$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa File: 3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa (raw, json) Hash identifier: Ta6ZRrzsiBqSiC/F8bv/X4Kr7SwSmv9MXisgrAM2vZo= Subject key identifier: DF:48:A7:87:35:F9:52:63:08:58:76:55:87:55:67:96:30:EF:4C:8A Certificate issuer: /CN=94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4 Certificate serial: 4114B0071EDC62207A11E0C926692BE96624F0B5 Authority key identifier: 94:89:8B:0A:CE:E9:CF:62:56:CF:0D:5C:BB:FB:73:C2:6F:D2:11:A4 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa Signing time: Fri 04 Oct 2024 19:57:34 +0000 ROA not before: Fri 04 Oct 2024 19:52:34 +0000 ROA not after: Fri 03 Oct 2025 19:57:34 +0000 asID: 47272 IP address blocks: 128.254.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/0F03312EE59E3DE82735F66B549415DE44647875.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/0F03312EE59E3DE82735F66B549415DE44647875.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/eecf847d7a3e57959bebd697a7e067a75e18bb6298b1d3bf96.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Nov 2024 19:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:14:b0:07:1e:dc:62:20:7a:11:e0:c9:26:69:2b:e9:66:24:f0:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4 Validity Not Before: Oct 4 19:52:34 2024 GMT Not After : Oct 3 19:57:34 2025 GMT Subject: CN=DF48A78735F95263085876558755679630EF4C8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:50:79:63:4d:b2:c4:aa:a4:f2:19:c8:c3:33: 7e:0a:b7:f8:98:70:5b:8f:a8:93:99:6e:be:c9:b9: 78:c1:b6:ce:b9:0a:60:a2:75:30:9a:af:d4:91:0f: d1:31:3e:f5:ba:fa:b0:8d:7d:30:42:32:6a:15:5c: de:24:cc:d0:59:23:cb:31:c2:95:40:7c:63:65:e9: 79:0d:e2:de:af:38:34:e0:6e:e2:b3:e8:c5:47:ee: d4:30:01:a9:07:1c:29:24:a3:2c:53:4f:d1:39:8b: 18:4e:c0:1b:fe:87:6b:34:a2:db:ff:7e:1b:6e:ae: 32:84:36:ed:81:89:c1:91:98:1a:b6:ed:61:bf:bc: 74:61:f1:91:62:68:58:eb:b8:9e:45:bb:1e:86:5b: d5:da:46:8b:8f:80:ff:24:0e:6a:f1:22:ac:78:5e: c7:d8:c1:ce:6a:2b:8c:8a:e8:95:f0:58:73:c2:67: 1f:49:cf:be:a2:8f:ab:64:4e:22:24:ad:0a:81:d1: ba:57:c5:b9:07:aa:55:49:e1:6e:b2:66:96:eb:7d: af:81:3c:bc:87:4a:61:dc:38:76:a9:0e:bd:88:e7: e6:6a:c5:e3:22:75:53:a9:81:90:4b:06:a2:52:03: 17:99:b4:e0:c8:c6:4a:17:c3:22:48:2f:bd:22:c8: 75:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:48:A7:87:35:F9:52:63:08:58:76:55:87:55:67:96:30:EF:4C:8A X509v3 Authority Key Identifier: keyid:94:89:8B:0A:CE:E9:CF:62:56:CF:0D:5C:BB:FB:73:C2:6F:D2:11:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/94898B0ACEE9CF6256CF0D5CBBFB73C26FD211A4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/6/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.254.205.0/24 Signature Algorithm: sha256WithRSAEncryption b4:1d:9d:27:30:75:8d:22:5c:3d:dc:ba:22:e0:32:68:bd:73: ab:32:0e:64:66:73:9e:be:e7:56:e9:8a:8f:06:54:91:90:54: e1:26:d7:aa:5f:d0:be:10:f3:01:f2:2d:ff:3b:d7:66:6d:d0: cb:68:63:fb:51:08:d1:14:91:52:79:5c:b8:03:3c:a0:3d:db: ed:d0:7b:36:ba:33:4e:7d:f2:19:07:b8:6d:61:7f:4a:e6:77: 2d:de:b9:ac:b9:b6:dc:bc:aa:94:01:db:60:25:c9:75:9a:55: f8:88:63:ed:5f:b2:28:6e:2a:14:fb:f3:71:b0:ed:83:87:e9: 9b:23:6a:d8:aa:53:68:07:7f:c9:81:6c:b8:45:fe:d8:18:06: 42:2a:48:d7:4e:18:53:c8:62:12:59:65:ef:00:a3:82:73:79: 0c:69:a0:e6:88:55:a0:fe:74:0d:71:07:79:f9:6b:d8:ec:fa: e6:ea:26:aa:ef:4c:f5:92:1f:88:17:d2:78:63:4c:87:b4:60: 15:9c:ec:c7:ac:33:0d:80:40:33:a0:da:36:1c:03:59:e9:f7: 11:70:69:c5:27:ac:3e:54:f1:b4:28:f0:61:6e:51:fa:43:dd: b3:6f:c4:fc:a3:ee:2b:20:38:d7:e6:8d:7b:60:6e:7d:54:f2: dd:e9:66:61 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUQRSwBx7cYiB6EeDJJmkr6WYk8LUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQ4OThCMEFDRUU5Q0Y2MjU2Q0YwRDVDQkJGQjczQzI2 RkQyMTFBNDAeFw0yNDEwMDQxOTUyMzRaFw0yNTEwMDMxOTU3MzRaMDMxMTAvBgNV BAMTKERGNDhBNzg3MzVGOTUyNjMwODU4NzY1NTg3NTU2Nzk2MzBFRjRDOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkUHljTbLEqqTyGcjDM34Kt/iY cFuPqJOZbr7JuXjBts65CmCidTCar9SRD9ExPvW6+rCNfTBCMmoVXN4kzNBZI8sx wpVAfGNl6XkN4t6vODTgbuKz6MVH7tQwAakHHCkkoyxTT9E5ixhOwBv+h2s0otv/ fhturjKENu2BicGRmBq27WG/vHRh8ZFiaFjruJ5Fux6GW9XaRouPgP8kDmrxIqx4 XsfYwc5qK4yK6JXwWHPCZx9Jz76ij6tkTiIkrQqB0bpXxbkHqlVJ4W6yZpbrfa+B PLyHSmHcOHapDr2I5+ZqxeMidVOpgZBLBqJSAxeZtODIxkoXwyJIL70iyHW1AgMB AAGjggJvMIICazAdBgNVHQ4EFgQU30inhzX5UmMIWHZVh1VnljDvTIowHwYDVR0j BBgwFoAUlImLCs7pz2JWzw1cu/tzwm/SEaQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzYvOTQ4OThCMEFDRUU5Q0Y2MjU2Q0YwRDVDQkJGQjczQzI2RkQyMTFBNC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzEvOTQ4OThCMEFDRUU5Q0Y2MjU2Q0YwRDVDQkJGQjczQzI2RkQy MTFBNC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzYvMzEzMjM4MmUzMjM1MzQyZTMy MzAzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczMjM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACA/s0wDQYJKoZIhvcNAQELBQADggEBALQdnScwdY0iXD3cuiLgMmi9c6syDmRm c56+51bpio8GVJGQVOEm16pf0L4Q8wHyLf8712Zt0MtoY/tRCNEUkVJ5XLgDPKA9 2+3Qeza6M0598hkHuG1hf0rmdy3euay5tty8qpQB22AlyXWaVfiIY+1fsihuKhT7 83Gw7YOH6ZsjatiqU2gHf8mBbLhF/tgYBkIqSNdOGFPIYhJZZe8Ao4JzeQxpoOaI VaD+dA1xB3n5a9js+ubqJqrvTPWSH4gX0nhjTIe0YBWc7MesMw2AQDOg2jYcA1np 9xFwacUnrD5U8bQo8GFuUfpD3bNvxPyj7isgONfmjXtgbn1U8t3pZmE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:49:44 2024 by rpki-client on console-ams.rpki-client.org