$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/323630323a663936643a3a2f34302d313238203d3e203437323732.roa File: 323630323a663936643a3a2f34302d313238203d3e203437323732.roa (raw, json) Hash identifier: ELyutkKyzeHb+a/3kFXt1gm3eu/nLlohbs7tJP4yR9o= Subject key identifier: F5:B6:6F:64:C7:25:B8:61:F6:37:C5:32:A9:C9:FF:AE:8D:14:A6:CC Certificate issuer: /CN=f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7 Certificate serial: 5F4E044C968A2D58E9EF606B4F0BE10BE7D93681 Authority key identifier: 24:F5:DA:48:C3:AF:BC:A0:FF:D9:21:54:7E:F0:9F:77:6A:F8:A2:EA Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/323630323a663936643a3a2f34302d313238203d3e203437323732.roa Signing time: Fri 07 Feb 2025 11:41:18 +0000 ROA not before: Fri 07 Feb 2025 11:36:18 +0000 ROA not after: Fri 06 Feb 2026 11:41:18 +0000 asID: 47272 IP address blocks: 2602:f96d::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Apr 2025 18:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4e:04:4c:96:8a:2d:58:e9:ef:60:6b:4f:0b:e1:0b:e7:d9:36:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7 Validity Not Before: Feb 7 11:36:18 2025 GMT Not After : Feb 6 11:41:18 2026 GMT Subject: CN=F5B66F64C725B861F637C532A9C9FFAE8D14A6CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:6d:14:81:6b:1e:5c:1a:a0:47:f5:44:09: 0d:76:9e:c0:e0:ca:b9:86:e6:f2:0c:32:0c:c0:a1: f7:0b:3a:a0:c6:a0:7b:82:00:42:c2:68:29:8b:99: a3:e8:e5:b6:5f:81:65:8a:2c:77:2c:99:37:34:71: a0:75:ca:d3:68:59:60:95:e0:6f:8b:02:d5:ad:7f: 00:53:fc:d9:6f:72:8f:76:a6:33:89:c7:8a:02:cf: 78:1a:e1:c3:5c:33:5c:78:19:81:06:89:a2:ca:47: 57:d7:82:46:1b:36:db:20:84:bb:86:61:46:6b:82: 20:56:36:7e:15:99:e8:9f:44:7f:bf:96:7f:30:42: 0c:8d:e8:ab:2c:ee:68:07:35:9c:b7:a0:80:84:6b: e3:7a:80:ea:c7:1e:70:61:14:93:dc:57:84:0f:24: 6d:1d:7a:99:4b:97:9e:81:71:e2:d2:16:0d:96:57: 6c:d5:93:ba:8d:e3:55:70:73:e7:60:52:49:d3:91: fd:a0:de:6b:8c:d2:51:39:fb:b8:14:85:63:12:f9: 1e:f2:1b:7b:9d:b4:a7:89:57:7d:f5:32:1a:e2:98: b5:b4:cc:1c:c8:5f:73:7b:fb:04:96:59:1e:ff:8f: 2e:10:35:aa:f9:09:45:8c:45:db:ef:3a:f8:ec:77: a6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B6:6F:64:C7:25:B8:61:F6:37:C5:32:A9:C9:FF:AE:8D:14:A6:CC X509v3 Authority Key Identifier: keyid:24:F5:DA:48:C3:AF:BC:A0:FF:D9:21:54:7E:F0:9F:77:6A:F8:A2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/323630323a663936643a3a2f34302d313238203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f96d::/40 Signature Algorithm: sha256WithRSAEncryption 29:0b:01:23:30:6a:36:05:79:13:86:3a:e3:37:71:a0:4b:5b: e0:3b:49:49:93:5d:17:ab:99:90:d2:59:b6:13:ef:a6:45:e1: 4a:97:de:ae:df:48:4d:47:59:7e:ae:53:3a:7c:ff:da:f1:6c: 5e:f6:e8:da:2f:36:39:f0:85:54:d1:c4:88:b9:9b:18:d0:6b: 03:c8:7b:7f:e9:e7:81:2d:f9:7f:33:5d:5d:2c:98:f0:fc:ed: 1b:09:1b:b1:8c:8b:a3:3f:e7:c5:57:32:1e:48:db:59:74:5e: 7f:01:2d:74:f2:a1:cf:9e:6e:3e:a5:69:67:f6:e5:81:7f:df: 8d:64:f8:35:27:9d:be:18:7c:38:82:7f:22:74:78:00:42:d1: 78:a0:a8:1a:90:e8:64:9a:67:b9:fb:ca:17:79:70:15:2b:90: 3d:62:62:a2:27:67:aa:16:23:92:5f:58:cf:11:0f:66:01:3d: 40:c1:1f:30:e3:0d:9a:21:8d:d2:3d:6b:78:ff:65:a2:a8:8c: 5c:35:a8:db:15:8e:f2:a7:7a:12:8a:2d:6e:90:0f:1a:f6:1b: 64:73:18:2f:96:1e:38:19:3b:7e:e0:a2:50:9c:ad:51:90:19: 72:f9:69:55:c8:da:f0:6d:02:90:f5:3d:0a:75:b4:26:59:95: 1b:b1:00:16 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUX04ETJaKLVjp72BrTwvhC+fZNoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZjQ0YzgyZGFiYTllY2E3NDZiMGQwMGY1ZWMxYzcwOTQ1 NGJlNjEyNTY2MWI5MmJkYTcwHhcNMjUwMjA3MTEzNjE4WhcNMjYwMjA2MTE0MTE4 WjAzMTEwLwYDVQQDEyhGNUI2NkY2NEM3MjVCODYxRjYzN0M1MzJBOUM5RkZBRThE MTRBNkNDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA085tFIFrHlwa oEf1RAkNdp7A4Mq5hubyDDIMwKH3CzqgxqB7ggBCwmgpi5mj6OW2X4Fliix3LJk3 NHGgdcrTaFlgleBviwLVrX8AU/zZb3KPdqYziceKAs94GuHDXDNceBmBBomiykdX 14JGGzbbIIS7hmFGa4IgVjZ+FZnon0R/v5Z/MEIMjeirLO5oBzWct6CAhGvjeoDq xx5wYRST3FeEDyRtHXqZS5eegXHi0hYNllds1ZO6jeNVcHPnYFJJ05H9oN5rjNJR Ofu4FIVjEvke8ht7nbSniVd99TIa4pi1tMwcyF9ze/sEllke/48uEDWq+QlFjEXb 7zr47HemqwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFPW2b2THJbhh9jfFMqnJ/66N FKbMMB8GA1UdIwQYMBaAFCT12kjDr7yg/9khVH7wn3dq+KLqMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZj LTljOWYzODk4OTk1ZC8xLzI0RjVEQTQ4QzNBRkJDQTBGRkQ5MjE1NDdFRjA5Rjc3 NkFGOEEyRUEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC8wMmM3NzA2Yi0zYmFmLTQyY2ItYmRmNy03 ODJiMDM2MjUyYjMvZjQ0YzgyZGFiYTllY2E3NDZiMGQwMGY1ZWMxYzcwOTQ1NGJl NjEyNTY2MWI5MmJkYTcuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4OTk1ZC8xLzMyMzYzMDMy M2E2NjM5MzY2NDNhM2EyZjM0MzAyZDMxMzIzODIwM2QzZTIwMzQzNzMyMzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACYC+W0AMA0GCSqGSIb3DQEBCwUAA4IBAQApCwEjMGo2BXkThjrj N3GgS1vgO0lJk10Xq5mQ0lm2E++mReFKl96u30hNR1l+rlM6fP/a8Wxe9ujaLzY5 8IVU0cSIuZsY0GsDyHt/6eeBLfl/M11dLJjw/O0bCRuxjIujP+fFVzIeSNtZdF5/ AS108qHPnm4+pWln9uWBf9+NZPg1J52+GHw4gn8idHgAQtF4oKgakOhkmme5+8oX eXAVK5A9YmKiJ2eqFiOSX1jPEQ9mAT1AwR8w4w2aIY3SPWt4/2WiqIxcNajbFY7y p3oSii1ukA8a9htkcxgvlh44GTt+4KJQnK1RkBly+WlVyNrwbQKQ9T0KdbQmWZUb sQAW -----END CERTIFICATE-----Generated at Thu Apr 3 07:07:51 2025 by rpki-client