$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a61303a3a2f34342d3438203d3e2030.roa File: 323630323a663939323a61303a3a2f34342d3438203d3e2030.roa (raw, json) Hash identifier: TsDzPexWiyW7o35YhRgMnmXGuAARZmgF1yTYqL8wkn4= Subject key identifier: 16:38:43:6E:76:4C:85:1B:0E:5E:55:00:74:77:9F:80:5A:5F:85:C0 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 4D60F46B719BD4F8221AD0B32C6141929064C4C7 Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a61303a3a2f34342d3438203d3e2030.roa Signing time: Tue 24 Jun 2025 11:54:09 +0000 ROA not before: Tue 24 Jun 2025 11:49:09 +0000 ROA not after: Tue 23 Jun 2026 11:54:09 +0000 asID: 0 IP address blocks: 2602:f992:a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:60:f4:6b:71:9b:d4:f8:22:1a:d0:b3:2c:61:41:92:90:64:c4:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Jun 24 11:49:09 2025 GMT Not After : Jun 23 11:54:09 2026 GMT Subject: CN=1638436E764C851B0E5E550074779F805A5F85C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:13:7b:56:30:a0:85:26:dd:5a:68:dd:24: 4f:f6:c9:15:74:e2:f2:ce:4d:94:d4:8f:a0:bd:a3: 11:77:1f:33:f6:a6:7a:0b:01:b2:b9:2e:40:92:e9: 02:13:20:20:81:0e:59:b3:ff:14:5f:a6:22:07:54: c6:80:d4:de:16:14:85:19:23:e5:95:68:63:04:ba: cd:1b:86:c5:e0:40:79:da:d4:ac:01:c1:39:09:d0: c0:7b:31:53:94:5d:c3:6f:9f:91:fe:fa:86:8b:d3: cb:39:e2:86:7d:72:2c:0d:e0:59:c9:fd:45:91:92: 73:18:6a:35:2b:29:7f:b7:88:83:55:9e:2d:e7:af: 19:2b:54:f5:56:bd:e1:7f:50:5e:d3:36:a5:ba:80: b2:2c:13:81:50:8a:c9:d3:11:eb:b9:91:70:93:1d: 86:e1:cf:23:bb:7d:a3:7a:ca:7e:f2:21:1d:97:17: 51:1b:b4:03:03:2c:8a:dc:34:53:00:db:e0:53:a6: 58:67:5a:18:63:cf:0b:ea:42:d0:f2:34:c3:7c:a4: 69:0a:1f:1c:f2:37:c9:53:b6:76:90:c3:cf:fb:ca: f0:ff:d1:f3:c4:f3:d3:b2:f2:bd:c0:02:57:83:d0: f0:e4:bc:2f:d5:f1:ce:4f:16:72:07:25:e1:f6:8d: f2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:38:43:6E:76:4C:85:1B:0E:5E:55:00:74:77:9F:80:5A:5F:85:C0 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a61303a3a2f34342d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:a0::/44 Signature Algorithm: sha256WithRSAEncryption 81:f5:b4:8a:06:78:5c:01:24:0d:22:8a:5e:fd:58:fa:a9:7f: ae:a6:aa:c1:d2:84:29:84:18:28:5b:69:a5:22:40:ce:a0:7d: fd:ba:5a:51:f9:35:07:a5:88:67:46:cb:e4:80:9c:8a:cc:0e: 0a:96:2a:4c:b4:93:ea:18:8e:f5:f2:fb:e6:e8:81:42:88:f6: 9b:1a:ba:2d:0d:79:2d:58:65:a9:b4:1b:a5:9e:2a:7e:42:5a: c5:23:ae:1b:3a:f6:c4:81:dc:49:27:86:a6:71:48:79:a7:88: 12:71:5f:4c:b7:7a:6c:9c:d0:b0:87:d9:85:b1:9a:40:0f:ca: 29:2b:ec:f7:7d:7d:a0:f7:a9:55:28:9c:3d:0e:68:c8:b9:8a: 40:d1:ab:b6:33:9c:26:52:a4:8a:e6:0c:47:02:3a:d5:04:8f: 0f:69:ca:cb:9c:06:6d:68:2d:36:3c:19:f8:5d:d1:d8:60:45: 5f:49:5a:07:b2:56:32:96:06:60:7d:5a:6f:c1:14:22:c7:40: da:ff:9d:aa:1e:fa:8c:7f:51:10:a8:0b:00:53:a9:8d:d7:68: a8:03:69:c4:de:49:3b:2f:33:fc:1c:aa:1d:8d:d0:97:ca:d7: 56:8f:ba:c4:c0:fa:6d:35:17:00:05:50:30:13:85:f9:4a:a0: ee:ad:3c:f3 -----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgIUTWD0a3Gb1PgiGtCzLGFBkpBkxMcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwNjI0MTE0OTA5WhcNMjYwNjIzMTE1NDA5 WjAzMTEwLwYDVQQDEygxNjM4NDM2RTc2NEM4NTFCMEU1RTU1MDA3NDc3OUY4MDVB NUY4NUMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpYTe1YwoIUm 3Vpo3SRP9skVdOLyzk2U1I+gvaMRdx8z9qZ6CwGyuS5AkukCEyAggQ5Zs/8UX6Yi B1TGgNTeFhSFGSPllWhjBLrNG4bF4EB52tSsAcE5CdDAezFTlF3Db5+R/vqGi9PL OeKGfXIsDeBZyf1FkZJzGGo1Kyl/t4iDVZ4t568ZK1T1Vr3hf1Be0zaluoCyLBOB UIrJ0xHruZFwkx2G4c8ju32jesp+8iEdlxdRG7QDAyyK3DRTANvgU6ZYZ1oYY88L 6kLQ8jTDfKRpCh8c8jfJU7Z2kMPP+8rw/9HzxPPTsvK9wAJXg9Dw5Lwv1fHOTxZy ByXh9o3y8QIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFBY4Q252TIUbDl5VAHR3n4Ba X4XAMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGpBggrBgEFBQcBCwSBnDCBmTCBlgYIKwYBBQUH MAuGgYlyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhNjEzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMwLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEJgL5kgCgMA0GCSqGSIb3DQEBCwUAA4IBAQCB9bSKBnhcASQNIope/Vj6 qX+upqrB0oQphBgoW2mlIkDOoH39ulpR+TUHpYhnRsvkgJyKzA4KlipMtJPqGI71 8vvm6IFCiPabGrotDXktWGWptBulnip+QlrFI64bOvbEgdxJJ4amcUh5p4gScV9M t3psnNCwh9mFsZpAD8opK+z3fX2g96lVKJw9DmjIuYpA0au2M5wmUqSK5gxHAjrV BI8PacrLnAZtaC02PBn4XdHYYEVfSVoHslYylgZgfVpvwRQix0Da/52qHvqMf1EQ qAsAU6mN12ioA2nE3kk7LzP8HKodjdCXytdWj7rEwPptNRcABVAwE4X5SqDurTzz -----END CERTIFICATE-----Generated at Sun Jun 29 18:27:49 2025 by rpki-client