$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa File: 32332e3135332e3233322e302f32342d3234203d3e203539393933.roa (raw, json) Hash identifier: mlyVBtqAxaep1RbpdRUfXUrnFdjKT6MGiKPIjo5bDE0= Subject key identifier: 2A:01:5E:18:6B:4E:9E:DB:4C:7E:26:50:71:C3:BD:9C:14:C9:20:31 Certificate issuer: /CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Certificate serial: 138DBD32A0DB01F19F071BAF8BAC08F2FDC617D0 Authority key identifier: D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa Signing time: Wed 04 Dec 2024 16:37:56 +0000 ROA not before: Wed 04 Dec 2024 16:32:56 +0000 ROA not after: Wed 03 Dec 2025 16:37:56 +0000 asID: 59993 IP address blocks: 23.153.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Apr 2025 17:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:8d:bd:32:a0:db:01:f1:9f:07:1b:af:8b:ac:08:f2:fd:c6:17:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Validity Not Before: Dec 4 16:32:56 2024 GMT Not After : Dec 3 16:37:56 2025 GMT Subject: CN=2A015E186B4E9EDB4C7E265071C3BD9C14C92031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:ac:cf:30:63:7b:97:2a:e9:b2:50:8d:61: 9f:33:66:4a:9a:11:0f:e3:c2:a8:c8:00:f1:d1:d7: 72:0b:9f:81:a4:e0:9b:cc:ce:31:06:6a:08:84:8c: c7:9e:cb:79:6f:9e:94:21:00:f6:61:72:06:24:81: 27:b6:35:93:ad:8c:4b:7a:4e:85:7b:4b:9d:97:cc: 0d:fe:88:d1:ff:79:8b:f9:8a:68:4d:3d:07:fe:0c: fa:2f:61:33:2f:fb:1d:61:17:cb:d5:bf:6d:e4:7a: 99:45:f0:71:4d:af:1f:fc:f7:57:6b:7c:91:38:14: af:95:7e:b0:e3:06:d5:c8:70:4c:cd:2c:24:e0:14: 5b:63:b4:ba:5e:b8:f1:af:7b:06:08:bc:5c:52:33: 18:c2:aa:8d:2d:44:ee:c5:85:01:06:04:94:43:25: a1:58:ae:88:87:7b:db:a6:39:a1:ac:d8:a9:3b:aa: 73:19:60:8b:b5:c4:24:7c:92:a6:15:b1:e4:37:42: 04:da:59:57:5e:2b:41:be:a5:78:da:06:c6:f2:b2: a5:3a:7a:2b:0e:92:9f:1e:13:07:96:0a:da:20:0d: 9a:14:2b:9b:cf:6b:ed:82:9e:bf:48:ac:a6:6b:1e: 07:f7:c5:93:e9:9c:cc:e3:6a:43:72:4c:c8:d3:9e: 13:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:01:5E:18:6B:4E:9E:DB:4C:7E:26:50:71:C3:BD:9C:14:C9:20:31 X509v3 Authority Key Identifier: keyid:D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.153.232.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e3:3a:7d:1a:1d:9a:8e:b1:ce:ab:cd:a2:46:7a:36:ce:f9: 2b:4f:7c:2b:10:c3:16:80:c0:ea:3a:ca:f0:73:d8:04:f7:78: db:f4:16:c1:b6:e6:2a:6e:80:58:fb:f4:cb:b1:53:6a:62:d1: ca:bd:cb:75:fe:6f:3d:2e:8d:20:8c:26:1d:d1:cf:5b:ea:a7: 2d:cf:de:d7:f7:41:6e:51:ab:93:fa:48:7b:e1:7e:8e:c4:ab: ca:9e:8a:6e:d8:13:47:88:3d:00:6c:26:34:8c:a7:27:61:00: e9:10:29:c0:7e:51:80:46:bb:45:fa:40:41:9c:4f:a9:fd:00: dc:e8:6c:17:a6:0b:ed:41:05:62:c4:6e:ca:2d:a8:06:88:15: e4:aa:23:b1:3c:25:3c:16:87:84:83:7f:d4:2d:d0:13:9f:8a: 39:47:2b:41:8d:c7:be:63:ac:64:b9:d7:3f:72:69:a3:43:4b: 8f:b7:8f:4b:d5:2c:b8:49:f8:b1:35:b8:6e:4b:6b:2f:02:6b: 6d:54:6f:60:2c:a0:7b:78:cc:49:e7:78:0a:df:17:f6:df:f4: b7:ae:70:38:b9:d9:66:0f:dc:3b:2f:b8:ae:c2:1b:b8:dc:59: 8f:20:8e:41:d7:f8:bb:a9:c6:2f:5b:d1:16:67:90:17:2b:2a: c1:60:60:4a -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUE429MqDbAfGfBxuvi6wI8v3GF9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZm OTQ1ZTA3MzNmYzQ5YzJlNGMwHhcNMjQxMjA0MTYzMjU2WhcNMjUxMjAzMTYzNzU2 WjAzMTEwLwYDVQQDEygyQTAxNUUxODZCNEU5RURCNEM3RTI2NTA3MUMzQkQ5QzE0 QzkyMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0uszzBje5cq 6bJQjWGfM2ZKmhEP48KoyADx0ddyC5+BpOCbzM4xBmoIhIzHnst5b56UIQD2YXIG JIEntjWTrYxLek6Fe0udl8wN/ojR/3mL+YpoTT0H/gz6L2EzL/sdYRfL1b9t5HqZ RfBxTa8f/PdXa3yROBSvlX6w4wbVyHBMzSwk4BRbY7S6Xrjxr3sGCLxcUjMYwqqN LUTuxYUBBgSUQyWhWK6Ih3vbpjmhrNipO6pzGWCLtcQkfJKmFbHkN0IE2llXXitB vqV42gbG8rKlOnorDpKfHhMHlgraIA2aFCubz2vtgp6/SKymax4H98WT6ZzM42pD ckzI054TcQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFCoBXhhrTp7bTH4mUHHDvZwU ySAxMB8GA1UdIwQYMBaAFNdJg8H6ugzBVm8GAa/hFCPhG1FxMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5 LTRmYWVhNGIxYmMxMi83L0Q3NDk4M0MxRkFCQTBDQzE1NjZGMDYwMUFGRTExNDIz RTExQjUxNzEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iMTUwZTk4ZC04MGU5LTQ1ZjYtYmM2My02 YjQwYTNkNTllOWMvNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZmOTQ1 ZTA3MzNmYzQ5YzJlNGMuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5LTRmYWVhNGIxYmMxMi83LzMyMzMyZTMx MzUzMzJlMzIzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTM5MzkzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeZ6DANBgkqhkiG9w0BAQsFAAOCAQEAEuM6fRodmo6xzqvNokZ6 Ns75K098KxDDFoDA6jrK8HPYBPd42/QWwbbmKm6AWPv0y7FTamLRyr3Ldf5vPS6N IIwmHdHPW+qnLc/e1/dBblGrk/pIe+F+jsSryp6KbtgTR4g9AGwmNIynJ2EA6RAp wH5RgEa7RfpAQZxPqf0A3OhsF6YL7UEFYsRuyi2oBogV5KojsTwlPBaHhIN/1C3Q E5+KOUcrQY3HvmOsZLnXP3Jpo0NLj7ePS9UsuEn4sTW4bktrLwJrbVRvYCyge3jM Sed4Ct8X9t/0t65wOLnZZg/cOy+4rsIbuNxZjyCOQdf4u6nGL1vRFmeQFysqwWBg Sg== -----END CERTIFICATE-----Generated at Sat Apr 5 03:48:04 2025 by rpki-client