$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a623a3a2f34382d3438203d3e203131393637.roa File: 323630323a663732653a623a3a2f34382d3438203d3e203131393637.roa (raw, json) Hash identifier: i5NvehiTDxReCbExNFi/s3kPVvenbncF1ABjGQE6ecc= Subject key identifier: 29:E9:F7:1C:5C:21:93:17:A0:62:4D:04:A2:69:E9:D6:78:22:E8:E7 Certificate issuer: /CN=369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12 Certificate serial: 7593D4C27A3F44202043BB52AF882FAB06069A81 Authority key identifier: EB:4B:C0:6D:40:65:7A:9B:F4:3E:CE:83:09:AD:AD:76:DF:24:A6:3B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a623a3a2f34382d3438203d3e203131393637.roa Signing time: Tue 25 Feb 2025 21:50:00 +0000 ROA not before: Tue 25 Feb 2025 21:45:00 +0000 ROA not after: Tue 24 Feb 2026 21:50:00 +0000 asID: 11967 IP address blocks: 2602:f72e:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.crl rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/c576633f-343d-4ac3-a936-98958e5630e6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/c576633f-343d-4ac3-a936-98958e5630e6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Apr 2025 22:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:93:d4:c2:7a:3f:44:20:20:43:bb:52:af:88:2f:ab:06:06:9a:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12 Validity Not Before: Feb 25 21:45:00 2025 GMT Not After : Feb 24 21:50:00 2026 GMT Subject: CN=29E9F71C5C219317A0624D04A269E9D67822E8E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3f:4d:eb:98:25:86:18:2b:35:67:3e:ca:69: 72:80:d2:94:45:94:8c:6b:4b:8c:79:26:35:f1:c1: 36:4b:fe:1b:9c:5c:ad:b0:70:44:78:52:10:c7:c8: 05:65:0b:32:1f:f7:6a:8e:34:f3:17:45:0c:1d:cf: f6:78:4c:34:59:2a:7d:3e:88:c8:97:c5:b5:01:db: 64:8d:a9:12:c7:09:0e:b9:4c:62:85:65:c3:59:43: 35:ed:c4:33:0c:52:7b:ea:ea:63:bc:5a:33:00:e7: 5b:46:c5:78:0d:5e:40:16:61:2d:5e:db:12:aa:11: 9e:b1:33:f4:87:a2:31:5c:9e:90:66:17:04:62:4f: 5d:b4:e4:49:99:48:5d:90:07:c5:25:da:6e:3d:78: a6:5c:4c:b2:cc:f2:4c:71:40:85:88:59:6c:c4:93: b2:af:6d:aa:4f:e8:8f:37:12:b8:05:2c:85:3f:4d: 24:6b:9d:f4:ba:d1:58:93:14:f1:1f:b5:02:cb:cd: 0b:0f:47:f8:4f:63:b2:c4:7f:28:31:1c:4d:dd:17: 44:1c:d9:33:87:f0:3c:db:dc:82:b3:61:46:99:d1: 6d:fc:2c:c4:4b:66:4f:a4:ef:50:e6:19:eb:e3:c0: 38:bb:60:e8:3f:56:a2:ed:2b:68:b6:d0:fd:12:92: 81:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:E9:F7:1C:5C:21:93:17:A0:62:4D:04:A2:69:E9:D6:78:22:E8:E7 X509v3 Authority Key Identifier: keyid:EB:4B:C0:6D:40:65:7A:9B:F4:3E:CE:83:09:AD:AD:76:DF:24:A6:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a623a3a2f34382d3438203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f72e:b::/48 Signature Algorithm: sha256WithRSAEncryption 45:a4:fd:47:fa:fe:17:9f:b9:f2:41:f5:65:3f:bd:25:3b:27: 78:e0:20:d6:da:8d:d0:af:b8:0b:05:d5:55:5d:86:32:c4:e4: b8:48:09:dd:72:c6:1f:3c:90:2d:74:6e:db:d1:05:c5:ac:fe: 75:3f:d1:87:7c:e6:3b:34:ce:31:90:01:9d:6c:47:d1:92:ed: f8:c3:69:5a:7f:4a:7c:96:12:fe:b0:ab:53:d2:75:e0:07:bb: 87:df:02:3d:d3:47:12:15:7d:61:25:b6:71:a6:98:b8:cc:22: c5:c9:06:e1:d5:af:b6:4a:e3:13:4c:3a:da:af:05:60:3a:4f: 58:a4:82:46:d9:d0:0b:ce:42:46:1c:ca:4b:fc:05:d6:08:4d: 53:2f:cc:54:e7:da:f6:8c:30:fe:65:80:b1:9b:56:8b:37:62: 39:ab:84:64:de:72:9c:af:73:4a:84:7e:15:6c:38:bb:59:3b: 02:bd:b0:86:23:27:fe:2f:37:7b:2d:21:81:07:db:2a:57:37: 51:f9:ea:90:58:a2:94:d7:46:b7:1f:25:f6:d2:66:a7:48:de: d3:d1:3a:78:f6:e8:ab:a7:a5:1b:0b:b0:74:c6:b0:d8:d5:48: 8f:4b:93:e1:11:ee:65:34:d1:bf:da:b3:9a:45:6e:34:43:f6: fe:87:2a:43 -----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgIUdZPUwno/RCAgQ7tSr4gvqwYGmoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzY5ZGJjMmVjMTM2ZWNhNjRmZDJhNDk2OWYxNWM5OTMw NmMyZDExZTM2OGY1ZTFjMTIwHhcNMjUwMjI1MjE0NTAwWhcNMjYwMjI0MjE1MDAw WjAzMTEwLwYDVQQDEygyOUU5RjcxQzVDMjE5MzE3QTA2MjREMDRBMjY5RTlENjc4 MjJFOEU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmj9N65glhhgr NWc+ymlygNKURZSMa0uMeSY18cE2S/4bnFytsHBEeFIQx8gFZQsyH/dqjjTzF0UM Hc/2eEw0WSp9PojIl8W1AdtkjakSxwkOuUxihWXDWUM17cQzDFJ76upjvFozAOdb RsV4DV5AFmEtXtsSqhGesTP0h6IxXJ6QZhcEYk9dtORJmUhdkAfFJdpuPXimXEyy zPJMcUCFiFlsxJOyr22qT+iPNxK4BSyFP00ka530utFYkxTxH7UCy80LD0f4T2Oy xH8oMRxN3RdEHNkzh/A829yCs2FGmdFt/CzES2ZPpO9Q5hnr48A4u2DoP1ai7Sto ttD9EpKBJQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFCnp9xxcIZMXoGJNBKJp6dZ4 IujnMB8GA1UdIwQYMBaAFOtLwG1AZXqb9D7OgwmtrXbfJKY7MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2U5MmViYzgzLWQ3NmMtNGFlMi04NGVi LWU2YmZmM2QzNDJiMS8xL0VCNEJDMDZENDA2NTdBOUJGNDNFQ0U4MzA5QURBRDc2 REYyNEE2M0IuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmIt NGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9jNTc2NjMzZi0zNDNkLTRhYzMtYTkzNi05 ODk1OGU1NjMwZTYvMzY5ZGJjMmVjMTM2ZWNhNjRmZDJhNDk2OWYxNWM5OTMwNmMy ZDExZTM2OGY1ZTFjMTIuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2U5MmViYzgzLWQ3NmMtNGFlMi04NGViLWU2YmZmM2QzNDJiMS8xLzMyMzYzMDMy M2E2NjM3MzI2NTNhNjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMxMzkzNjM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAJgL3LgALMA0GCSqGSIb3DQEBCwUAA4IBAQBFpP1H+v4Xn7ny QfVlP70lOyd44CDW2o3Qr7gLBdVVXYYyxOS4SAndcsYfPJAtdG7b0QXFrP51P9GH fOY7NM4xkAGdbEfRku34w2laf0p8lhL+sKtT0nXgB7uH3wI900cSFX1hJbZxppi4 zCLFyQbh1a+2SuMTTDrarwVgOk9YpIJG2dALzkJGHMpL/AXWCE1TL8xU59r2jDD+ ZYCxm1aLN2I5q4Rk3nKcr3NKhH4VbDi7WTsCvbCGIyf+Lzd7LSGBB9sqVzdR+eqQ WKKU10a3HyX20manSN7T0Tp49uirp6UbC7B0xrDY1UiPS5PhEe5lNNG/2rOaRW40 Q/b+hypD -----END CERTIFICATE-----Generated at Thu Apr 3 07:07:07 2025 by rpki-client