$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/323630323a663939653a3a2f33362d3336203d3e203233313235.roa File: 323630323a663939653a3a2f33362d3336203d3e203233313235.roa (raw, json) Hash identifier: MUrrdeivup2plAmve+o0OoigEU3cn15gDFCIWky2K2w= Subject key identifier: 15:1F:61:7E:40:9A:AC:A2:F9:7E:F0:91:7D:17:8F:1E:37:39:37:CA Certificate issuer: /CN=1a1feb7f05bbd87f010f191667fc5b223c83632b9bbca33e39 Certificate serial: 72AAA4BB8D3EF1BC12BF2CA32C8CF42FCECC42F1 Authority key identifier: 10:FA:AD:7B:D8:08:78:1E:33:0C:17:FD:6D:0A:AB:1D:F1:C6:9E:D4 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d/1a1feb7f05bbd87f010f191667fc5b223c83632b9bbca33e39.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/323630323a663939653a3a2f33362d3336203d3e203233313235.roa Signing time: Wed 18 Dec 2024 10:58:12 +0000 ROA not before: Wed 18 Dec 2024 10:53:12 +0000 ROA not after: Wed 17 Dec 2025 10:58:12 +0000 asID: 23125 IP address blocks: 2602:f99e::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/10FAAD7BD808781E330C17FD6D0AAB1DF1C69ED4.crl rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/10FAAD7BD808781E330C17FD6D0AAB1DF1C69ED4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d/1a1feb7f05bbd87f010f191667fc5b223c83632b9bbca33e39.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d/4b92cbc5-48e6-4e59-b9e4-d0055609895d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d/4b92cbc5-48e6-4e59-b9e4-d0055609895d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:aa:a4:bb:8d:3e:f1:bc:12:bf:2c:a3:2c:8c:f4:2f:ce:cc:42:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a1feb7f05bbd87f010f191667fc5b223c83632b9bbca33e39 Validity Not Before: Dec 18 10:53:12 2024 GMT Not After : Dec 17 10:58:12 2025 GMT Subject: CN=151F617E409AACA2F97EF0917D178F1E373937CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:71:0c:d6:1c:00:29:55:47:51:49:e7:b6:6b: ac:77:89:75:fc:f4:68:f1:c4:5f:a6:b0:08:f5:95: 00:88:ce:f3:a7:90:4c:a3:8f:03:52:95:68:9a:b7: 4b:c2:e3:19:5d:d3:3a:52:7b:bc:b7:e4:b6:ed:9f: 2c:ad:46:40:25:72:75:08:61:08:47:14:72:a1:f7: 0c:91:b6:a1:ec:12:dc:09:7e:17:9c:fa:6e:ce:94: d0:4c:5c:99:67:c3:bb:10:be:d9:c0:f4:6b:1b:fb: 5c:c8:92:74:dd:37:f2:f5:04:fc:07:ac:89:01:76: ac:51:f4:aa:f8:85:56:85:37:8b:fa:ed:a2:ea:ea: fa:a4:75:13:32:a4:58:ba:21:5b:27:75:cf:ab:76: 94:db:70:da:6a:7b:15:25:99:6e:3d:1b:fd:d2:9a: c7:56:fe:51:30:35:82:7d:07:9a:bd:f3:4b:14:9b: b5:1f:5b:ed:bc:64:bc:10:fd:ef:f7:d4:5a:91:b9: ac:d8:a5:b2:e6:8f:96:6b:d7:36:d9:37:88:f7:3e: 2f:03:dc:59:fb:0b:d6:ec:c4:95:3d:08:df:ab:3d: 9e:67:d7:d4:7b:ac:3d:4a:da:aa:64:53:83:c8:07: b8:4c:17:2c:21:79:98:f1:f5:6b:e3:a7:19:14:4e: 07:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1F:61:7E:40:9A:AC:A2:F9:7E:F0:91:7D:17:8F:1E:37:39:37:CA X509v3 Authority Key Identifier: keyid:10:FA:AD:7B:D8:08:78:1E:33:0C:17:FD:6D:0A:AB:1D:F1:C6:9E:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/10FAAD7BD808781E330C17FD6D0AAB1DF1C69ED4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4b92cbc5-48e6-4e59-b9e4-d0055609895d/1a1feb7f05bbd87f010f191667fc5b223c83632b9bbca33e39.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3da4d8b4-a157-4634-ab18-3ef9d0982352/3/323630323a663939653a3a2f33362d3336203d3e203233313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f99e::/36 Signature Algorithm: sha256WithRSAEncryption 46:31:ae:08:73:6f:f4:3b:97:f4:f7:b4:d6:e5:67:89:8b:c8: f6:e0:62:ed:a6:ff:76:de:87:a9:0e:b4:c5:fb:43:0a:92:e1: 6f:9f:a6:63:0a:f4:4e:05:75:b4:73:5c:45:de:1d:7f:fd:db: f8:3a:cd:3d:00:5a:bd:0f:af:8b:e7:6d:1a:23:f1:25:cf:c7: e6:c3:65:26:0e:7d:4c:45:50:09:09:8b:3f:25:4d:82:b6:d1: 42:ad:e2:15:6b:ae:63:60:cc:19:7f:cd:cf:e9:f4:2a:f2:74: 05:4a:54:ee:90:60:8f:35:bd:d6:6b:de:2f:f2:02:52:45:c8: 00:3d:32:00:ee:d0:a7:41:c6:b8:7d:ca:6a:3a:85:8e:4d:8a: 5b:9e:7d:8b:fd:d9:81:58:62:b4:c7:40:37:6a:92:a8:a7:8a: d7:07:07:34:73:ad:7f:79:da:14:a3:fc:7a:d2:83:aa:cc:72: c1:f5:3d:b0:0f:60:1e:e3:cb:3a:ef:86:c1:18:12:a5:aa:98: ea:3b:17:00:2a:10:9b:ab:7c:2c:af:75:be:9b:b3:17:06:3a: 60:e1:45:e8:51:8f:8e:0f:0e:88:ba:11:5b:7f:28:31:82:0b: 47:ef:f1:a4:87:fc:97:73:ba:7e:21:04:39:99:18:76:66:b5: dc:59:f0:16 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUcqqku40+8bwSvyyjLIz0L87MQvEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWExZmViN2YwNWJiZDg3ZjAxMGYxOTE2NjdmYzViMjIz YzgzNjMyYjliYmNhMzNlMzkwHhcNMjQxMjE4MTA1MzEyWhcNMjUxMjE3MTA1ODEy WjAzMTEwLwYDVQQDEygxNTFGNjE3RTQwOUFBQ0EyRjk3RUYwOTE3RDE3OEYxRTM3 MzkzN0NBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHEM1hwAKVVH UUnntmusd4l1/PRo8cRfprAI9ZUAiM7zp5BMo48DUpVomrdLwuMZXdM6Unu8t+S2 7Z8srUZAJXJ1CGEIRxRyofcMkbah7BLcCX4XnPpuzpTQTFyZZ8O7EL7ZwPRrG/tc yJJ03Tfy9QT8B6yJAXasUfSq+IVWhTeL+u2i6ur6pHUTMqRYuiFbJ3XPq3aU23Da ansVJZluPRv90prHVv5RMDWCfQeavfNLFJu1H1vtvGS8EP3v99Rakbms2KWy5o+W a9c22TeI9z4vA9xZ+wvW7MSVPQjfqz2eZ9fUe6w9StqqZFODyAe4TBcsIXmY8fVr 46cZFE4HlwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFBUfYX5Amqyi+X7wkX0Xjx43 OTfKMB8GA1UdIwQYMBaAFBD6rXvYCHgeMwwX/W0Kqx3xxp7UMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4 LTNlZjlkMDk4MjM1Mi8zLzEwRkFBRDdCRDgwODc4MUUzMzBDMTdGRDZEMEFBQjFE RjFDNjlFRDQuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC80YjkyY2JjNS00OGU2LTRlNTktYjllNC1k MDA1NTYwOTg5NWQvMWExZmViN2YwNWJiZDg3ZjAxMGYxOTE2NjdmYzViMjIzYzgz NjMyYjliYmNhMzNlMzkuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNkYTRkOGI0LWExNTctNDYzNC1hYjE4LTNlZjlkMDk4MjM1Mi8zLzMyMzYzMDMy M2E2NjM5Mzk2NTNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMyMzMzMTMyMzUucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQmAvmeADANBgkqhkiG9w0BAQsFAAOCAQEARjGuCHNv9DuX9Pe01uVn iYvI9uBi7ab/dt6HqQ60xftDCpLhb5+mYwr0TgV1tHNcRd4df/3b+DrNPQBavQ+v i+dtGiPxJc/H5sNlJg59TEVQCQmLPyVNgrbRQq3iFWuuY2DMGX/Nz+n0KvJ0BUpU 7pBgjzW91mveL/ICUkXIAD0yAO7Qp0HGuH3KajqFjk2KW559i/3ZgVhitMdAN2qS qKeK1wcHNHOtf3naFKP8etKDqsxywfU9sA9gHuPLOu+GwRgSpaqY6jsXACoQm6t8 LK91vpuzFwY6YOFF6FGPjg8OiLoRW38oMYILR+/xpIf8l3O6fiEEOZkYdma13Fnw Fg== -----END CERTIFICATE-----Generated at Sat Apr 5 04:34:03 2025 by rpki-client