$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa File: 32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa (raw, json) Hash identifier: MvM5d5TO21mEEqIi89rrf+rLZ0dh8KEOdLxS6iWJq8k= Subject key identifier: 0C:2A:D7:B0:A5:50:C9:33:70:CE:23:86:07:3A:73:DE:26:E9:D1:EB Certificate issuer: /CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600 Certificate serial: 411F6A6DB46073F64A8592EB9D799CB1186F4FEF Authority key identifier: 44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa Signing time: Wed 22 May 2024 18:36:23 +0000 ROA not before: Wed 22 May 2024 18:31:23 +0000 ROA not after: Wed 21 May 2025 18:36:23 +0000 asID: 215051 IP address blocks: 23.164.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/4417C62BC8BB648A4A97DDF6505C2E443E4B35FF.crl rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/4417C62BC8BB648A4A97DDF6505C2E443E4B35FF.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 23 Jun 2024 08:56:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1f:6a:6d:b4:60:73:f6:4a:85:92:eb:9d:79:9c:b1:18:6f:4f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600 Validity Not Before: May 22 18:31:23 2024 GMT Not After : May 21 18:36:23 2025 GMT Subject: CN=0C2AD7B0A550C93370CE2386073A73DE26E9D1EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:79:07:42:83:71:65:59:8d:ac:94:66:85: a9:38:43:80:04:c0:f6:f0:a5:a4:c6:d6:17:fd:dc: 44:2c:ae:fb:db:07:1d:69:f0:6e:99:8f:75:9a:e8: 3a:ed:b7:2c:62:23:5e:45:25:e3:b0:39:ed:f2:28: cd:5c:e4:f9:a4:60:75:c5:89:1b:ba:dc:40:f8:0e: 4e:b9:f9:c1:fa:56:a0:2e:6b:8a:49:3d:86:be:94: 4b:ea:ec:d4:3c:17:bc:d6:3d:58:41:b8:13:c1:e3: 6f:fd:a2:21:2d:0e:e9:41:c3:48:2e:a2:f1:59:56: fe:c5:37:9c:a0:56:36:42:12:72:08:ce:bd:56:95: 81:46:c1:a3:a2:cb:fe:09:34:20:22:ea:ac:24:3e: 8b:2e:ed:37:20:71:1e:34:d5:ac:e3:3b:f5:96:fb: 0a:6f:ec:58:1b:ba:56:0a:d0:97:90:dd:b6:56:72: 84:60:da:52:d9:6b:62:bb:48:15:10:77:2d:c3:f2: 8e:fb:b3:88:86:09:c2:96:30:02:ec:7e:1e:4a:fa: 56:da:77:bf:df:51:f1:0a:f7:36:1a:7f:5d:e7:de: 27:7b:a3:93:af:82:9b:0d:59:cc:5c:07:c0:fe:7d: cf:9b:3c:ec:15:73:ec:2c:6e:5c:75:13:26:8d:ce: cc:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:2A:D7:B0:A5:50:C9:33:70:CE:23:86:07:3A:73:DE:26:E9:D1:EB X509v3 Authority Key Identifier: keyid:44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/4417C62BC8BB648A4A97DDF6505C2E443E4B35FF.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135332e302f32342d3234203d3e20323135303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.164.153.0/24 Signature Algorithm: sha256WithRSAEncryption a3:5d:a1:be:bc:8a:ce:8b:37:8a:e7:05:cc:59:d4:1a:8d:a8: 11:8a:c3:9e:b6:10:eb:54:05:66:35:79:96:b4:ac:42:5f:8d: d6:32:b1:6f:e9:17:52:bb:d1:b1:18:e9:ed:29:9f:9d:1b:08: 6b:87:27:d2:55:59:f8:6b:b1:6b:82:22:2a:2c:64:db:f2:d2: d7:31:c2:98:af:be:4e:21:b5:0e:b0:0e:9e:2d:b2:f3:64:76: a0:83:ba:bf:2c:78:ea:93:b2:28:24:55:8d:65:7c:90:5c:26: 6d:51:86:a3:a6:09:df:a8:c1:c8:ac:b1:89:98:93:25:05:aa: 3a:63:66:1a:cf:f1:ea:1f:0f:41:dc:f4:e6:0e:50:1c:48:dd: 44:b5:fe:c9:c0:71:1d:37:96:cb:5e:50:83:7d:55:cf:ef:ab: 97:73:b8:5c:90:52:c5:66:34:b1:e6:0f:62:3b:51:58:20:ca: 78:28:1f:66:59:f7:d0:6c:5b:ea:b6:6b:fe:39:9c:58:52:08: 36:c2:2d:42:f1:b0:e2:2b:10:13:29:4d:d3:04:ea:85:75:b6: 20:4e:00:ff:0b:ab:47:0e:2f:61:65:23:ff:62:4d:dd:df:09: 66:8c:97:3b:0e:ef:44:74:b8:fc:0a:44:55:f6:84:6e:fa:52: 5a:95:91:75 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUQR9qbbRgc/ZKhZLrnXmcsRhvT+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTc1MjMyZGFjMGE0OTczYjI5Njc3YTE0 NTczNTYxZWYzNDExOTk2MDAwHhcNMjQwNTIyMTgzMTIzWhcNMjUwNTIxMTgzNjIz WjAzMTEwLwYDVQQDEygwQzJBRDdCMEE1NTBDOTMzNzBDRTIzODYwNzNBNzNERTI2 RTlEMUVCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+V5B0KDcWVZ jayUZoWpOEOABMD28KWkxtYX/dxELK772wcdafBumY91mug67bcsYiNeRSXjsDnt 8ijNXOT5pGB1xYkbutxA+A5OufnB+lagLmuKST2GvpRL6uzUPBe81j1YQbgTweNv /aIhLQ7pQcNILqLxWVb+xTecoFY2QhJyCM69VpWBRsGjosv+CTQgIuqsJD6LLu03 IHEeNNWs4zv1lvsKb+xYG7pWCtCXkN22VnKEYNpS2Wtiu0gVEHctw/KO+7OIhgnC ljAC7H4eSvpW2ne/31HxCvc2Gn9d594ne6OTr4KbDVnMXAfA/n3PmzzsFXPsLG5c dRMmjc7MzwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFAwq17ClUMkzcM4jhgc6c94m 6dHrMB8GA1UdIwQYMBaAFEQXxivIu2SKSpfd9lBcLkQ+SzX/MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZi LTY4NmQ4OGU3MWFlOS8yLzQ0MTdDNjJCQzhCQjY0OEE0QTk3RERGNjUwNUMyRTQ0 M0U0QjM1RkYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTc1MjMyZGFjMGE0OTczYjI5Njc3YTE0NTcz NTYxZWYzNDExOTk2MDAuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZiLTY4NmQ4OGU3MWFlOS8yLzMyMzMyZTMx MzYzNDJlMzEzNTMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM1MzAzNTMx LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAF6SZMA0GCSqGSIb3DQEBCwUAA4IBAQCjXaG+vIrOizeK5wXM WdQajagRisOethDrVAVmNXmWtKxCX43WMrFv6RdSu9GxGOntKZ+dGwhrhyfSVVn4 a7FrgiIqLGTb8tLXMcKYr75OIbUOsA6eLbLzZHagg7q/LHjqk7IoJFWNZXyQXCZt UYajpgnfqMHIrLGJmJMlBao6Y2Yaz/HqHw9B3PTmDlAcSN1Etf7JwHEdN5bLXlCD fVXP76uXc7hckFLFZjSx5g9iO1FYIMp4KB9mWffQbFvqtmv+OZxYUgg2wi1C8bDi KxATKU3TBOqFdbYgTgD/C6tHDi9hZSP/Yk3d3wlmjJc7Du9EdLj8CkRV9oRu+lJa lZF1 -----END CERTIFICATE-----Generated at Sat Jun 22 06:43:16 2024 by rpki-client on console-fra.rpki-client.org