$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3a2f33362d3336203d3e203135333533.roa File: 323630323a666131313a3a2f33362d3336203d3e203135333533.roa (raw, json) Hash identifier: Xgd8P8x+fSx9Q/c9jIqzPe+MvWnnGe8xiq2HmK66Ge4= Subject key identifier: 40:E8:76:D2:EF:B5:D2:57:DB:76:19:CA:41:3B:A8:A4:90:5C:85:E7 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 1CAA10467A9513FEFFD365B71D5B34369C25C2D4 Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3a2f33362d3336203d3e203135333533.roa Signing time: Tue 24 Jun 2025 05:38:43 +0000 ROA not before: Tue 24 Jun 2025 05:33:43 +0000 ROA not after: Tue 23 Jun 2026 05:38:43 +0000 asID: 15353 IP address blocks: 2602:fa11::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 11:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:aa:10:46:7a:95:13:fe:ff:d3:65:b7:1d:5b:34:36:9c:25:c2:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Jun 24 05:33:43 2025 GMT Not After : Jun 23 05:38:43 2026 GMT Subject: CN=40E876D2EFB5D257DB7619CA413BA8A4905C85E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2c:08:70:bc:d0:d2:3d:08:3c:dc:d2:43:7b: 53:c4:dd:6b:b7:e0:5a:33:df:39:a4:b5:d7:4c:a6: 74:de:4d:c4:e7:e4:5e:26:36:98:3b:79:c1:32:92: c5:a4:44:21:15:bc:f7:5a:11:cd:8f:a6:ff:3e:07: 3b:d7:b7:53:1b:54:88:61:1e:50:96:a1:4b:b2:d7: 77:62:de:0d:0d:db:a9:8a:2e:e0:bc:5d:3f:61:9b: cd:2f:e3:ac:d6:ea:52:f1:75:cd:9c:45:16:14:b8: 00:32:46:1a:a2:b1:9e:69:b6:23:f5:ec:0c:ff:ec: 59:87:72:c9:b3:2f:d9:51:f5:7a:ee:6c:f0:37:06: 65:64:d3:f5:bb:25:4b:cf:46:cc:36:5d:5d:f8:30: 3e:8b:15:f1:3a:cd:fe:67:2f:d4:33:e7:81:80:27: 29:33:84:fb:b7:5b:27:ad:a8:41:bd:9a:11:5e:87: f2:b3:86:4f:7c:da:b0:e1:36:f6:89:a5:98:69:3b: ac:12:47:27:51:45:13:7d:00:5e:3a:4f:2b:7c:0c: 57:dc:f4:02:0b:c7:fc:0e:3c:9d:23:70:a6:0e:3d: 8d:60:80:17:18:fe:dc:bc:42:85:6a:31:a5:db:be: 20:3e:06:4a:c7:12:09:eb:68:61:4e:90:74:20:09: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E8:76:D2:EF:B5:D2:57:DB:76:19:CA:41:3B:A8:A4:90:5C:85:E7 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/323630323a666131313a3a2f33362d3336203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:fa11::/36 Signature Algorithm: sha256WithRSAEncryption 57:b5:6d:b4:6a:92:88:da:02:3c:9e:f4:6e:9f:34:bf:e7:2b: 2e:f3:01:b9:e0:e5:96:0b:21:1b:ee:61:1a:fb:0a:c1:b7:06: 81:ac:18:6b:9e:70:d3:ea:06:75:d5:98:7f:d4:ed:01:4a:36: 38:cf:8f:0a:ba:09:ef:b3:60:3b:ad:f2:26:91:7c:b7:76:22: 4f:fd:c8:dd:78:f3:b0:78:bc:99:16:1d:b5:4c:84:be:4e:fc: 54:12:24:25:9f:b7:2a:22:99:87:8d:98:84:ff:1d:cf:79:96: 59:b1:d6:aa:8a:14:3a:38:f4:c4:9a:ce:47:31:cb:1c:58:af: 6b:87:cd:fa:80:ea:e9:39:1a:d8:65:a8:f5:df:ed:bd:ca:69: e3:e5:91:b5:9e:e5:40:4c:b6:a3:47:97:0e:54:30:56:80:c2: 67:cb:87:ed:ab:16:96:8c:12:1f:11:1f:3e:4e:5a:a3:d2:06: ae:d8:a1:b1:fd:0e:5d:8c:b6:6e:d9:b2:1c:94:65:69:51:69: 62:7f:24:a7:d0:a8:bd:42:d7:28:ab:a3:25:e6:9a:b9:7d:29: e5:e9:14:cf:b8:c4:e9:51:c2:0a:0a:c6:0f:77:ce:85:9b:ec: e1:53:f1:4d:71:fb:06:49:f3:8d:12:a9:e2:a2:c2:e5:9b:5d: 73:42:78:97 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUHKoQRnqVE/7/02W3HVs0NpwlwtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwNjI0MDUzMzQzWhcNMjYwNjIzMDUzODQz WjAzMTEwLwYDVQQDEyg0MEU4NzZEMkVGQjVEMjU3REI3NjE5Q0E0MTNCQThBNDkw NUM4NUU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqiwIcLzQ0j0I PNzSQ3tTxN1rt+BaM985pLXXTKZ03k3E5+ReJjaYO3nBMpLFpEQhFbz3WhHNj6b/ Pgc717dTG1SIYR5QlqFLstd3Yt4NDdupii7gvF0/YZvNL+Os1upS8XXNnEUWFLgA MkYaorGeabYj9ewM/+xZh3LJsy/ZUfV67mzwNwZlZNP1uyVLz0bMNl1d+DA+ixXx Os3+Zy/UM+eBgCcpM4T7t1snrahBvZoRXofys4ZPfNqw4Tb2iaWYaTusEkcnUUUT fQBeOk8rfAxX3PQCC8f8DjydI3CmDj2NYIAXGP7cvEKFajGl274gPgZKxxIJ62hh TpB0IAnjmQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFEDodtLvtdJX23YZykE7qKSQ XIXnMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMyMzYzMDMy M2E2NjYxMzEzMTNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMxMzUzMzM1MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQmAvoRADANBgkqhkiG9w0BAQsFAAOCAQEAV7VttGqSiNoCPJ70bp80 v+crLvMBueDllgshG+5hGvsKwbcGgawYa55w0+oGddWYf9TtAUo2OM+PCroJ77Ng O63yJpF8t3YiT/3I3XjzsHi8mRYdtUyEvk78VBIkJZ+3KiKZh42YhP8dz3mWWbHW qooUOjj0xJrORzHLHFiva4fN+oDq6Tka2GWo9d/tvcpp4+WRtZ7lQEy2o0eXDlQw VoDCZ8uH7asWlowSHxEfPk5ao9IGrtihsf0OXYy2btmyHJRlaVFpYn8kp9CovULX KKujJeaauX0p5ekUz7jE6VHCCgrGD3fOhZvs4VPxTXH7BknzjRKp4qLC5Ztdc0J4 lw== -----END CERTIFICATE-----Generated at Mon Jun 30 18:50:53 2025 by rpki-client