Route Origin Authorization 

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a36303a3a2f34382d3438203d3e203135333533.roa
File:                     323630323a666131313a36303a3a2f34382d3438203d3e203135333533.roa (raw, json)
Hash identifier:          FE8zOxX4dhWKo1FfLqZK8VoulVixW2Oj8fPVdjUfFQY=
Subject key identifier:   E0:C3:B1:04:4B:9A:1C:49:6D:83:40:92:7E:75:D6:9B:7A:D3:4B:E4
Certificate issuer:       /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
Certificate serial:       2976BCB135EEAC887BA6C35E516D47F70D306659
Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a36303a3a2f34382d3438203d3e203135333533.roa
Signing time:             Fri 22 Dec 2023 01:32:34 +0000
ROA not before:           Fri 22 Dec 2023 01:27:34 +0000
ROA not after:            Fri 20 Dec 2024 01:32:34 +0000
asID:                     15353
IP address blocks:        2602:fa11:60::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
                          rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
                          rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires:   Thu 27 Jun 2024 03:54:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            29:76:bc:b1:35:ee:ac:88:7b:a6:c3:5e:51:6d:47:f7:0d:30:66:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6
        Validity
            Not Before: Dec 22 01:27:34 2023 GMT
            Not After : Dec 20 01:32:34 2024 GMT
        Subject: CN=E0C3B1044B9A1C496D8340927E75D69B7AD34BE4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:ea:42:4b:88:03:3a:da:27:31:08:c9:66:9e:
                    6f:a7:21:df:e0:af:d4:d8:91:f7:9c:79:90:0f:0f:
                    39:12:08:b1:28:44:9a:25:59:96:96:9f:c9:6b:5f:
                    ca:82:c1:c2:92:ab:b8:e7:fa:3a:4a:be:6e:cc:2d:
                    63:bd:d8:38:06:53:72:a1:17:eb:1f:03:43:66:8d:
                    97:1e:2c:b1:82:cf:cf:a8:4e:fb:70:d3:3c:1a:eb:
                    c8:c6:e9:0d:96:8e:5e:93:59:42:bf:41:91:a7:72:
                    b6:20:22:aa:67:e3:10:79:eb:0e:a1:7d:f3:eb:cd:
                    56:0c:b8:78:02:07:29:38:53:d0:b8:23:38:45:69:
                    42:12:7c:a4:75:75:cb:47:0b:4a:c7:a9:d7:dc:13:
                    04:8c:fe:c7:c0:d0:fe:4d:d3:30:d8:2b:04:8c:05:
                    ef:a1:b5:e0:94:51:ad:d5:8d:ef:02:dd:e4:0b:85:
                    be:09:5e:9c:f3:1f:4c:ac:60:fa:df:bf:bb:a0:18:
                    cb:fe:13:ec:1a:c2:43:0a:67:e0:4b:d7:8f:e8:39:
                    f7:bb:4b:c0:a6:f2:53:16:2c:b7:d7:4f:80:3c:b4:
                    be:f2:f7:c0:b4:13:ca:82:ec:4c:a8:df:8f:4b:e7:
                    7a:eb:f3:18:41:9e:c2:2b:07:42:08:96:fc:cc:11:
                    b9:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:C3:B1:04:4B:9A:1C:49:6D:83:40:92:7E:75:D6:9B:7A:D3:4B:E4
            X509v3 Authority Key Identifier:
                keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a36303a3a2f34382d3438203d3e203135333533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2602:fa11:60::/48

    Signature Algorithm: sha256WithRSAEncryption
         92:d0:7e:cf:de:d9:f2:c2:ce:80:8c:cf:8e:5d:45:e4:49:f3:
         38:37:e3:78:45:96:82:2f:51:dc:d8:ff:2c:47:21:94:03:7d:
         1d:b4:22:6c:69:2e:6e:04:02:c0:c5:4b:a7:b4:f5:06:9f:ac:
         85:dd:57:e5:31:34:a9:1e:49:fd:d2:cc:ab:14:68:3d:c9:3e:
         d5:d6:78:17:29:bf:78:1c:38:24:ee:86:31:78:2d:48:9c:27:
         5b:42:c7:ae:32:2c:a3:61:d8:19:cd:d8:8b:49:19:65:37:cb:
         91:bb:2c:43:3a:5e:84:a7:ee:72:14:ef:7a:28:fb:b1:0d:c3:
         e5:3d:ad:24:69:24:e2:76:3d:eb:2c:1e:58:73:70:58:68:01:
         47:c0:d0:a5:b7:0f:c8:cb:43:fc:c8:5b:63:f0:da:55:fe:6f:
         38:7d:39:25:12:70:8f:20:ad:45:c8:0e:af:61:d4:52:85:6a:
         cf:d3:03:aa:1a:62:3f:7c:16:1e:be:48:8c:c8:79:c8:53:3b:
         d7:ce:13:6f:c4:78:4a:68:5b:86:14:df:5b:e4:0b:9a:81:a0:
         c3:e2:13:59:f0:99:31:26:66:c0:d5:70:5f:93:74:1b:1b:26:
         84:89:59:b5:8a:e6:95:46:56:f4:26:d8:38:33:ae:61:c6:49:
         3f:49:55:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:28:48 2024 by rpki-client on console-fra.rpki-client.org