$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa File: 32332e3136342e3135322e302f32342d3234203d3e203236353631.roa (raw, json) Hash identifier: Pz8YuajHR3RKHabgAdN5D6D4yfaEKoRCNMV/secsEfc= Subject key identifier: BE:E9:28:8E:64:9F:B3:46:B7:C5:C8:39:66:4D:5D:E8:6D:C7:B6:3B Certificate issuer: /CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Certificate serial: 552EED2579E2F9CDC6D4791F8BB177E6E2917076 Authority key identifier: 77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa Signing time: Wed 02 Oct 2024 23:04:35 +0000 ROA not before: Wed 02 Oct 2024 22:59:35 +0000 ROA not after: Wed 01 Oct 2025 23:04:35 +0000 asID: 26561 IP address blocks: 23.164.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 15:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:2e:ed:25:79:e2:f9:cd:c6:d4:79:1f:8b:b1:77:e6:e2:91:70:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72 Validity Not Before: Oct 2 22:59:35 2024 GMT Not After : Oct 1 23:04:35 2025 GMT Subject: CN=BEE9288E649FB346B7C5C839664D5DE86DC7B63B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:af:59:d5:63:a5:6f:65:67:a5:6c:f7:41:02: 34:f4:6e:2a:82:0c:67:5a:99:33:72:4b:c6:f9:03: ab:9f:61:55:f1:cc:07:5d:c1:c7:2f:06:79:e1:92: c5:f7:c0:dc:fe:d3:94:bd:ef:21:ff:51:4c:d7:c4: c9:03:7d:5d:0f:45:ba:e5:5e:f5:d4:e7:68:a3:28: f9:11:8c:5c:4d:59:83:26:16:9b:ad:6b:a4:46:a6: 07:7b:5d:73:86:b9:5f:57:5f:eb:db:40:6e:35:77: e7:4b:da:0d:03:4d:5b:12:f0:d5:f3:01:68:d0:04: 04:fa:56:4e:89:ff:89:03:de:03:68:40:4a:62:b0: 22:f8:53:4f:52:2a:75:33:a6:8c:4a:7e:20:75:06: d3:94:87:a5:2e:db:e7:e3:ba:bc:6c:ff:14:e3:65: 23:09:50:13:47:2b:16:8a:6b:0b:f9:cc:22:dd:e4: 0c:23:b7:71:a9:4b:dc:01:4a:1c:c9:20:c4:f8:78: 09:6d:07:7a:bc:28:2d:2d:21:86:31:fb:1a:ea:16: fd:ea:e3:fb:d0:23:21:0c:89:d1:10:9d:cb:46:48: 54:37:09:e8:dc:a1:d2:3a:ab:39:92:55:af:f2:7a: d9:ec:be:8f:1f:b5:2b:8d:c2:72:ed:d2:b2:2c:c1: ca:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E9:28:8E:64:9F:B3:46:B7:C5:C8:39:66:4D:5D:E8:6D:C7:B6:3B X509v3 Authority Key Identifier: keyid:77:02:2B:F1:87:A9:2A:6A:E4:18:38:10:8B:8A:F7:B3:BA:F1:B2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/77022BF187A92A6AE41838108B8AF7B3BAF1B2B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a0138213973cac0c2b7200290d46207f47451cf72.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.164.152.0/24 Signature Algorithm: sha256WithRSAEncryption 30:1f:ed:42:4e:37:44:a0:f3:b9:d8:20:21:53:7f:b1:b5:c8: 00:96:32:d9:39:3d:5f:09:49:4c:4d:0e:8f:8f:21:43:60:42: 30:ca:ef:f5:7f:7d:9f:4d:0a:eb:91:76:40:b3:f4:9c:78:58: 43:c0:59:32:85:d2:86:97:2d:51:7f:dc:59:21:97:78:83:bb: 6f:63:ee:a8:5a:98:ae:33:7c:e6:08:eb:29:0e:cd:ad:ab:07: 4a:2c:7d:0d:16:ec:31:20:20:c6:51:83:f7:6f:ee:26:cd:d2: 72:43:70:08:97:58:76:98:b2:5a:02:4d:ed:08:c5:4f:a0:24: 5a:4e:f4:dd:f2:5a:ac:19:ee:bd:76:67:4c:d0:8a:e0:be:70: 72:29:41:6d:94:01:46:cc:03:85:e6:7f:95:95:0f:75:b4:7d: 46:07:35:ef:3f:00:6c:9f:1e:a7:5f:4f:68:87:cf:dc:48:d5: 4a:fb:50:d7:eb:ca:1a:6c:ad:b0:79:c0:5d:a2:69:f7:09:5d: 5e:f5:02:2d:59:8e:1a:d3:d1:cd:7a:cb:07:46:4d:59:d3:60: 5e:db:6e:9a:9c:17:85:9b:77:79:a4:fc:6f:1d:d1:fc:f6:e4: 67:4c:81:3d:a3:76:7c:23:5d:66:3e:90:ff:bd:de:2a:62:6a: c2:6c:ef:89 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUVS7tJXni+c3G1Hkfi7F35uKRcHYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5 MGQ0NjIwN2Y0NzQ1MWNmNzIwHhcNMjQxMDAyMjI1OTM1WhcNMjUxMDAxMjMwNDM1 WjAzMTEwLwYDVQQDEyhCRUU5Mjg4RTY0OUZCMzQ2QjdDNUM4Mzk2NjRENURFODZE QzdCNjNCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqq9Z1WOlb2Vn pWz3QQI09G4qggxnWpkzckvG+QOrn2FV8cwHXcHHLwZ54ZLF98Dc/tOUve8h/1FM 18TJA31dD0W65V711Odooyj5EYxcTVmDJhabrWukRqYHe11zhrlfV1/r20BuNXfn S9oNA01bEvDV8wFo0AQE+lZOif+JA94DaEBKYrAi+FNPUip1M6aMSn4gdQbTlIel Ltvn47q8bP8U42UjCVATRysWimsL+cwi3eQMI7dxqUvcAUocySDE+HgJbQd6vCgt LSGGMfsa6hb96uP70CMhDInREJ3LRkhUNwno3KHSOqs5klWv8nrZ7L6PH7UrjcJy 7dKyLMHK8wIDAQABo4ICzTCCAskwHQYDVR0OBBYEFL7pKI5kn7NGt8XIOWZNXeht x7Y7MB8GA1UdIwQYMBaAFHcCK/GHqSpq5Bg4EIuK97O68bKyMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZj LWZjNTMwNjZiZWI4OC8yLzc3MDIyQkYxODdBOTJBNkFFNDE4MzgxMDhCOEFGN0Iz QkFGMUIyQjIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTAxMzgyMTM5NzNjYWMwYzJiNzIwMDI5MGQ0 NjIwN2Y0NzQ1MWNmNzIuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZjLWZjNTMwNjZiZWI4OC8yLzMyMzMyZTMx MzYzNDJlMzEzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM1MzYzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABekmDANBgkqhkiG9w0BAQsFAAOCAQEAMB/tQk43RKDzudggIVN/ sbXIAJYy2Tk9XwlJTE0Oj48hQ2BCMMrv9X99n00K65F2QLP0nHhYQ8BZMoXShpct UX/cWSGXeIO7b2PuqFqYrjN85gjrKQ7NrasHSix9DRbsMSAgxlGD92/uJs3SckNw CJdYdpiyWgJN7QjFT6AkWk703fJarBnuvXZnTNCK4L5wcilBbZQBRswDheZ/lZUP dbR9Rgc17z8AbJ8ep19PaIfP3EjVSvtQ1+vKGmytsHnAXaJp9wldXvUCLVmOGtPR zXrLB0ZNWdNgXttumpwXhZt3eaT8bx3R/PbkZ0yBPaN2fCNdZj6Q/73eKmJqwmzv iQ== -----END CERTIFICATE-----Generated at Sun Feb 16 21:58:41 2025 by rpki-client