$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa File: 32332e3137302e37322e302f32342d3234203d3e203436373636.roa (raw, json) Hash identifier: Mo3m7Alcm7he+TaLTHpRilEgbDDW3f/W5H0SuTQox2k= Subject key identifier: DE:CF:FF:FC:5D:6C:2A:7C:2B:D8:DB:F5:3C:7A:37:46:B5:34:B6:FA Certificate issuer: /CN=89d4f40fed1166159109937674aef0279ad039550feccf8d61 Certificate serial: 3B2E8FEC349A67B509485197FBAE53B1222151E3 Authority key identifier: 24:72:94:9B:3C:23:49:30:DB:E9:9B:1B:5C:D5:19:6A:B1:6D:15:1B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa Signing time: Thu 01 Feb 2024 20:53:31 +0000 ROA not before: Thu 01 Feb 2024 20:48:31 +0000 ROA not after: Thu 30 Jan 2025 20:53:31 +0000 asID: 46766 IP address blocks: 23.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/3d9879da-145f-4f21-a7c3-da6b59a01625.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/3d9879da-145f-4f21-a7c3-da6b59a01625.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 02 Jun 2024 20:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2e:8f:ec:34:9a:67:b5:09:48:51:97:fb:ae:53:b1:22:21:51:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89d4f40fed1166159109937674aef0279ad039550feccf8d61 Validity Not Before: Feb 1 20:48:31 2024 GMT Not After : Jan 30 20:53:31 2025 GMT Subject: CN=DECFFFFC5D6C2A7C2BD8DBF53C7A3746B534B6FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:b8:d2:3d:c7:5c:8c:3f:11:29:5f:5f:e0: 0e:5e:a7:47:b6:b7:38:e8:a1:d4:73:b0:cf:38:0b: c0:46:c4:64:6b:5a:e1:13:59:c5:70:26:12:e3:02: f9:47:4e:fc:0e:46:d9:42:aa:ae:00:0e:97:a0:2a: 43:62:ed:f7:e1:cf:eb:fe:ca:d5:9b:dc:52:a0:e0: 3f:08:06:58:5c:87:8e:23:e1:6b:61:9e:90:0e:b4: da:20:cb:f1:aa:4e:f3:1b:fc:52:b4:96:f1:37:d7: 4d:a4:8b:be:88:5d:4d:24:41:71:ed:cf:cf:f1:89: d6:6c:07:61:bd:1e:7b:b1:cc:f8:e1:0a:dd:27:94: 34:97:71:f3:43:70:2a:fa:de:35:0c:08:0b:47:b7: 5b:49:7d:be:81:05:00:a5:a8:08:f5:66:d3:43:1b: 70:bb:7e:f8:ad:ba:45:75:15:00:73:fb:f2:9a:1d: ee:91:81:99:22:4e:d7:e1:6d:cd:19:8c:6a:40:0b: ea:ab:79:62:61:3a:e8:21:d7:32:8a:06:fa:8b:70: b7:07:0a:cd:07:9d:fa:e4:20:61:1d:1a:52:a8:ef: 5f:79:2b:09:28:28:6a:c4:8e:4a:29:fe:38:7d:59: 27:16:7a:6f:b5:ed:a8:f1:4b:bf:50:e8:75:fd:a0: 2b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CF:FF:FC:5D:6C:2A:7C:2B:D8:DB:F5:3C:7A:37:46:B5:34:B6:FA X509v3 Authority Key Identifier: keyid:24:72:94:9B:3C:23:49:30:DB:E9:9B:1B:5C:D5:19:6A:B1:6D:15:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/2472949B3C234930DBE99B1B5CD5196AB16D151B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/3d9879da-145f-4f21-a7c3-da6b59a01625/89d4f40fed1166159109937674aef0279ad039550feccf8d61.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/6/32332e3137302e37322e302f32342d3234203d3e203436373636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 85:16:67:93:55:60:38:bb:82:e7:eb:af:80:f0:c0:34:1f:19: 97:79:08:75:1a:88:b5:77:49:1e:13:00:a6:58:a6:17:e7:56: 84:a8:1b:fe:83:e5:41:4b:6f:b7:10:95:7e:80:a6:d3:11:fb: 5d:1e:5c:1f:43:85:87:37:11:1a:5d:94:63:3a:22:86:31:2c: e7:25:f6:91:fe:03:ee:5f:53:16:b3:53:e0:73:6a:12:c3:17: 1e:a1:59:f0:ff:35:07:0d:bc:43:cd:09:c8:80:27:11:2a:37: 8f:54:75:ae:48:23:f1:c8:83:76:30:7d:a8:ca:bd:e6:ee:35: c0:36:54:35:77:f6:1d:65:6a:f4:e8:e0:4a:d1:61:5d:2a:7a: c8:12:59:54:64:ae:d7:97:d4:e1:33:2c:7a:18:99:71:10:8a: d6:f1:02:3c:06:c5:80:bd:8b:f7:b5:60:97:82:f1:ff:ff:c9: bd:fb:8e:c2:c6:ab:6e:c8:c9:e6:87:db:50:52:21:de:95:5e: d9:2a:d2:67:a4:72:6e:40:56:60:a4:03:3a:e5:54:1e:b3:2f: d4:ed:90:3c:13:19:11:b0:c0:a1:4e:d6:8b:72:71:68:aa:e6: 3a:5b:dc:94:5b:72:c5:14:15:a6:fe:1f:2e:73:55:33:21:e5: 89:b8:cd:ab -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUOy6P7DSaZ7UJSFGX+65TsSIhUeMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyODlkNGY0MGZlZDExNjYxNTkxMDk5Mzc2NzRhZWYwMjc5 YWQwMzk1NTBmZWNjZjhkNjEwHhcNMjQwMjAxMjA0ODMxWhcNMjUwMTMwMjA1MzMx WjAzMTEwLwYDVQQDEyhERUNGRkZGQzVENkMyQTdDMkJEOERCRjUzQzdBMzc0NkI1 MzRCNkZBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMG40j3HXIw/ ESlfX+AOXqdHtrc46KHUc7DPOAvARsRka1rhE1nFcCYS4wL5R078DkbZQqquAA6X oCpDYu334c/r/srVm9xSoOA/CAZYXIeOI+FrYZ6QDrTaIMvxqk7zG/xStJbxN9dN pIu+iF1NJEFx7c/P8YnWbAdhvR57scz44QrdJ5Q0l3HzQ3Aq+t41DAgLR7dbSX2+ gQUApagI9WbTQxtwu374rbpFdRUAc/vymh3ukYGZIk7X4W3NGYxqQAvqq3liYTro Idcyigb6i3C3BwrNB5365CBhHRpSqO9feSsJKChqxI5KKf44fVknFnpvte2o8Uu/ UOh1/aArlQIDAQABo4ICyzCCAscwHQYDVR0OBBYEFN7P//xdbCp8K9jb9Tx6N0a1 NLb6MB8GA1UdIwQYMBaAFCRylJs8I0kw2+mbG1zVGWqxbRUbMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3 LWI0MjgxOGNmNTBlOC82LzI0NzI5NDlCM0MyMzQ5MzBEQkU5OUIxQjVDRDUxOTZB QjE2RDE1MUIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC8zZDk4NzlkYS0xNDVmLTRmMjEtYTdjMy1k YTZiNTlhMDE2MjUvODlkNGY0MGZlZDExNjYxNTkxMDk5Mzc2NzRhZWYwMjc5YWQw Mzk1NTBmZWNjZjhkNjEuY2VyMIGrBggrBgEFBQcBCwSBnjCBmzCBmAYIKwYBBQUH MAuGgYtyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2RlN2Q1NWY3LWVlNjAtNDAwNS1iYWQ3LWI0MjgxOGNmNTBlOC82LzMyMzMyZTMx MzczMDJlMzczMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzYzNzM2MzYucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAAXqkgwDQYJKoZIhvcNAQELBQADggEBAIUWZ5NVYDi7gufrr4DwwDQf GZd5CHUaiLV3SR4TAKZYphfnVoSoG/6D5UFLb7cQlX6AptMR+10eXB9DhYc3ERpd lGM6IoYxLOcl9pH+A+5fUxazU+BzahLDFx6hWfD/NQcNvEPNCciAJxEqN49Uda5I I/HIg3YwfajKvebuNcA2VDV39h1lavTo4ErRYV0qesgSWVRkrteX1OEzLHoYmXEQ itbxAjwGxYC9i/e1YJeC8f//yb37jsLGq27IyeaH21BSId6VXtkq0mekcm5AVmCk AzrlVB6zL9TtkDwTGRGwwKFO1otycWiq5jpb3JRbcsUUFab+Hy5zVTMh5Ym4zas= -----END CERTIFICATE-----Generated at Sat Jun 1 18:40:33 2024 by rpki-client on console-ams.rpki-client.org