$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa File: 323630323a663662613a3a2f34302d3430203d3e20323135323438.roa (raw, json) Hash identifier: WDk8fhCZeFEuKhmy2R/ZRYllooWLJI27mELcMjoeqKI= Subject key identifier: A2:C5:F2:01:96:02:E2:0B:6D:68:6F:13:F7:26:3F:59:74:46:B2:8D Certificate issuer: /CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Certificate serial: 22B930F7C93C172297AD06571106FBBB7C71AF6C Authority key identifier: 1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa Signing time: Sat 22 Mar 2025 15:57:08 +0000 ROA not before: Sat 22 Mar 2025 15:52:08 +0000 ROA not after: Sat 21 Mar 2026 15:57:08 +0000 asID: 215248 IP address blocks: 2602:f6ba::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 09 Apr 2025 07:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b9:30:f7:c9:3c:17:22:97:ad:06:57:11:06:fb:bb:7c:71:af:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Validity Not Before: Mar 22 15:52:08 2025 GMT Not After : Mar 21 15:57:08 2026 GMT Subject: CN=A2C5F2019602E20B6D686F13F7263F597446B28D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8b:f7:61:5f:f2:1a:33:25:63:c8:a4:cf:8f: 7c:0f:0d:16:1d:ba:93:d0:70:c9:03:9e:29:53:be: 51:47:c5:08:58:5b:29:6a:bd:7f:fd:c1:47:ed:7d: aa:5a:04:48:5b:bc:2e:92:b4:c5:b7:f9:ff:48:8d: 24:6d:ae:d2:d5:ca:2e:0e:d8:f8:63:c3:8f:19:5a: d8:3c:f1:1f:0c:7e:c9:66:eb:7f:3c:7f:80:1f:a6: 83:6a:ec:7f:1d:86:0e:d7:5b:6b:27:8b:c9:6e:4a: 72:aa:34:f1:91:54:7b:04:c4:b4:d9:cb:d6:67:64: ef:dd:c4:5b:d1:6e:fa:76:e9:b9:78:c8:3e:51:4c: 16:e4:f8:2c:61:a6:11:58:a8:73:a2:12:43:dc:30: ea:a2:25:6c:49:52:9c:d4:98:d1:c9:7e:9c:b7:ca: 53:4f:6f:27:9c:a3:b7:76:7d:41:aa:a1:6c:5b:93: ed:20:1c:5e:bb:46:24:49:49:ce:82:79:73:b5:f9: 45:e6:39:5d:85:1c:28:62:60:e6:4d:bc:d7:fb:9d: fa:3d:74:9f:cf:50:85:47:f5:c4:6f:d1:26:88:c9: 01:75:89:c3:b9:41:76:7e:4c:08:8c:2d:4d:aa:b7: 4a:e3:e4:a8:d7:78:87:0f:38:4d:c1:f3:72:72:7a: dc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C5:F2:01:96:02:E2:0B:6D:68:6F:13:F7:26:3F:59:74:46:B2:8D X509v3 Authority Key Identifier: keyid:1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20323135323438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f6ba::/40 Signature Algorithm: sha256WithRSAEncryption cc:aa:d0:4f:a5:84:a5:44:fb:b0:0e:e1:a1:6c:dd:35:17:30: d1:a6:3a:31:e3:9b:40:2d:c3:aa:43:2a:24:5c:05:76:77:ee: d4:53:30:de:49:ef:36:1d:1e:44:b2:5b:33:5f:8c:39:28:23: 0a:1a:13:53:c7:ed:1b:43:5e:a3:6e:16:70:b4:e9:ac:c4:65: 35:8b:d6:c4:dc:3e:44:a4:5e:70:aa:17:30:3a:e5:c1:7c:5c: 77:d1:a5:c4:b4:6c:f1:5f:2d:34:64:3b:e9:4b:cb:7e:30:b9: 66:c9:89:e6:aa:49:f2:f6:f3:55:ed:41:73:47:c9:2d:f6:f8: 55:17:9a:2e:60:c3:4e:fe:97:3d:40:8e:aa:65:7e:a4:4a:d7: 24:5a:e2:91:23:c8:75:03:06:23:9b:75:49:f4:8d:fc:e3:6e: 5c:39:69:f9:60:7b:ca:1a:74:8e:70:6f:e7:94:1f:5f:4d:3e: 83:5a:e0:50:8f:a9:b7:b4:aa:e0:8f:8c:17:5c:a8:a4:d9:9f: 69:88:0e:5c:1a:cf:a7:b1:f3:9d:92:c6:a9:fa:1e:0b:1f:40: ac:d8:15:9c:82:8b:a3:b2:7a:14:eb:f9:a1:8c:40:83:10:15: ac:55:ca:e7:4a:ae:ef:5f:2b:d5:3e:c0:9b:95:62:ff:ce:a5: ed:72:3f:88 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUIrkw98k8FyKXrQZXEQb7u3xxr2wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0 NDI5ZjE2NmI2NTMwMWE5ZGQwHhcNMjUwMzIyMTU1MjA4WhcNMjYwMzIxMTU1NzA4 WjAzMTEwLwYDVQQDEyhBMkM1RjIwMTk2MDJFMjBCNkQ2ODZGMTNGNzI2M0Y1OTc0 NDZCMjhEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYv3YV/yGjMl Y8ikz498Dw0WHbqT0HDJA54pU75RR8UIWFspar1//cFH7X2qWgRIW7wukrTFt/n/ SI0kba7S1couDtj4Y8OPGVrYPPEfDH7JZut/PH+AH6aDaux/HYYO11trJ4vJbkpy qjTxkVR7BMS02cvWZ2Tv3cRb0W76dum5eMg+UUwW5PgsYaYRWKhzohJD3DDqoiVs SVKc1JjRyX6ct8pTT28nnKO3dn1BqqFsW5PtIBxeu0YkSUnOgnlztflF5jldhRwo YmDmTbzX+536PXSfz1CFR/XEb9EmiMkBdYnDuUF2fkwIjC1NqrdK4+So13iHDzhN wfNycnrcrwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFKLF8gGWAuILbWhvE/cmP1l0 RrKNMB8GA1UdIwQYMBaAFB9/ckmmgfjNQScLUNjX54FYgdo2MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0 LTU4MGQxMzY5YjdjNC8xLzFGN0Y3MjQ5QTY4MUY4Q0Q0MTI3MEI1MEQ4RDdFNzgx NTg4MURBMzYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMt NDdhYi05MDRlLTQ1MzYxYTU0ODdjMy8zODNiZDUwYi1iMTkyLTQ0YmQtOTM0OS0z NTEyMjVhMTNhMzMvMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0NDI5 ZjE2NmI2NTMwMWE5ZGQuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0LTU4MGQxMzY5YjdjNC8xLzMyMzYzMDMy M2E2NjM2NjI2MTNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEzNTMyMzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC9roAMA0GCSqGSIb3DQEBCwUAA4IBAQDMqtBPpYSlRPuwDuGh bN01FzDRpjox45tALcOqQyokXAV2d+7UUzDeSe82HR5EslszX4w5KCMKGhNTx+0b Q16jbhZwtOmsxGU1i9bE3D5EpF5wqhcwOuXBfFx30aXEtGzxXy00ZDvpS8t+MLlm yYnmqkny9vNV7UFzR8kt9vhVF5ouYMNO/pc9QI6qZX6kStckWuKRI8h1AwYjm3VJ 9I38425cOWn5YHvKGnSOcG/nlB9fTT6DWuBQj6m3tKrgj4wXXKik2Z9piA5cGs+n sfOdksap+h4LH0Cs2BWcgoujsnoU6/mhjECDEBWsVcrnSq7vXyvVPsCblWL/zqXt cj+I -----END CERTIFICATE-----Generated at Tue Apr 8 17:09:30 2025 by rpki-client