$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203630383538.roa File: 323630323a663966613a3a2f33362d3438203d3e203630383538.roa (raw, json) Hash identifier: 97vZ9tjE/B2cFID5TaKGht939nhzUnF3N3C8Tt+dRqI= Subject key identifier: 92:78:05:3C:CA:43:C9:B7:A1:22:B6:A6:8F:D1:6B:22:01:F2:6B:41 Certificate issuer: /CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Certificate serial: 7D131489F41E09FBB67089E2C676F7F56BF1EAFC Authority key identifier: 77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203630383538.roa Signing time: Sat 07 Sep 2024 17:57:22 +0000 ROA not before: Sat 07 Sep 2024 17:52:22 +0000 ROA not after: Sat 06 Sep 2025 17:57:22 +0000 asID: 60858 IP address blocks: 2602:f9fa::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 15:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:13:14:89:f4:1e:09:fb:b6:70:89:e2:c6:76:f7:f5:6b:f1:ea:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Validity Not Before: Sep 7 17:52:22 2024 GMT Not After : Sep 6 17:57:22 2025 GMT Subject: CN=9278053CCA43C9B7A122B6A68FD16B2201F26B41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f6:80:59:01:36:e0:69:bf:89:1c:30:ff:cc: e9:9b:5e:e8:0f:21:5d:ac:b1:38:96:0a:83:c3:35: f0:ce:6a:72:f9:63:2d:ce:08:0b:b3:f7:8a:6c:6e: c9:df:d6:ac:ef:42:50:4c:55:c9:23:ea:2b:2d:20: c4:17:34:57:c7:d1:04:f4:f7:51:a0:89:ff:89:32: d2:48:d0:2f:e5:a5:99:de:39:4f:e1:29:9d:02:0b: fd:6e:3e:db:f7:e7:46:95:2d:05:a2:9f:ae:8a:32: c7:1e:3e:0d:ec:65:7d:78:ff:1b:a4:5b:60:a7:f0: d3:7f:35:98:c3:bc:d0:ef:fd:68:9f:82:f9:a5:d8: a0:27:91:02:a6:c7:02:e7:78:16:8a:e1:24:d8:da: d4:2f:c7:b5:05:b1:17:c8:39:cd:59:33:b1:1c:98: ba:6f:2b:06:19:a0:37:8d:5c:d0:0f:b8:5c:a1:0e: 5b:78:e2:65:bb:fc:2e:6e:a2:f8:ae:c2:3c:9c:b3: e4:65:fd:f3:fe:7f:b0:27:b9:02:fc:85:3a:98:60: b8:4d:29:3d:f7:1c:05:03:32:f5:4b:56:38:83:2a: 93:50:1e:06:54:e3:c0:15:86:d1:1a:d9:78:3f:ce: 51:cf:06:59:3f:f7:eb:a8:9d:d7:0c:1a:42:88:c4: 38:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:78:05:3C:CA:43:C9:B7:A1:22:B6:A6:8F:D1:6B:22:01:F2:6B:41 X509v3 Authority Key Identifier: keyid:77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/323630323a663966613a3a2f33362d3438203d3e203630383538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f9fa::/36 Signature Algorithm: sha256WithRSAEncryption 7d:b3:7f:07:8a:f7:86:3d:56:b2:78:df:85:5a:fd:ce:3f:61: 52:aa:cb:5a:33:44:b5:7a:d3:76:74:a4:9a:b3:5d:e6:df:13: 52:db:d7:e1:7a:26:f6:fd:73:8f:b4:13:e3:e7:10:9c:79:71: 33:43:c7:4e:51:90:86:69:f9:e8:9f:33:fb:b1:9d:a1:36:ea: 26:d4:27:fb:fd:cf:0a:52:df:d0:cf:14:c0:72:83:e0:f6:04: c6:86:1e:92:60:8b:1d:a9:39:e9:96:0c:f5:2f:07:1d:8a:bb: bc:04:4a:a9:7a:48:84:f0:45:81:ca:b0:0c:26:36:41:c7:59: 2f:18:a6:09:81:90:04:92:df:e7:ed:38:6a:e0:4b:0c:6a:96: f9:ca:44:2b:9e:cd:8a:d4:9a:4c:c4:ee:ef:ff:d6:ab:3c:47: 63:b7:a4:14:74:13:0f:de:6a:91:be:e5:30:b0:05:e8:ed:72: 6c:72:7f:9e:c5:dc:6c:01:ca:6c:8c:54:0f:40:ba:e8:5a:94: ec:11:b3:fe:84:fc:ae:d5:f0:70:38:6f:02:a5:0d:c1:2c:1e: 9b:d8:28:d1:cf:10:f9:de:09:a4:f4:17:c6:c9:fd:0b:a7:f6: d6:5b:e1:38:0c:2e:eb:34:bc:c1:5c:31:c8:ae:dc:e3:35:50: fb:b5:5c:d9 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUfRMUifQeCfu2cInixnb39Wvx6vwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5 MGQ0NjIwN2Y0NzQ1MWNmNzIwHhcNMjQwOTA3MTc1MjIyWhcNMjUwOTA2MTc1NzIy WjAzMTEwLwYDVQQDEyg5Mjc4MDUzQ0NBNDNDOUI3QTEyMkI2QTY4RkQxNkIyMjAx RjI2QjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/aAWQE24Gm/ iRww/8zpm17oDyFdrLE4lgqDwzXwzmpy+WMtzggLs/eKbG7J39as70JQTFXJI+or LSDEFzRXx9EE9PdRoIn/iTLSSNAv5aWZ3jlP4SmdAgv9bj7b9+dGlS0Fop+uijLH Hj4N7GV9eP8bpFtgp/DTfzWYw7zQ7/1on4L5pdigJ5ECpscC53gWiuEk2NrUL8e1 BbEXyDnNWTOxHJi6bysGGaA3jVzQD7hcoQ5beOJlu/wubqL4rsI8nLPkZf3z/n+w J7kC/IU6mGC4TSk99xwFAzL1S1Y4gyqTUB4GVOPAFYbRGtl4P85RzwZZP/frqJ3X DBpCiMQ4BwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFJJ4BTzKQ8m3oSK2po/RayIB 8mtBMB8GA1UdIwQYMBaAFHcCK/GHqSpq5Bg4EIuK97O68bKyMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZj LWZjNTMwNjZiZWI4OC8yLzc3MDIyQkYxODdBOTJBNkFFNDE4MzgxMDhCOEFGN0Iz QkFGMUIyQjIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5MGQ0 NjIwN2Y0NzQ1MWNmNzIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZjLWZjNTMwNjZiZWI4OC8yLzMyMzYzMDMy M2E2NjM5NjY2MTNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDM2MzAzODM1Mzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQmAvn6ADANBgkqhkiG9w0BAQsFAAOCAQEAfbN/B4r3hj1WsnjfhVr9 zj9hUqrLWjNEtXrTdnSkmrNd5t8TUtvX4Xom9v1zj7QT4+cQnHlxM0PHTlGQhmn5 6J8z+7GdoTbqJtQn+/3PClLf0M8UwHKD4PYExoYekmCLHak56ZYM9S8HHYq7vARK qXpIhPBFgcqwDCY2QcdZLximCYGQBJLf5+04auBLDGqW+cpEK57NitSaTMTu7//W qzxHY7ekFHQTD95qkb7lMLAF6O1ybHJ/nsXcbAHKbIxUD0C66FqU7BGz/oT8rtXw cDhvAqUNwSwem9go0c8Q+d4JpPQXxsn9C6f21lvhOAwu6zS8wVwxyK7c4zVQ+7Vc 2Q== -----END CERTIFICATE-----Generated at Sun Feb 16 22:02:33 2025 by rpki-client