$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: gbwKNy2iOobn+QWiY89Vd2G7mJVdhzllbGzle5bNRRk= Subject key identifier: 50:38:E0:CB:D0:35:BF:9B:F9:99:A2:42:95:F1:8B:4E:ED:36:03:D2 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 3C9F6947710A296F3A499525A81112DC9624A711 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 28 Apr 2024 20:16:58 +0000 ROA not before: Sun 28 Apr 2024 20:11:58 +0000 ROA not after: Sun 27 Apr 2025 20:16:58 +0000 asID: 216043 IP address blocks: 2a06:1283:c01a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 30 Jun 2024 00:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:9f:69:47:71:0a:29:6f:3a:49:95:25:a8:11:12:dc:96:24:a7:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:11:58 2024 GMT Not After : Apr 27 20:16:58 2025 GMT Subject: CN=5038E0CBD035BF9BF999A24295F18B4EED3603D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fe:64:a1:76:44:d8:ee:b4:9a:35:20:f6:38: 7a:69:ba:a9:a8:aa:76:c0:1c:a7:56:36:61:1d:6c: b9:91:6a:cd:a2:c0:d4:74:ac:e2:2c:47:a4:06:eb: 0f:df:80:06:db:e0:b4:01:7d:db:8c:2c:0c:1d:3b: 57:07:df:fe:ba:0c:d8:4c:a1:31:19:73:7e:73:fc: c8:53:f2:c3:88:91:14:ff:12:43:9f:a5:c9:43:42: 4a:a5:43:67:66:de:cd:58:3b:fe:9c:98:0f:a9:f3: 4f:97:3d:e9:6f:b7:1c:ea:4e:21:7d:0d:20:7d:c3: fe:c8:b3:e5:52:82:4a:0b:09:19:dd:10:6e:12:4d: 8d:3a:27:65:fd:58:e6:b6:b7:ea:4d:75:ec:aa:ff: bd:25:b9:cd:0a:bc:af:8a:ba:6f:c5:11:e1:5e:0b: 31:45:4f:98:b4:fe:cb:33:78:64:27:7b:7a:d1:4f: 79:51:61:5a:34:12:a8:a3:06:9e:1f:e4:b7:3e:7c: c7:6d:5f:e8:c7:4a:a7:94:d5:7f:70:9a:5c:42:d7: a9:2a:21:40:85:f1:83:d7:34:04:71:61:2f:03:7c: 6f:ae:c7:67:dc:68:b7:73:ef:26:10:05:73:f2:4a: ba:54:bf:a3:4d:b4:4b:8d:33:1c:d9:08:10:d6:10: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:38:E0:CB:D0:35:BF:9B:F9:99:A2:42:95:F1:8B:4E:ED:36:03:D2 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01a::/48 Signature Algorithm: sha256WithRSAEncryption 6d:a7:4e:8d:18:2b:d1:9e:5e:57:b9:fe:91:5e:56:59:18:26: 5b:64:03:e3:b4:e7:70:a4:65:f5:8b:62:2b:71:b4:eb:85:da: 0b:57:bf:34:d9:28:a1:08:64:a2:fd:35:23:f3:7b:dc:a7:bc: 2f:d4:50:30:6a:4c:48:ad:f0:fc:dc:0e:65:93:27:25:af:ae: 1f:89:41:ca:5a:e7:40:93:4e:ba:8b:6e:28:eb:ae:83:70:0b: 29:e5:62:b8:73:19:e9:2c:d4:7b:2c:e1:58:56:be:c9:11:0d: 17:3d:83:db:50:b6:df:37:0e:1c:94:a5:50:34:88:e1:1a:69: 64:44:d0:cc:f1:cb:8c:f8:c3:a7:9f:99:fa:ec:b4:ff:83:b7: a6:20:e4:20:3d:e9:00:11:c9:ac:ab:2a:8c:97:93:e5:16:97: ba:22:4c:40:4c:2c:21:08:7b:0d:2d:50:43:29:77:5d:0d:8b: fa:52:d7:6e:5e:3a:72:06:67:2d:2f:fa:b0:46:40:ca:42:6a: b7:28:62:0a:ad:eb:c2:60:98:e0:d6:98:ea:9b:20:de:11:01: 8b:25:73:0d:df:1e:ba:e1:da:ce:29:57:75:1e:f2:ca:ab:5f: 3d:96:b8:a7:1b:ae:94:e9:9f:b3:c0:11:14:7a:bb:93:ca:59: 52:12:f0:4f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUPJ9pR3EKKW86SZUlqBES3JYkpxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDExNThaFw0yNTA0MjcyMDE2NThaMDMxMTAvBgNV BAMTKDUwMzhFMENCRDAzNUJGOUJGOTk5QTI0Mjk1RjE4QjRFRUQzNjAzRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa/mShdkTY7rSaNSD2OHppuqmo qnbAHKdWNmEdbLmRas2iwNR0rOIsR6QG6w/fgAbb4LQBfduMLAwdO1cH3/66DNhM oTEZc35z/MhT8sOIkRT/EkOfpclDQkqlQ2dm3s1YO/6cmA+p80+XPelvtxzqTiF9 DSB9w/7Is+VSgkoLCRndEG4STY06J2X9WOa2t+pNdeyq/70luc0KvK+Kum/FEeFe CzFFT5i0/sszeGQne3rRT3lRYVo0EqijBp4f5Lc+fMdtX+jHSqeU1X9wmlxC16kq IUCF8YPXNARxYS8DfG+ux2fcaLdz7yYQBXPySrpUv6NNtEuNMxzZCBDWEHn3AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUUDjgy9A1v5v5maJClfGLTu02A9IwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAGjANBgkqhkiG9w0BAQsFAAOCAQEAbadOjRgr0Z5eV7n+ kV5WWRgmW2QD47TncKRl9YtiK3G064XaC1e/NNkooQhkov01I/N73Ke8L9RQMGpM SK3w/NwOZZMnJa+uH4lBylrnQJNOuotuKOuug3ALKeViuHMZ6SzUeyzhWFa+yREN Fz2D21C23zcOHJSlUDSI4RppZETQzPHLjPjDp5+Z+uy0/4O3piDkID3pABHJrKsq jJeT5RaXuiJMQEwsIQh7DS1QQyl3XQ2L+lLXbl46cgZnLS/6sEZAykJqtyhiCq3r wmCY4NaY6psg3hEBiyVzDd8euuHazilXdR7yyqtfPZa4pxuulOmfs8ARFHq7k8pZ UhLwTw== -----END CERTIFICATE-----Generated at Sat Jun 29 15:00:40 2024 by rpki-client on console-fra.rpki-client.org