$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a32303a3a2f34342d3434203d3e20323134373638.roa File: 323630323a663736313a32303a3a2f34342d3434203d3e20323134373638.roa (raw, json) Hash identifier: L5IT8JeK38uNLCiVqoJ/A1O+xsuyrDeUorstCcbnlko= Subject key identifier: 2F:24:1D:68:68:33:01:35:0A:33:C8:A4:48:87:FC:10:77:B8:F5:18 Certificate issuer: /CN=03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80 Certificate serial: 4B45337FB236E9862E3AC257B1FFFEC5401833A7 Authority key identifier: FA:A6:C4:25:29:3C:8A:7F:9C:2F:C9:84:EF:0E:26:A2:76:3D:97:7D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a32303a3a2f34342d3434203d3e20323134373638.roa Signing time: Tue 21 Jan 2025 14:58:28 +0000 ROA not before: Tue 21 Jan 2025 14:53:28 +0000 ROA not after: Tue 20 Jan 2026 14:58:28 +0000 asID: 214768 IP address blocks: 2602:f761:20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/da272869-5127-4af6-8053-b8617ccb9de3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/da272869-5127-4af6-8053-b8617ccb9de3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:45:33:7f:b2:36:e9:86:2e:3a:c2:57:b1:ff:fe:c5:40:18:33:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80 Validity Not Before: Jan 21 14:53:28 2025 GMT Not After : Jan 20 14:58:28 2026 GMT Subject: CN=2F241D68683301350A33C8A44887FC1077B8F518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:37:8e:76:f8:45:63:9c:ee:5a:4b:97:0d:3c: cd:54:f2:7b:47:61:51:07:c9:23:4e:c3:e0:f3:d8: 1d:06:25:6c:0d:13:5d:68:bb:5a:cd:b2:16:f4:71: ce:1c:c0:fa:33:22:fe:89:9b:d8:80:fa:bc:22:62: 76:1b:04:93:c6:fa:82:96:15:f6:ff:6f:d0:ce:9b: de:c0:67:8a:46:6a:8d:af:fd:4e:69:e1:9a:24:7d: fc:42:27:8a:6b:e8:9a:9b:b8:d0:15:32:e6:94:6d: a8:8c:d0:14:f0:01:b2:52:fc:c2:a5:20:74:20:4b: 49:2b:77:ca:f8:84:df:10:96:d1:c6:e1:6a:86:76: 3a:d9:ae:78:fe:36:bc:21:de:31:d8:70:1f:5e:d6: 55:c7:c7:be:0e:54:8a:11:ca:87:47:50:f7:b1:fc: 59:61:0d:37:38:a5:11:d8:00:78:2c:d6:d9:8e:ec: cd:10:96:f7:70:80:c7:8b:ca:1b:20:32:90:6a:65: 6b:1c:92:cf:82:ac:8a:c0:81:a9:8a:a2:70:bc:00: f0:51:64:39:4a:94:b3:a6:2b:77:7c:fd:ea:b0:8e: 71:73:f9:53:e1:0c:25:de:93:e8:9d:4e:45:8d:e0: 05:1c:dd:24:9b:56:df:12:e8:cc:d3:72:93:cf:2a: aa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:24:1D:68:68:33:01:35:0A:33:C8:A4:48:87:FC:10:77:B8:F5:18 X509v3 Authority Key Identifier: keyid:FA:A6:C4:25:29:3C:8A:7F:9C:2F:C9:84:EF:0E:26:A2:76:3D:97:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a32303a3a2f34342d3434203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f761:20::/44 Signature Algorithm: sha256WithRSAEncryption a7:1f:a2:a9:41:aa:d5:f9:fd:b0:23:78:31:b4:7b:86:9f:ae: 7b:ba:62:76:89:cf:e4:e8:25:75:52:0c:ed:1a:1f:bf:bd:6a: bb:e3:3c:b4:f1:6b:bc:cc:3d:37:74:65:cf:b7:38:46:8e:e8: 83:bb:c8:74:e2:d7:8f:b6:fc:05:19:fa:ac:db:ef:f7:bc:17: 8f:3a:91:50:a3:1e:07:74:5f:a7:12:0a:c1:52:77:16:e9:16: 2b:6c:9e:21:26:dc:6d:44:2e:f8:40:fc:a4:92:6d:95:6f:0f: be:3b:ca:5e:80:68:c6:c6:b5:7b:a2:bb:7b:00:15:47:c1:04: bf:e2:55:90:32:45:e6:ba:be:0b:e8:14:89:9d:35:e3:e0:3e: 1a:3a:42:13:f1:15:34:93:b3:e9:42:b8:6b:a9:8a:5c:6e:04: 1b:42:0f:9e:14:3c:9e:26:cf:3b:90:63:96:4f:1f:00:ec:be: fd:9e:7a:69:4b:39:1c:fc:36:f3:cd:6d:9d:52:d8:af:16:78: 4b:4f:db:b5:c0:fb:32:0e:07:ed:90:b4:e2:29:ff:df:82:de: 06:e6:a1:ad:62:69:40:c3:68:ef:13:77:53:14:f1:c2:0a:69: 3c:ac:88:3c:f5:2f:59:a0:ec:7c:d3:07:cd:fa:c3:2e:a3:a8: 24:f8:d3:5a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUS0Uzf7I26YYuOsJXsf/+xUAYM6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDMwNjhjYmU4ODk0ZDVkNzM1ZjkxZWRiOWU0MzM3NWNj NTdjMzZkMTMyNDI4NWFhODAwHhcNMjUwMTIxMTQ1MzI4WhcNMjYwMTIwMTQ1ODI4 WjAzMTEwLwYDVQQDEygyRjI0MUQ2ODY4MzMwMTM1MEEzM0M4QTQ0ODg3RkMxMDc3 QjhGNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjeOdvhFY5zu WkuXDTzNVPJ7R2FRB8kjTsPg89gdBiVsDRNdaLtazbIW9HHOHMD6MyL+iZvYgPq8 ImJ2GwSTxvqClhX2/2/QzpvewGeKRmqNr/1OaeGaJH38QieKa+iam7jQFTLmlG2o jNAU8AGyUvzCpSB0IEtJK3fK+ITfEJbRxuFqhnY62a54/ja8Id4x2HAfXtZVx8e+ DlSKEcqHR1D3sfxZYQ03OKUR2AB4LNbZjuzNEJb3cIDHi8obIDKQamVrHJLPgqyK wIGpiqJwvADwUWQ5SpSzpit3fP3qsI5xc/lT4Qwl3pPonU5FjeAFHN0km1bfEujM 03KTzyqqzwIDAQABo4IC1jCCAtIwHQYDVR0OBBYEFC8kHWhoMwE1CjPIpEiH/BB3 uPUYMB8GA1UdIwQYMBaAFPqmxCUpPIp/nC/JhO8OJqJ2PZd9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIzY2RmOWNhLWRkNjQtNGYzMS1hYmYz LTBmMzJiOGU3ZmU3OS8zL0ZBQTZDNDI1MjkzQzhBN0Y5QzJGQzk4NEVGMEUyNkEy NzYzRDk3N0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmIt NGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9kYTI3Mjg2OS01MTI3LTRhZjYtODA1My1i ODYxN2NjYjlkZTMvMDMwNjhjYmU4ODk0ZDVkNzM1ZjkxZWRiOWU0MzM3NWNjNTdj MzZkMTMyNDI4NWFhODAuY2VyMIGzBggrBgEFBQcBCwSBpjCBozCBoAYIKwYBBQUH MAuGgZNyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzIzY2RmOWNhLWRkNjQtNGYzMS1hYmYzLTBmMzJiOGU3ZmU3OS8zLzMyMzYzMDMy M2E2NjM3MzYzMTNhMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNDM3 MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB /wQTMBEwDwQCAAIwCQMHBCYC92EAIDANBgkqhkiG9w0BAQsFAAOCAQEApx+iqUGq 1fn9sCN4MbR7hp+ue7pidonP5OgldVIM7Rofv71qu+M8tPFrvMw9N3Rlz7c4Ro7o g7vIdOLXj7b8BRn6rNvv97wXjzqRUKMeB3RfpxIKwVJ3FukWK2yeISbcbUQu+ED8 pJJtlW8PvjvKXoBoxsa1e6K7ewAVR8EEv+JVkDJF5rq+C+gUiZ014+A+GjpCE/EV NJOz6UK4a6mKXG4EG0IPnhQ8nibPO5Bjlk8fAOy+/Z56aUs5HPw2881tnVLYrxZ4 S0/btcD7Mg4H7ZC04in/34LeBuahrWJpQMNo7xN3UxTxwgppPKyIPPUvWaDsfNMH zfrDLqOoJPjTWg== -----END CERTIFICATE-----Generated at Sat Apr 5 04:38:02 2025 by rpki-client