:16:d6:61:6d: 39:99:36:b2:14:46:6f:77:64:c5:ab:1a:ad:cd:d6: f9:c2:57:e1:ac:67:58:14:ea:24:ce:f4:55:20:0a: 59:b2:2b:7b:fb:86:e9:68:59:11:ba:f9:58:74:6d: fe:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:58:5E:39:68:9A:B6:62:C8:A6:AE:75:F2:89:F2:99:9F:88:80:95 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a663030303a3a2f33362d3336203d3e20323135323134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:f000::/36 Signature Algorithm: sha256WithRSAEncryption 4a:23:58:95:6a:22:78:5d:92:0d:5c:8d:ae:1e:b7:29:9e:4c: ab:93:ad:99:17:ca:64:ea:88:39:25:12:ea:56:c9:6f:0e:6d: 08:80:42:5b:4a:c5:48:76:2a:2c:02:e3:0c:0a:3c:9c:05:38: c3:b2:93:94:0f:6b:56:f7:af:d5:3a:ca:29:2e:a1:be:43:27: 3b:31:7f:af:39:42:1f:67:fc:10:d3:1c:32:54:b0:78:14:3d: e4:57:e4:84:08:7b:15:17:50:61:aa:90:c3:36:9f:06:27:b2: f8:13:e2:e5:0c:8c:fd:2b:ce:ee:2e:3d:41:ae:cf:28:22:e5: 28:87:bd:77:91:e9:d7:a8:38:b8:d6:34:8d:ed:30:bf:b7:9b: 28:e4:d1:e3:fc:b9:83:39:ec:b3:9e:0a:5f:9b:4b:04:32:42: 5d:2b:35:b6:ef:6e:4e:eb:49:aa:d4:f9:fa:7c:5b:5e:06:e6: 66:28:99:25:e6:b9:a9:41:0a:4c:1c:8b:9d:65:fc:15:73:b8: f9:1c:43:d5:f4:51:7c:e4:7b:93:e0:be:5f:7c:6b:04:07:78: d9:2e:d9:56:06:fb:61:21:af:15:07:f6:e8:4f:06:a0:b4:9e: b4:5a:56:2f:cf:69:7a:3b:61:61:29:c6:29:c5:77:85:fc:f8: d3:e7:2d:1b -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUfKIrNTcRc3pb7Vdx843XgbXMdU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA2MTIxMjIyMDdaFw0yNTA2MTExMjI3MDdaMDMxMTAvBgNV BAMTKEE5NTg1RTM5Njg5QUI2NjJDOEE2QUU3NUYyODlGMjk5OUY4ODgwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCazSbfvCg6K5/FLsna+g5nDuE3 JWYs6tLRC3tdbMf62P/4L9GSupD83OExFg9nGd3ogyNJ9Ab78WJofrUvVYYgaQj3 WbiFXu97yccep3lsh2Jz0qluj3CAldrUwSQEw/pdhlv/oCpKUWMs8paqdLUwy6Zo IJ0CeekYUof+6dFgY5MKP7iyIJ1lK1qcdVsFMEhXfmPuzAY/PYbbxRv1fp4477nm EngP8xRywn0MAcRqfZ6NiA0ZexmoSo8W/wflVjm5YVMNPHBpk8r+tLY8FtZhbTmZ NrIURm93ZMWrGq3N1vnCV+GsZ1gU6iTO9FUgClmyK3v7huloWRG6+Vh0bf4VAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUqVheOWiatmLIpq518onymZ+IgJUwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzAvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2NjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMyMzEzNTMyMzEzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoKYETwMA0GCSqGSIb3DQEBCwUAA4IBAQBKI1iVaiJ4XZINXI2u Hrcpnkyrk62ZF8pk6og5JRLqVslvDm0IgEJbSsVIdiosAuMMCjycBTjDspOUD2tW 96/VOsopLqG+Qyc7MX+vOUIfZ/wQ0xwyVLB4FD3kV+SECHsVF1BhqpDDNp8GJ7L4 E+LlDIz9K87uLj1Brs8oIuUoh713kenXqDi41jSN7TC/t5so5NHj/LmDOeyzngpf m0sEMkJdKzW2725O60mq1Pn6fFteBuZmKJkl5rmpQQpMHIudZfwVc7j5HEPV9FF8 5HuT4L5ffGsEB3jZLtlWBvthIa8VB/boTwagtJ60WlYvz2l6O2FhKcYpxXeF/PjT 5y0b -----END CERTIFICATE-----Generated at Fri Jun 28 05:10:36 2024 by rpki-client on console-fra.rpki-client.org