$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66373a3a2f34382d3438203d3e203236303432.roa File: 323630323a663939323a66373a3a2f34382d3438203d3e203236303432.roa (raw, json) Hash identifier: fOgtYgLdoLv7e1AYu38TvXyvhQ1fkiq8zn2NcBleuBU= Subject key identifier: A7:34:B7:5E:C0:01:B2:3A:6B:A3:CD:4E:0B:8E:73:6B:F6:53:A9:70 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 74F8470D224356A6B80D1B4D7B62CF0FED1E5D99 Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66373a3a2f34382d3438203d3e203236303432.roa Signing time: Fri 08 Aug 2025 15:34:27 +0000 ROA not before: Fri 08 Aug 2025 15:29:27 +0000 ROA not after: Fri 07 Aug 2026 15:34:27 +0000 asID: 26042 IP address blocks: 2602:f992:f7::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 12:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f8:47:0d:22:43:56:a6:b8:0d:1b:4d:7b:62:cf:0f:ed:1e:5d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Aug 8 15:29:27 2025 GMT Not After : Aug 7 15:34:27 2026 GMT Subject: CN=A734B75EC001B23A6BA3CD4E0B8E736BF653A970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f9:97:2d:c9:a5:58:1b:af:a6:bf:91:0c:a2: ad:17:25:15:a2:17:26:79:e9:03:8e:72:b5:35:20: 87:19:78:8c:07:ec:bb:2c:34:65:6f:e2:d2:14:b6: 27:8f:1f:18:2c:4d:08:37:16:67:42:d9:1b:cf:8b: a3:c4:26:07:10:9a:55:f4:05:df:04:64:0b:6e:8e: 87:72:e3:0f:66:d4:1e:3f:fd:58:2f:70:f5:64:a9: 08:35:2d:5a:a4:2e:d1:cd:c3:ba:0c:48:61:9b:5c: e2:c0:77:a0:6f:70:b6:bb:bc:85:ca:bf:30:a1:5d: 37:04:5e:81:bd:6b:b8:53:24:4e:fe:54:03:48:63: 0c:a3:9e:4c:77:ed:9d:e4:3d:75:ab:c4:a4:d1:c1: 2a:f5:db:03:ff:93:83:dc:24:49:14:fd:14:d8:56: 10:8f:93:65:7f:0c:ab:88:85:3e:6f:97:39:de:82: 43:5e:37:d6:96:85:9d:7d:9b:44:83:86:2e:e6:6e: ff:65:46:e2:c9:90:cf:77:67:cf:96:5f:c0:f0:67: dd:e5:3f:ad:d4:37:0e:83:49:d8:b3:0f:4f:99:66: a2:82:29:ae:be:13:dd:49:b4:ab:83:cd:80:35:a8: 71:9b:bf:a7:d8:ec:ac:48:66:18:43:c9:43:b1:28: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:34:B7:5E:C0:01:B2:3A:6B:A3:CD:4E:0B:8E:73:6B:F6:53:A9:70 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/323630323a663939323a66373a3a2f34382d3438203d3e203236303432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2602:f992:f7::/48 Signature Algorithm: sha256WithRSAEncryption 7a:24:c6:c1:a7:8b:f1:24:82:ce:af:39:1b:41:66:0c:f2:e0: 0e:6d:8f:4e:f6:c4:7b:b5:b2:7c:8a:a4:18:3e:b3:f0:17:d8: ee:6e:b6:6d:ef:b9:7d:7a:9c:2c:40:5a:86:90:88:49:f8:12: f0:55:ed:65:ec:9b:9b:98:31:a9:dc:81:cd:0d:de:d6:d0:eb: 5f:e1:d7:f4:ba:a0:0f:cf:c8:9a:9e:8c:c4:d6:cd:53:68:f0: 4a:68:47:aa:83:80:87:1a:05:60:eb:ca:30:95:0d:0d:db:ee: 13:8b:7b:c2:79:ec:fa:86:a6:b9:f5:7e:86:65:25:8b:0a:2e: 66:65:ea:c7:88:0e:7c:9c:fd:b4:cc:ed:61:cf:89:cf:de:3b: 88:00:28:d1:2d:2f:30:b9:93:73:4d:1e:f7:00:a4:3a:d9:fa: ca:b3:16:d3:a4:dc:16:20:4c:ab:d6:52:6a:33:06:d4:c5:9f: b6:d9:dd:03:2c:32:15:b1:57:82:76:d5:4f:48:82:a6:e2:19: 49:33:62:78:02:70:eb:05:2f:38:7a:6f:9d:25:d3:50:8c:46: ea:ce:a3:83:c5:66:57:fc:ab:f9:1a:cc:21:73:90:00:a8:1f: 7e:0b:a6:9d:05:ba:a6:0d:8d:f3:9f:d3:73:64:9e:b4:ec:9a: 58:55:fe:e4 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUdPhHDSJDVqa4DRtNe2LPD+0eXZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjUwODA4MTUyOTI3WhcNMjYwODA3MTUzNDI3 WjAzMTEwLwYDVQQDEyhBNzM0Qjc1RUMwMDFCMjNBNkJBM0NENEUwQjhFNzM2QkY2 NTNBOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/mXLcmlWBuv pr+RDKKtFyUVohcmeekDjnK1NSCHGXiMB+y7LDRlb+LSFLYnjx8YLE0INxZnQtkb z4ujxCYHEJpV9AXfBGQLbo6HcuMPZtQeP/1YL3D1ZKkINS1apC7RzcO6DEhhm1zi wHegb3C2u7yFyr8woV03BF6BvWu4UyRO/lQDSGMMo55Md+2d5D11q8Sk0cEq9dsD /5OD3CRJFP0U2FYQj5NlfwyriIU+b5c53oJDXjfWloWdfZtEg4Yu5m7/ZUbiyZDP d2fPll/A8Gfd5T+t1DcOg0nYsw9PmWaigimuvhPdSbSrg82ANahxm7+n2OysSGYY Q8lDsSgCRwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFKc0t17AAbI6a6PNTguOc2v2 U6lwMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGxBggrBgEFBQcBCwSBpDCBoTCBngYIKwYBBQUH MAuGgZFyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzYzMDMy M2E2NjM5MzkzMjNhNjYzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDM0 MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAmAvmSAPcwDQYJKoZIhvcNAQELBQADggEBAHokxsGni/Ek gs6vORtBZgzy4A5tj072xHu1snyKpBg+s/AX2O5utm3vuX16nCxAWoaQiEn4EvBV 7WXsm5uYMancgc0N3tbQ61/h1/S6oA/PyJqejMTWzVNo8EpoR6qDgIcaBWDryjCV DQ3b7hOLe8J57PqGprn1foZlJYsKLmZl6seIDnyc/bTM7WHPic/eO4gAKNEtLzC5 k3NNHvcApDrZ+sqzFtOk3BYgTKvWUmozBtTFn7bZ3QMsMhWxV4J21U9IgqbiGUkz YngCcOsFLzh6b50l01CMRurOo4PFZlf8q/kazCFzkACoH34Lpp0FuqYNjfOf03Nk nrTsmlhV/uQ= -----END CERTIFICATE-----Generated at Sat Aug 23 14:40:29 2025 by rpki-client