$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a34303a3a2f34342d3434203d3e203135333533.roa File: 323630323a666131313a34303a3a2f34342d3434203d3e203135333533.roa (raw, json) Hash identifier: eIBilJQVaFMnF3YH1+bXqBPXe0D/xPHHmMBxzWqKBjk= Subject key identifier: 07:B2:17:ED:94:36:00:C3:F5:E3:A0:0B:D1:C9:BA:C5:70:AA:54:88 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 401841560110D4D50C9734A679F3563F75DA40C8 Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a34303a3a2f34342d3434203d3e203135333533.roa Signing time: Fri 18 Oct 2024 23:56:21 +0000 ROA not before: Fri 18 Oct 2024 23:51:21 +0000 ROA not after: Fri 17 Oct 2025 23:56:21 +0000 asID: 15353 IP address blocks: 2602:fa11:40::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 10:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:18:41:56:01:10:d4:d5:0c:97:34:a6:79:f3:56:3f:75:da:40:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Oct 18 23:51:21 2024 GMT Not After : Oct 17 23:56:21 2025 GMT Subject: CN=07B217ED943600C3F5E3A00BD1C9BAC570AA5488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b7:22:4a:71:ed:f2:86:ff:aa:bf:38:5e:81: d9:55:98:56:0b:15:26:23:45:db:fd:d7:a4:54:01: 0d:f0:9b:4c:4f:bf:cf:07:22:bd:e6:8d:d1:c8:1e: 8e:29:3f:58:29:b6:3d:9d:36:ff:9a:3c:d7:f6:14: d9:2d:de:8c:0e:3c:46:4a:f4:9a:cf:49:b3:04:e9: db:79:10:f2:84:e7:dc:48:02:25:00:4f:62:37:35: 61:54:62:3b:26:1f:f7:79:ec:fc:5d:84:65:67:02: bc:f1:ff:90:5a:28:bc:42:05:bf:7e:36:6d:2a:9f: 56:89:c6:b4:6a:ae:94:08:cb:d3:e6:d4:eb:73:4e: c5:b2:61:bc:91:bb:69:fa:4f:8b:d2:46:c2:a4:04: 95:b0:98:39:35:ef:4b:8b:86:b0:d2:20:22:ac:17: 30:19:95:29:17:f0:d0:ff:b6:a3:2c:8b:1c:af:8f: df:11:10:e8:56:8b:57:72:1e:36:d3:53:52:58:1d: fd:78:87:fb:f4:15:bc:85:d0:c8:5f:ab:f2:ef:97: 39:8d:9f:4c:8d:06:2a:c0:f4:a7:49:73:cb:d5:b6: 12:ac:57:d9:3e:7d:c1:2d:1c:05:fe:3e:19:c1:45: ab:9b:b7:5b:b2:82:b4:65:e2:32:4c:5c:88:d0:08: 85:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B2:17:ED:94:36:00:C3:F5:E3:A0:0B:D1:C9:BA:C5:70:AA:54:88 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a34303a3a2f34342d3434203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:fa11:40::/44 Signature Algorithm: sha256WithRSAEncryption 6f:2c:cf:80:5c:55:57:25:54:ea:61:b5:3b:55:2f:1a:02:9c: 86:59:50:14:5a:36:62:69:b9:48:1e:94:bf:8c:4e:f8:4f:ea: 7d:c3:75:6e:9a:e9:1b:81:e0:f9:7c:85:a2:2b:70:c2:ca:4e: 14:98:d1:0c:9b:e7:e6:eb:1e:07:12:8a:48:09:cf:e5:76:70: 11:66:6b:32:51:7b:c8:07:35:aa:a4:bf:30:ab:e5:f8:ea:1d: 0a:7e:e7:90:cf:c8:a1:09:a6:27:e6:6c:2a:ab:61:c8:6b:0e: 97:03:70:1e:33:75:07:ef:f9:f0:46:87:54:37:62:25:dc:85: 5d:39:2a:f4:45:99:41:1c:d1:8d:0d:be:ad:7a:7f:9e:f6:db: 7c:65:02:ca:f3:92:2a:9f:b8:3b:78:65:ec:9b:80:0a:18:02: 7a:94:a9:e0:c7:b3:ea:ae:b6:00:14:6b:aa:0c:15:44:ce:a9: 64:97:6b:45:73:55:dc:40:66:86:c5:83:03:7d:9b:cf:fb:50: 73:98:de:ae:e1:51:8a:dd:f4:73:ea:c8:70:a6:67:6e:8b:61: dc:32:4b:b3:60:bf:5d:f3:47:b5:af:e0:63:a3:4c:f3:27:cf: c8:75:9d:2c:ee:7e:bd:84:83:b7:10:6c:d6:1a:13:49:45:8d: c9:23:60:fa -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUQBhBVgEQ1NUMlzSmefNWP3XaQMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjQxMDE4MjM1MTIxWhcNMjUxMDE3MjM1NjIx WjAzMTEwLwYDVQQDEygwN0IyMTdFRDk0MzYwMEMzRjVFM0EwMEJEMUM5QkFDNTcw QUE1NDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLciSnHt8ob/ qr84XoHZVZhWCxUmI0Xb/dekVAEN8JtMT7/PByK95o3RyB6OKT9YKbY9nTb/mjzX 9hTZLd6MDjxGSvSaz0mzBOnbeRDyhOfcSAIlAE9iNzVhVGI7Jh/3eez8XYRlZwK8 8f+QWii8QgW/fjZtKp9Wica0aq6UCMvT5tTrc07FsmG8kbtp+k+L0kbCpASVsJg5 Ne9Li4aw0iAirBcwGZUpF/DQ/7ajLIscr4/fERDoVotXch4201NSWB39eIf79BW8 hdDIX6vy75c5jZ9MjQYqwPSnSXPL1bYSrFfZPn3BLRwF/j4ZwUWrm7dbsoK0ZeIy TFyI0AiFGQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFAeyF+2UNgDD9eOgC9HJusVw qlSIMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMyMzYzMDMy M2E2NjYxMzEzMTNhMzQzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzUzMzM1 MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQmAvoRAEAwDQYJKoZIhvcNAQELBQADggEBAG8sz4BcVVcl VOphtTtVLxoCnIZZUBRaNmJpuUgelL+MTvhP6n3DdW6a6RuB4Pl8haIrcMLKThSY 0Qyb5+brHgcSikgJz+V2cBFmazJRe8gHNaqkvzCr5fjqHQp+55DPyKEJpifmbCqr YchrDpcDcB4zdQfv+fBGh1Q3YiXchV05KvRFmUEc0Y0Nvq16f57223xlAsrzkiqf uDt4ZeybgAoYAnqUqeDHs+qutgAUa6oMFUTOqWSXa0VzVdxAZobFgwN9m8/7UHOY 3q7hUYrd9HPqyHCmZ26LYdwyS7Ngv13zR7Wv4GOjTPMnz8h1nSzufr2Eg7cQbNYa E0lFjckjYPo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:27 2025 by rpki-client