$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a3a2f34302d3430203d3e20333937373330.roa File: 323630323a663736313a3a2f34302d3430203d3e20333937373330.roa (raw, json) Hash identifier: nA09F4i7ezyxrO7OoVlToYHyYyAdhivh99ADt+i0fxw= Subject key identifier: 3E:F1:00:34:C4:18:55:55:B0:D8:20:9A:5D:FF:D0:DD:40:7B:6F:E4 Certificate issuer: /CN=03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80 Certificate serial: 03E2B5691A0D010152B65ADF2A30298A0710D2ED Authority key identifier: FA:A6:C4:25:29:3C:8A:7F:9C:2F:C9:84:EF:0E:26:A2:76:3D:97:7D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a3a2f34302d3430203d3e20333937373330.roa Signing time: Tue 28 Jan 2025 19:51:26 +0000 ROA not before: Tue 28 Jan 2025 19:46:26 +0000 ROA not after: Tue 27 Jan 2026 19:51:26 +0000 asID: 397730 IP address blocks: 2602:f761::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/da272869-5127-4af6-8053-b8617ccb9de3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/da272869-5127-4af6-8053-b8617ccb9de3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e2:b5:69:1a:0d:01:01:52:b6:5a:df:2a:30:29:8a:07:10:d2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80 Validity Not Before: Jan 28 19:46:26 2025 GMT Not After : Jan 27 19:51:26 2026 GMT Subject: CN=3EF10034C4185555B0D8209A5DFFD0DD407B6FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:92:06:45:af:a2:52:e9:6b:2f:e3:3e:d6:94: 30:23:71:1a:f2:31:de:71:c9:8d:50:f1:be:b0:e4: 85:e9:cd:9a:32:55:b8:9a:2f:55:f6:5f:ff:35:76: 52:f7:61:33:35:5a:e6:16:74:ad:c0:60:0d:86:6a: 3f:4c:e8:d3:14:ea:e8:1f:17:7b:fd:1e:9b:12:1d: 80:72:d0:05:ca:fd:37:1f:30:01:b6:61:d0:88:fb: 4e:1b:61:04:6d:f6:32:28:10:cf:71:fc:ca:ec:43: 41:8a:85:f4:e2:bb:a8:86:03:04:c7:2d:a1:24:ad: 8a:35:1b:55:10:04:96:06:57:be:5c:0b:30:75:45: 81:2f:70:17:a6:3e:88:29:e6:73:16:98:b7:d4:88: f8:5e:bd:0e:6d:6d:20:c3:96:67:83:a7:0f:25:04: b1:d1:8e:25:41:79:94:4f:17:3e:81:d0:61:b6:ba: 59:dc:60:65:23:22:59:de:de:34:3a:18:b3:26:a7: e6:27:17:c9:9a:f1:ea:1f:42:b2:fc:53:5e:8f:76: 40:60:d5:b7:a5:3c:f9:e1:fc:ca:8d:a6:79:3b:98: 9f:5c:71:1f:09:53:a5:50:76:09:2f:21:04:b3:46: 07:67:1e:20:e0:7d:a0:bf:92:47:be:46:0e:bc:a5: 75:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F1:00:34:C4:18:55:55:B0:D8:20:9A:5D:FF:D0:DD:40:7B:6F:E4 X509v3 Authority Key Identifier: keyid:FA:A6:C4:25:29:3C:8A:7F:9C:2F:C9:84:EF:0E:26:A2:76:3D:97:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/FAA6C425293C8A7F9C2FC984EF0E26A2763D977D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/da272869-5127-4af6-8053-b8617ccb9de3/03068cbe8894d5d735f91edb9e43375cc57c36d1324285aa80.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/3/323630323a663736313a3a2f34302d3430203d3e20333937373330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f761::/40 Signature Algorithm: sha256WithRSAEncryption af:c5:92:db:5c:19:0c:ce:07:54:7a:84:e1:6f:b3:61:6a:0c: 8e:6b:9f:c0:ce:fe:b3:d0:87:6c:c1:fe:16:94:61:33:dd:2c: 5b:f0:bc:50:20:96:2a:d0:73:74:72:e3:b5:8b:61:d2:79:b9: 54:2e:42:00:76:75:e7:5d:e2:84:99:90:b3:fd:f8:10:96:50: f9:c5:32:45:df:c3:fc:06:fb:50:da:bd:94:3e:61:c8:3f:34: 0c:9e:49:ef:6e:b3:13:f1:17:3c:a8:5c:26:07:a0:4b:ae:f7: 7c:b1:9e:49:ea:2a:3b:9b:b8:f4:3d:bb:89:b4:ce:b7:3e:79: 1b:27:9d:f9:e4:76:7b:e9:9b:0e:4b:09:c5:7e:63:11:7c:d4: 0e:ec:df:54:cf:a0:23:15:a3:94:33:fa:b8:f2:67:3e:80:1d: dc:62:de:fc:fe:fb:9e:52:93:31:70:b8:a8:52:b7:7e:9e:16: fd:ed:76:33:e4:48:b6:40:83:db:c6:67:f9:92:97:1d:fd:e3: 23:82:6a:ac:84:60:1f:56:50:db:ac:fb:19:b9:86:4e:d8:f1: a2:78:61:d9:7c:49:c6:5c:a2:e5:5d:af:fe:ea:b3:46:34:a6: 46:05:37:58:fc:80:07:56:a4:f6:88:63:30:ae:d8:88:9f:82: 2e:7c:6c:0c -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUA+K1aRoNAQFStlrfKjApigcQ0u0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMDMwNjhjYmU4ODk0ZDVkNzM1ZjkxZWRiOWU0MzM3NWNj NTdjMzZkMTMyNDI4NWFhODAwHhcNMjUwMTI4MTk0NjI2WhcNMjYwMTI3MTk1MTI2 WjAzMTEwLwYDVQQDEygzRUYxMDAzNEM0MTg1NTU1QjBEODIwOUE1REZGRDBERDQw N0I2RkU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5IGRa+iUulr L+M+1pQwI3Ea8jHeccmNUPG+sOSF6c2aMlW4mi9V9l//NXZS92EzNVrmFnStwGAN hmo/TOjTFOroHxd7/R6bEh2ActAFyv03HzABtmHQiPtOG2EEbfYyKBDPcfzK7ENB ioX04ruohgMExy2hJK2KNRtVEASWBle+XAswdUWBL3AXpj6IKeZzFpi31Ij4Xr0O bW0gw5Zng6cPJQSx0Y4lQXmUTxc+gdBhtrpZ3GBlIyJZ3t40OhizJqfmJxfJmvHq H0Ky/FNej3ZAYNW3pTz54fzKjaZ5O5ifXHEfCVOlUHYJLyEEs0YHZx4g4H2gv5JH vkYOvKV1FQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFD7xADTEGFVVsNggml3/0N1A e2/kMB8GA1UdIwQYMBaAFPqmxCUpPIp/nC/JhO8OJqJ2PZd9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzIzY2RmOWNhLWRkNjQtNGYzMS1hYmYz LTBmMzJiOGU3ZmU3OS8zL0ZBQTZDNDI1MjkzQzhBN0Y5QzJGQzk4NEVGMEUyNkEy NzYzRDk3N0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmIt NGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9kYTI3Mjg2OS01MTI3LTRhZjYtODA1My1i ODYxN2NjYjlkZTMvMDMwNjhjYmU4ODk0ZDVkNzM1ZjkxZWRiOWU0MzM3NWNjNTdj MzZkMTMyNDI4NWFhODAuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzIzY2RmOWNhLWRkNjQtNGYzMS1hYmYzLTBmMzJiOGU3ZmU3OS8zLzMyMzYzMDMy M2E2NjM3MzYzMTNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMzMzkzNzM3MzMzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC92EAMA0GCSqGSIb3DQEBCwUAA4IBAQCvxZLbXBkMzgdUeoTh b7NhagyOa5/Azv6z0Idswf4WlGEz3Sxb8LxQIJYq0HN0cuO1i2HSeblULkIAdnXn XeKEmZCz/fgQllD5xTJF38P8BvtQ2r2UPmHIPzQMnknvbrMT8Rc8qFwmB6BLrvd8 sZ5J6io7m7j0PbuJtM63PnkbJ5355HZ76ZsOSwnFfmMRfNQO7N9Uz6AjFaOUM/q4 8mc+gB3cYt78/vueUpMxcLioUrd+nhb97XYz5Ei2QIPbxmf5kpcd/eMjgmqshGAf VlDbrPsZuYZO2PGieGHZfEnGXKLlXa/+6rNGNKZGBTdY/IAHVqT2iGMwrtiIn4Iu fGwM -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:37 2025 by rpki-client