$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a3a2f34302d313238203d3e203437323732.roa File: 323630323a663936643a3a2f34302d313238203d3e203437323732.roa (raw, json) Hash identifier: RtouL0H6ZspH3/zYAI61KbQsp8rjkhmHpX8kJhfCk2c= Subject key identifier: C7:E4:74:48:44:18:3B:47:4F:79:47:F7:19:48:A7:BF:41:7C:0C:31 Certificate issuer: /CN=f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa Certificate serial: 3C00E34E8CA9C8D5C0A9744B844691BB6FEE5F83 Authority key identifier: 6D:7A:26:67:30:92:8D:9D:FD:FD:AC:E3:6F:73:AC:89:E4:24:E2:28 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a3a2f34302d313238203d3e203437323732.roa Signing time: Wed 19 Jun 2024 20:27:28 +0000 ROA not before: Wed 19 Jun 2024 20:22:28 +0000 ROA not after: Wed 18 Jun 2025 20:27:28 +0000 asID: 47272 IP address blocks: 2602:f96d::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/6D7A266730928D9DFDFDACE36F73AC89E424E228.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/6D7A266730928D9DFDFDACE36F73AC89E424E228.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:00:e3:4e:8c:a9:c8:d5:c0:a9:74:4b:84:46:91:bb:6f:ee:5f:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa Validity Not Before: Jun 19 20:22:28 2024 GMT Not After : Jun 18 20:27:28 2025 GMT Subject: CN=C7E4744844183B474F7947F71948A7BF417C0C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:a9:5c:40:18:6c:47:62:36:cb:6e:d5:3d: 32:bc:c4:48:74:5a:7c:30:d2:f6:c2:c6:e0:b6:0c: 9f:44:97:b0:43:1a:37:21:29:df:97:ad:26:1a:c0: 7c:cd:61:76:83:bc:00:2b:23:87:97:87:1f:8c:f5: b1:53:bd:a8:45:3d:33:7c:fe:c8:92:a7:27:64:69: 32:23:3b:d8:51:22:89:95:00:29:ae:c5:ee:62:3d: 78:ba:e4:a8:63:72:28:2b:76:7c:cb:d0:33:0a:4d: cc:23:64:3c:91:84:85:fa:a6:10:b4:79:52:d8:80: 1b:66:b0:7a:24:4b:53:52:5f:7b:e7:8c:19:81:14: c1:d2:11:a4:73:5c:36:c7:2c:06:ff:2d:d3:4d:94: 10:81:cf:ac:b3:61:1b:27:01:15:a8:6b:25:0b:4a: f9:8c:29:14:b5:41:5f:37:c6:72:cc:de:86:62:3f: c6:35:33:41:d4:78:fb:04:58:cd:28:ed:01:08:d9: 65:95:84:8a:9d:e5:33:6a:c2:44:23:d0:66:f3:28: f5:dc:3e:9b:68:82:cb:e0:53:f5:c3:e9:a9:3a:d0: 67:27:df:9d:59:f7:0c:48:5b:3c:d9:74:a2:7b:6c: 73:cf:91:44:3f:30:9f:8c:68:e1:91:2a:d4:33:8f: b9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E4:74:48:44:18:3B:47:4F:79:47:F7:19:48:A7:BF:41:7C:0C:31 X509v3 Authority Key Identifier: keyid:6D:7A:26:67:30:92:8D:9D:FD:FD:AC:E3:6F:73:AC:89:E4:24:E2:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/6D7A266730928D9DFDFDACE36F73AC89E424E228.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba68b40f65cfc17445f89b2192a57379d7f13be8fa.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/4/323630323a663936643a3a2f34302d313238203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f96d::/40 Signature Algorithm: sha256WithRSAEncryption 2e:1d:fe:7d:e5:38:66:bd:9a:b2:95:d9:fe:15:5c:e7:77:80: dc:92:48:89:b6:d9:df:36:41:b3:14:df:0b:61:59:3b:c5:4c: ea:0f:7e:c2:8b:30:49:61:bc:70:57:c4:86:d3:a8:3a:f3:30: a7:59:e1:24:99:ca:b0:db:7f:6c:8e:cc:3e:d5:ac:33:ef:c5: 5a:fd:d5:ad:b2:42:53:23:08:37:44:ae:0b:fd:ea:7c:58:9f: 06:86:84:ef:59:59:a0:54:b7:eb:8a:36:50:86:22:56:90:00: 4e:b2:36:a4:6e:f4:49:a6:5f:4c:75:5c:2c:88:07:b2:79:c0: db:96:e0:a0:59:25:86:5f:21:5e:5d:49:bc:82:eb:89:c4:9c: ba:73:47:e2:3f:99:92:b9:19:08:01:45:1c:fd:33:75:b5:1a: 83:fc:d4:8f:54:21:da:bf:2c:18:77:68:82:26:63:d7:7f:c6: fe:ca:33:28:3e:14:c2:6a:d0:4d:27:db:12:59:3f:da:63:c3: 5e:69:9c:0e:4e:72:c8:64:a6:ed:ce:87:b0:d5:b0:84:a6:9b: d9:b2:6d:3f:69:69:4f:59:5a:37:39:28:ad:ca:7f:68:4f:1f: 59:54:e4:79:d7:83:f5:7c:7b:7f:91:e0:03:a5:b0:73:87:6b: 59:00:ef:3b -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUPADjToypyNXAqXRLhEaRu2/uX4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZjQ0YzgyZGFiYTY4YjQwZjY1Y2ZjMTc0NDVmODliMjE5 MmE1NzM3OWQ3ZjEzYmU4ZmEwHhcNMjQwNjE5MjAyMjI4WhcNMjUwNjE4MjAyNzI4 WjAzMTEwLwYDVQQDEyhDN0U0NzQ0ODQ0MTgzQjQ3NEY3OTQ3RjcxOTQ4QTdCRjQx N0MwQzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX6pXEAYbEdi Nstu1T0yvMRIdFp8MNL2wsbgtgyfRJewQxo3ISnfl60mGsB8zWF2g7wAKyOHl4cf jPWxU72oRT0zfP7IkqcnZGkyIzvYUSKJlQAprsXuYj14uuSoY3IoK3Z8y9AzCk3M I2Q8kYSF+qYQtHlS2IAbZrB6JEtTUl9754wZgRTB0hGkc1w2xywG/y3TTZQQgc+s s2EbJwEVqGslC0r5jCkUtUFfN8ZyzN6GYj/GNTNB1Hj7BFjNKO0BCNlllYSKneUz asJEI9Bm8yj13D6baILL4FP1w+mpOtBnJ9+dWfcMSFs82XSie2xzz5FEPzCfjGjh kSrUM4+54QIDAQABo4ICzzCCAsswHQYDVR0OBBYEFMfkdEhEGDtHT3lH9xlIp79B fAwxMB8GA1UdIwQYMBaAFG16Jmcwko2d/f2s429zrInkJOIoMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2Mx LTI3NjU0M2EyNWM3ZC80LzZEN0EyNjY3MzA5MjhEOURGREZEQUNFMzZGNzNBQzg5 RTQyNEUyMjguY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC8wMmM3NzA2Yi0zYmFmLTQyY2ItYmRmNy03 ODJiMDM2MjUyYjMvZjQ0YzgyZGFiYTY4YjQwZjY1Y2ZjMTc0NDVmODliMjE5MmE1 NzM3OWQ3ZjEzYmU4ZmEuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzMyNTNkOTczLWQ1YmYtNDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC80LzMyMzYzMDMy M2E2NjM5MzY2NDNhM2EyZjM0MzAyZDMxMzIzODIwM2QzZTIwMzQzNzMyMzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC+W0AMA0GCSqGSIb3DQEBCwUAA4IBAQAuHf595ThmvZqyldn+ FVznd4DckkiJttnfNkGzFN8LYVk7xUzqD37CizBJYbxwV8SG06g68zCnWeEkmcqw 239sjsw+1awz78Va/dWtskJTIwg3RK4L/ep8WJ8GhoTvWVmgVLfrijZQhiJWkABO sjakbvRJpl9MdVwsiAeyecDbluCgWSWGXyFeXUm8guuJxJy6c0fiP5mSuRkIAUUc /TN1tRqD/NSPVCHavywYd2iCJmPXf8b+yjMoPhTCatBNJ9sSWT/aY8NeaZwOTnLI ZKbtzoew1bCEppvZsm0/aWlPWVo3OSityn9oTx9ZVOR514P1fHt/keADpbBzh2tZ AO87 -----END CERTIFICATE-----Generated at Thu Sep 19 17:01:32 2024 by rpki-client on console-ams.rpki-client.org