$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35372e302f32342d3234203d3e203630393030.roa File: 32332e3134352e35372e302f32342d3234203d3e203630393030.roa (raw, json) Hash identifier: 0mO6BltkxAyypnqXqNxbMgtEmDyDN+jtpg3w1vv/E7U= Subject key identifier: 03:BD:1A:9F:29:47:35:86:49:9A:FF:AE:C3:5E:62:F7:3D:A6:EE:AC Certificate issuer: /CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Certificate serial: 49BF9C25F3CD84AF3D0A0D2C441BD7B407B045E7 Authority key identifier: 93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35372e302f32342d3234203d3e203630393030.roa Signing time: Sat 19 Oct 2024 03:24:39 +0000 ROA not before: Sat 19 Oct 2024 03:19:39 +0000 ROA not after: Sat 18 Oct 2025 03:24:39 +0000 asID: 60900 IP address blocks: 23.145.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 09:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:bf:9c:25:f3:cd:84:af:3d:0a:0d:2c:44:1b:d7:b4:07:b0:45:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071 Validity Not Before: Oct 19 03:19:39 2024 GMT Not After : Oct 18 03:24:39 2025 GMT Subject: CN=03BD1A9F29473586499AFFAEC35E62F73DA6EEAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:34:58:95:63:80:6c:ab:f9:b2:11:da:cc:65: 40:65:ae:54:ed:f3:1b:c9:97:66:ef:c5:da:38:df: 8e:e5:61:4a:58:f5:d4:76:18:a3:81:d9:09:79:1e: a8:7e:44:9f:62:5d:e5:f1:a1:37:7c:96:0e:72:c3: 8c:e7:0d:34:13:5c:c1:cc:df:23:60:b7:57:60:22: 26:2b:6d:c4:d4:df:63:4d:43:14:6d:d6:f5:61:bf: 04:09:92:a5:b4:56:ff:61:d2:3d:19:73:13:7b:c4: 20:39:1b:a0:f7:b4:56:b1:41:2b:12:7b:cd:4f:fa: 75:24:e9:1e:b0:d2:64:16:4d:a2:f8:28:90:13:69: 82:70:59:d7:6c:7b:33:fa:28:12:06:6a:7b:58:f5: 90:0a:0e:59:c4:e8:81:2e:2c:7b:24:5d:57:85:64: cc:43:45:44:d9:35:59:d8:e8:9c:c1:33:96:a8:67: 25:eb:76:22:70:2b:81:f2:ff:89:c5:cc:93:d6:11: 6f:48:bc:d1:99:4c:b4:d3:d5:8d:cd:6f:74:21:aa: 34:31:e8:c9:b3:ea:94:4d:2e:97:ff:33:fd:4e:1b: 4e:cb:a0:f9:45:3a:c8:9a:c9:d0:ec:9b:6e:19:88: ab:47:58:17:18:0d:01:e8:e3:80:b4:70:79:fb:76: b9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BD:1A:9F:29:47:35:86:49:9A:FF:AE:C3:5E:62:F7:3D:A6:EE:AC X509v3 Authority Key Identifier: keyid:93:B0:29:6C:31:78:77:80:FE:84:13:31:8F:D0:D2:70:83:83:4C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/93B0296C31787780FE8413318FD0D27083834CC5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/5563e2f9-4d9b-40c3-afa2-ce7045ffd23a/1822fe9c8a1d8a021778934e378159ff8f794df32bfe9ed071.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/8/32332e3134352e35372e302f32342d3234203d3e203630393030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.145.57.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:15:f7:5a:c2:a9:59:bc:ef:04:65:5b:f0:ae:3a:cd:d3:f2: 2d:4f:4e:95:28:f6:be:94:91:aa:55:48:a5:7f:59:74:fc:f2: 51:f8:0c:67:88:80:43:b9:c5:86:22:89:ac:8a:e4:7d:7d:0c: 92:70:8d:9b:dd:a5:fe:f4:7e:2a:cb:fc:fe:8b:08:0d:dd:33: ac:d1:49:f5:2d:8d:1a:65:df:79:cf:17:c1:29:c9:78:77:c1: f4:14:8b:43:a4:a9:9c:c1:ea:3b:d4:bc:b1:34:75:6b:30:e8: f0:fa:c2:e1:f1:e3:a5:bc:0b:7f:84:dd:93:47:9a:ce:99:ec: 4b:eb:79:79:86:d0:b3:d9:88:ef:2a:ea:01:80:c4:4c:e4:d1: ae:ec:03:a5:f2:3f:13:f1:e3:11:1d:86:c0:68:d8:55:9f:32: c1:a9:8f:2a:c1:36:8b:8a:5b:61:af:33:03:c1:b7:40:f7:39: c0:8c:e3:c2:8d:bf:e1:16:0d:25:a0:85:0b:e4:9b:ce:70:b3: 8c:4b:b5:b6:06:fc:72:43:5c:ac:32:2a:49:f2:2e:47:9c:3c: 61:42:be:5f:8b:4c:44:f5:a6:f9:f3:7e:f3:f0:12:3b:80:8b: e1:49:fe:b9:0a:41:d8:8e:58:f4:37:fe:37:fa:89:a6:4b:95: 9c:88:7e:f4 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUSb+cJfPNhK89Cg0sRBvXtAewRecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4 Zjc5NGRmMzJiZmU5ZWQwNzEwHhcNMjQxMDE5MDMxOTM5WhcNMjUxMDE4MDMyNDM5 WjAzMTEwLwYDVQQDEygwM0JEMUE5RjI5NDczNTg2NDk5QUZGQUVDMzVFNjJGNzNE QTZFRUFDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTRYlWOAbKv5 shHazGVAZa5U7fMbyZdm78XaON+O5WFKWPXUdhijgdkJeR6ofkSfYl3l8aE3fJYO csOM5w00E1zBzN8jYLdXYCImK23E1N9jTUMUbdb1Yb8ECZKltFb/YdI9GXMTe8Qg ORug97RWsUErEnvNT/p1JOkesNJkFk2i+CiQE2mCcFnXbHsz+igSBmp7WPWQCg5Z xOiBLix7JF1XhWTMQ0VE2TVZ2OicwTOWqGcl63YicCuB8v+JxcyT1hFvSLzRmUy0 09WNzW90Iao0MejJs+qUTS6X/zP9ThtOy6D5RTrImsnQ7JtuGYirR1gXGA0B6OOA tHB5+3a5QQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFAO9Gp8pRzWGSZr/rsNeYvc9 pu6sMB8GA1UdIwQYMBaAFJOwKWwxeHeA/oQTMY/Q0nCDg0zFMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC84LzkzQjAyOTZDMzE3ODc3ODBGRTg0MTMzMThGRDBEMjcw ODM4MzRDQzUuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS81NTYzZTJmOS00ZDliLTQwYzMtYWZhMi1j ZTcwNDVmZmQyM2EvMTgyMmZlOWM4YTFkOGEwMjE3Nzg5MzRlMzc4MTU5ZmY4Zjc5 NGRmMzJiZmU5ZWQwNzEuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC84LzMyMzMyZTMx MzQzNTJlMzUzNzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM2MzAzOTMwMzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXkTkwDQYJKoZIhvcNAQELBQADggEBACoV91rCqVm87wRlW/CuOs3T 8i1PTpUo9r6UkapVSKV/WXT88lH4DGeIgEO5xYYiiayK5H19DJJwjZvdpf70firL /P6LCA3dM6zRSfUtjRpl33nPF8EpyXh3wfQUi0OkqZzB6jvUvLE0dWsw6PD6wuHx 46W8C3+E3ZNHms6Z7EvreXmG0LPZiO8q6gGAxEzk0a7sA6XyPxPx4xEdhsBo2FWf MsGpjyrBNouKW2GvMwPBt0D3OcCM48KNv+EWDSWghQvkm85ws4xLtbYG/HJDXKwy KknyLkecPGFCvl+LTET1pvnzfvPwEjuAi+FJ/rkKQdiOWPQ3/jf6iaZLlZyIfvQ= -----END CERTIFICATE-----Generated at Sun Nov 24 10:22:12 2024 by rpki-client on console-fra.rpki-client.org