$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a36303a3a2f34342d3438203d3e20313532393030.roa File: 323630323a663939323a36303a3a2f34342d3438203d3e20313532393030.roa (raw, json) Hash identifier: HWpzvbc2LzEmXxoT+kul7X4owcauEKJHusM+Ir+9R/w= Subject key identifier: 0D:DB:AF:A5:A4:45:F7:99:C8:0A:B6:2B:C8:35:A9:96:14:55:25:F6 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 1024B9048FB29CB450416E5338BE57F0626AF71E Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a36303a3a2f34342d3438203d3e20313532393030.roa Signing time: Fri 28 Feb 2025 08:20:18 +0000 ROA not before: Fri 28 Feb 2025 08:15:18 +0000 ROA not after: Fri 27 Feb 2026 08:20:18 +0000 asID: 152900 IP address blocks: 2602:f992:60::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 13:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:24:b9:04:8f:b2:9c:b4:50:41:6e:53:38:be:57:f0:62:6a:f7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Feb 28 08:15:18 2025 GMT Not After : Feb 27 08:20:18 2026 GMT Subject: CN=0DDBAFA5A445F799C80AB62BC835A996145525F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a6:19:e0:f2:64:de:70:3b:fd:d9:42:9a:93: 43:c4:12:6a:bc:a9:ea:31:c9:c8:78:a1:85:af:68: 01:2f:09:ad:4f:39:d4:6c:79:bc:bb:bf:31:5c:e7: a5:79:7f:99:e6:54:88:65:17:6c:01:8f:49:29:70: dc:f5:72:a0:03:87:5a:45:ae:95:da:f0:0d:7c:07: ab:1c:bf:4d:f8:20:eb:09:d3:37:86:c5:3e:cb:7b: 09:2b:3a:78:7a:0c:81:34:db:af:92:96:d7:22:fe: fb:29:cf:f0:41:2a:b6:b1:c3:2f:89:a2:4c:70:ca: df:97:1d:0f:87:9b:5d:0c:a1:49:9d:5f:51:c9:cd: 8b:a2:a4:ce:5d:7b:07:96:05:1c:ba:30:0b:79:f1: 26:59:a9:9f:b0:83:84:8e:3a:e9:a8:05:81:ba:55: 95:05:75:4d:37:a6:c4:89:79:36:1d:04:28:f5:9f: 72:13:67:1d:b5:05:f7:50:04:8a:ae:31:d5:e1:c5: 59:7a:e3:33:51:d3:52:19:60:4a:a5:47:aa:a2:e8: 23:bb:53:8d:f4:b9:6f:b2:7b:20:46:dd:7a:01:33: e5:c4:aa:63:ef:79:ab:0b:f2:7d:f4:54:7a:71:2f: 66:7b:9c:38:b1:4d:ef:0b:c2:5b:8b:57:5d:4a:e4: e8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DB:AF:A5:A4:45:F7:99:C8:0A:B6:2B:C8:35:A9:96:14:55:25:F6 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a36303a3a2f34342d3438203d3e20313532393030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:60::/44 Signature Algorithm: sha256WithRSAEncryption 54:68:0a:a5:ed:cd:c5:de:27:97:9d:92:2f:a0:74:3c:42:21: a4:31:84:04:17:7d:5c:84:21:fd:f9:a8:6f:16:72:58:f5:d7: 62:5f:18:85:43:75:14:3e:2d:0f:c1:69:7e:ff:7e:eb:bc:08: e4:6d:c0:e5:6e:31:b9:f9:4d:47:e4:7a:52:26:6e:17:f8:73: 50:4f:b8:7c:29:bd:db:26:f0:2d:f4:7e:76:07:ac:53:44:34: f7:c9:76:70:c1:ca:17:d8:ff:81:97:4d:09:1a:0a:40:2c:3b: 6f:8e:c8:fc:06:35:bf:13:56:4a:e1:9a:97:cc:d0:d6:12:6d: 7e:f4:2a:a8:13:7f:20:f0:48:69:26:b1:98:a0:ee:ba:f6:cf: 66:1c:e7:18:74:86:8e:f2:55:9f:65:94:77:2d:7d:86:47:ef: 13:85:3c:42:6c:85:45:c0:e8:32:8b:0e:ba:bb:44:fe:8d:99: 27:ac:ac:70:1b:b6:9b:01:98:ea:4b:f9:2a:61:37:f5:c3:0f: 28:6c:85:49:d1:13:67:9b:a4:c9:7e:17:98:d5:5e:c7:0b:31: 04:c4:a5:b8:5c:3c:0e:f5:f4:e0:bb:0b:72:52:4c:69:59:47: 9c:8e:45:a2:c5:85:09:80:ec:1c:3d:d5:2b:6d:9a:d6:09:93: f8:43:64:82 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUECS5BI+ynLRQQW5TOL5X8GJq9x4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwMjI4MDgxNTE4WhcNMjYwMjI3MDgyMDE4 WjAzMTEwLwYDVQQDEygwRERCQUZBNUE0NDVGNzk5QzgwQUI2MkJDODM1QTk5NjE0 NTUyNUY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqYZ4PJk3nA7 /dlCmpNDxBJqvKnqMcnIeKGFr2gBLwmtTznUbHm8u78xXOeleX+Z5lSIZRdsAY9J KXDc9XKgA4daRa6V2vANfAerHL9N+CDrCdM3hsU+y3sJKzp4egyBNNuvkpbXIv77 Kc/wQSq2scMviaJMcMrflx0Ph5tdDKFJnV9Ryc2LoqTOXXsHlgUcujALefEmWamf sIOEjjrpqAWBulWVBXVNN6bEiXk2HQQo9Z9yE2cdtQX3UASKrjHV4cVZeuMzUdNS GWBKpUeqougju1ON9LlvsnsgRt16ATPlxKpj73mrC/J99FR6cS9me5w4sU3vC8Jb i1ddSuTo5QIDAQABo4IC1jCCAtIwHQYDVR0OBBYEFA3br6WkRfeZyAq2K8g1qZYU VSX2MB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGzBggrBgEFBQcBCwSBpjCBozCBoAYIKwYBBQUH MAuGgZNyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhMzYzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMxMzUzMjM5 MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB /wQTMBEwDwQCAAIwCQMHBCYC+ZIAYDANBgkqhkiG9w0BAQsFAAOCAQEAVGgKpe3N xd4nl52SL6B0PEIhpDGEBBd9XIQh/fmobxZyWPXXYl8YhUN1FD4tD8Fpfv9+67wI 5G3A5W4xuflNR+R6UiZuF/hzUE+4fCm92ybwLfR+dgesU0Q098l2cMHKF9j/gZdN CRoKQCw7b47I/AY1vxNWSuGal8zQ1hJtfvQqqBN/IPBIaSaxmKDuuvbPZhznGHSG jvJVn2WUdy19hkfvE4U8QmyFRcDoMosOurtE/o2ZJ6yscBu2mwGY6kv5KmE39cMP KGyFSdETZ5ukyX4XmNVexwsxBMSluFw8DvX04LsLclJMaVlHnI5FosWFCYDsHD3V K22a1gmT+ENkgg== -----END CERTIFICATE-----Generated at Sat Apr 26 17:40:15 2025 by rpki-client