$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20333936303634.roa File: 323630323a663662613a3a2f34302d3430203d3e20333936303634.roa (raw, json) Hash identifier: EIvC4z2x/QLXwOGrYeC/F9aQ8OZAlzpbcTtxqtqMIxY= Subject key identifier: 57:89:46:38:00:5E:1D:0C:36:94:13:65:C7:36:10:2A:E2:8C:94:AE Certificate issuer: /CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Certificate serial: 6E7B9C31EEEB01CC3E40DFF4A0A5D5F55FBAD8A8 Authority key identifier: 1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20333936303634.roa Signing time: Sat 22 Mar 2025 15:56:18 +0000 ROA not before: Sat 22 Mar 2025 15:51:18 +0000 ROA not after: Sat 21 Mar 2026 15:56:18 +0000 asID: 396064 IP address blocks: 2602:f6ba::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/383bd50b-b192-44bd-9349-351225a13a33.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 14:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7b:9c:31:ee:eb:01:cc:3e:40:df:f4:a0:a5:d5:f5:5f:ba:d8:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd Validity Not Before: Mar 22 15:51:18 2025 GMT Not After : Mar 21 15:56:18 2026 GMT Subject: CN=57894638005E1D0C36941365C736102AE28C94AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a4:4c:67:80:2f:4e:77:ca:1f:f1:65:7c:16: db:d8:44:6f:d0:f1:5f:80:8f:44:e8:98:71:4f:ce: a6:a2:6a:cb:73:e7:89:cb:b8:51:a5:65:12:3e:42: ed:62:13:eb:35:05:12:42:55:d5:d7:7d:d6:95:96: 77:23:2e:02:88:02:2c:51:e0:ac:df:9d:91:68:60: ed:62:ca:8d:96:37:5c:ee:a4:84:e9:66:98:2b:8f: 12:1b:ba:28:81:4c:d4:af:f0:87:90:4a:69:f4:d1: 5b:57:9b:bc:56:d4:f5:5c:f4:57:88:66:49:ba:58: 57:83:3f:21:f5:62:61:2e:b1:26:a1:3d:25:a0:2b: c5:63:a5:b2:f7:a2:85:09:0d:52:41:5f:1d:ad:ee: 9c:b7:8b:6d:1a:bf:de:34:db:98:d7:3e:f0:f2:39: 20:32:9e:e4:74:67:a5:e1:87:f7:70:13:6c:26:bc: 8b:51:03:5a:ca:8c:e3:63:ab:e0:48:f7:59:eb:5b: 94:08:4d:73:34:c6:3e:83:e8:21:b2:aa:47:31:19: 40:2b:f9:59:bf:cd:47:93:d6:49:5c:c1:c2:5c:97: 8c:40:2d:69:ca:f0:cd:f0:f0:a8:52:de:2f:ca:d6: 2e:32:fa:c1:9a:ea:7d:dc:00:93:20:ba:b9:d2:fb: ec:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:89:46:38:00:5E:1D:0C:36:94:13:65:C7:36:10:2A:E2:8C:94:AE X509v3 Authority Key Identifier: keyid:1F:7F:72:49:A6:81:F8:CD:41:27:0B:50:D8:D7:E7:81:58:81:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/1F7F7249A681F8CD41270B50D8D7E7815881DA36.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/383bd50b-b192-44bd-9349-351225a13a33/23fb3d29e7f67c634df3b7f4a960082e4429f166b65301a9dd.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd19db20-4653-48d4-8fc4-580d1369b7c4/1/323630323a663662613a3a2f34302d3430203d3e20333936303634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f6ba::/40 Signature Algorithm: sha256WithRSAEncryption 7f:df:c6:55:37:a4:09:df:39:f0:a3:9b:fe:4a:1f:57:8a:2c: 63:9e:dd:3c:61:a0:61:d2:8c:9e:a7:83:91:cf:28:48:f9:84: 8d:db:39:40:e8:0c:01:97:27:1a:8c:ba:29:52:54:28:a2:0f: 76:a9:7f:f7:8d:91:b5:eb:d0:db:02:16:e3:67:8e:8c:17:39: d3:03:12:70:13:3e:ad:99:61:02:f1:9c:d0:98:b3:b3:5b:a6: 31:33:f6:c3:f9:ca:b6:73:ca:32:36:82:9a:5c:d1:38:14:8d: e2:74:ee:ed:30:a3:f7:8b:c4:05:80:3c:be:54:53:55:33:bb: 51:e4:e2:1e:0d:83:20:4b:33:0b:58:b6:8f:70:01:74:6d:60: 8b:04:2b:b6:a4:63:af:9c:56:1a:28:0e:0b:38:e3:3c:99:ef: 5c:ea:64:1d:c1:02:bf:ef:17:79:76:67:92:a2:95:c2:20:e8: 8a:ec:f1:99:56:07:a3:aa:91:7d:67:69:a5:6b:91:39:ed:6c: 82:61:bb:e6:d2:d6:df:4c:25:59:bc:c7:c9:cd:5b:30:35:43: 91:98:1a:64:1e:7f:6a:6c:13:d1:77:29:76:ff:9c:6b:50:de: ff:5b:a0:f4:d0:06:75:74:0c:c3:50:c4:5e:a4:8d:9f:f1:7b: 16:e4:42:d0 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUbnucMe7rAcw+QN/0oKXV9V+62KgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0 NDI5ZjE2NmI2NTMwMWE5ZGQwHhcNMjUwMzIyMTU1MTE4WhcNMjYwMzIxMTU1NjE4 WjAzMTEwLwYDVQQDEyg1Nzg5NDYzODAwNUUxRDBDMzY5NDEzNjVDNzM2MTAyQUUy OEM5NEFFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqRMZ4AvTnfK H/FlfBbb2ERv0PFfgI9E6JhxT86momrLc+eJy7hRpWUSPkLtYhPrNQUSQlXV133W lZZ3Iy4CiAIsUeCs352RaGDtYsqNljdc7qSE6WaYK48SG7oogUzUr/CHkEpp9NFb V5u8VtT1XPRXiGZJulhXgz8h9WJhLrEmoT0loCvFY6Wy96KFCQ1SQV8dre6ct4tt Gr/eNNuY1z7w8jkgMp7kdGel4Yf3cBNsJryLUQNayozjY6vgSPdZ61uUCE1zNMY+ g+ghsqpHMRlAK/lZv81Hk9ZJXMHCXJeMQC1pyvDN8PCoUt4vytYuMvrBmup93ACT ILq50vvsgQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFFeJRjgAXh0MNpQTZcc2ECri jJSuMB8GA1UdIwQYMBaAFB9/ckmmgfjNQScLUNjX54FYgdo2MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0 LTU4MGQxMzY5YjdjNC8xLzFGN0Y3MjQ5QTY4MUY4Q0Q0MTI3MEI1MEQ4RDdFNzgx NTg4MURBMzYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMt NDdhYi05MDRlLTQ1MzYxYTU0ODdjMy8zODNiZDUwYi1iMTkyLTQ0YmQtOTM0OS0z NTEyMjVhMTNhMzMvMjNmYjNkMjllN2Y2N2M2MzRkZjNiN2Y0YTk2MDA4MmU0NDI5 ZjE2NmI2NTMwMWE5ZGQuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2NkMTlkYjIwLTQ2NTMtNDhkNC04ZmM0LTU4MGQxMzY5YjdjNC8xLzMyMzYzMDMy M2E2NjM2NjI2MTNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMzMzkzNjMwMzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC9roAMA0GCSqGSIb3DQEBCwUAA4IBAQB/38ZVN6QJ3znwo5v+ Sh9Xiixjnt08YaBh0oyep4ORzyhI+YSN2zlA6AwBlycajLopUlQoog92qX/3jZG1 69DbAhbjZ46MFznTAxJwEz6tmWEC8ZzQmLOzW6YxM/bD+cq2c8oyNoKaXNE4FI3i dO7tMKP3i8QFgDy+VFNVM7tR5OIeDYMgSzMLWLaPcAF0bWCLBCu2pGOvnFYaKA4L OOM8me9c6mQdwQK/7xd5dmeSopXCIOiK7PGZVgejqpF9Z2mla5E57WyCYbvm0tbf TCVZvMfJzVswNUORmBpkHn9qbBPRdyl2/5xrUN7/W6D00AZ1dAzDUMRepI2f8XsW 5ELQ -----END CERTIFICATE-----Generated at Sat Apr 5 02:27:51 2025 by rpki-client