$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa File: 323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa (raw, json) Hash identifier: VSiYcl/kl4pmOCNvFPWK3UtK6Rb7GeMiysBznotGo1c= Subject key identifier: 76:EA:2D:3F:67:A5:23:78:EE:45:20:0A:70:D5:87:53:DB:F8:A9:04 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 4104154C57F9760A719F9A27325850901EA4C02A Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa Signing time: Fri 04 Apr 2025 10:53:07 +0000 ROA not before: Fri 04 Apr 2025 10:48:07 +0000 ROA not after: Fri 03 Apr 2026 10:53:07 +0000 asID: 40676 IP address blocks: 2602:f992:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 12:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:04:15:4c:57:f9:76:0a:71:9f:9a:27:32:58:50:90:1e:a4:c0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Apr 4 10:48:07 2025 GMT Not After : Apr 3 10:53:07 2026 GMT Subject: CN=76EA2D3F67A52378EE45200A70D58753DBF8A904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:37:3a:f1:7b:44:37:a2:ef:ed:8c:13:3c:17: 2b:d9:89:c9:3d:01:0c:f0:3b:1b:fc:82:e5:fa:07: b2:6e:4f:c4:f5:91:7d:67:e6:63:ff:0e:7d:6e:e2: cc:0b:fd:89:2c:26:50:ae:63:5e:dc:d5:5d:07:93: be:2f:88:b2:3f:6a:2a:02:ff:ad:df:61:3e:2e:10: e4:fd:8d:62:65:a8:6a:2f:e7:b9:38:89:2f:fd:cf: eb:a8:ee:f2:55:da:e9:78:49:a6:47:2a:cf:5e:ea: 44:43:c4:50:d5:81:49:bb:8c:2d:4a:9b:66:0b:7d: 23:36:ad:67:51:e3:4a:05:1f:be:51:16:64:7b:71: 2b:58:95:63:5b:d0:99:de:34:02:16:ea:86:6c:9e: aa:0c:ca:45:42:5e:a5:f3:32:88:cb:07:8e:1e:54: 96:ce:51:02:fe:d4:44:6a:16:7d:c1:03:c2:78:68: 4d:7e:89:73:6d:c5:3f:bd:2b:dc:2c:96:a2:9c:d8: 7c:09:57:60:12:96:be:74:51:a9:a2:09:8a:9e:47: fe:15:b7:24:72:4b:3b:b3:bd:34:8b:e5:59:ac:83: 72:98:aa:70:b0:f8:bb:03:6d:9f:f2:ca:0a:e0:63: 74:d7:1b:35:b4:80:46:e5:9f:4d:fe:e3:87:ec:b4: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EA:2D:3F:67:A5:23:78:EE:45:20:0A:70:D5:87:53:DB:F8:A9:04 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a35303a3a2f34342d3438203d3e203430363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:50::/44 Signature Algorithm: sha256WithRSAEncryption 76:c2:db:87:47:d2:0e:9b:54:78:b7:20:0c:40:e2:f9:ec:0b: 9d:00:96:16:9f:0e:09:be:36:be:cb:3a:04:68:92:c8:9e:78: df:ef:25:87:19:41:2f:03:46:e0:fe:10:c0:cb:5b:c3:aa:a6: e9:5e:5a:db:89:66:81:8d:99:d8:dd:38:6a:1a:9f:bf:29:22: d7:e8:9c:49:8e:28:1d:21:8d:f7:15:bb:9b:09:ec:ca:91:14: 0e:27:69:51:95:23:68:9e:e4:84:f6:5a:57:12:52:50:2e:8a: f8:09:bf:f6:5d:b6:cd:c9:c8:13:ac:42:d7:cd:e2:b5:a9:a1: 72:e3:f9:4a:43:47:eb:aa:00:64:8b:ec:91:7c:a4:96:8f:df: 2e:d8:da:c0:e4:1d:8c:1b:a9:f8:f8:60:ef:8c:a7:1e:47:92: e0:e5:73:7f:1e:ef:a0:94:4d:ec:55:e1:70:74:38:a4:ef:b7: 09:5d:1f:8c:c8:6d:a6:ed:97:69:94:cf:42:a8:95:40:f0:fc: 34:31:9e:81:c6:87:54:be:80:6a:b7:ac:5f:07:b8:88:84:78: 97:3a:9d:f9:49:92:5f:6f:8b:10:bb:34:8e:16:a1:bb:b5:7e: af:7c:20:ce:49:e3:ed:bf:9c:c6:42:6f:34:1b:e4:45:15:fe: 39:ff:da:d3 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUQQQVTFf5dgpxn5onMlhQkB6kwCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwNDA0MTA0ODA3WhcNMjYwNDAzMTA1MzA3 WjAzMTEwLwYDVQQDEyg3NkVBMkQzRjY3QTUyMzc4RUU0NTIwMEE3MEQ1ODc1M0RC RjhBOTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDc68XtEN6Lv 7YwTPBcr2YnJPQEM8Dsb/ILl+geybk/E9ZF9Z+Zj/w59buLMC/2JLCZQrmNe3NVd B5O+L4iyP2oqAv+t32E+LhDk/Y1iZahqL+e5OIkv/c/rqO7yVdrpeEmmRyrPXupE Q8RQ1YFJu4wtSptmC30jNq1nUeNKBR++URZke3ErWJVjW9CZ3jQCFuqGbJ6qDMpF Ql6l8zKIyweOHlSWzlEC/tREahZ9wQPCeGhNfolzbcU/vSvcLJainNh8CVdgEpa+ dFGpogmKnkf+Fbckcks7s700i+VZrINymKpwsPi7A22f8soK4GN01xs1tIBG5Z9N /uOH7LTHBQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFHbqLT9npSN47kUgCnDVh1Pb +KkEMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhMzUzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDM0MzAzNjM3 MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQmAvmSAFAwDQYJKoZIhvcNAQELBQADggEBAHbC24dH0g6b VHi3IAxA4vnsC50AlhafDgm+Nr7LOgRoksieeN/vJYcZQS8DRuD+EMDLW8Oqpule WtuJZoGNmdjdOGoan78pItfonEmOKB0hjfcVu5sJ7MqRFA4naVGVI2ie5IT2WlcS UlAuivgJv/Zdts3JyBOsQtfN4rWpoXLj+UpDR+uqAGSL7JF8pJaP3y7Y2sDkHYwb qfj4YO+Mpx5HkuDlc38e76CUTexV4XB0OKTvtwldH4zIbabtl2mUz0KolUDw/DQx noHGh1S+gGq3rF8HuIiEeJc6nflJkl9vixC7NI4Wobu1fq98IM5J4+2/nMZCbzQb 5EUV/jn/2tM= -----END CERTIFICATE-----Generated at Sat Apr 5 03:41:38 2025 by rpki-client