$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa File: 32332e3139312e34302e302f32342d3234203d3e203236393534.roa (raw, json) Hash identifier: lO4v+9qZpYNTU13Fx5YYbE7NTGKX+3JJpxrHn0W/uvQ= Subject key identifier: AE:E1:B1:46:61:2E:C4:EE:BD:45:80:D8:61:2E:29:30:07:2E:41:A8 Certificate issuer: /CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Certificate serial: 74844C98C6C8BCED4D63EE33A592D231B4FF37EA Authority key identifier: 3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa Signing time: Thu 31 Oct 2024 15:39:20 +0000 ROA not before: Thu 31 Oct 2024 15:34:20 +0000 ROA not after: Thu 30 Oct 2025 15:39:20 +0000 asID: 26954 IP address blocks: 23.191.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/69fd0156-bb1f-48b6-bf32-c9492286f195.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:84:4c:98:c6:c8:bc:ed:4d:63:ee:33:a5:92:d2:31:b4:ff:37:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b Validity Not Before: Oct 31 15:34:20 2024 GMT Not After : Oct 30 15:39:20 2025 GMT Subject: CN=AEE1B146612EC4EEBD4580D8612E2930072E41A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:65:a7:80:97:86:7e:b7:9c:3b:b4:e0:d2:07: 17:a9:15:81:48:85:18:0a:1b:af:7b:95:3c:99:61: f6:ad:c7:87:54:e0:39:d5:e9:68:56:bc:08:79:e9: 26:6e:d1:03:72:1f:e9:9e:13:3d:83:ee:4d:14:1c: 4b:dc:e8:da:1a:61:34:82:86:6e:52:ce:3f:f9:97: b0:67:a4:e7:c2:04:9c:3e:15:09:84:2c:65:af:34: 91:6f:38:5b:04:39:be:a4:29:75:c9:e3:00:81:f8: b1:7c:81:68:df:6a:6b:42:e2:51:7e:bf:5d:81:b2: a1:bb:76:71:f5:ab:d7:01:e6:8b:7f:8a:b9:fe:56: 57:ad:fe:55:3a:73:21:21:51:09:6b:e6:b5:f2:f7: 00:c6:ff:7d:5c:1d:8d:d6:03:33:17:9d:4e:bc:05: b9:b4:89:97:62:5a:3c:7e:4e:8e:fb:4c:37:ed:f9: 0a:b9:90:57:ae:e6:1f:b4:df:57:49:d5:d6:94:c9: 20:ad:ad:63:dc:40:26:6c:11:85:eb:8d:fc:36:fb: c4:e0:f3:74:a4:74:38:ae:81:0b:f0:4c:3d:1d:65: cc:1c:fa:9e:11:73:9a:5f:86:46:4d:05:42:1f:9f: 79:5e:e5:58:b9:85:b9:7d:3f:d2:bb:27:47:6a:52: bd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E1:B1:46:61:2E:C4:EE:BD:45:80:D8:61:2E:29:30:07:2E:41:A8 X509v3 Authority Key Identifier: keyid:3F:CD:3A:83:9E:A1:41:7F:D9:88:F3:DD:FD:04:54:19:7F:AA:F4:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/3FCD3A839EA1417FD988F3DDFD0454197FAAF47A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/51cd99f7-2f42-4dec-b2c6-09bafaa3780e/324ffe39a98a0146b503d8a015ca2c2e767cf3d0b9fde6231b.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/1/32332e3139312e34302e302f32342d3234203d3e203236393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.191.40.0/24 Signature Algorithm: sha256WithRSAEncryption 30:f1:f3:12:72:ef:91:47:e2:e7:82:9f:05:ba:2f:7a:35:98: 73:83:2d:75:bb:5d:39:ea:2d:41:46:6d:cf:82:73:77:ab:1b: e3:9d:cf:5b:1b:77:3e:6e:5b:40:24:62:ef:82:3b:4b:18:0a: 37:c1:a6:bb:3e:cc:98:4a:7d:c7:88:2d:b0:76:d5:12:65:36: 03:1c:b4:0e:d6:78:ee:bb:29:d7:53:d5:e3:74:bd:01:99:b1: a9:db:f2:b7:54:fb:81:42:75:20:ba:d3:20:f7:4b:65:2f:db: 41:9a:00:1b:d5:13:2b:4e:da:38:ad:4e:7f:bb:3a:34:99:b7: f9:01:b9:47:0a:0c:df:bc:1e:cd:53:5a:d1:25:a3:31:d7:4d: fb:5b:34:04:f2:f2:7e:fa:1d:f7:34:83:6d:73:db:89:a4:bd: 58:58:e0:39:ab:1a:cd:1e:cc:ba:aa:a8:53:30:01:15:e7:25: d9:92:22:39:f2:c0:53:e9:d5:e6:20:d6:f4:9f:9d:ec:0e:8a: 29:86:77:d2:e6:2a:58:c8:16:df:62:fc:31:a0:ef:ba:fa:db: ff:c6:9b:db:86:bd:86:7b:a6:41:7a:48:9f:85:e7:0e:6c:3a: cf:36:fa:c4:0c:1d:47:d3:5e:a1:1b:37:26:cc:0c:ee:e8:89: cd:d0:0a:54 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUdIRMmMbIvO1NY+4zpZLSMbT/N+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3 NjdjZjNkMGI5ZmRlNjIzMWIwHhcNMjQxMDMxMTUzNDIwWhcNMjUxMDMwMTUzOTIw WjAzMTEwLwYDVQQDEyhBRUUxQjE0NjYxMkVDNEVFQkQ0NTgwRDg2MTJFMjkzMDA3 MkU0MUE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmWngJeGfrec O7Tg0gcXqRWBSIUYChuve5U8mWH2rceHVOA51eloVrwIeekmbtEDch/pnhM9g+5N FBxL3OjaGmE0goZuUs4/+ZewZ6TnwgScPhUJhCxlrzSRbzhbBDm+pCl1yeMAgfix fIFo32prQuJRfr9dgbKhu3Zx9avXAeaLf4q5/lZXrf5VOnMhIVEJa+a18vcAxv99 XB2N1gMzF51OvAW5tImXYlo8fk6O+0w37fkKuZBXruYftN9XSdXWlMkgra1j3EAm bBGF6438NvvE4PN0pHQ4roEL8Ew9HWXMHPqeEXOaX4ZGTQVCH595XuVYuYW5fT/S uydHalK9kQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFK7hsUZhLsTuvUWA2GEuKTAH LkGoMB8GA1UdIwQYMBaAFD/NOoOeoUF/2Yjz3f0EVBl/qvR6MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5 LTBhYjcwZTQ4MTViYi8xLzNGQ0QzQTgzOUVBMTQxN0ZEOTg4RjNEREZEMDQ1NDE5 N0ZBQUY0N0EuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzY5ZmQwMTU2LWJiMWYt NDhiNi1iZjMyLWM5NDkyMjg2ZjE5NS81MWNkOTlmNy0yZjQyLTRkZWMtYjJjNi0w OWJhZmFhMzc4MGUvMzI0ZmZlMzlhOThhMDE0NmI1MDNkOGEwMTVjYTJjMmU3Njdj ZjNkMGI5ZmRlNjIzMWIuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4MTViYi8xLzMyMzMyZTMx MzkzMTJlMzQzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzOTM1MzQucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXvygwDQYJKoZIhvcNAQELBQADggEBADDx8xJy75FH4ueCnwW6L3o1 mHODLXW7XTnqLUFGbc+Cc3erG+Odz1sbdz5uW0AkYu+CO0sYCjfBprs+zJhKfceI LbB21RJlNgMctA7WeO67KddT1eN0vQGZsanb8rdU+4FCdSC60yD3S2Uv20GaABvV EytO2jitTn+7OjSZt/kBuUcKDN+8Hs1TWtElozHXTftbNATy8n76Hfc0g21z24mk vVhY4DmrGs0ezLqqqFMwARXnJdmSIjnywFPp1eYg1vSfnewOiimGd9LmKljIFt9i /DGg77r62//Gm9uGvYZ7pkF6SJ+F5w5sOs82+sQMHUfTXqEbNybMDO7oic3QClQ= -----END CERTIFICATE-----Generated at Fri Nov 22 12:19:05 2024 by rpki-client on console-fra.rpki-client.org