$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e2030.roa File: 32332e3136342e3135322e302f32342d3234203d3e2030.roa (raw, json) Hash identifier: HHQQTtNnsdT+sxNvi1ne7/wdvEQVdnhFIZXQENQQbdU= Subject key identifier: 61:F7:77:54:74:AC:E3:17:51:D5:5E:42:21:D9:D4:AC:C9:31:BC:BD Certificate issuer: /CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Certificate serial: 1139ED18319A217097147128660FE856EB4F6610 Authority key identifier: 77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e2030.roa Signing time: Sat 07 Sep 2024 17:57:22 +0000 ROA not before: Sat 07 Sep 2024 17:52:22 +0000 ROA not after: Sat 06 Sep 2025 17:57:22 +0000 asID: 0 IP address blocks: 23.164.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 29 Sep 2024 11:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:39:ed:18:31:9a:21:70:97:14:71:28:66:0f:e8:56:eb:4f:66:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Validity Not Before: Sep 7 17:52:22 2024 GMT Not After : Sep 6 17:57:22 2025 GMT Subject: CN=61F7775474ACE31751D55E4221D9D4ACC931BCBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d5:61:83:27:33:4c:fc:67:29:54:26:ca:8f: 9f:d5:f4:6c:25:f5:13:f2:42:c3:ba:c7:a7:58:64: d6:21:3d:b6:0f:e8:11:ba:60:fc:21:37:b3:20:00: de:18:0d:1f:6f:bb:5c:65:54:a5:f7:39:30:f8:cb: 4f:d8:31:10:aa:17:44:01:6e:c5:04:1d:04:da:20: f1:98:53:9a:cc:bc:cc:9a:f9:2d:42:cc:da:71:9e: 86:6b:51:5f:d8:64:77:38:2a:ea:31:5c:ff:ea:4d: da:4e:95:4b:67:ad:0d:22:74:de:4a:95:19:05:74: 8f:34:c0:ce:f0:fd:1d:cc:4c:4e:20:d6:76:a8:0b: 4b:e4:d7:83:d1:0d:86:34:6b:8d:b4:73:ac:15:cb: 22:02:e7:fd:68:0c:26:6e:e4:03:2f:86:56:22:49: 3f:a1:c5:07:85:8b:e8:41:5c:bd:52:4f:a7:d5:06: 01:56:e9:32:17:c1:19:1d:de:1f:cc:ee:c4:3f:7c: 65:ce:5b:6a:0c:ec:c8:ed:94:11:fb:66:20:cb:61: e2:5c:b2:1f:57:9e:8c:73:eb:59:5c:d9:9a:f4:60: f2:75:b2:4b:b0:ff:71:2a:5e:e4:1f:31:22:a9:c9: 57:8b:29:79:21:8f:cf:69:84:ed:73:67:a8:b5:a3: f1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F7:77:54:74:AC:E3:17:51:D5:5E:42:21:D9:D4:AC:C9:31:BC:BD X509v3 Authority Key Identifier: keyid:77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.164.152.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:8c:61:95:6a:6d:97:7f:3d:02:45:a9:66:d4:6b:dd:69:2e: 8a:92:2c:97:56:89:b7:42:8a:4a:bb:0d:63:c1:31:a9:39:16: 23:19:a3:c1:13:54:9d:22:aa:66:02:3c:f3:a9:1a:d8:d5:04: 94:84:a3:af:60:8f:04:be:33:f5:5c:a9:e4:ab:db:fe:91:64: 2d:ac:7a:07:15:48:14:10:f5:7e:bb:b1:2e:91:e6:14:2f:26: c3:e0:0f:c3:ba:8e:73:b8:00:b5:90:b0:ae:9b:f4:52:98:77: 32:51:ef:77:b0:7b:a1:44:cb:a6:3b:dc:0e:a7:4b:40:51:84: 24:9e:20:75:25:5f:df:00:51:a6:39:66:80:92:1c:bd:af:8f: d7:91:34:ff:dc:c0:99:d2:84:f7:fc:88:23:2a:9e:50:71:bb: 9f:40:70:ec:84:3e:ef:2a:19:10:9f:cb:d5:7e:34:03:96:98: 29:d8:ea:04:71:c2:c9:34:11:fc:84:0e:86:af:54:23:26:a0: e8:c0:e8:8e:60:30:19:40:49:7f:ac:20:d9:e2:6a:38:9d:f8: b8:3e:57:a4:7d:36:75:f3:98:11:f4:d7:05:37:d7:92:47:d8: 64:17:4d:16:18:5c:78:45:fc:95:7f:1f:89:87:7f:4f:12:db: 95:eb:e8:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUETntGDGaIXCXFHEoZg/oVutPZhAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5 MGQ0NjIwN2Y0NzQ1MWNmNzIwHhcNMjQwOTA3MTc1MjIyWhcNMjUwOTA2MTc1NzIy WjAzMTEwLwYDVQQDEyg2MUY3Nzc1NDc0QUNFMzE3NTFENTVFNDIyMUQ5RDRBQ0M5 MzFCQ0JEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1NVhgyczTPxn KVQmyo+f1fRsJfUT8kLDusenWGTWIT22D+gRumD8ITezIADeGA0fb7tcZVSl9zkw +MtP2DEQqhdEAW7FBB0E2iDxmFOazLzMmvktQszacZ6Ga1Ff2GR3OCrqMVz/6k3a TpVLZ60NInTeSpUZBXSPNMDO8P0dzExOINZ2qAtL5NeD0Q2GNGuNtHOsFcsiAuf9 aAwmbuQDL4ZWIkk/ocUHhYvoQVy9Uk+n1QYBVukyF8EZHd4fzO7EP3xlzltqDOzI 7ZQR+2Ygy2HiXLIfV56Mc+tZXNma9GDydbJLsP9xKl7kHzEiqclXiyl5IY/PaYTt c2eotaPx5wIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFGH3d1R0rOMXUdVeQiHZ1KzJ Mby9MB8GA1UdIwQYMBaAFHcCK/GHqSpq5Bg4EIuK97O68bKyMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZj LWZjNTMwNjZiZWI4OC8yLzc3MDIyQkYxODdBOTJBNkFFNDE4MzgxMDhCOEFGN0Iz QkFGMUIyQjIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5MGQ0 NjIwN2Y0NzQ1MWNmNzIuY2VyMIGlBggrBgEFBQcBCwSBmDCBlTCBkgYIKwYBBQUH MAuGgYVyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZjLWZjNTMwNjZiZWI4OC8yLzMyMzMyZTMx MzYzNDJlMzEzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAXpJgwDQYJKoZIhvcNAQELBQADggEBAB+MYZVqbZd/PQJFqWbUa91pLoqSLJdW ibdCikq7DWPBMak5FiMZo8ETVJ0iqmYCPPOpGtjVBJSEo69gjwS+M/VcqeSr2/6R ZC2segcVSBQQ9X67sS6R5hQvJsPgD8O6jnO4ALWQsK6b9FKYdzJR73ewe6FEy6Y7 3A6nS0BRhCSeIHUlX98AUaY5ZoCSHL2vj9eRNP/cwJnShPf8iCMqnlBxu59AcOyE Pu8qGRCfy9V+NAOWmCnY6gRxwsk0EfyEDoavVCMmoOjA6I5gMBlASX+sINniajid +Lg+V6R9NnXzmBH01wU315JH2GQXTRYYXHhF/JV/H4mHf08S25Xr6FE= -----END CERTIFICATE-----Generated at Sat Sep 28 09:32:04 2024 by rpki-client on console-fra.rpki-client.org