$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/32332e3137342e3230302e302f32342d3234203d3e203135333533.roa File: 32332e3137342e3230302e302f32342d3234203d3e203135333533.roa (raw, json) Hash identifier: 5oVaYNGN0GpLLAiCddLCC2bKRvFakuQOiT7ek/kOqoU= Subject key identifier: C0:F5:5C:D2:4B:80:E2:20:A8:BE:55:CC:48:22:8F:32:8C:8F:41:13 Certificate issuer: /CN=43729997152fd84fcda6d190c3b3195b02679660112be9a2d7 Certificate serial: 0AF2485165E5534BA6CE2050B6409EA18B9D8AA8 Authority key identifier: 6A:6F:6E:C2:72:A5:EB:DC:18:24:1C:2C:84:D1:D9:FE:94:C1:25:AA Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd/43729997152fd84fcda6d190c3b3195b02679660112be9a2d7.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/32332e3137342e3230302e302f32342d3234203d3e203135333533.roa Signing time: Wed 03 Apr 2024 19:42:46 +0000 ROA not before: Wed 03 Apr 2024 19:37:46 +0000 ROA not after: Wed 02 Apr 2025 19:42:46 +0000 asID: 15353 IP address blocks: 23.174.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/6A6F6EC272A5EBDC18241C2C84D1D9FE94C125AA.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/6A6F6EC272A5EBDC18241C2C84D1D9FE94C125AA.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd/43729997152fd84fcda6d190c3b3195b02679660112be9a2d7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd/829fb872-15bb-4a4e-9ed9-259960b049bd.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd/829fb872-15bb-4a4e-9ed9-259960b049bd.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 06:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:f2:48:51:65:e5:53:4b:a6:ce:20:50:b6:40:9e:a1:8b:9d:8a:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43729997152fd84fcda6d190c3b3195b02679660112be9a2d7 Validity Not Before: Apr 3 19:37:46 2024 GMT Not After : Apr 2 19:42:46 2025 GMT Subject: CN=C0F55CD24B80E220A8BE55CC48228F328C8F4113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8a:24:59:89:14:ea:66:e7:56:ed:f2:4a:2b: fb:dd:49:24:d5:bb:b1:65:89:8e:5b:f5:a1:58:d0: 25:0b:77:1c:9d:87:53:45:5b:d8:d1:e1:93:ab:7e: 6e:bc:68:9b:99:7b:f5:2c:97:bd:19:46:08:1a:d6: 64:71:63:69:d2:02:25:9c:d7:e2:6a:3e:bd:30:0e: 31:9e:cd:3f:8f:bb:9b:35:13:95:3d:42:68:2c:1a: a2:02:61:68:f7:66:8b:18:73:3d:eb:c9:2b:e9:96: c1:27:9d:ad:58:2d:91:12:95:d0:89:3d:9e:66:98: e5:35:f0:40:dc:05:d9:23:1d:30:c3:43:f2:cc:6c: 67:9d:fa:7b:81:cf:8f:ed:4c:5b:1b:73:c2:14:b5: ed:f7:db:0b:4e:7e:30:ba:22:17:2e:69:a4:48:04: 82:dd:1d:4d:61:42:11:0b:5f:4e:53:bb:59:30:dd: f0:73:c0:e9:6c:21:dc:23:b1:94:21:0d:b9:47:52: c9:56:5f:15:ea:b1:40:fd:17:be:f8:d3:1e:91:28: 15:d3:0b:7c:25:1d:f7:98:af:0f:56:9b:81:dc:31: 4c:ad:58:4d:98:fb:8a:89:4c:0d:84:15:be:1e:4b: 7b:68:fd:f6:21:d6:99:cd:5a:21:59:49:a9:18:aa: 75:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F5:5C:D2:4B:80:E2:20:A8:BE:55:CC:48:22:8F:32:8C:8F:41:13 X509v3 Authority Key Identifier: keyid:6A:6F:6E:C2:72:A5:EB:DC:18:24:1C:2C:84:D1:D9:FE:94:C1:25:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/6A6F6EC272A5EBDC18241C2C84D1D9FE94C125AA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/829fb872-15bb-4a4e-9ed9-259960b049bd/43729997152fd84fcda6d190c3b3195b02679660112be9a2d7.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/7/32332e3137342e3230302e302f32342d3234203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.174.200.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:a1:04:1e:fa:49:de:e7:7c:ed:4e:0d:ee:57:07:4f:fc:18: 45:38:3f:ab:af:91:09:28:dd:33:15:b5:e8:58:cc:30:07:bf: c9:c1:56:28:e4:38:ae:6a:ec:82:39:bf:20:ef:4c:88:6b:25: f1:e0:64:f4:76:15:1f:bf:98:2e:a7:47:10:9b:a7:7f:30:4e: 28:d7:ee:cb:33:82:e6:8c:1a:15:5c:de:06:bd:85:6d:14:1a: c1:c2:56:a2:b7:a5:32:a9:2e:0d:d8:d4:ab:94:71:7d:f3:79: a3:4b:74:38:8e:fa:ca:df:bc:13:47:21:e3:37:a9:83:8f:f1: bd:99:12:57:7c:47:b0:fa:8d:a5:25:71:15:7a:5a:36:df:60: 24:a6:12:b2:1d:9e:b0:01:c6:5e:3b:cb:dc:00:50:f5:8a:6b: 1a:43:bf:82:19:b3:04:c3:f4:e8:75:34:21:6a:ca:2d:be:12: 09:6f:a1:67:52:76:f6:96:6f:c1:56:1f:d3:f0:04:1c:39:d0: 36:8a:7a:f2:2e:82:fb:d9:d1:8f:94:cf:ba:30:58:d9:02:82: 8e:b1:82:e1:92:43:91:4c:b7:cd:ee:bb:36:37:b0:13:1a:b3: c5:03:ba:79:0b:9f:58:5c:aa:41:f7:af:32:a8:ad:4c:c6:3a: 4a:21:4f:b7 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUCvJIUWXlU0umziBQtkCeoYudiqgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDM3Mjk5OTcxNTJmZDg0ZmNkYTZkMTkwYzNiMzE5NWIw MjY3OTY2MDExMmJlOWEyZDcwHhcNMjQwNDAzMTkzNzQ2WhcNMjUwNDAyMTk0MjQ2 WjAzMTEwLwYDVQQDEyhDMEY1NUNEMjRCODBFMjIwQThCRTU1Q0M0ODIyOEYzMjhD OEY0MTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4okWYkU6mbn Vu3ySiv73Ukk1buxZYmOW/WhWNAlC3ccnYdTRVvY0eGTq35uvGibmXv1LJe9GUYI GtZkcWNp0gIlnNfiaj69MA4xns0/j7ubNROVPUJoLBqiAmFo92aLGHM968kr6ZbB J52tWC2REpXQiT2eZpjlNfBA3AXZIx0ww0PyzGxnnfp7gc+P7UxbG3PCFLXt99sL Tn4wuiIXLmmkSASC3R1NYUIRC19OU7tZMN3wc8DpbCHcI7GUIQ25R1LJVl8V6rFA /Re++NMekSgV0wt8JR33mK8PVpuB3DFMrVhNmPuKiUwNhBW+Hkt7aP32IdaZzVoh WUmpGKp1IwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFMD1XNJLgOIgqL5VzEgijzKM j0ETMB8GA1UdIwQYMBaAFGpvbsJypevcGCQcLITR2f6UwSWqMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC83LzZBNkY2RUMyNzJBNUVCREMxODI0MUMyQzg0RDFEOUZF OTRDMTI1QUEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTIt NDk5NC04ZjZjLWQ2YzkxYjBiODQxNS84MjlmYjg3Mi0xNWJiLTRhNGUtOWVkOS0y NTk5NjBiMDQ5YmQvNDM3Mjk5OTcxNTJmZDg0ZmNkYTZkMTkwYzNiMzE5NWIwMjY3 OTY2MDExMmJlOWEyZDcuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC83LzMyMzMyZTMx MzczNDJlMzIzMDMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzNTMzMzUzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeuyDANBgkqhkiG9w0BAQsFAAOCAQEAjaEEHvpJ3ud87U4N7lcH T/wYRTg/q6+RCSjdMxW16FjMMAe/ycFWKOQ4rmrsgjm/IO9MiGsl8eBk9HYVH7+Y LqdHEJunfzBOKNfuyzOC5owaFVzeBr2FbRQawcJWorelMqkuDdjUq5RxffN5o0t0 OI76yt+8E0ch4zepg4/xvZkSV3xHsPqNpSVxFXpaNt9gJKYSsh2esAHGXjvL3ABQ 9YprGkO/ghmzBMP06HU0IWrKLb4SCW+hZ1J29pZvwVYf0/AEHDnQNop68i6C+9nR j5TPujBY2QKCjrGC4ZJDkUy3ze67NjewExqzxQO6eQufWFyqQfevMqitTMY6SiFP tw== -----END CERTIFICATE-----Generated at Sun Jun 2 08:04:20 2024 by rpki-client on console-ams.rpki-client.org