$ rpki-client -vvf rpki.nellicus.net/repo/nellicus/2/323630323a663735323a3a2f33362d3336203d3e203631393631.roa File: 323630323a663735323a3a2f33362d3336203d3e203631393631.roa (raw, json) Hash identifier: LJae5qX98q1IoVhcF3MovFKodtof25tEPl+Vd+qKFHU= Subject key identifier: 1C:59:03:EC:20:2C:77:B9:62:D9:F9:D0:D5:C6:E3:AE:2C:0F:21:36 Certificate issuer: /CN=63da54625fd85e52395c44b712efc2a7d399b19cbcce6863a3 Certificate serial: 2985A4C2B494C5A768882D0372D4B46DEDE2C781 Authority key identifier: 20:C2:29:7B:C6:7D:21:C3:25:43:84:D3:BD:88:65:06:A0:6E:30:A2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856/63da54625fd85e52395c44b712efc2a7d399b19cbcce6863a3.cer Subject info access: rsync://rpki.nellicus.net/repo/nellicus/2/323630323a663735323a3a2f33362d3336203d3e203631393631.roa Signing time: Tue 31 Dec 2024 18:44:52 +0000 ROA not before: Tue 31 Dec 2024 18:39:52 +0000 ROA not after: Tue 30 Dec 2025 18:44:52 +0000 asID: 61961 IP address blocks: 2602:f752::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.nellicus.net/repo/nellicus/2/20C2297BC67D21C3254384D3BD886506A06E30A2.crl rsync://rpki.nellicus.net/repo/nellicus/2/20C2297BC67D21C3254384D3BD886506A06E30A2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856/63da54625fd85e52395c44b712efc2a7d399b19cbcce6863a3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856/0a080168-c146-41c6-9367-391cd429b856.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856/0a080168-c146-41c6-9367-391cd429b856.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 11 Mar 2025 15:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:85:a4:c2:b4:94:c5:a7:68:88:2d:03:72:d4:b4:6d:ed:e2:c7:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63da54625fd85e52395c44b712efc2a7d399b19cbcce6863a3 Validity Not Before: Dec 31 18:39:52 2024 GMT Not After : Dec 30 18:44:52 2025 GMT Subject: CN=1C5903EC202C77B962D9F9D0D5C6E3AE2C0F2136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:b5:39:33:d4:6d:37:10:35:d1:05:40:c3: 55:7d:c6:42:0d:53:22:ac:32:36:8f:8c:97:0b:73: 1b:5b:2f:dc:67:32:7c:1b:8e:e6:0c:6b:fc:b4:51: fc:20:8d:1f:7b:51:23:75:59:34:d0:71:d4:3e:f9: 97:56:b0:ed:7a:2c:ed:4f:0b:4f:75:b1:5d:62:e5: da:14:9d:e2:30:f9:c0:0f:f1:0e:45:ed:a4:7b:9e: c7:cd:92:4d:63:8b:53:27:9d:e8:09:49:3c:16:d1: cb:65:30:03:ea:2a:54:e8:76:76:d5:e8:f2:0c:6a: 2d:28:d5:ee:b5:d2:5a:ba:28:c5:06:33:8a:6e:fb: 12:d5:ff:43:90:39:c2:a8:85:0d:9f:59:ae:11:aa: e4:71:91:84:2f:30:a8:d2:93:a9:fa:48:c0:05:8f: f4:69:4a:da:83:d6:7c:77:9c:22:d9:1f:33:16:45: 1f:af:af:6e:94:bc:2d:df:df:fa:d5:f6:11:84:89: 53:ef:52:5c:e9:52:c6:5e:85:c6:fb:74:e3:fa:b4: 1c:dd:53:73:ab:bc:b6:1d:26:64:12:99:4e:06:49: 8d:eb:d2:31:8d:99:43:df:b3:c0:50:e5:c4:8a:6d: 64:13:65:f2:ee:8f:ea:ad:1e:3d:40:7e:c2:32:30: 0d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:59:03:EC:20:2C:77:B9:62:D9:F9:D0:D5:C6:E3:AE:2C:0F:21:36 X509v3 Authority Key Identifier: keyid:20:C2:29:7B:C6:7D:21:C3:25:43:84:D3:BD:88:65:06:A0:6E:30:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.nellicus.net/repo/nellicus/2/20C2297BC67D21C3254384D3BD886506A06E30A2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/0a080168-c146-41c6-9367-391cd429b856/63da54625fd85e52395c44b712efc2a7d399b19cbcce6863a3.cer Subject Information Access: Signed Object - URI:rsync://rpki.nellicus.net/repo/nellicus/2/323630323a663735323a3a2f33362d3336203d3e203631393631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f752::/36 Signature Algorithm: sha256WithRSAEncryption ac:08:28:28:7a:50:d7:d4:ae:76:7f:80:95:8e:fe:f0:66:30: b7:15:13:be:c3:af:be:0b:5d:f0:13:d0:74:7c:da:18:2b:b2: 23:ad:50:9a:16:97:f0:48:b0:19:7f:6e:e5:5e:f0:93:de:d9: 89:7c:1c:ff:28:56:60:b9:d5:e4:e2:0e:c3:ba:b6:fc:29:33: f2:ba:bd:6b:53:b5:e7:40:c5:c3:1c:e8:8e:5a:cf:ae:8a:89: 99:20:a6:dc:68:7f:04:b9:97:f9:bf:2c:66:69:0e:bd:c4:05: b3:39:fb:e1:bd:c0:df:46:2d:64:a2:ae:bc:e9:d4:e8:cd:0f: 2b:eb:db:0d:12:6a:c0:4e:80:ad:dc:45:3e:15:43:d4:33:4b: 5b:70:7f:2f:ad:41:4f:14:9e:96:94:e0:e0:9f:fb:82:cf:01: 84:8a:57:78:11:60:58:09:91:72:bb:66:f4:c3:8d:da:5b:e4: 71:94:d0:b7:2b:b1:1f:6e:6f:1c:3d:bc:03:5a:cd:29:f6:0d: 59:8d:43:0f:57:4b:5f:9a:11:6c:dc:ac:fc:1d:af:ff:1d:12: 25:64:1a:d4:5f:72:73:34:e8:22:84:24:d8:e7:11:e6:eb:34: 56:54:50:06:49:b3:b9:3c:5d:ac:b4:6a:de:bc:9a:91:75:68: af:32:43:75 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKYWkwrSUxadoiC0DctS0be3ix4EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNjNkYTU0NjI1ZmQ4NWU1MjM5NWM0NGI3MTJlZmMyYTdk Mzk5YjE5Y2JjY2U2ODYzYTMwHhcNMjQxMjMxMTgzOTUyWhcNMjUxMjMwMTg0NDUy WjAzMTEwLwYDVQQDEygxQzU5MDNFQzIwMkM3N0I5NjJEOUY5RDBENUM2RTNBRTJD MEYyMTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/y1OTPUbTcQ NdEFQMNVfcZCDVMirDI2j4yXC3MbWy/cZzJ8G47mDGv8tFH8II0fe1EjdVk00HHU PvmXVrDteiztTwtPdbFdYuXaFJ3iMPnAD/EORe2ke57HzZJNY4tTJ53oCUk8FtHL ZTAD6ipU6HZ21ejyDGotKNXutdJauijFBjOKbvsS1f9DkDnCqIUNn1muEarkcZGE LzCo0pOp+kjABY/0aUrag9Z8d5wi2R8zFkUfr69ulLwt39/61fYRhIlT71Jc6VLG XoXG+3Tj+rQc3VNzq7y2HSZkEplOBkmN69IxjZlD37PAUOXEim1kE2Xy7o/qrR49 QH7CMjANpQIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFBxZA+wgLHe5Ytn50NXG464s DyE2MB8GA1UdIwQYMBaAFCDCKXvGfSHDJUOE072IZQagbjCiMA4GA1UdDwEB/wQE AwIHgDBnBgNVHR8EYDBeMFygWqBYhlZyc3luYzovL3Jwa2kubmVsbGljdXMubmV0 L3JlcG8vbmVsbGljdXMvMi8yMEMyMjk3QkM2N0QyMUMzMjU0Mzg0RDNCRDg4NjUw NkEwNkUzMEEyLmNybDCB8wYIKwYBBQUHAQEEgeYwgeMwgeAGCCsGAQUFBzAChoHT cnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRhLzVl NGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02Y2Ji LTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvMGEwODAxNjgtYzE0Ni00MWM2LTkzNjct MzkxY2Q0MjliODU2LzYzZGE1NDYyNWZkODVlNTIzOTVjNDRiNzEyZWZjMmE3ZDM5 OWIxOWNiY2NlNjg2M2EzLmNlcjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuG YnJzeW5jOi8vcnBraS5uZWxsaWN1cy5uZXQvcmVwby9uZWxsaWN1cy8yLzMyMzYz MDMyM2E2NjM3MzUzMjNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDM2MzEzOTM2MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgQmAvdSADANBgkqhkiG9w0BAQsFAAOCAQEArAgoKHpQ19Sudn+A lY7+8GYwtxUTvsOvvgtd8BPQdHzaGCuyI61QmhaX8EiwGX9u5V7wk97ZiXwc/yhW YLnV5OIOw7q2/Ckz8rq9a1O150DFwxzojlrProqJmSCm3Gh/BLmX+b8sZmkOvcQF szn74b3A30YtZKKuvOnU6M0PK+vbDRJqwE6ArdxFPhVD1DNLW3B/L61BTxSelpTg 4J/7gs8BhIpXeBFgWAmRcrtm9MON2lvkcZTQtyuxH25vHD28A1rNKfYNWY1DD1dL X5oRbNys/B2v/x0SJWQa1F9yczToIoQk2OcR5us0VlRQBkmzuTxdrLRq3ryakXVo rzJDdQ== -----END CERTIFICATE-----Generated at Mon Mar 10 16:19:02 2025 by rpki-client