$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a633a3a2f34382d3438203d3e203131393637.roa File: 323630323a663732653a633a3a2f34382d3438203d3e203131393637.roa (raw, json) Hash identifier: kEWzAv8zDeZWDTQqPAetlKX2BPQ4wJj6i5uKmnkuIRI= Subject key identifier: B0:46:BA:32:4A:37:79:E2:66:9F:9A:69:4D:1D:16:71:7D:2B:98:DA Certificate issuer: /CN=369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12 Certificate serial: 52E250D3823FDD06DF9502BFD74EA8A12B2B972E Authority key identifier: EB:4B:C0:6D:40:65:7A:9B:F4:3E:CE:83:09:AD:AD:76:DF:24:A6:3B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a633a3a2f34382d3438203d3e203131393637.roa Signing time: Sun 16 Mar 2025 22:41:47 +0000 ROA not before: Sun 16 Mar 2025 22:36:47 +0000 ROA not after: Sun 15 Mar 2026 22:41:47 +0000 asID: 11967 IP address blocks: 2602:f72e:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.crl rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/c576633f-343d-4ac3-a936-98958e5630e6.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/c576633f-343d-4ac3-a936-98958e5630e6.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Apr 2025 22:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e2:50:d3:82:3f:dd:06:df:95:02:bf:d7:4e:a8:a1:2b:2b:97:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12 Validity Not Before: Mar 16 22:36:47 2025 GMT Not After : Mar 15 22:41:47 2026 GMT Subject: CN=B046BA324A3779E2669F9A694D1D16717D2B98DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:3b:a8:93:20:db:ca:6a:70:28:53:d6:9c: 4f:00:1c:e4:37:5c:4e:dd:56:76:cd:65:ff:f4:b5: 19:59:d2:61:8b:7a:9e:dd:45:f0:3f:7d:ba:5b:f3: eb:e4:ce:22:85:8e:1d:94:39:94:38:f3:ed:29:7d: 05:05:78:8c:99:98:05:e8:ef:9c:d1:3e:cc:77:ed: 4d:04:5a:05:80:bb:0f:47:92:1f:bc:a7:87:62:9f: 6b:69:d7:e7:cb:22:0a:84:31:10:6f:45:03:f6:b6: e7:97:99:ff:c0:9f:3e:e6:73:e8:52:7a:2a:cb:ae: b5:03:e2:9f:8a:fb:fd:37:34:04:8b:55:41:81:77: d5:67:f8:a1:26:f0:d5:be:4e:a8:a3:b1:8c:6d:6c: 28:5e:35:2a:ab:3d:fb:4d:48:f9:44:11:e7:89:28: f5:fa:7f:de:4d:68:2c:05:23:ab:3d:87:ba:3a:2c: 0f:0e:8f:3b:8f:22:e6:ac:23:bc:4f:4e:fc:17:ba: 04:16:33:2f:c0:8e:2d:38:01:17:2e:28:87:94:29: 59:cb:97:d7:a6:e3:7b:fc:08:03:89:64:91:4c:b9: 18:19:28:bc:9f:fc:46:de:30:25:20:99:08:f3:e0: 5e:28:39:48:a7:f6:47:15:ca:b6:3d:7f:e4:2c:3c: 3c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:46:BA:32:4A:37:79:E2:66:9F:9A:69:4D:1D:16:71:7D:2B:98:DA X509v3 Authority Key Identifier: keyid:EB:4B:C0:6D:40:65:7A:9B:F4:3E:CE:83:09:AD:AD:76:DF:24:A6:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/EB4BC06D40657A9BF43ECE8309ADAD76DF24A63B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/c576633f-343d-4ac3-a936-98958e5630e6/369dbc2ec136eca64fd2a4969f15c99306c2d11e368f5e1c12.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e92ebc83-d76c-4ae2-84eb-e6bff3d342b1/1/323630323a663732653a633a3a2f34382d3438203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f72e:c::/48 Signature Algorithm: sha256WithRSAEncryption 75:80:85:8e:67:71:55:a4:fd:7f:4b:e0:cb:57:a5:5c:a2:67: 6c:de:c3:e5:01:d9:d1:e5:84:7d:94:ae:ea:15:74:03:bf:7b: 65:09:7f:eb:e2:c1:28:80:6f:d1:55:89:f9:3d:d4:f0:a3:a5: bc:ec:6d:d6:26:f2:de:8a:36:35:82:f4:b4:f0:40:69:d4:25: 0a:f1:3f:c4:b0:9b:ce:05:42:78:c2:14:e9:c1:65:f7:6d:c0: 92:6e:36:aa:ea:4e:fa:dc:84:a5:c0:6e:7b:01:a7:4e:b0:fd: d7:7a:ca:b4:0b:5b:db:27:67:66:3e:65:c6:4a:45:4e:ca:94: 61:40:6b:a5:1c:1b:51:63:46:ca:7c:82:22:3c:08:42:5c:13: 98:04:d1:41:b8:fb:53:ed:69:0d:77:c6:ac:58:d7:ae:55:fa: fa:23:56:f0:27:1c:b8:ef:be:4f:bd:19:9f:f8:bb:32:59:a0: c9:72:28:22:fb:45:23:53:b0:61:d3:5e:fb:ac:31:ce:26:f1: a0:59:94:ca:af:af:e0:a2:19:68:1a:b6:47:d5:8e:e3:b0:70: b6:bb:31:eb:bf:04:68:87:19:b6:c7:3f:e0:42:64:0f:74:6c: 54:dd:84:eb:bb:7d:67:7b:a5:27:42:95:2d:2b:45:e5:73:87: e1:6f:8f:40 -----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgIUUuJQ04I/3QbflQK/106ooSsrly4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzY5ZGJjMmVjMTM2ZWNhNjRmZDJhNDk2OWYxNWM5OTMw NmMyZDExZTM2OGY1ZTFjMTIwHhcNMjUwMzE2MjIzNjQ3WhcNMjYwMzE1MjI0MTQ3 WjAzMTEwLwYDVQQDEyhCMDQ2QkEzMjRBMzc3OUUyNjY5RjlBNjk0RDFEMTY3MTdE MkI5OERBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr807qJMg28pq cChT1pxPABzkN1xO3VZ2zWX/9LUZWdJhi3qe3UXwP326W/Pr5M4ihY4dlDmUOPPt KX0FBXiMmZgF6O+c0T7Md+1NBFoFgLsPR5IfvKeHYp9radfnyyIKhDEQb0UD9rbn l5n/wJ8+5nPoUnoqy661A+Kfivv9NzQEi1VBgXfVZ/ihJvDVvk6oo7GMbWwoXjUq qz37TUj5RBHniSj1+n/eTWgsBSOrPYe6OiwPDo87jyLmrCO8T078F7oEFjMvwI4t OAEXLiiHlClZy5fXpuN7/AgDiWSRTLkYGSi8n/xG3jAlIJkI8+BeKDlIp/ZHFcq2 PX/kLDw8lwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLBGujJKN3niZp+aaU0dFnF9 K5jaMB8GA1UdIwQYMBaAFOtLwG1AZXqb9D7OgwmtrXbfJKY7MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2U5MmViYzgzLWQ3NmMtNGFlMi04NGVi LWU2YmZmM2QzNDJiMS8xL0VCNEJDMDZENDA2NTdBOUJGNDNFQ0U4MzA5QURBRDc2 REYyNEE2M0IuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmIt NGNmNy1iNTk5LWU5ZDBlOTgxZDliZi9jNTc2NjMzZi0zNDNkLTRhYzMtYTkzNi05 ODk1OGU1NjMwZTYvMzY5ZGJjMmVjMTM2ZWNhNjRmZDJhNDk2OWYxNWM5OTMwNmMy ZDExZTM2OGY1ZTFjMTIuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2U5MmViYzgzLWQ3NmMtNGFlMi04NGViLWU2YmZmM2QzNDJiMS8xLzMyMzYzMDMy M2E2NjM3MzI2NTNhNjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMxMzkzNjM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAJgL3LgAMMA0GCSqGSIb3DQEBCwUAA4IBAQB1gIWOZ3FVpP1/ S+DLV6Vcomds3sPlAdnR5YR9lK7qFXQDv3tlCX/r4sEogG/RVYn5PdTwo6W87G3W JvLeijY1gvS08EBp1CUK8T/EsJvOBUJ4whTpwWX3bcCSbjaq6k763ISlwG57AadO sP3Xesq0C1vbJ2dmPmXGSkVOypRhQGulHBtRY0bKfIIiPAhCXBOYBNFBuPtT7WkN d8asWNeuVfr6I1bwJxy4775PvRmf+LsyWaDJcigi+0UjU7Bh0177rDHOJvGgWZTK r6/gohloGrZH1Y7jsHC2uzHrvwRohxm2xz/gQmQPdGxU3YTru31ne6UnQpUtK0Xl c4fhb49A -----END CERTIFICATE-----Generated at Thu Apr 3 07:07:07 2025 by rpki-client