$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35362e302f32342d3234203d3e203135333533.roa File: 32332e3134352e35362e302f32342d3234203d3e203135333533.roa (raw, json) Hash identifier: le6R2n9zHspjeXtFi8NXNldH3kCyfdMS3ed2L09X9SE= Subject key identifier: 7A:64:70:57:E6:61:EF:1E:A0:24:F9:81:C7:4B:7F:E7:03:45:E8:B4 Certificate issuer: /CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Certificate serial: 5DAF08F9D96203FD24276D1B864B397BE23D4586 Authority key identifier: 93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35362e302f32342d3234203d3e203135333533.roa Signing time: Thu 17 Oct 2024 21:26:10 +0000 ROA not before: Thu 17 Oct 2024 21:21:10 +0000 ROA not after: Thu 16 Oct 2025 21:26:10 +0000 asID: 15353 IP address blocks: 23.145.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 14 Mar 2025 17:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:af:08:f9:d9:62:03:fd:24:27:6d:1b:86:4b:39:7b:e2:3d:45:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Validity Not Before: Oct 17 21:21:10 2024 GMT Not After : Oct 16 21:26:10 2025 GMT Subject: CN=7A647057E661EF1EA024F981C74B7FE70345E8B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bc:68:bb:6e:70:68:5b:da:dc:9c:ed:64:24: 2b:82:74:35:97:69:dd:96:22:28:84:28:df:a5:f2: 1e:f4:38:05:61:9b:28:80:09:16:08:09:5c:90:21: 90:81:13:d4:e8:90:73:a3:35:d6:e1:dc:f3:24:2c: 99:7c:df:55:56:eb:d8:de:90:ff:14:f7:67:5a:a1: d1:6f:f7:d9:bf:99:39:aa:c1:a6:1a:63:60:af:49: 5c:fb:d2:f2:67:50:1f:5b:41:c9:26:89:92:e9:07: a0:55:0a:25:1b:f0:26:47:46:b7:7d:ce:36:d2:c3: 18:21:4b:da:4f:d2:fc:e2:a3:9d:bb:bb:dd:d2:62: ac:d8:0e:b5:99:d9:00:af:d1:a0:a6:ba:2e:4f:46: b3:f8:49:f6:1d:6a:d1:63:49:da:9b:16:b5:2f:fc: b9:5b:b9:c5:37:da:8f:bb:56:7d:f8:9b:f2:87:33: 23:04:7e:8e:c3:1f:bc:76:7e:04:fb:da:3d:86:c5: 0c:d5:f2:50:51:c4:4c:57:e2:70:fd:43:66:55:c3: b4:f9:37:85:2b:02:6f:de:5f:01:cd:bc:79:dd:9b: 13:88:8d:71:57:f5:74:b2:97:28:b5:34:aa:5e:5a: 53:e3:40:7d:9f:6d:a3:c3:54:f1:8e:65:50:6c:ce: 55:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:64:70:57:E6:61:EF:1E:A0:24:F9:81:C7:4B:7F:E7:03:45:E8:B4 X509v3 Authority Key Identifier: keyid:93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35362e302f32342d3234203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.145.56.0/24 Signature Algorithm: sha256WithRSAEncryption 89:1c:fd:6a:47:e0:c5:ab:08:b6:17:f1:02:c8:c8:0b:b6:8e: 9c:65:33:fc:21:97:c6:58:92:4e:4c:a8:e7:1c:0b:83:14:8d: 4a:c4:63:2c:17:ee:20:07:39:9b:a9:28:25:0e:3b:b3:ee:f2: 83:af:84:1c:99:a3:75:6f:5c:2b:37:3a:16:25:c1:06:aa:bc: 8f:5b:19:ad:ec:0b:78:bd:92:5c:de:d7:db:23:37:b1:88:c6: 9d:1d:53:b0:26:b4:f6:a9:c0:75:6d:e1:4f:71:4d:f9:6f:dc: ec:6e:9b:f3:38:ef:cf:2b:e7:ce:69:00:31:62:a2:de:e9:f3: 37:df:88:90:72:1e:f0:bb:d2:9d:9e:84:ca:db:e2:31:af:c8: d4:67:51:5b:c5:e8:90:91:c9:40:27:4a:4d:ea:2a:09:c8:f1: 4b:2e:49:bd:11:2e:7e:2e:d3:1f:c7:7f:0a:b2:46:14:98:54: 93:58:e0:43:63:ef:41:eb:90:43:00:c5:41:de:47:09:14:0c: f0:e8:8f:31:e2:f9:32:42:f1:0c:26:65:43:4d:58:4b:1e:91: 64:29:ec:77:5b:34:80:d5:8a:2e:6d:de:2f:df:d3:b2:44:83: 15:c1:7b:0b:80:0c:e7:06:99:ae:1c:6d:34:9d:eb:cc:79:3f: bf:c7:cd:91 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUXa8I+dliA/0kJ20bhks5e+I9RYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4 Zjc5NGRmMzJiZmU5ZWQwNzEwHhcNMjQxMDE3MjEyMTEwWhcNMjUxMDE2MjEyNjEw WjAzMTEwLwYDVQQDEyg3QTY0NzA1N0U2NjFFRjFFQTAyNEY5ODFDNzRCN0ZFNzAz NDVFOEI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7xou25waFva 3JztZCQrgnQ1l2ndliIohCjfpfIe9DgFYZsogAkWCAlckCGQgRPU6JBzozXW4dzz JCyZfN9VVuvY3pD/FPdnWqHRb/fZv5k5qsGmGmNgr0lc+9LyZ1AfW0HJJomS6Qeg VQolG/AmR0a3fc420sMYIUvaT9L84qOdu7vd0mKs2A61mdkAr9GgprouT0az+En2 HWrRY0namxa1L/y5W7nFN9qPu1Z9+JvyhzMjBH6Owx+8dn4E+9o9hsUM1fJQUcRM V+Jw/UNmVcO0+TeFKwJv3l8Bzbx53ZsTiI1xV/V0spcotTSqXlpT40B9n22jw1Tx jmVQbM5V5wIDAQABo4ICyzCCAscwHQYDVR0OBBYEFHpkcFfmYe8eoCT5gcdLf+cD Rei0MB8GA1UdIwQYMBaAFJOwKWwxeHeA/oQTMY/Q0nCDg0zFMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC84LzkzQjAyOTZDMzE3ODc3ODBGRTg0MTMzMThGRDBEMjcw ODM4MzRDQzUuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81NTYzZTJmOS00ZDliLTQwYzMtYWZhMi1j ZTcwNDVmZmQyM2EvMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4Zjc5 NGRmMzJiZmU5ZWQwNzEuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC84LzMyMzMyZTMx MzQzNTJlMzUzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzUzMzM1MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXkTgwDQYJKoZIhvcNAQELBQADggEBAIkc/WpH4MWrCLYX8QLIyAu2 jpxlM/whl8ZYkk5MqOccC4MUjUrEYywX7iAHOZupKCUOO7Pu8oOvhByZo3VvXCs3 OhYlwQaqvI9bGa3sC3i9klze19sjN7GIxp0dU7AmtPapwHVt4U9xTflv3Oxum/M4 788r585pADFiot7p8zffiJByHvC70p2ehMrb4jGvyNRnUVvF6JCRyUAnSk3qKgnI 8UsuSb0RLn4u0x/HfwqyRhSYVJNY4ENj70HrkEMAxUHeRwkUDPDojzHi+TJC8Qwm ZUNNWEsekWQp7HdbNIDVii5t3i/f07JEgxXBewuADOcGma4cbTSd68x5P7/HzZE= -----END CERTIFICATE-----Generated at Fri Mar 14 02:55:24 2025 by rpki-client