$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa File: 32332e3135332e3233322e302f32342d3234203d3e203539393933.roa (raw, json) Hash identifier: FPotLj53D3fhqQ3FCE3ZFsqX8IUbI01YprLD+v+aGk0= Subject key identifier: 92:3D:C0:E6:83:6F:0A:27:DA:66:93:99:99:F3:F3:B9:47:F9:D2:1D Certificate issuer: /CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Certificate serial: 6B071F8D4FAC07A94C9793639F429C8437003186 Authority key identifier: D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa Signing time: Wed 03 Jan 2024 16:09:28 +0000 ROA not before: Wed 03 Jan 2024 16:04:28 +0000 ROA not after: Wed 01 Jan 2025 16:09:28 +0000 asID: 59993 IP address blocks: 23.153.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 16:13:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:07:1f:8d:4f:ac:07:a9:4c:97:93:63:9f:42:9c:84:37:00:31:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c Validity Not Before: Jan 3 16:04:28 2024 GMT Not After : Jan 1 16:09:28 2025 GMT Subject: CN=923DC0E6836F0A27DA66939999F3F3B947F9D21D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:2e:42:00:be:84:58:ed:95:49:40:1c:9c: 96:98:3b:b6:0e:d8:08:7f:55:e0:a9:66:42:e1:a3: 35:38:27:4f:91:8e:37:93:f5:ad:a6:55:33:ea:f1: d7:e2:c7:c2:08:7d:bf:ff:ff:b6:37:4e:36:14:4c: ba:4c:49:67:2d:86:50:e3:c3:e5:1c:c7:1f:4a:76: cd:5d:f2:6e:95:f8:50:3c:9c:1d:04:7c:8b:46:99: 6f:b5:6e:66:84:e7:56:57:40:11:d8:3b:cb:7c:0f: 4c:1b:7d:0d:b7:5e:cb:f6:41:dd:34:9b:3c:fe:92: 85:62:5e:32:af:ab:8b:a9:95:a4:94:e9:89:d0:27: 51:c5:bf:4f:aa:bc:38:a5:4c:5b:8c:ad:6a:cf:4e: 3a:ad:3e:12:6c:15:54:b0:02:bb:9c:66:ac:28:13: 84:b4:05:6b:27:59:31:f1:51:32:df:d3:74:de:8c: 86:05:33:08:86:97:0b:63:27:10:45:5f:fb:1e:f7: cf:f4:f0:10:c3:9d:b8:49:4d:e9:79:40:bc:4a:f3: b7:f2:4e:89:9a:06:08:73:d4:5a:92:a5:3c:3f:70: 3f:90:e5:31:6a:99:4b:f7:ec:dd:af:bf:d5:2c:31: 3a:a1:39:1a:ea:c7:3e:e2:3b:78:ce:d8:4f:00:cb: 33:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3D:C0:E6:83:6F:0A:27:DA:66:93:99:99:F3:F3:B9:47:F9:D2:1D X509v3 Authority Key Identifier: keyid:D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/32332e3135332e3233322e302f32342d3234203d3e203539393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.153.232.0/24 Signature Algorithm: sha256WithRSAEncryption 22:c6:1a:89:ad:7b:38:52:87:cb:cc:b5:ad:8c:b6:5b:7b:88: 05:75:33:67:9e:68:72:ff:ec:de:ae:9d:05:ce:22:7d:ab:e2: cc:fd:a1:09:5e:29:93:0c:40:df:a9:52:63:4a:1f:b2:d5:44: 8a:9f:7b:e0:85:79:38:93:74:6c:17:32:23:65:4d:a0:d8:02: eb:dd:19:ee:e8:d5:07:d6:89:d5:4d:46:1d:d8:43:8c:51:19: 6d:c5:8e:6f:bd:bd:ea:c3:f9:ef:cf:b4:b1:21:9b:9c:b6:75: e9:e5:a8:31:1b:7d:4d:b9:4b:3a:48:27:b1:49:70:1a:63:3d: a0:22:52:f0:11:9d:31:2b:e0:27:8d:7c:72:6b:3e:ce:bc:29: 63:c8:5a:10:0b:88:70:18:ec:b3:d7:27:80:d7:7e:74:ab:34: 08:1a:86:47:0b:56:07:66:49:34:8f:bb:3a:b8:a9:0a:d2:31: 0d:55:43:be:73:e2:54:a2:40:c7:b4:0d:34:c5:e0:08:93:98: ac:1f:3f:6c:84:9d:1b:5c:1f:4f:82:ab:ac:55:cc:ca:91:53: b0:1e:0b:a8:7a:1b:fc:7c:b9:b3:ec:13:41:d5:5a:25:0c:e4: 99:da:4a:59:aa:30:57:bd:3b:b9:43:56:61:3c:9a:d4:87:a4: 7d:ad:16:84 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUawcfjU+sB6lMl5Njn0KchDcAMYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZm OTQ1ZTA3MzNmYzQ5YzJlNGMwHhcNMjQwMTAzMTYwNDI4WhcNMjUwMTAxMTYwOTI4 WjAzMTEwLwYDVQQDEyg5MjNEQzBFNjgzNkYwQTI3REE2NjkzOTk5OUYzRjNCOTQ3 RjlEMjFEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNwuQgC+hFjt lUlAHJyWmDu2DtgIf1XgqWZC4aM1OCdPkY43k/WtplUz6vHX4sfCCH2///+2N042 FEy6TElnLYZQ48PlHMcfSnbNXfJulfhQPJwdBHyLRplvtW5mhOdWV0AR2DvLfA9M G30Nt17L9kHdNJs8/pKFYl4yr6uLqZWklOmJ0CdRxb9Pqrw4pUxbjK1qz046rT4S bBVUsAK7nGasKBOEtAVrJ1kx8VEy39N03oyGBTMIhpcLYycQRV/7HvfP9PAQw524 SU3peUC8SvO38k6JmgYIc9RakqU8P3A/kOUxaplL9+zdr7/VLDE6oTka6sc+4jt4 zthPAMszFwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFJI9wOaDbwon2maTmZnz87lH +dIdMB8GA1UdIwQYMBaAFNdJg8H6ugzBVm8GAa/hFCPhG1FxMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5 LTRmYWVhNGIxYmMxMi83L0Q3NDk4M0MxRkFCQTBDQzE1NjZGMDYwMUFGRTExNDIz RTExQjUxNzEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2E3MzQyMGNiLWIzY2Mt NGIwMy1iZGE3LTFiZTIwNDkzM2FlNS9iMTUwZTk4ZC04MGU5LTQ1ZjYtYmM2My02 YjQwYTNkNTllOWMvNGI0M2M2NGE2ODBlZmRjNTFhMDA0NjMxNzJiOGY1YWZmOTQ1 ZTA3MzNmYzQ5YzJlNGMuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2FlNmVkZWVjLTA4YmEtNGNkZS04OTc5LTRmYWVhNGIxYmMxMi83LzMyMzMyZTMx MzUzMzJlMzIzMzMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzOTM5MzkzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeZ6DANBgkqhkiG9w0BAQsFAAOCAQEAIsYaia17OFKHy8y1rYy2 W3uIBXUzZ55ocv/s3q6dBc4ifavizP2hCV4pkwxA36lSY0ofstVEip974IV5OJN0 bBcyI2VNoNgC690Z7ujVB9aJ1U1GHdhDjFEZbcWOb7296sP578+0sSGbnLZ16eWo MRt9TblLOkgnsUlwGmM9oCJS8BGdMSvgJ418cms+zrwpY8haEAuIcBjss9cngNd+ dKs0CBqGRwtWB2ZJNI+7OripCtIxDVVDvnPiVKJAx7QNNMXgCJOYrB8/bISdG1wf T4KrrFXMypFTsB4LqHob/Hy5s+wTQdVaJQzkmdpKWaowV707uUNWYTya1Iekfa0W hA== -----END CERTIFICATE-----Generated at Thu Nov 21 16:18:00 2024 by rpki-client on console-fra.rpki-client.org