$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/323630323a663930353a3a2f34302d3430203d3e20343031303339.roa File: 323630323a663930353a3a2f34302d3430203d3e20343031303339.roa (raw, json) Hash identifier: DUZpX3f5rFSPgNr+KzWY7zJkoC1MqZBFjsELiEo/INQ= Subject key identifier: 2C:BB:70:D8:7D:69:4B:76:0B:47:82:30:2F:46:6B:15:E4:28:E3:30 Certificate issuer: /CN=200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db Certificate serial: 2D0735D6ADDD09853A5362BADC5C4C35615EE784 Authority key identifier: 63:55:2D:73:63:6A:C0:8B:8F:CA:F6:E9:C2:46:3D:64:72:CA:3B:F3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/323630323a663930353a3a2f34302d3430203d3e20343031303339.roa Signing time: Wed 22 May 2024 18:36:25 +0000 ROA not before: Wed 22 May 2024 18:31:25 +0000 ROA not after: Wed 21 May 2025 18:36:25 +0000 asID: 401039 IP address blocks: 2602:f905::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.crl rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 03 Jul 2024 16:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:07:35:d6:ad:dd:09:85:3a:53:62:ba:dc:5c:4c:35:61:5e:e7:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db Validity Not Before: May 22 18:31:25 2024 GMT Not After : May 21 18:36:25 2025 GMT Subject: CN=2CBB70D87D694B760B4782302F466B15E428E330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:90:ce:b8:2b:5b:22:1c:80:07:e2:83:5a:44: 3a:af:de:2d:d7:48:9d:5a:88:40:7a:9c:ea:c4:1e: 6e:63:ab:1e:db:d1:e1:4c:d3:ed:84:47:c6:0e:37: f3:7f:54:31:b5:b9:e6:d1:26:ae:39:54:0a:e3:80: 8a:d6:75:f4:54:f3:20:e1:81:c7:57:ce:59:63:0e: 6e:9f:cd:54:97:62:b3:c9:d8:08:4f:0d:a2:63:a7: db:35:fa:65:1c:4c:ca:3b:22:13:75:ee:ec:e3:07: 0e:52:b3:07:fe:0a:66:6b:7c:68:d0:6f:ca:8f:27: 83:cc:74:9b:dc:e7:f7:36:46:67:70:39:b9:9a:ac: 92:6e:fe:4a:42:31:23:c8:3a:62:2f:37:f7:ca:2a: 03:b0:df:0f:92:ef:44:bd:52:33:8f:b8:04:4c:62: 28:82:41:9e:53:b0:6f:68:52:33:ad:ac:a5:90:88: 36:58:15:37:13:fa:46:84:1f:08:ef:26:4f:99:28: d7:f8:fd:38:71:56:2b:e9:83:f2:79:8d:0f:20:a9: 98:ef:8d:e2:cc:9b:1d:66:8e:59:db:bd:db:d9:64: 29:72:6f:9a:f6:29:24:3b:43:7f:a1:a9:36:bb:b7: d5:1f:1a:c2:95:87:54:a9:60:5c:01:5f:96:31:35: c1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BB:70:D8:7D:69:4B:76:0B:47:82:30:2F:46:6B:15:E4:28:E3:30 X509v3 Authority Key Identifier: keyid:63:55:2D:73:63:6A:C0:8B:8F:CA:F6:E9:C2:46:3D:64:72:CA:3B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/323630323a663930353a3a2f34302d3430203d3e20343031303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f905::/40 Signature Algorithm: sha256WithRSAEncryption 3e:2c:42:88:e6:50:88:52:5d:0e:d2:ab:3b:04:7a:57:1a:8d: 21:1f:40:e2:15:18:ae:17:e0:f0:2e:09:eb:25:c4:f2:93:03: c3:b8:3d:f9:50:e9:7a:7c:af:dc:4f:de:e7:72:11:ab:0e:b6: 94:90:b7:09:8c:1a:cc:e0:97:3b:86:9e:cc:c6:8b:ee:98:0d: 80:8b:7a:a3:38:e0:39:77:4b:62:9b:7b:b2:0b:ba:37:db:2f: 71:40:cc:fd:13:96:48:db:8a:df:2a:ef:47:3f:d8:ea:bf:07: de:a4:da:47:71:7e:e4:20:fb:2c:4e:70:ad:eb:8b:de:77:3f: f7:78:7c:44:72:05:26:9d:88:ba:09:7b:3f:29:cd:2e:7a:6e: 17:4c:5c:91:4c:0c:4e:f2:19:1b:cc:3f:81:ea:51:cf:ac:4c: 0d:c8:ae:8e:14:b2:fe:4a:f9:b9:c6:e2:b3:be:67:de:26:14: 98:ef:d3:63:7d:06:7e:6f:78:6d:fb:0a:78:2e:f0:09:41:e2: 05:d3:35:42:9e:1c:e3:c1:e3:d7:39:ca:ad:25:b8:5f:60:a7: ff:a0:bf:07:5c:c3:fa:60:27:db:b3:ea:cc:95:ea:99:db:82: 93:cf:69:d3:a2:71:91:79:05:32:38:95:3a:1e:09:e0:9f:95: 37:a4:34:30 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIULQc11q3dCYU6U2K63FxMNWFe54QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjAwYWU1NDM1ZjM4ZDQyZDRhMTE3NjNmZTIxMDRlMDc3 NzdhNjI1OGE1ZTBiNGM5ZGIwHhcNMjQwNTIyMTgzMTI1WhcNMjUwNTIxMTgzNjI1 WjAzMTEwLwYDVQQDEygyQ0JCNzBEODdENjk0Qjc2MEI0NzgyMzAyRjQ2NkIxNUU0 MjhFMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5DOuCtbIhyA B+KDWkQ6r94t10idWohAepzqxB5uY6se29HhTNPthEfGDjfzf1Qxtbnm0SauOVQK 44CK1nX0VPMg4YHHV85ZYw5un81Ul2KzydgITw2iY6fbNfplHEzKOyITde7s4wcO UrMH/gpma3xo0G/KjyeDzHSb3Of3NkZncDm5mqySbv5KQjEjyDpiLzf3yioDsN8P ku9EvVIzj7gETGIogkGeU7BvaFIzraylkIg2WBU3E/pGhB8I7yZPmSjX+P04cVYr 6YPyeY0PIKmY743izJsdZo5Z273b2WQpcm+a9ikkO0N/oak2u7fVHxrClYdUqWBc AV+WMTXBkQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFCy7cNh9aUt2C0eCMC9GaxXk KOMwMB8GA1UdIwQYMBaAFGNVLXNjasCLj8r26cJGPWRyyjvzMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZi LTY4NmQ4OGU3MWFlOS80LzYzNTUyRDczNjM2QUMwOEI4RkNBRjZFOUMyNDYzRDY0 NzJDQTNCRjMuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzZlYWQwNzNjLWI5ZjAt NDUyMy1iMzllLWEzYzdkYWI5N2MyNS84ZTYxNDdiOC1kNTVkLTRlZDgtODk3My1k NWNmMmEyN2UxNjEvMjAwYWU1NDM1ZjM4ZDQyZDRhMTE3NjNmZTIxMDRlMDc3Nzdh NjI1OGE1ZTBiNGM5ZGIuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZiLTY4NmQ4OGU3MWFlOS80LzMyMzYzMDMy M2E2NjM5MzAzNTNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDM0MzAzMTMwMzMzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC+QUAMA0GCSqGSIb3DQEBCwUAA4IBAQA+LEKI5lCIUl0O0qs7 BHpXGo0hH0DiFRiuF+DwLgnrJcTykwPDuD35UOl6fK/cT97nchGrDraUkLcJjBrM 4Jc7hp7MxovumA2Ai3qjOOA5d0tim3uyC7o32y9xQMz9E5ZI24rfKu9HP9jqvwfe pNpHcX7kIPssTnCt64vedz/3eHxEcgUmnYi6CXs/Kc0uem4XTFyRTAxO8hkbzD+B 6lHPrEwNyK6OFLL+Svm5xuKzvmfeJhSY79NjfQZ+b3ht+wp4LvAJQeIF0zVCnhzj wePXOcqtJbhfYKf/oL8HXMP6YCfbs+rMleqZ24KTz2nTonGReQUyOJU6Hgngn5U3 pDQw -----END CERTIFICATE-----Generated at Tue Jul 2 16:52:15 2024 by rpki-client on console-ams.rpki-client.org