$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/323630323a663838323a3a2f33362d3438203d3e20343031323138.roa File: 323630323a663838323a3a2f33362d3438203d3e20343031323138.roa (raw, json) Hash identifier: 7+OQpnNul6GvEz/TmHkQD01IKA9VIbWseT8LVp2j0nw= Subject key identifier: BB:7E:0F:71:15:71:04:92:1D:D9:D5:1C:E0:D7:CD:DA:B2:0E:A6:01 Certificate issuer: /CN=ba59c15b9777a4a5270c9b7a584e46978e09a7bd2d154bfa9d Certificate serial: 6A36E8C2CE5B5450BD0A66695E74620E595CD7DE Authority key identifier: D7:0A:91:D8:9E:34:C7:A2:00:09:B1:E1:60:FB:6C:62:70:63:63:0C Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd/ba59c15b9777a4a5270c9b7a584e46978e09a7bd2d154bfa9d.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/323630323a663838323a3a2f33362d3438203d3e20343031323138.roa Signing time: Tue 02 Jul 2024 10:01:47 +0000 ROA not before: Tue 02 Jul 2024 09:56:47 +0000 ROA not after: Tue 01 Jul 2025 10:01:47 +0000 asID: 401218 IP address blocks: 2602:f882::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/D70A91D89E34C7A20009B1E160FB6C627063630C.crl rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/D70A91D89E34C7A20009B1E160FB6C627063630C.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd/ba59c15b9777a4a5270c9b7a584e46978e09a7bd2d154bfa9d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:36:e8:c2:ce:5b:54:50:bd:0a:66:69:5e:74:62:0e:59:5c:d7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba59c15b9777a4a5270c9b7a584e46978e09a7bd2d154bfa9d Validity Not Before: Jul 2 09:56:47 2024 GMT Not After : Jul 1 10:01:47 2025 GMT Subject: CN=BB7E0F71157104921DD9D51CE0D7CDDAB20EA601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:5f:62:1d:46:49:73:66:06:54:7e:74:0b:30: 13:d6:51:00:f9:05:4e:0a:15:af:84:ff:5c:e7:19: 72:22:40:d7:a1:3a:6e:de:df:b5:05:04:d0:3f:85: 97:4c:e6:3c:f1:cb:d8:ca:cc:87:82:6d:2c:70:e7: 87:76:a4:79:c3:25:1c:fb:a7:65:53:46:95:d3:10: 21:76:f6:8d:39:17:7b:55:f3:ae:40:90:ee:fa:88: 5c:ae:33:33:ef:fe:02:a3:b9:58:1b:65:56:89:36: e0:e8:68:d8:6d:be:48:e8:c8:17:e4:4e:3c:7f:0c: c1:ee:2f:05:45:76:3b:44:4c:ab:23:ce:59:1b:c0: 3e:08:ee:96:32:be:c4:6f:cf:f7:54:33:28:cc:cf: 1e:16:16:f5:54:bb:4f:06:da:3c:f4:68:ab:a5:6b: ed:c4:b8:bb:05:80:7b:30:84:32:ff:dc:dd:86:79: 5c:55:25:91:53:b3:fa:34:2f:b4:a5:70:51:24:15: cd:b8:26:4a:b2:e8:1a:52:55:00:7a:c9:1b:0f:e0: b4:4d:43:ca:11:5e:89:00:83:f0:da:83:cf:6c:0b: c5:c5:a9:13:ed:a5:e1:f5:df:cd:5a:d1:db:a2:71: 95:55:06:0e:ed:1b:8c:79:cb:c7:3c:5b:39:cb:a6: bf:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7E:0F:71:15:71:04:92:1D:D9:D5:1C:E0:D7:CD:DA:B2:0E:A6:01 X509v3 Authority Key Identifier: keyid:D7:0A:91:D8:9E:34:C7:A2:00:09:B1:E1:60:FB:6C:62:70:63:63:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/D70A91D89E34C7A20009B1E160FB6C627063630C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/32619ff9-4a46-4e93-a9b5-dda2a33a9ffd/ba59c15b9777a4a5270c9b7a584e46978e09a7bd2d154bfa9d.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/20/323630323a663838323a3a2f33362d3438203d3e20343031323138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f882::/36 Signature Algorithm: sha256WithRSAEncryption b5:dd:a5:e8:00:82:96:1f:fd:be:99:52:53:d0:1a:04:40:9d: f0:c0:66:02:a4:65:0b:79:8e:64:fa:4f:b8:01:cc:11:53:9e: 5c:8f:71:d9:02:db:d0:72:54:02:74:48:e7:e7:db:70:5f:41: a2:6b:f8:45:e2:40:39:4b:ee:50:91:b3:94:84:f9:d5:b8:50: 4b:75:6e:92:6c:05:8b:d7:d6:bc:9c:bd:de:0f:52:5a:15:18: 97:3d:1a:06:b7:df:4a:72:70:73:cd:fc:43:53:90:2a:fc:6c: 35:2d:c8:c3:d7:be:50:10:66:86:89:ea:c0:1f:54:d1:a3:60: df:85:b3:4f:8f:b8:47:78:52:d7:25:d4:7c:4a:e8:2d:b7:dd: be:3b:56:88:38:6a:44:fc:6f:b6:55:f8:a5:fc:92:e2:89:4b: 7a:27:79:4b:9f:a0:9b:2b:85:19:91:60:e3:67:97:ea:52:53: eb:ae:af:1a:94:30:4e:f9:0c:ba:48:fa:6f:01:7e:94:c9:df: a4:06:a0:5f:f4:93:9a:c3:a0:35:d5:05:57:bc:e1:37:2a:e7: e5:57:8c:0f:f2:7f:26:f5:5e:e4:81:c7:b9:b9:5b:86:c3:f7: 28:fb:3f:5b:b7:ca:95:5c:c6:53:cc:4f:ec:7e:66:56:77:98: 62:e5:cd:ad -----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgIUajbows5bVFC9CmZpXnRiDllc194wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYmE1OWMxNWI5Nzc3YTRhNTI3MGM5YjdhNTg0ZTQ2OTc4 ZTA5YTdiZDJkMTU0YmZhOWQwHhcNMjQwNzAyMDk1NjQ3WhcNMjUwNzAxMTAwMTQ3 WjAzMTEwLwYDVQQDEyhCQjdFMEY3MTE1NzEwNDkyMUREOUQ1MUNFMEQ3Q0REQUIy MEVBNjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiF9iHUZJc2YG VH50CzAT1lEA+QVOChWvhP9c5xlyIkDXoTpu3t+1BQTQP4WXTOY88cvYysyHgm0s cOeHdqR5wyUc+6dlU0aV0xAhdvaNORd7VfOuQJDu+ohcrjMz7/4Co7lYG2VWiTbg 6GjYbb5I6MgX5E48fwzB7i8FRXY7REyrI85ZG8A+CO6WMr7Eb8/3VDMozM8eFhb1 VLtPBto89GirpWvtxLi7BYB7MIQy/9zdhnlcVSWRU7P6NC+0pXBRJBXNuCZKsuga UlUAeskbD+C0TUPKEV6JAIPw2oPPbAvFxakT7aXh9d/NWtHbonGVVQYO7RuMecvH PFs5y6a/LwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLt+D3EVcQSSHdnVHODXzdqy DqYBMB8GA1UdIwQYMBaAFNcKkdieNMeiAAmx4WD7bGJwY2MMMA4GA1UdDwEB/wQE AwIHgDCBlwYDVR0fBIGPMIGMMIGJoIGGoIGDhoGAcnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hZTZlZGVlYy0wOGJhLTRjZGUtODk3 OS00ZmFlYTRiMWJjMTIvMjAvRDcwQTkxRDg5RTM0QzdBMjAwMDlCMUUxNjBGQjZD NjI3MDYzNjMwQy5jcmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB 03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81 ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNmVhZDA3M2MtYjlm MC00NTIzLWIzOWUtYTNjN2RhYjk3YzI1LzMyNjE5ZmY5LTRhNDYtNGU5My1hOWI1 LWRkYTJhMzNhOWZmZC9iYTU5YzE1Yjk3NzdhNGE1MjcwYzliN2E1ODRlNDY5Nzhl MDlhN2JkMmQxNTRiZmE5ZC5jZXIwga4GCCsGAQUFBwELBIGhMIGeMIGbBggrBgEF BQcwC4aBjnJzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvYWU2ZWRlZWMtMDhiYS00Y2RlLTg5NzktNGZhZWE0YjFiYzEyLzIwLzMyMzYz MDMyM2E2NjM4MzgzMjNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDM0MzAzMTMyMzEz OC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQS MBAwDgQCAAIwCAMGBCYC+IIAMA0GCSqGSIb3DQEBCwUAA4IBAQC13aXoAIKWH/2+ mVJT0BoEQJ3wwGYCpGULeY5k+k+4AcwRU55cj3HZAtvQclQCdEjn59twX0Gia/hF 4kA5S+5QkbOUhPnVuFBLdW6SbAWL19a8nL3eD1JaFRiXPRoGt99KcnBzzfxDU5Aq /Gw1LcjD175QEGaGierAH1TRo2DfhbNPj7hHeFLXJdR8Sugtt92+O1aIOGpE/G+2 Vfil/JLiiUt6J3lLn6CbK4UZkWDjZ5fqUlPrrq8alDBO+Qy6SPpvAX6Uyd+kBqBf 9JOaw6A11QVXvOE3KuflV4wP8n8m9V7kgce5uVuGw/co+z9bt8qVXMZTzE/sfmZW d5hi5c2t -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:25 2025 by rpki-client