$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a32303a3a2f34342d3434203d3e203135333533.roa File: 323630323a666131313a32303a3a2f34342d3434203d3e203135333533.roa (raw, json) Hash identifier: T9aT+tsfq+sEJDGs1W90Gr06TQ3wfB2bhU0N59MzGSU= Subject key identifier: FA:E9:C0:93:8F:40:0C:09:3E:B2:1C:ED:AF:6E:A6:9B:43:5D:DF:F0 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 6DA1666802ACBDBF8D6AA2065067A95A0586CBC8 Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a32303a3a2f34342d3434203d3e203135333533.roa Signing time: Fri 18 Oct 2024 22:56:19 +0000 ROA not before: Fri 18 Oct 2024 22:51:19 +0000 ROA not after: Fri 17 Oct 2025 22:56:19 +0000 asID: 15353 IP address blocks: 2602:fa11:20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 10:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a1:66:68:02:ac:bd:bf:8d:6a:a2:06:50:67:a9:5a:05:86:cb:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Oct 18 22:51:19 2024 GMT Not After : Oct 17 22:56:19 2025 GMT Subject: CN=FAE9C0938F400C093EB21CEDAF6EA69B435DDFF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:40:08:ac:c1:6d:84:c4:4d:2a:75:a4:f7:b0: cb:54:48:54:cb:32:9f:cd:d4:e0:3e:e5:fe:8c:f4: fb:b7:95:a0:bc:12:3a:7d:ca:d3:7a:0d:fc:bd:b0: 5c:b8:02:32:8c:09:ad:2e:6a:07:31:5a:20:8a:3c: 62:98:92:40:1b:01:78:f5:5d:95:d1:3b:ff:f6:71: 3a:af:42:9a:23:dd:ff:57:54:8c:ec:10:fe:80:a4: 03:3e:1c:b1:84:4b:4c:34:50:6b:a0:f2:2a:eb:bc: 2f:d8:55:cb:15:bc:90:16:21:2b:4e:18:49:b2:b8: 54:72:7f:fa:3a:82:66:1e:07:12:11:28:64:2f:59: 94:34:db:6d:16:85:e2:21:5d:a1:eb:34:6d:e6:c9: 4c:04:58:7d:11:94:7c:5f:fd:0a:6b:11:d6:e3:89: b1:31:2f:c9:f3:08:3f:52:00:4f:55:fd:02:a4:37: 26:95:87:05:8e:71:cd:8c:41:77:7f:02:98:f9:ef: 91:6c:ab:34:8e:1d:71:9f:5e:59:15:ad:31:ce:7e: 0f:cc:b9:44:03:b9:7a:06:13:1f:7c:ba:59:6b:c3: c7:a8:f4:00:13:58:29:93:d6:20:d6:24:51:bb:62: af:ec:41:3a:af:08:c7:b2:b2:14:97:60:bd:6b:be: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E9:C0:93:8F:40:0C:09:3E:B2:1C:ED:AF:6E:A6:9B:43:5D:DF:F0 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a32303a3a2f34342d3434203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:fa11:20::/44 Signature Algorithm: sha256WithRSAEncryption 0d:32:27:b0:5c:34:c4:e3:88:49:75:95:21:69:d3:a8:c7:56: c0:8d:47:86:e0:ac:f5:24:ff:4e:84:c5:bf:ae:a4:f7:08:d3: 48:ba:11:36:6f:3e:d1:ec:a7:fa:f8:43:32:0a:c2:47:c0:48: 0b:80:37:9b:8f:3d:38:cb:39:69:dc:65:e9:17:00:e4:31:b4: 25:51:74:a1:37:7b:1b:49:5b:73:e9:fc:47:64:73:05:05:ae: 12:69:76:b5:d2:0a:4a:7d:50:f9:8e:40:bc:60:08:6a:37:66: 81:bd:bf:45:3b:2a:98:a9:f9:a1:95:51:01:bd:ba:ea:ce:a4: fa:e4:69:10:51:b5:8e:30:8a:33:12:24:6a:d0:0a:02:5f:4d: b8:27:22:2e:61:1a:6c:6a:7b:e4:81:59:33:2b:07:52:51:48: f5:45:71:b5:f1:b9:65:16:22:c7:c2:4e:5c:c6:e0:14:ea:a6: 86:bd:d9:33:bd:a8:1a:bb:fa:43:20:98:3f:4e:80:29:47:84: b6:55:2a:50:27:5c:2b:06:d1:57:b7:a7:73:4e:b4:6f:fd:e6: 13:25:20:5f:c8:fc:c1:1b:c6:36:a2:b7:42:de:5e:b0:39:33: 79:f6:f1:dd:da:58:d3:05:fa:d3:0d:2c:34:1c:50:35:80:b8: 17:a2:79:3a -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUbaFmaAKsvb+NaqIGUGepWgWGy8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjQxMDE4MjI1MTE5WhcNMjUxMDE3MjI1NjE5 WjAzMTEwLwYDVQQDEyhGQUU5QzA5MzhGNDAwQzA5M0VCMjFDRURBRjZFQTY5QjQz NURERkYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUAIrMFthMRN KnWk97DLVEhUyzKfzdTgPuX+jPT7t5WgvBI6fcrTeg38vbBcuAIyjAmtLmoHMVog ijximJJAGwF49V2V0Tv/9nE6r0KaI93/V1SM7BD+gKQDPhyxhEtMNFBroPIq67wv 2FXLFbyQFiErThhJsrhUcn/6OoJmHgcSEShkL1mUNNttFoXiIV2h6zRt5slMBFh9 EZR8X/0KaxHW44mxMS/J8wg/UgBPVf0CpDcmlYcFjnHNjEF3fwKY+e+RbKs0jh1x n15ZFa0xzn4PzLlEA7l6BhMffLpZa8PHqPQAE1gpk9Yg1iRRu2Kv7EE6rwjHsrIU l2C9a74dCQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFPrpwJOPQAwJPrIc7a9upptD Xd/wMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMyMzYzMDMy M2E2NjYxMzEzMTNhMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzUzMzM1 MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQmAvoRACAwDQYJKoZIhvcNAQELBQADggEBAA0yJ7BcNMTj iEl1lSFp06jHVsCNR4bgrPUk/06Exb+upPcI00i6ETZvPtHsp/r4QzIKwkfASAuA N5uPPTjLOWncZekXAOQxtCVRdKE3extJW3Pp/EdkcwUFrhJpdrXSCkp9UPmOQLxg CGo3ZoG9v0U7Kpip+aGVUQG9uurOpPrkaRBRtY4wijMSJGrQCgJfTbgnIi5hGmxq e+SBWTMrB1JRSPVFcbXxuWUWIsfCTlzG4BTqpoa92TO9qBq7+kMgmD9OgClHhLZV KlAnXCsG0Ve3p3NOtG/95hMlIF/I/MEbxjait0LeXrA5M3n28d3aWNMF+tMNLDQc UDWAuBeieTo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:47 2025 by rpki-client