$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/3137302e33392e34392e302f32342d3234203d3e203135333533.roa File: 3137302e33392e34392e302f32342d3234203d3e203135333533.roa (raw, json) Hash identifier: +pOk9FLb96yLGZG6xOzIDQZYz6GcVl/Xpk/DY00J0go= Subject key identifier: E5:2A:46:31:E5:60:BA:50:03:A0:67:B4:02:02:21:C9:F0:1E:15:24 Certificate issuer: /CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Certificate serial: 1D6ABE67EEDFF02FB68BDD15CBA8183C464537B8 Authority key identifier: 93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/3137302e33392e34392e302f32342d3234203d3e203135333533.roa Signing time: Tue 19 Nov 2024 18:56:23 +0000 ROA not before: Tue 19 Nov 2024 18:51:23 +0000 ROA not after: Tue 18 Nov 2025 18:56:23 +0000 asID: 15353 IP address blocks: 170.39.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:6a:be:67:ee:df:f0:2f:b6:8b:dd:15:cb:a8:18:3c:46:45:37:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Validity Not Before: Nov 19 18:51:23 2024 GMT Not After : Nov 18 18:56:23 2025 GMT Subject: CN=E52A4631E560BA5003A067B4020221C9F01E1524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:36:c6:78:e3:5f:ad:1f:40:25:56:89:7f:71: 89:b2:d7:1b:0e:e7:81:d1:98:5a:1c:d8:10:5c:d4: bc:3e:5b:d1:fb:ac:be:10:06:b7:93:1d:8b:2d:ed: d8:38:f7:52:54:85:01:68:36:7e:d3:2a:5a:66:ac: de:11:2e:07:aa:d2:d9:cf:af:f9:62:95:07:02:b2: 72:76:3a:b1:c8:9f:e6:3a:f1:b3:46:d3:6c:6c:1b: d2:76:ad:99:b7:bd:da:11:c7:33:2b:a3:99:32:9e: ff:ef:45:81:16:a4:04:f3:36:02:42:2f:41:34:70: 90:d6:0d:09:c5:ef:9b:06:f4:1f:81:a7:49:dc:74: 0b:8e:44:3b:f5:3e:10:78:6a:07:e1:4c:e9:6e:8b: d2:b9:c6:bd:dc:43:a0:aa:9c:33:26:d7:eb:99:1b: 1e:ad:69:5e:fb:71:46:cb:92:4f:92:13:5d:b6:63: 64:ee:ad:d7:7e:b4:3b:62:31:4e:ed:b5:df:54:3d: 20:e7:03:56:c4:78:42:dc:da:86:19:21:34:03:4b: 74:ae:89:97:b3:e2:61:11:cc:b2:db:2f:74:d2:4f: cc:42:8c:6d:ea:88:a4:28:cf:0b:df:65:be:71:59: 1d:1c:2d:50:89:e6:12:5a:dd:8f:2a:0a:36:27:03: be:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2A:46:31:E5:60:BA:50:03:A0:67:B4:02:02:21:C9:F0:1E:15:24 X509v3 Authority Key Identifier: keyid:93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/3137302e33392e34392e302f32342d3234203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.39.49.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ee:00:23:17:6b:1c:48:c7:4c:85:c3:23:55:41:f8:bb:60: 3a:30:9d:04:72:61:3e:5f:12:31:ba:4c:50:fb:87:8a:6f:4c: bb:9b:e0:a5:b1:2d:b1:b7:61:e6:c5:a2:fd:40:64:54:77:a3: 07:6a:7b:89:95:94:3c:4b:72:ad:3e:99:89:f4:87:a0:74:4c: d5:fd:a2:00:41:51:60:f3:98:69:ca:1f:46:e8:62:2f:93:33: 28:a4:4f:14:ba:c2:63:ee:6a:be:39:5d:74:36:07:2a:7b:6b: 24:bb:ca:22:04:9b:17:21:21:74:4f:56:b0:34:cc:95:ba:9e: 2b:d3:8c:20:9e:e7:d8:53:24:f1:10:1c:f5:36:ff:bc:73:d3: 15:e6:98:a9:99:6c:6c:a0:7f:4e:14:54:11:ea:a1:08:4c:0e: 27:bf:ad:bb:ae:27:ec:92:dd:4c:b1:ca:47:cf:3a:68:ab:95: 24:59:55:41:d5:57:02:b1:a0:34:e1:32:d5:c2:79:e3:98:c2: 8c:d7:ba:89:d1:0f:21:dd:f8:2a:22:89:d7:3a:26:34:e8:2b: c6:8e:77:49:30:70:47:ae:56:87:44:89:bf:2f:19:1e:f7:f9: 1d:51:78:14:d9:c8:73:e6:19:a8:6d:22:77:61:14:24:87:43: 3f:65:64:88 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUHWq+Z+7f8C+2i90Vy6gYPEZFN7gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4 Zjc5NGRmMzJiZmU5ZWQwNzEwHhcNMjQxMTE5MTg1MTIzWhcNMjUxMTE4MTg1NjIz WjAzMTEwLwYDVQQDEyhFNTJBNDYzMUU1NjBCQTUwMDNBMDY3QjQwMjAyMjFDOUYw MUUxNTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTbGeONfrR9A JVaJf3GJstcbDueB0ZhaHNgQXNS8PlvR+6y+EAa3kx2LLe3YOPdSVIUBaDZ+0ypa ZqzeES4HqtLZz6/5YpUHArJydjqxyJ/mOvGzRtNsbBvSdq2Zt73aEcczK6OZMp7/ 70WBFqQE8zYCQi9BNHCQ1g0Jxe+bBvQfgadJ3HQLjkQ79T4QeGoH4UzpbovSuca9 3EOgqpwzJtfrmRserWle+3FGy5JPkhNdtmNk7q3XfrQ7YjFO7bXfVD0g5wNWxHhC 3NqGGSE0A0t0romXs+JhEcyy2y900k/MQoxt6oikKM8L32W+cVkdHC1QieYSWt2P Kgo2JwO+pQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFOUqRjHlYLpQA6BntAICIcnw HhUkMB8GA1UdIwQYMBaAFJOwKWwxeHeA/oQTMY/Q0nCDg0zFMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC84LzkzQjAyOTZDMzE3ODc3ODBGRTg0MTMzMThGRDBEMjcw ODM4MzRDQzUuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81NTYzZTJmOS00ZDliLTQwYzMtYWZhMi1j ZTcwNDVmZmQyM2EvMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4Zjc5 NGRmMzJiZmU5ZWQwNzEuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC84LzMxMzczMDJl MzMzOTJlMzQzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzM1MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACqJzEwDQYJKoZIhvcNAQELBQADggEBAI3uACMXaxxIx0yFwyNVQfi7 YDownQRyYT5fEjG6TFD7h4pvTLub4KWxLbG3YebFov1AZFR3owdqe4mVlDxLcq0+ mYn0h6B0TNX9ogBBUWDzmGnKH0boYi+TMyikTxS6wmPuar45XXQ2Byp7ayS7yiIE mxchIXRPVrA0zJW6nivTjCCe59hTJPEQHPU2/7xz0xXmmKmZbGygf04UVBHqoQhM Die/rbuuJ+yS3UyxykfPOmirlSRZVUHVVwKxoDThMtXCeeOYwozXuonRDyHd+Coi idc6JjToK8aOd0kwcEeuVodEib8vGR73+R1ReBTZyHPmGahtIndhFCSHQz9lZIg= -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:20 2024 by rpki-client on console-fra.rpki-client.org