$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/32332e3137372e382e302f32342d3234203d3e20343031303339.roa File: 32332e3137372e382e302f32342d3234203d3e20343031303339.roa (raw, json) Hash identifier: 9MddGRx4XySPk4EqGGIUhPddP9sri7kA7wX4lfen7OM= Subject key identifier: AD:A6:7A:8D:D0:25:51:7C:62:37:47:F2:57:0B:0E:71:CE:39:6C:8B Certificate issuer: /CN=200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db Certificate serial: 22ADDAB4E4C428C67F7EE20DDE1D636D154B29E7 Authority key identifier: 63:55:2D:73:63:6A:C0:8B:8F:CA:F6:E9:C2:46:3D:64:72:CA:3B:F3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/32332e3137372e382e302f32342d3234203d3e20343031303339.roa Signing time: Wed 22 May 2024 18:36:25 +0000 ROA not before: Wed 22 May 2024 18:31:25 +0000 ROA not after: Wed 21 May 2025 18:36:25 +0000 asID: 401039 IP address blocks: 23.177.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.crl rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/6ead073c-b9f0-4523-b39e-a3c7dab97c25.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 03 Jul 2024 16:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ad:da:b4:e4:c4:28:c6:7f:7e:e2:0d:de:1d:63:6d:15:4b:29:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db Validity Not Before: May 22 18:31:25 2024 GMT Not After : May 21 18:36:25 2025 GMT Subject: CN=ADA67A8DD025517C623747F2570B0E71CE396C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9f:c7:73:cb:d6:df:ca:9e:61:e2:35:7b:d2: 6d:54:bb:91:b9:69:db:20:f6:93:a3:e8:cf:dc:4e: 45:aa:03:27:bd:92:c3:be:26:b2:49:f0:bb:93:89: ec:7d:64:24:de:60:64:46:cc:63:89:bf:bc:12:8c: 38:41:05:ac:d1:33:79:a3:94:2a:1b:e0:3c:9b:d7: 78:cc:8a:cf:6b:07:d1:0e:3b:33:6b:86:26:fa:b1: 68:4e:5a:3b:53:ca:38:99:67:e4:37:31:e7:f8:0a: cf:35:95:eb:50:1d:c3:93:97:2b:a8:37:48:33:7d: 41:eb:01:4a:76:79:2e:fa:07:24:38:34:0d:53:0b: ef:1b:b4:01:86:40:19:21:3e:5c:8c:50:61:64:c4: 63:01:0b:72:53:cb:e7:3e:a8:fc:e5:06:ed:16:2c: af:a6:be:74:b2:e1:48:ea:d5:ef:c8:89:f7:58:dc: 1f:57:c2:5a:8d:c8:6b:83:0f:7f:ca:46:7c:dc:e5: f1:4c:53:e3:99:e6:6a:85:ea:cd:1c:57:71:63:b3: 29:10:de:7f:ea:18:6d:bb:f9:c4:f3:99:45:84:1f: bc:fa:80:43:ac:a9:e9:d5:6b:dd:81:a0:12:33:56: 71:c0:81:f7:16:08:c2:f1:27:b3:22:a8:cf:e4:30: 4a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A6:7A:8D:D0:25:51:7C:62:37:47:F2:57:0B:0E:71:CE:39:6C:8B X509v3 Authority Key Identifier: keyid:63:55:2D:73:63:6A:C0:8B:8F:CA:F6:E9:C2:46:3D:64:72:CA:3B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/63552D73636AC08B8FCAF6E9C2463D6472CA3BF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/8e6147b8-d55d-4ed8-8973-d5cf2a27e161/200ae5435f38d42d4a11763fe2104e07777a6258a5e0b4c9db.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/4/32332e3137372e382e302f32342d3234203d3e20343031303339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.177.8.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:20:55:5d:1b:16:b7:fa:84:0e:f4:68:fb:7e:0b:b5:8b:0d: 40:ee:26:c9:c3:d9:a0:55:20:70:79:02:bd:25:93:10:5f:96: 61:76:f0:fa:22:15:48:5a:89:f9:64:09:f9:fe:86:d2:81:2e: d4:d3:77:42:56:46:1a:c8:86:7c:ef:91:33:93:96:fd:9c:32: 71:46:62:72:fe:48:ae:ae:c0:58:16:c7:97:15:9d:e7:6d:df: 4a:34:76:d6:be:e6:5a:80:73:a6:e2:1e:25:e4:a2:d7:ae:3d: 67:58:e8:8f:20:18:9b:7f:18:8d:6d:0d:5f:89:27:27:5c:a0: e8:7e:8a:fa:d8:c7:96:d9:f1:16:c3:86:66:e8:7a:2a:42:97: 19:da:d7:c5:dd:93:ff:5a:9e:1c:0a:0e:f8:e8:6a:aa:44:d4: c0:6b:28:54:09:e7:04:15:8d:dc:68:0a:06:fa:9d:2a:b3:2f: 84:d5:6c:5f:74:a0:60:31:78:dd:ff:3f:9d:b1:4d:d2:26:4f: c4:ff:41:b6:95:1f:d6:e4:24:51:00:0c:b7:7f:83:b2:03:c1: 14:00:fb:0a:a5:7f:90:45:31:d8:33:3f:77:9b:17:01:d8:5c: 3c:ec:f9:39:92:e8:d7:63:be:6d:04:fa:de:39:ba:87:4d:83: 36:85:2a:f3 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUIq3atOTEKMZ/fuIN3h1jbRVLKecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMjAwYWU1NDM1ZjM4ZDQyZDRhMTE3NjNmZTIxMDRlMDc3 NzdhNjI1OGE1ZTBiNGM5ZGIwHhcNMjQwNTIyMTgzMTI1WhcNMjUwNTIxMTgzNjI1 WjAzMTEwLwYDVQQDEyhBREE2N0E4REQwMjU1MTdDNjIzNzQ3RjI1NzBCMEU3MUNF Mzk2QzhCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5/Hc8vW38qe YeI1e9JtVLuRuWnbIPaTo+jP3E5FqgMnvZLDviaySfC7k4nsfWQk3mBkRsxjib+8 Eow4QQWs0TN5o5QqG+A8m9d4zIrPawfRDjsza4Ym+rFoTlo7U8o4mWfkNzHn+ArP NZXrUB3Dk5crqDdIM31B6wFKdnku+gckODQNUwvvG7QBhkAZIT5cjFBhZMRjAQty U8vnPqj85QbtFiyvpr50suFI6tXvyIn3WNwfV8Jajchrgw9/ykZ83OXxTFPjmeZq herNHFdxY7MpEN5/6hhtu/nE85lFhB+8+oBDrKnp1WvdgaASM1ZxwIH3FgjC8Sez IqjP5DBKcQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFK2meo3QJVF8YjdH8lcLDnHO OWyLMB8GA1UdIwQYMBaAFGNVLXNjasCLj8r26cJGPWRyyjvzMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZi LTY4NmQ4OGU3MWFlOS80LzYzNTUyRDczNjM2QUMwOEI4RkNBRjZFOUMyNDYzRDY0 NzJDQTNCRjMuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzZlYWQwNzNjLWI5ZjAt NDUyMy1iMzllLWEzYzdkYWI5N2MyNS84ZTYxNDdiOC1kNTVkLTRlZDgtODk3My1k NWNmMmEyN2UxNjEvMjAwYWU1NDM1ZjM4ZDQyZDRhMTE3NjNmZTIxMDRlMDc3Nzdh NjI1OGE1ZTBiNGM5ZGIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZiLTY4NmQ4OGU3MWFlOS80LzMyMzMyZTMx MzczNzJlMzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDMwMzEzMDMzMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXsQgwDQYJKoZIhvcNAQELBQADggEBAI0gVV0bFrf6hA70aPt+C7WL DUDuJsnD2aBVIHB5Ar0lkxBflmF28PoiFUhaiflkCfn+htKBLtTTd0JWRhrIhnzv kTOTlv2cMnFGYnL+SK6uwFgWx5cVnedt30o0dta+5lqAc6biHiXkoteuPWdY6I8g GJt/GI1tDV+JJydcoOh+ivrYx5bZ8RbDhmboeipClxna18Xdk/9anhwKDvjoaqpE 1MBrKFQJ5wQVjdxoCgb6nSqzL4TVbF90oGAxeN3/P52xTdImT8T/QbaVH9bkJFEA DLd/g7IDwRQA+wqlf5BFMdgzP3ebFwHYXDzs+TmS6Ndjvm0E+t45uodNgzaFKvM= -----END CERTIFICATE-----Generated at Tue Jul 2 16:17:08 2024 by rpki-client on console-fra.rpki-client.org