$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa File: 32332e3137302e3231362e302f32342d3234203d3e203538323032.roa (raw, json) Hash identifier: GxalkmsKA3NBmKqpRbD10jaxIIxZkAYcIT4LC7UOrQU= Subject key identifier: F8:E6:CF:98:D9:1B:5C:BA:BD:2B:1A:C1:AC:2B:64:51:00:8F:17:51 Certificate issuer: /CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Certificate serial: 2BF77D8DE60EAC7BC004CDBF86696BAA6BB0005B Authority key identifier: 2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa Signing time: Sun 15 Sep 2024 11:07:40 +0000 ROA not before: Sun 15 Sep 2024 11:02:40 +0000 ROA not after: Sun 14 Sep 2025 11:07:40 +0000 asID: 58202 IP address blocks: 23.170.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/b915810d-b97a-4696-955d-495d5d12c3b5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f7:7d:8d:e6:0e:ac:7b:c0:04:cd:bf:86:69:6b:aa:6b:b0:00:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355 Validity Not Before: Sep 15 11:02:40 2024 GMT Not After : Sep 14 11:07:40 2025 GMT Subject: CN=F8E6CF98D91B5CBABD2B1AC1AC2B6451008F1751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:ab:ff:2a:1c:a4:d3:96:b7:6d:8d:fa:03: e3:7b:86:1c:bc:10:3f:35:8c:03:6e:2b:20:4a:00: 69:b1:65:e7:7d:47:75:11:65:6e:64:98:c9:49:4d: 79:c2:c9:45:55:88:72:67:31:9c:70:50:cc:d4:45: f9:cc:a3:f2:6b:6b:b6:20:97:2b:0d:ae:d5:e5:19: a9:2f:cd:29:d2:11:1d:58:9a:fe:cf:6b:de:f4:a7: 21:17:13:2a:3d:0f:2f:3a:bc:4a:89:39:94:f3:9c: 3a:a8:d4:a2:41:03:71:11:03:7f:2f:64:6f:37:e4: 3d:a4:4f:e8:5f:ad:3d:5b:9b:ac:b5:fa:a2:be:e5: 6d:2b:fb:06:e9:6f:e7:b3:b1:e8:db:64:fe:26:28: 41:d6:91:35:53:56:18:19:2e:0e:ed:d2:5e:07:c0: 44:d1:0e:e3:27:17:7a:ad:6b:2e:41:a0:90:f4:1c: bb:05:86:a4:79:f0:8e:c3:49:b8:65:f8:3f:91:ca: 2c:c0:b2:6f:0f:97:de:14:19:9b:56:9d:60:f6:5b: dc:20:0d:69:67:2a:a1:0f:12:b2:68:04:56:4c:e6: 56:a2:80:0e:d6:ee:da:1b:7e:ce:83:33:96:e9:6a: 4e:82:67:51:a6:7c:00:0a:fb:f6:c3:8c:67:7b:60: 52:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E6:CF:98:D9:1B:5C:BA:BD:2B:1A:C1:AC:2B:64:51:00:8F:17:51 X509v3 Authority Key Identifier: keyid:2F:0F:1B:C6:7D:D2:B9:A7:E2:54:56:38:C1:73:D5:EC:06:0C:27:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/2F0F1BC67DD2B9A7E2545638C173D5EC060C27D0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/b915810d-b97a-4696-955d-495d5d12c3b5/a1ba1093bbf34991bf59a35b2bcaf49ab828176fa4310b6355.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/1/32332e3137302e3231362e302f32342d3234203d3e203538323032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.170.216.0/24 Signature Algorithm: sha256WithRSAEncryption 84:35:1a:4e:0c:24:ca:19:35:e3:33:46:6a:d3:54:41:29:d4: d5:0a:db:e6:b7:46:c6:2e:c0:3e:69:2e:d0:0c:b2:94:28:65: 9b:ca:c2:36:3a:ad:a2:44:bb:1c:20:82:9f:06:85:f7:e4:1a: dc:bf:33:5c:e1:0a:39:a8:41:db:53:18:3c:20:f3:e8:a5:8a: 3c:ac:be:41:fe:16:1b:81:ff:6a:43:59:90:24:f7:94:75:2b: 3a:df:2d:ba:36:ef:9c:f2:94:99:9e:4f:84:52:d9:70:29:6d: 0d:e6:da:73:b2:4b:f0:ce:9d:67:cb:0f:00:b6:38:07:4a:c3: 05:26:e5:d6:23:65:0c:c9:33:5c:64:47:74:a9:a6:2a:08:d6: db:55:79:6e:d5:bf:27:62:3e:96:c7:3d:5c:32:e6:65:32:b3: fa:17:21:be:57:fc:00:57:58:4a:ca:f5:5b:8a:b0:f5:83:73: 23:ae:d1:36:2b:89:5f:8d:1a:61:b7:97:c6:aa:f2:0e:c9:42: 9e:df:90:23:04:41:b0:a8:cd:fa:ac:f9:2a:fa:f4:af:05:16: 10:71:78:4f:04:17:c0:ff:f9:3e:20:8a:07:8a:51:d5:76:0f: a9:1b:98:4a:a8:c9:ae:46:4d:41:55:5d:d2:3b:17:42:cd:7b: 4f:e9:72:0a -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUK/d9jeYOrHvABM2/hmlrqmuwAFswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFi ODI4MTc2ZmE0MzEwYjYzNTUwHhcNMjQwOTE1MTEwMjQwWhcNMjUwOTE0MTEwNzQw WjAzMTEwLwYDVQQDEyhGOEU2Q0Y5OEQ5MUI1Q0JBQkQyQjFBQzFBQzJCNjQ1MTAw OEYxNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAer/yocpNOW t22N+gPje4YcvBA/NYwDbisgSgBpsWXnfUd1EWVuZJjJSU15wslFVYhyZzGccFDM 1EX5zKPya2u2IJcrDa7V5RmpL80p0hEdWJr+z2ve9KchFxMqPQ8vOrxKiTmU85w6 qNSiQQNxEQN/L2RvN+Q9pE/oX609W5ustfqivuVtK/sG6W/ns7Ho22T+JihB1pE1 U1YYGS4O7dJeB8BE0Q7jJxd6rWsuQaCQ9By7BYakefCOw0m4Zfg/kcoswLJvD5fe FBmbVp1g9lvcIA1pZyqhDxKyaARWTOZWooAO1u7aG37OgzOW6WpOgmdRpnwACvv2 w4xne2BSFwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFPjmz5jZG1y6vSsawawrZFEA jxdRMB8GA1UdIwQYMBaAFC8PG8Z90rmn4lRWOMFz1ewGDCfQMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5 LTMwOWVkOTdmMzgyNC8xLzJGMEYxQkM2N0REMkI5QTdFMjU0NTYzOEMxNzNENUVD MDYwQzI3RDAuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC9iOTE1ODEwZC1iOTdhLTQ2OTYtOTU1ZC00 OTVkNWQxMmMzYjUvYTFiYTEwOTNiYmYzNDk5MWJmNTlhMzViMmJjYWY0OWFiODI4 MTc2ZmE0MzEwYjYzNTUuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8xLzMyMzMyZTMx MzczMDJlMzIzMTM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzODMyMzAzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeq2DANBgkqhkiG9w0BAQsFAAOCAQEAhDUaTgwkyhk14zNGatNU QSnU1Qrb5rdGxi7APmku0AyylChlm8rCNjqtokS7HCCCnwaF9+Qa3L8zXOEKOahB 21MYPCDz6KWKPKy+Qf4WG4H/akNZkCT3lHUrOt8tujbvnPKUmZ5PhFLZcCltDeba c7JL8M6dZ8sPALY4B0rDBSbl1iNlDMkzXGRHdKmmKgjW21V5btW/J2I+lsc9XDLm ZTKz+hchvlf8AFdYSsr1W4qw9YNzI67RNiuJX40aYbeXxqryDslCnt+QIwRBsKjN +qz5Kvr0rwUWEHF4TwQXwP/5PiCKB4pR1XYPqRuYSqjJrkZNQVVd0jsXQs17T+ly Cg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org