$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa File: 32332e3137302e37322e302f32342d3234203d3e203436373636.roa (raw, json) Hash identifier: FghA8Zz7QbzObKv2ia/HqFgnN9W82bmOSCIz6G2zFuE= Subject key identifier: 5D:0F:42:70:F7:2D:A4:2A:02:E5:FB:53:AF:28:AD:E6:EF:91:DB:1E Certificate issuer: /CN=89d4f40fed1166159109937674aef0279ad039550feccf8d61 Certificate serial: 13B0A68E8043D70BB1CFF0C7ACEFB44501572D92 Authority key identifier: 24:72:94:9B:3C:23:49:30:DB:E9:9B:1B:5C:D5:19:6A:B1:6D:15:1B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa Signing time: Thu 02 Jan 2025 21:03:20 +0000 ROA not before: Thu 02 Jan 2025 20:58:20 +0000 ROA not after: Thu 01 Jan 2026 21:03:20 +0000 asID: 46766 IP address blocks: 23.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/3d9879da-145f-4f21-a7c3-da6b59a01625.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/3d9879da-145f-4f21-a7c3-da6b59a01625.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 13:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b0:a6:8e:80:43:d7:0b:b1:cf:f0:c7:ac:ef:b4:45:01:57:2d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89d4f40fed1166159109937674aef0279ad039550feccf8d61 Validity Not Before: Jan 2 20:58:20 2025 GMT Not After : Jan 1 21:03:20 2026 GMT Subject: CN=5D0F4270F72DA42A02E5FB53AF28ADE6EF91DB1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:0d:93:1a:62:1c:eb:79:8a:77:26:d9:6f: 6b:0e:62:ed:80:18:7d:2c:ec:de:51:06:9d:ab:34: db:2d:53:6f:b1:56:66:45:a1:a7:e6:1c:4b:a4:b4: 7a:a0:76:42:6b:e5:9f:88:5e:b1:97:3f:75:30:d4: e9:75:7c:bc:ec:3e:3e:97:87:bc:43:08:8f:9f:67: a7:31:bb:3c:0b:89:a0:7d:b9:51:9f:d0:d0:22:3f: 1a:77:ec:71:29:39:d0:6a:29:2d:22:ef:93:be:be: 37:d8:cf:cf:84:23:79:51:72:e7:88:ed:58:f2:98: 27:2f:d4:ae:87:18:2d:cc:fc:3a:83:ee:dc:6e:27: b2:2c:b9:d7:e7:4f:7b:30:6b:19:12:0b:c6:04:c8: a6:05:86:28:30:64:9d:bb:5b:93:e4:b7:89:c0:04: f0:2e:3b:0c:f1:33:13:1a:31:7a:7c:36:e9:d9:7a: d6:22:18:6a:a6:21:c2:09:04:d2:11:10:4c:9f:0c: 05:44:25:6f:67:14:2e:bf:09:3b:63:0b:58:27:a9: d4:c0:c3:f0:fd:3a:89:c9:3e:ef:2e:26:84:f4:2f: 7c:ae:5c:ab:60:26:97:cd:3d:57:a6:42:cc:fb:23: f2:ad:78:61:ce:08:11:b7:db:fb:d5:a6:20:0a:7d: eb:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0F:42:70:F7:2D:A4:2A:02:E5:FB:53:AF:28:AD:E6:EF:91:DB:1E X509v3 Authority Key Identifier: keyid:24:72:94:9B:3C:23:49:30:DB:E9:9B:1B:5C:D5:19:6A:B1:6D:15:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:d2:bd:89:33:d5:9e:47:ad:59:48:85:08:59:f2:c2:47:39: e1:33:b1:6e:ef:b5:1a:60:0e:a7:4f:e0:a1:ac:32:3d:b4:a7: 21:ed:9a:1a:c9:b8:79:15:fb:c3:f3:11:14:65:d8:1e:9d:35: 8e:d2:6d:09:12:f7:18:8f:eb:c4:25:a6:13:8b:b5:cd:6c:5e: 0b:5a:a5:fc:78:aa:b0:3c:75:3e:4d:10:d8:77:5b:c7:93:a9: bb:fd:cb:52:4c:39:df:53:6b:a7:31:08:90:61:db:83:34:3b: b0:2e:fd:87:76:02:94:3c:6a:79:f4:a6:b4:e1:d3:64:8b:38: 66:32:59:65:d1:4e:0f:70:e4:c9:10:cd:ba:df:7e:1f:9a:2a: 41:22:39:49:53:5a:51:b9:45:ea:32:a2:a1:4a:69:6a:31:c6: 5b:2f:03:05:bb:1c:f2:3e:2f:8d:ab:3a:0d:2c:24:a6:bd:51: c0:b3:6a:a0:00:42:8a:dd:09:e1:07:67:13:ac:29:43:42:3e: 25:34:ee:9b:05:9f:26:7c:f9:5f:ad:44:26:07:e6:75:66:61: 9d:04:a6:6f:ab:47:ec:54:a5:2c:ef:e0:3b:97:07:a9:4b:32: 16:96:8d:84:b4:28:ec:be:75:0a:20:27:40:43:62:fb:b2:97: 44:4e:13:a2 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUE7CmjoBD1wuxz/DHrO+0RQFXLZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODlkNGY0MGZlZDExNjYxNTkxMDk5Mzc2NzRhZWYwMjc5 YWQwMzk1NTBmZWNjZjhkNjEwHhcNMjUwMTAyMjA1ODIwWhcNMjYwMTAxMjEwMzIw WjAzMTEwLwYDVQQDEyg1RDBGNDI3MEY3MkRBNDJBMDJFNUZCNTNBRjI4QURFNkVG OTFEQjFFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJoNkxpiHOt5 incm2W9rDmLtgBh9LOzeUQadqzTbLVNvsVZmRaGn5hxLpLR6oHZCa+WfiF6xlz91 MNTpdXy87D4+l4e8QwiPn2enMbs8C4mgfblRn9DQIj8ad+xxKTnQaiktIu+Tvr43 2M/PhCN5UXLniO1Y8pgnL9SuhxgtzPw6g+7cbieyLLnX5097MGsZEgvGBMimBYYo MGSdu1uT5LeJwATwLjsM8TMTGjF6fDbp2XrWIhhqpiHCCQTSERBMnwwFRCVvZxQu vwk7YwtYJ6nUwMPw/TqJyT7vLiaE9C98rlyrYCaXzT1XpkLM+yPyrXhhzggRt9v7 1aYgCn3rFwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFF0PQnD3LaQqAuX7U68orebv kdseMB8GA1UdIwQYMBaAFCRylJs8I0kw2+mbG1zVGWqxbRUbMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3 LWI0MjgxOGNmNTBlOC82LzI0NzI5NDlCM0MyMzQ5MzBEQkU5OUIxQjVDRDUxOTZB QjE2RDE1MUIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC8zZDk4NzlkYS0xNDVmLTRmMjEtYTdjMy1k YTZiNTlhMDE2MjUvODlkNGY0MGZlZDExNjYxNTkxMDk5Mzc2NzRhZWYwMjc5YWQw Mzk1NTBmZWNjZjhkNjEuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBlOC82LzMyMzMyZTMx MzczMDJlMzczMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzYzNzM2MzYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXqkgwDQYJKoZIhvcNAQELBQADggEBABzSvYkz1Z5HrVlIhQhZ8sJH OeEzsW7vtRpgDqdP4KGsMj20pyHtmhrJuHkV+8PzERRl2B6dNY7SbQkS9xiP68Ql phOLtc1sXgtapfx4qrA8dT5NENh3W8eTqbv9y1JMOd9Ta6cxCJBh24M0O7Au/Yd2 ApQ8ann0prTh02SLOGYyWWXRTg9w5MkQzbrffh+aKkEiOUlTWlG5ReoyoqFKaWox xlsvAwW7HPI+L42rOg0sJKa9UcCzaqAAQordCeEHZxOsKUNCPiU07psFnyZ8+V+t RCYH5nVmYZ0Epm+rR+xUpSzv4DuXB6lLMhaWjYS0KOy+dQogJ0BDYvuyl0ROE6I= -----END CERTIFICATE-----Generated at Mon Apr 7 06:19:51 2025 by rpki-client