$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa File: 3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa (raw, json) Hash identifier: 6VdXRPHfoA7xnUiDdltfmjHhMOfr4SkmqXrUQeQz6LM= Subject key identifier: 1C:30:91:B3:9B:22:9B:D1:95:1D:27:E2:3E:2D:20:C2:EB:70:F4:2B Certificate issuer: /CN=EEA617E7347563A86C63E921D8841FA17CEF04B0 Certificate serial: 50074207204214B47C2105D284BD8BD06A1789D4 Authority key identifier: EE:A6:17:E7:34:75:63:A8:6C:63:E9:21:D8:84:1F:A1:7C:EF:04:B0 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/EEA617E7347563A86C63E921D8841FA17CEF04B0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:19 +0000 ROA not before: Fri 07 Feb 2025 19:08:19 +0000 ROA not after: Fri 06 Feb 2026 19:13:19 +0000 asID: 47272 IP address blocks: 128.254.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/EEA617E7347563A86C63E921D8841FA17CEF04B0.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/EEA617E7347563A86C63E921D8841FA17CEF04B0.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/EEA617E7347563A86C63E921D8841FA17CEF04B0.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/0F03312EE59E3DE82735F66B549415DE44647875.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/0F03312EE59E3DE82735F66B549415DE44647875.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/eecf847d7a3e57959bebd697a7e067a75e18bb6298b1d3bf96.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/a01e997c-b89e-47c2-8d79-d31e58bc3ca4.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Apr 2025 14:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:07:42:07:20:42:14:b4:7c:21:05:d2:84:bd:8b:d0:6a:17:89:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEA617E7347563A86C63E921D8841FA17CEF04B0 Validity Not Before: Feb 7 19:08:19 2025 GMT Not After : Feb 6 19:13:19 2026 GMT Subject: CN=1C3091B39B229BD1951D27E23E2D20C2EB70F42B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:a8:f6:5a:86:9a:03:90:1a:78:c6:a1:f5: 0d:d2:99:81:76:4c:53:da:9d:d8:23:d9:05:b3:a9: 0b:00:8f:9d:be:9d:05:62:8b:7d:f4:c2:ea:18:00: 44:c0:08:33:8c:34:21:d6:b8:63:56:51:6b:a9:9b: 6d:1a:bf:c4:a5:a1:81:97:d6:ec:02:60:86:3e:84: 70:5d:85:55:e1:14:48:b5:4b:59:7e:56:34:6b:84: d1:46:19:e0:10:34:30:96:14:e6:67:22:a5:b1:ad: cf:3d:e8:b1:2d:56:69:b8:8a:e8:0c:2e:f5:75:14: 5b:75:1c:02:0e:8c:c6:2c:49:d9:e2:a1:2c:4f:d7: f4:d4:1b:59:a9:c6:0f:04:44:f8:38:35:2d:9d:49: bf:dc:2f:39:fe:0d:00:12:9b:ce:bf:4c:e4:d4:77: 91:39:2b:45:de:19:45:16:89:b4:80:46:b2:ee:f5: 7e:7f:b7:59:91:18:7a:d1:2f:fb:1c:52:4e:e6:bc: 33:0e:ff:96:75:10:4a:08:ad:64:d1:0a:59:f1:a3: 48:db:6c:29:dc:19:ba:6a:fa:82:ba:8b:34:0f:4d: a3:fd:41:2c:6b:ac:a9:bd:f8:b1:ff:bc:66:d5:19: 75:0f:fa:88:fe:b8:19:d4:e2:cf:9d:fb:e3:1b:73: bc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:30:91:B3:9B:22:9B:D1:95:1D:27:E2:3E:2D:20:C2:EB:70:F4:2B X509v3 Authority Key Identifier: keyid:EE:A6:17:E7:34:75:63:A8:6C:63:E9:21:D8:84:1F:A1:7C:EF:04:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/EEA617E7347563A86C63E921D8841FA17CEF04B0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/1/EEA617E7347563A86C63E921D8841FA17CEF04B0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/2/3132382e3235342e3230352e302f32342d3234203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.254.205.0/24 Signature Algorithm: sha256WithRSAEncryption a4:fb:7f:8d:9b:04:e0:0e:c1:c3:70:4a:63:62:57:e2:22:db: c8:dc:12:f6:1b:3e:78:ac:2a:96:b7:e2:1b:a8:b3:68:ac:bf: 8f:b7:f5:17:44:27:80:ec:3e:62:2d:d4:03:1c:cf:d0:2e:c8: b6:46:94:97:2a:79:b3:fb:f6:d0:a8:29:fe:90:23:56:e9:7a: 3c:df:22:b2:86:2b:2f:a7:7d:bb:7c:97:e6:ec:02:b9:ce:fc: 05:ef:01:3a:e8:c9:34:a4:cd:55:a4:5e:96:03:1c:ba:e7:d8: cc:97:af:27:ec:b1:f2:5b:15:47:ac:a8:e0:f0:1a:c8:30:b7: 5a:bd:17:ed:b1:4b:03:16:3a:c2:ea:9a:28:7c:59:ea:88:0c: 3d:52:a9:e3:b1:b7:4c:43:db:f8:1c:bb:fe:89:b8:b4:56:f6: 1f:6c:77:b4:83:a0:2f:61:b4:af:8c:09:da:22:90:04:90:80: f8:47:26:fe:82:f3:cb:f5:40:61:03:30:dc:15:6b:b4:82:ee: 11:85:ec:50:fe:1e:3a:5c:84:f6:a9:06:cf:9d:13:e5:1b:60: da:68:20:cb:61:8a:b5:15:fa:3b:72:e9:d2:8a:23:02:6b:1d: d6:c8:b8:96:aa:5e:21:f7:02:83:cf:97:b0:4f:96:be:64:6f: 2b:c5:4f:72 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUUAdCByBCFLR8IQXShL2L0GoXidQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVBNjE3RTczNDc1NjNBODZDNjNFOTIxRDg4NDFGQTE3 Q0VGMDRCMDAeFw0yNTAyMDcxOTA4MTlaFw0yNjAyMDYxOTEzMTlaMDMxMTAvBgNV BAMTKDFDMzA5MUIzOUIyMjlCRDE5NTFEMjdFMjNFMkQyMEMyRUI3MEY0MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkoKj2WoaaA5AaeMah9Q3SmYF2 TFPandgj2QWzqQsAj52+nQVii330wuoYAETACDOMNCHWuGNWUWupm20av8SloYGX 1uwCYIY+hHBdhVXhFEi1S1l+VjRrhNFGGeAQNDCWFOZnIqWxrc896LEtVmm4iugM LvV1FFt1HAIOjMYsSdnioSxP1/TUG1mpxg8ERPg4NS2dSb/cLzn+DQASm86/TOTU d5E5K0XeGUUWibSARrLu9X5/t1mRGHrRL/scUk7mvDMO/5Z1EEoIrWTRClnxo0jb bCncGbpq+oK6izQPTaP9QSxrrKm9+LH/vGbVGXUP+oj+uBnU4s+d++Mbc7x9AgMB AAGjggJvMIICazAdBgNVHQ4EFgQUHDCRs5sim9GVHSfiPi0gwutw9CswHwYDVR0j BBgwFoAU7qYX5zR1Y6hsY+kh2IQfoXzvBLAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzIvRUVBNjE3RTczNDc1NjNBODZDNjNFOTIxRDg4NDFGQTE3Q0VGMDRCMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzEvRUVBNjE3RTczNDc1NjNBODZDNjNFOTIxRDg4NDFGQTE3Q0VG MDRCMC5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzIvMzEzMjM4MmUzMjM1MzQyZTMy MzAzNTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0MzczMjM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACA/s0wDQYJKoZIhvcNAQELBQADggEBAKT7f42bBOAOwcNwSmNiV+Ii28jcEvYb PnisKpa34huos2isv4+39RdEJ4DsPmIt1AMcz9AuyLZGlJcqebP79tCoKf6QI1bp ejzfIrKGKy+nfbt8l+bsArnO/AXvATroyTSkzVWkXpYDHLrn2MyXryfssfJbFUes qODwGsgwt1q9F+2xSwMWOsLqmih8WeqIDD1SqeOxt0xD2/gcu/6JuLRW9h9sd7SD oC9htK+MCdoikASQgPhHJv6C88v1QGEDMNwVa7SC7hGF7FD+HjpchPapBs+dE+Ub YNpoIMthirUV+jty6dKKIwJrHdbIuJaqXiH3AoPPl7BPlr5kbyvFT3I= -----END CERTIFICATE-----Generated at Thu Apr 3 07:15:03 2025 by rpki-client