$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/32332e3137322e3132302e302f32342d3332203d3e203437323732.roa File: 32332e3137322e3132302e302f32342d3332203d3e203437323732.roa (raw, json) Hash identifier: O471OHIRG/KFXeZ9pKgcI2kYrWofF9ouN32zOK2wf/M= Subject key identifier: A1:83:D1:B3:01:8A:99:92:8D:F8:05:D9:89:14:F8:70:72:0F:D3:34 Certificate issuer: /CN=f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7 Certificate serial: 74AF5DBF292EBE1679017D8897F46E2AB668BF9B Authority key identifier: 24:F5:DA:48:C3:AF:BC:A0:FF:D9:21:54:7E:F0:9F:77:6A:F8:A2:EA Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/32332e3137322e3132302e302f32342d3332203d3e203437323732.roa Signing time: Fri 07 Feb 2025 11:41:04 +0000 ROA not before: Fri 07 Feb 2025 11:36:04 +0000 ROA not after: Fri 06 Feb 2026 11:41:04 +0000 asID: 47272 IP address blocks: 23.172.120.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/02c7706b-3baf-42cb-bdf7-782b036252b3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Apr 2025 18:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:af:5d:bf:29:2e:be:16:79:01:7d:88:97:f4:6e:2a:b6:68:bf:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7 Validity Not Before: Feb 7 11:36:04 2025 GMT Not After : Feb 6 11:41:04 2026 GMT Subject: CN=A183D1B3018A99928DF805D98914F870720FD334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:44:61:ee:49:d1:57:e2:f8:1d:c2:cb:66:df: 10:02:6c:a0:81:8a:d9:f1:ac:de:23:b4:2a:81:6b: 1d:64:c5:44:a3:72:85:40:b4:d0:3e:72:b6:87:24: 19:79:91:9f:b2:cd:15:d2:2f:35:b4:1a:d3:36:0a: c0:d3:9c:01:40:f6:a3:1f:f8:37:1e:c2:51:9d:55: 1f:7d:67:4d:63:6e:ee:fa:9f:51:21:7c:c6:4a:2f: 85:d2:f2:52:e8:90:1b:d3:97:3a:6c:eb:dc:9a:59: 35:a0:00:68:c2:88:14:69:9a:84:9d:eb:28:f3:8e: df:db:43:33:75:15:85:13:f9:82:65:ee:da:34:f6: a8:e6:4e:03:1f:90:32:e3:37:a0:ce:f0:63:a6:a5: 2f:b8:ca:69:ef:0c:dc:73:80:75:f3:89:bd:c3:ac: c7:b4:0a:03:30:3d:34:48:46:be:4b:cc:71:69:fe: a5:22:f2:82:42:56:1d:4c:eb:56:e8:a3:e8:bf:a8: d4:32:de:58:d1:02:0e:d5:21:87:b6:0f:e4:f8:0e: f2:9f:a1:32:d9:2b:83:d9:9b:6d:cf:fd:04:08:30: 61:71:13:63:60:b0:45:c3:d2:09:ad:1b:9d:e4:8e: df:18:68:49:05:bd:71:a0:a1:50:53:2b:bd:bf:01: d8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:83:D1:B3:01:8A:99:92:8D:F8:05:D9:89:14:F8:70:72:0F:D3:34 X509v3 Authority Key Identifier: keyid:24:F5:DA:48:C3:AF:BC:A0:FF:D9:21:54:7E:F0:9F:77:6A:F8:A2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/24F5DA48C3AFBCA0FFD921547EF09F776AF8A2EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/02c7706b-3baf-42cb-bdf7-782b036252b3/f44c82daba9eca746b0d00f5ec1c709454be6125661b92bda7.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/1/32332e3137322e3132302e302f32342d3332203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.172.120.0/24 Signature Algorithm: sha256WithRSAEncryption 08:5d:ba:4d:6b:75:7f:fa:1c:2f:1e:41:05:7c:4b:48:9d:03: 74:21:7b:db:f4:03:89:cb:44:b9:e7:3a:2d:28:67:b5:98:9e: 86:fc:00:bc:8f:a8:61:ba:49:6b:68:bd:4f:0f:de:12:42:2d: 40:b8:1d:3c:11:13:ea:9a:99:97:3e:73:f5:25:f6:62:4a:f7: 6b:7f:56:fc:35:75:0b:16:56:d4:79:a2:1c:5c:db:50:98:cc: c9:c4:d7:a3:56:05:c0:11:46:0e:a7:cc:ef:0f:02:42:fc:66: 6b:91:e8:77:b8:63:ea:d6:bf:77:6c:df:11:3a:00:66:e0:44: f3:4e:18:85:64:39:a7:1d:1b:83:bc:70:50:4f:48:d4:a7:85: b8:37:27:91:7d:43:9d:8b:c2:cb:08:ad:41:c1:d3:0f:0c:0b: a6:51:3c:e0:65:29:ad:f3:6c:8a:de:30:dd:bb:f7:87:c5:e9: 01:d7:90:f3:ca:5f:0d:c7:f2:97:43:d8:0b:cb:7f:e3:e7:b9: 2d:64:b6:bf:70:48:b1:a7:97:79:1a:0b:74:f7:7e:92:09:2c: 38:74:a7:98:73:62:fb:a4:b4:a7:ce:8e:7e:1b:9a:26:e2:39: db:00:e5:9e:51:75:be:17:bc:cf:5a:b2:26:8d:b0:b5:fc:f1: bc:fa:7b:ba -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUdK9dvykuvhZ5AX2Il/RuKrZov5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZjQ0YzgyZGFiYTllY2E3NDZiMGQwMGY1ZWMxYzcwOTQ1 NGJlNjEyNTY2MWI5MmJkYTcwHhcNMjUwMjA3MTEzNjA0WhcNMjYwMjA2MTE0MTA0 WjAzMTEwLwYDVQQDEyhBMTgzRDFCMzAxOEE5OTkyOERGODA1RDk4OTE0Rjg3MDcy MEZEMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkRh7knRV+L4 HcLLZt8QAmyggYrZ8azeI7QqgWsdZMVEo3KFQLTQPnK2hyQZeZGfss0V0i81tBrT NgrA05wBQPajH/g3HsJRnVUffWdNY27u+p9RIXzGSi+F0vJS6JAb05c6bOvcmlk1 oABowogUaZqEneso847f20MzdRWFE/mCZe7aNPao5k4DH5Ay4zegzvBjpqUvuMpp 7wzcc4B184m9w6zHtAoDMD00SEa+S8xxaf6lIvKCQlYdTOtW6KPov6jUMt5Y0QIO 1SGHtg/k+A7yn6Ey2SuD2Zttz/0ECDBhcRNjYLBFw9IJrRud5I7fGGhJBb1xoKFQ Uyu9vwHYLwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFKGD0bMBipmSjfgF2YkU+HBy D9M0MB8GA1UdIwQYMBaAFCT12kjDr7yg/9khVH7wn3dq+KLqMA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZj LTljOWYzODk4OTk1ZC8xLzI0RjVEQTQ4QzNBRkJDQTBGRkQ5MjE1NDdFRjA5Rjc3 NkFGOEEyRUEuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzRhYjdhZTRkLWJkN2It NGIzMy05YTg4LTViMjJkMmE4MzM3ZC8wMmM3NzA2Yi0zYmFmLTQyY2ItYmRmNy03 ODJiMDM2MjUyYjMvZjQ0YzgyZGFiYTllY2E3NDZiMGQwMGY1ZWMxYzcwOTQ1NGJl NjEyNTY2MWI5MmJkYTcuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4OTk1ZC8xLzMyMzMyZTMx MzczMjJlMzEzMjMwMmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzQzNzMyMzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABeseDANBgkqhkiG9w0BAQsFAAOCAQEACF26TWt1f/ocLx5BBXxL SJ0DdCF72/QDictEuec6LShntZiehvwAvI+oYbpJa2i9Tw/eEkItQLgdPBET6pqZ lz5z9SX2Ykr3a39W/DV1CxZW1HmiHFzbUJjMycTXo1YFwBFGDqfM7w8CQvxma5Ho d7hj6ta/d2zfEToAZuBE804YhWQ5px0bg7xwUE9I1KeFuDcnkX1DnYvCywitQcHT DwwLplE84GUprfNsit4w3bv3h8XpAdeQ88pfDcfyl0PYC8t/4+e5LWS2v3BIsaeX eRoLdPd+kgksOHSnmHNi+6S0p86OfhuaJuI52wDlnlF1vhe8z1qyJo2wtfzxvPp7 ug== -----END CERTIFICATE-----Generated at Thu Apr 3 07:11:04 2025 by rpki-client