$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: x6VMrmBYfMYQHI8a8D/wmVtGAOHjD6Sb47A9OI5j+x0= Subject key identifier: 24:F6:5C:E1:13:E4:0D:C3:A1:6D:EA:D0:1D:A7:8F:34:55:AF:76:20 Certificate issuer: /CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Certificate serial: 69FC8C5D9DA3DB9FB4D53EC0A30204B598185078 Authority key identifier: 72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa Signing time: Sun 28 Apr 2024 20:17:07 +0000 ROA not before: Sun 28 Apr 2024 20:12:07 +0000 ROA not after: Sun 27 Apr 2025 20:17:07 +0000 asID: 216043 IP address blocks: 2a06:1283:c01c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 30 Jun 2024 00:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:fc:8c:5d:9d:a3:db:9f:b4:d5:3e:c0:a3:02:04:b5:98:18:50:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=729896CB421DE8ED6A598D27F2F6491BCABB9F24 Validity Not Before: Apr 28 20:12:07 2024 GMT Not After : Apr 27 20:17:07 2025 GMT Subject: CN=24F65CE113E40DC3A16DEAD01DA78F3455AF7620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:60:92:7d:40:c4:f8:3f:a1:f2:9c:28:bf:fc: eb:4a:16:0a:b6:6a:fa:e0:4a:85:91:af:b0:04:d4: 99:8b:56:15:87:07:df:0a:2f:6e:86:d8:97:83:dd: 34:35:d1:6a:be:3f:e7:1f:70:4d:62:6c:06:a3:eb: ae:a4:e3:5e:db:c2:06:a1:e3:b7:d8:09:ed:cb:9b: d3:28:dc:75:b6:14:44:e7:cb:a3:0a:e9:6b:2f:45: 9b:dc:f6:61:ef:87:6b:28:b7:e3:7e:35:92:f2:3d: 48:f3:16:b5:f4:9c:ff:ee:39:0d:74:e4:82:44:3e: 3d:0f:2f:9e:f1:c8:b1:6c:5c:2b:58:79:a7:b5:50: 37:c6:e0:26:91:b4:2a:02:26:16:3d:06:6f:55:9b: 10:b2:7e:a1:f4:ca:2b:06:e2:87:c0:e9:15:53:cf: 13:21:d4:d5:03:53:21:50:7d:5b:00:7c:05:9b:df: e9:af:b3:3c:ae:a7:14:62:a8:56:1f:05:40:6b:22: ae:20:31:10:67:76:c2:e5:82:31:f9:66:76:95:34: 77:09:59:7b:6d:cf:c5:18:d3:f4:4c:f4:8e:7c:8b: 90:65:c5:d2:6b:33:01:51:53:8e:a0:5e:4a:1c:af: 69:20:59:f1:7a:63:4e:4e:a2:ad:f9:84:2c:10:d5: 56:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F6:5C:E1:13:E4:0D:C3:A1:6D:EA:D0:1D:A7:8F:34:55:AF:76:20 X509v3 Authority Key Identifier: keyid:72:98:96:CB:42:1D:E8:ED:6A:59:8D:27:F2:F6:49:1B:CA:BB:9F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/729896CB421DE8ED6A598D27F2F6491BCABB9F24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/729896CB421DE8ED6A598D27F2F6491BCABB9F24.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/1/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01c::/48 Signature Algorithm: sha256WithRSAEncryption 44:07:45:75:29:08:a8:40:35:73:97:5f:54:1e:8e:c3:fd:b8: 75:fa:04:dc:22:a7:b9:58:b6:23:96:cb:b0:87:54:9b:43:fb: 83:03:11:ab:00:97:80:f7:44:dd:1a:74:4a:b0:57:4e:e0:23: 87:37:f1:be:af:50:f0:4d:1d:e8:a3:93:6e:ce:65:56:37:10: 0e:a9:a2:1d:d9:ad:a8:f0:be:5b:f4:ee:a6:79:89:81:9e:b6: 36:23:d2:8f:52:1e:ab:f9:b3:d0:21:ab:b5:82:1a:04:d3:32: 1c:53:8f:61:6d:39:3b:00:d4:d4:54:7f:12:ed:0d:6b:d9:10: b4:b4:42:2b:eb:54:8e:8f:d8:de:7d:eb:3e:f7:76:07:ba:58: f3:c9:20:7d:aa:35:25:0e:33:68:a3:cd:b8:14:62:ad:c6:eb: e9:2f:e5:4c:51:69:59:24:46:50:8d:51:f4:bc:4a:77:f2:5e: f1:4d:61:f1:e3:0d:6e:1b:21:fd:94:e3:87:60:6d:ac:54:3f: ba:c5:56:b0:13:15:55:1e:1b:a7:d6:36:a7:3c:d4:a9:5f:a5: 3d:5a:b9:d3:30:51:31:53:8e:0f:c3:24:30:f4:00:c7:51:ae: 8f:17:45:a2:d0:63:01:65:74:b0:5b:e8:f8:86:84:a0:cd:3c: a5:4d:e3:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUafyMXZ2j25+01T7AowIEtZgYUHgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJD QUJCOUYyNDAeFw0yNDA0MjgyMDEyMDdaFw0yNTA0MjcyMDE3MDdaMDMxMTAvBgNV BAMTKDI0RjY1Q0UxMTNFNDBEQzNBMTZERUFEMDFEQTc4RjM0NTVBRjc2MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChYJJ9QMT4P6HynCi//OtKFgq2 avrgSoWRr7AE1JmLVhWHB98KL26G2JeD3TQ10Wq+P+cfcE1ibAaj666k417bwgah 47fYCe3Lm9Mo3HW2FETny6MK6WsvRZvc9mHvh2sot+N+NZLyPUjzFrX0nP/uOQ10 5IJEPj0PL57xyLFsXCtYeae1UDfG4CaRtCoCJhY9Bm9VmxCyfqH0yisG4ofA6RVT zxMh1NUDUyFQfVsAfAWb3+mvszyupxRiqFYfBUBrIq4gMRBndsLlgjH5ZnaVNHcJ WXttz8UY0/RM9I58i5BlxdJrMwFRU46gXkocr2kgWfF6Y05Ooq35hCwQ1Vb5AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUJPZc4RPkDcOhberQHaePNFWvdiAwHwYDVR0j BBgwFoAUcpiWy0Id6O1qWY0n8vZJG8q7nyQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzEvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJCOUYyNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNzI5ODk2Q0I0MjFERThFRDZBNTk4RDI3RjJGNjQ5MUJDQUJC OUYyNC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgt NmYyMS00ZDMwLThkODMtMTQwYWNhOTM4ZDcxLzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHDANBgkqhkiG9w0BAQsFAAOCAQEARAdFdSkIqEA1c5df VB6Ow/24dfoE3CKnuVi2I5bLsIdUm0P7gwMRqwCXgPdE3Rp0SrBXTuAjhzfxvq9Q 8E0d6KOTbs5lVjcQDqmiHdmtqPC+W/TupnmJgZ62NiPSj1Ieq/mz0CGrtYIaBNMy HFOPYW05OwDU1FR/Eu0Na9kQtLRCK+tUjo/Y3n3rPvd2B7pY88kgfao1JQ4zaKPN uBRircbr6S/lTFFpWSRGUI1R9LxKd/Je8U1h8eMNbhsh/ZTjh2BtrFQ/usVWsBMV VR4bp9Y2pzzUqV+lPVq50zBRMVOOD8MkMPQAx1GujxdFotBjAWV0sFvo+IaEoM08 pU3juw== -----END CERTIFICATE-----Generated at Sat Jun 29 15:00:40 2024 by rpki-client on console-fra.rpki-client.org