$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203132383339.roa File: 323630323a663966613a3a2f33362d3438203d3e203132383339.roa (raw, json) Hash identifier: oP/+2n5Cjna0fXd3Uue3NmDpz4g1Sc9gKwpKaACd5fA= Subject key identifier: E4:C1:D0:0E:4A:2B:37:34:B0:13:1B:28:92:07:2C:35:42:05:23:C6 Certificate issuer: /CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Certificate serial: 2A90C24F0B5A8C9C8F2F24D30B2F21B4B5C7BCA2 Authority key identifier: 77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203132383339.roa Signing time: Sat 07 Sep 2024 17:57:21 +0000 ROA not before: Sat 07 Sep 2024 17:52:21 +0000 ROA not after: Sat 06 Sep 2025 17:57:21 +0000 asID: 12839 IP address blocks: 2602:f9fa::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:90:c2:4f:0b:5a:8c:9c:8f:2f:24:d3:0b:2f:21:b4:b5:c7:bc:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Validity Not Before: Sep 7 17:52:21 2024 GMT Not After : Sep 6 17:57:21 2025 GMT Subject: CN=E4C1D00E4A2B3734B0131B2892072C35420523C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:de:fd:0a:3e:7c:9d:8f:37:76:cb:57:32:cd: f9:b4:be:4a:d9:af:3a:77:74:bc:0d:70:17:88:2a: a7:c3:73:a8:71:c8:79:13:e9:64:75:10:3c:f2:4d: bc:2c:a1:cf:97:11:a9:2b:d1:ac:b5:2d:07:86:6a: 3c:6a:43:6c:70:cf:2d:e2:dc:47:8b:62:3c:c1:85: 9b:4c:b8:82:d0:82:43:dc:5e:42:ef:0d:82:3e:5e: 16:e2:d0:d6:2d:47:e0:86:86:44:de:8b:21:1b:97: 8e:60:37:c4:c4:57:f9:72:d2:b8:9b:71:a0:9e:fe: f8:29:da:d9:a6:20:34:0b:7d:19:48:f4:4d:fd:df: 11:45:d2:31:1a:f9:21:13:f0:f8:6e:b2:67:10:17: ef:e8:6e:9b:9d:18:4d:3f:bd:35:35:46:06:75:73: d7:41:6a:43:d6:e3:0d:5a:0f:7b:7e:dd:3c:c9:4c: ce:be:f6:fe:8a:de:e7:8f:e5:b0:31:c0:88:3c:dd: 20:04:3c:a8:c1:6c:07:80:32:d3:cc:47:39:e8:bf: e4:aa:e5:c4:06:3b:b0:73:bb:07:d9:b3:b5:ab:1a: 29:28:72:c0:74:1b:0d:64:1f:2e:78:e4:13:8b:5a: 99:55:a6:3a:75:f9:47:3b:41:8c:19:76:15:ed:95: 37:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C1:D0:0E:4A:2B:37:34:B0:13:1B:28:92:07:2C:35:42:05:23:C6 X509v3 Authority Key Identifier: keyid:77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203132383339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f9fa::/36 Signature Algorithm: sha256WithRSAEncryption 21:9a:81:19:5c:81:b6:43:e2:3f:14:f4:78:2c:e9:3e:5a:61: db:34:c9:d0:9c:62:6e:90:7f:6c:a1:2f:fb:e9:66:f5:bd:d6: fe:4e:98:64:3c:21:7e:4a:37:a7:2e:d8:4f:89:34:a6:91:25: 55:eb:19:31:cf:cf:0c:14:ad:fd:48:bd:12:6b:66:0d:1d:50: 74:c3:75:15:53:1e:36:5f:7f:c6:21:e4:b4:64:f2:c3:b6:c5: 1e:fd:34:35:84:c0:65:7e:a6:50:8f:e1:65:8f:09:26:cc:0e: c3:b0:ed:5b:0d:a6:15:8e:cf:f1:f2:83:c2:6a:56:9b:e5:e5: a5:1a:aa:ba:09:72:b2:b7:61:70:60:1a:7c:72:44:a4:2e:9e: 48:ba:c4:51:2b:b4:95:d8:e6:a1:de:09:20:51:18:d0:88:c0: ff:62:c3:cc:71:e2:18:4a:39:b7:b4:89:0b:7c:d3:28:11:05: ff:ff:fc:46:ae:74:c2:df:89:8c:2c:8b:ad:7d:7b:29:e1:c0: d3:7f:3f:6b:a8:71:86:1e:bf:d1:6c:49:fb:d5:b5:30:0f:8f: 07:13:41:fa:7c:22:fc:5e:2b:cd:d5:59:a2:23:84:b5:04:df: 3f:c2:6f:b4:ad:f3:9b:b3:7b:c0:91:2a:18:63:03:03:52:01: 19:3e:3d:8d -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUKpDCTwtajJyPLyTTCy8htLXHvKIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5 MGQ0NjIwN2Y0NzQ1MWNmNzIwHhcNMjQwOTA3MTc1MjIxWhcNMjUwOTA2MTc1NzIx WjAzMTEwLwYDVQQDEyhFNEMxRDAwRTRBMkIzNzM0QjAxMzFCMjg5MjA3MkMzNTQy MDUyM0M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8d79Cj58nY83 dstXMs35tL5K2a86d3S8DXAXiCqnw3Oocch5E+lkdRA88k28LKHPlxGpK9GstS0H hmo8akNscM8t4txHi2I8wYWbTLiC0IJD3F5C7w2CPl4W4tDWLUfghoZE3oshG5eO YDfExFf5ctK4m3Ggnv74KdrZpiA0C30ZSPRN/d8RRdIxGvkhE/D4brJnEBfv6G6b nRhNP701NUYGdXPXQWpD1uMNWg97ft08yUzOvvb+it7nj+WwMcCIPN0gBDyowWwH gDLTzEc56L/kquXEBjuwc7sH2bO1qxopKHLAdBsNZB8ueOQTi1qZVaY6dflHO0GM GXYV7ZU3bwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFOTB0A5KKzc0sBMbKJIHLDVC BSPGMB8GA1UdIwQYMBaAFHcCK/GHqSpq5Bg4EIuK97O68bKyMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZj LWZjNTMwNjZiZWI4OC8yLzc3MDIyQkYxODdBOTJBNkFFNDE4MzgxMDhCOEFGN0Iz QkFGMUIyQjIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5MGQ0 NjIwN2Y0NzQ1MWNmNzIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZjLWZjNTMwNjZiZWI4OC8yLzMyMzYzMDMy M2E2NjM5NjY2MTNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMxMzIzODMzMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQmAvn6ADANBgkqhkiG9w0BAQsFAAOCAQEAIZqBGVyBtkPiPxT0eCzp Plph2zTJ0JxibpB/bKEv++lm9b3W/k6YZDwhfko3py7YT4k0ppElVesZMc/PDBSt /Ui9EmtmDR1QdMN1FVMeNl9/xiHktGTyw7bFHv00NYTAZX6mUI/hZY8JJswOw7Dt Ww2mFY7P8fKDwmpWm+XlpRqquglysrdhcGAafHJEpC6eSLrEUSu0ldjmod4JIFEY 0IjA/2LDzHHiGEo5t7SJC3zTKBEF///8Rq50wt+JjCyLrX17KeHA038/a6hxhh6/ 0WxJ+9W1MA+PBxNB+nwi/F4rzdVZoiOEtQTfP8JvtK3zm7N7wJEqGGMDA1IBGT49 jQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:15 2024 by rpki-client on console-ams.rpki-client.org