$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a37303a3a2f34342d3434203d3e203133363436.roa File: 323630323a666131313a37303a3a2f34342d3434203d3e203133363436.roa (raw, json) Hash identifier: Rs6TAAM4q0seWjIXXF54cD64XYZMeGJlTS3pCYHNuus= Subject key identifier: 2C:94:B3:11:7B:2F:E2:52:7D:F8:CB:F3:21:F5:96:C3:42:03:0E:A1 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 5521F46054461B6372B3183A8DEE5C68504760BC Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a37303a3a2f34342d3434203d3e203133363436.roa Signing time: Thu 16 Jan 2025 00:56:28 +0000 ROA not before: Thu 16 Jan 2025 00:51:28 +0000 ROA not after: Thu 15 Jan 2026 00:56:28 +0000 asID: 13646 IP address blocks: 2602:fa11:70::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 10:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:21:f4:60:54:46:1b:63:72:b3:18:3a:8d:ee:5c:68:50:47:60:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Jan 16 00:51:28 2025 GMT Not After : Jan 15 00:56:28 2026 GMT Subject: CN=2C94B3117B2FE2527DF8CBF321F596C342030EA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e0:29:a0:b2:2e:a6:13:82:92:7b:d2:fc:79: fa:20:47:54:43:63:91:22:26:44:7f:75:10:bf:73: 90:75:07:60:75:13:34:7c:d7:24:03:62:3a:c1:8c: ed:10:fa:b2:a9:d3:f3:6b:31:c8:52:1e:96:8b:95: 56:06:c0:38:b9:26:f3:f5:f6:e2:0c:04:a0:9c:a3: 4b:bc:6b:96:8f:2a:f6:e1:08:3d:3f:db:89:4d:90: 1d:ab:14:2a:84:99:a1:11:01:28:67:da:1b:16:08: 32:e7:31:40:44:be:a2:9d:f5:75:bf:3c:26:2d:05: de:ec:30:2b:a8:4c:a4:f4:18:f2:2e:5c:17:3c:d1: 1b:da:41:1c:18:30:83:db:5e:7a:68:5d:a6:11:e5: 06:a4:01:8f:59:72:ed:cc:eb:8c:72:5d:23:5e:3e: cf:54:79:49:4f:f2:28:39:b1:ce:62:28:69:be:08: 8c:20:ab:2f:70:97:0d:21:cf:25:dc:1c:b2:43:b0: cf:b4:91:21:5a:41:cf:33:de:9a:1c:70:be:12:27: 65:2a:64:a1:5a:49:4c:cc:60:76:30:ef:7d:fb:27: b6:b8:da:31:76:5a:2c:0a:30:40:d8:4e:1c:62:dd: 03:2c:f5:7d:c0:51:cc:a6:ff:42:df:2c:1f:2c:0d: 6b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:94:B3:11:7B:2F:E2:52:7D:F8:CB:F3:21:F5:96:C3:42:03:0E:A1 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a37303a3a2f34342d3434203d3e203133363436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:fa11:70::/44 Signature Algorithm: sha256WithRSAEncryption 83:fb:93:1f:2f:7f:e9:ef:4c:cc:7a:c9:a1:13:8d:aa:52:8e: 09:9d:f2:32:5b:92:f7:79:c3:27:f4:a7:3a:66:6f:05:a7:e6: 9c:e9:9d:f5:88:d1:c5:9a:ad:95:75:56:3f:01:da:bd:a5:d6: 45:9c:35:e3:1d:40:e0:1c:3f:ea:a5:86:5b:10:76:2d:c0:fc: ad:d9:b7:85:6b:49:e5:8b:43:6e:21:24:de:6a:ef:11:cf:00: dc:b7:b7:54:8a:e3:77:e8:d3:07:29:2b:11:8c:d1:0c:d6:09: c7:75:8a:b3:37:08:e8:b9:48:9f:83:bb:1c:83:f9:dd:60:80: 1b:f3:7e:c5:26:17:fb:98:87:f3:3b:20:35:9e:4d:0d:60:8a: 10:50:1d:e5:d0:18:22:4b:04:ce:25:f5:08:3d:0d:29:66:0e: 04:00:17:46:83:e2:d7:1d:c8:22:35:7c:34:82:c5:66:48:50: a2:e8:c6:7c:95:cb:3f:9a:ff:f4:db:d7:b8:a6:04:19:c8:18: cd:da:8c:58:3e:fb:6c:d1:f2:f1:e8:ed:4b:b7:a1:1e:fa:ec: 33:9a:16:97:5b:2f:d8:b7:af:37:f4:66:2b:62:19:88:c7:99: a5:3e:0a:46:bd:96:31:42:3f:fc:57:b0:5f:e2:1b:e6:8b:a3: 26:3f:43:9d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUVSH0YFRGG2Nysxg6je5caFBHYLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwMTE2MDA1MTI4WhcNMjYwMTE1MDA1NjI4 WjAzMTEwLwYDVQQDEygyQzk0QjMxMTdCMkZFMjUyN0RGOENCRjMyMUY1OTZDMzQy MDMwRUExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweApoLIuphOC knvS/Hn6IEdUQ2ORIiZEf3UQv3OQdQdgdRM0fNckA2I6wYztEPqyqdPzazHIUh6W i5VWBsA4uSbz9fbiDASgnKNLvGuWjyr24Qg9P9uJTZAdqxQqhJmhEQEoZ9obFggy 5zFARL6infV1vzwmLQXe7DArqEyk9BjyLlwXPNEb2kEcGDCD2156aF2mEeUGpAGP WXLtzOuMcl0jXj7PVHlJT/IoObHOYihpvgiMIKsvcJcNIc8l3ByyQ7DPtJEhWkHP M96aHHC+EidlKmShWklMzGB2MO99+ye2uNoxdlosCjBA2E4cYt0DLPV9wFHMpv9C 3ywfLA1rcwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFCyUsxF7L+JSffjL8yH1lsNC Aw6hMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMyMzYzMDMy M2E2NjYxMzEzMTNhMzczMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzMzNjM0 MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQmAvoRAHAwDQYJKoZIhvcNAQELBQADggEBAIP7kx8vf+nv TMx6yaETjapSjgmd8jJbkvd5wyf0pzpmbwWn5pzpnfWI0cWarZV1Vj8B2r2l1kWc NeMdQOAcP+qlhlsQdi3A/K3Zt4VrSeWLQ24hJN5q7xHPANy3t1SK43fo0wcpKxGM 0QzWCcd1irM3COi5SJ+DuxyD+d1ggBvzfsUmF/uYh/M7IDWeTQ1gihBQHeXQGCJL BM4l9Qg9DSlmDgQAF0aD4tcdyCI1fDSCxWZIUKLoxnyVyz+a//Tb17imBBnIGM3a jFg++2zR8vHo7Uu3oR767DOaFpdbL9i3rzf0ZitiGYjHmaU+Cka9ljFCP/xXsF/i G+aLoyY/Q50= -----END CERTIFICATE-----Generated at Sun Feb 16 22:14:29 2025 by rpki-client