$ rpki-client -vvf rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa File: 32332e3133382e35362e302f32342d3234203d3e2031303031.roa (raw, json) Hash identifier: Y/3rmgU/sldh4Hfp9RHavnPp2jy6RYQXAdoezGv2CjQ= Subject key identifier: D4:3D:97:65:1D:FA:C7:DF:C5:C3:3B:9D:62:B4:DB:6D:0C:F0:E5:12 Certificate issuer: /CN=446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144 Certificate serial: 60E1161CA73675550FE3216E36DC6731DE381CD6 Authority key identifier: 04:C3:A5:EF:44:0A:79:31:A7:BB:6D:C0:A0:82:11:C4:90:E2:09:E3 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer Subject info access: rsync://rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa Signing time: Sun 03 Nov 2024 22:30:19 +0000 ROA not before: Sun 03 Nov 2024 22:25:19 +0000 ROA not after: Sun 02 Nov 2025 22:30:19 +0000 asID: 1001 IP address blocks: 23.138.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.crl rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/8a177cd6-d91e-4c15-992e-7337b8e894a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/8a177cd6-d91e-4c15-992e-7337b8e894a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:e1:16:1c:a7:36:75:55:0f:e3:21:6e:36:dc:67:31:de:38:1c:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144 Validity Not Before: Nov 3 22:25:19 2024 GMT Not After : Nov 2 22:30:19 2025 GMT Subject: CN=D43D97651DFAC7DFC5C33B9D62B4DB6D0CF0E512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d8:82:39:90:40:43:82:83:32:55:7c:c9:08: bc:0a:b2:23:45:3f:8e:0f:27:78:bf:11:da:28:ea: 1b:e6:28:61:63:04:ca:59:bb:d3:ef:cd:b1:a3:b5: e9:bc:38:30:68:c4:6f:a3:68:dc:41:71:11:d8:7a: e2:b3:90:6b:23:bc:fa:48:c3:8c:23:23:68:06:f5: c0:22:de:0e:40:31:7b:10:ad:49:df:0a:7e:e5:b8: 6c:c6:86:07:c9:d4:3f:ca:86:e8:18:3e:90:df:3e: 50:c2:87:5d:87:06:d4:f7:4f:cf:5a:48:34:ca:32: fc:97:90:d6:33:ad:25:2c:91:36:ac:c0:f6:f3:f1: 77:86:91:fd:fb:b0:60:87:58:7d:7a:b4:e1:e6:c2: 4d:d2:90:9a:0b:b0:e4:a4:24:d7:c7:6a:a7:82:1a: 18:0e:28:a1:56:15:34:b5:6b:d3:ca:39:ab:87:c7: 99:7b:33:29:e3:03:ac:e1:ce:a6:64:98:5b:28:fc: 83:35:de:24:13:a4:c2:f1:37:7f:c2:7a:f9:28:1e: 45:36:7e:9a:f5:91:67:22:17:12:70:ad:a0:68:69: c0:81:86:46:dc:5b:de:b7:fc:b8:55:76:1c:dd:63: 47:a3:3f:97:96:b3:41:b3:30:5b:8b:04:32:db:5f: da:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3D:97:65:1D:FA:C7:DF:C5:C3:3B:9D:62:B4:DB:6D:0C:F0:E5:12 X509v3 Authority Key Identifier: keyid:04:C3:A5:EF:44:0A:79:31:A7:BB:6D:C0:A0:82:11:C4:90:E2:09:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.rp.ki/repo/aci/1/04C3A5EF440A7931A7BB6DC0A08211C490E209E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/8a177cd6-d91e-4c15-992e-7337b8e894a8/446cfa381c716d6a769d01644b1fed7d0df32d3f3a5de26144.cer Subject Information Access: Signed Object - URI:rsync://rsync.rp.ki/repo/aci/1/32332e3133382e35362e302f32342d3234203d3e2031303031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.138.56.0/24 Signature Algorithm: sha256WithRSAEncryption 12:e3:af:67:ef:75:85:d1:9c:b8:ce:ff:74:c6:c8:9f:54:c7: 73:52:43:02:74:5d:24:12:e2:66:48:29:5b:96:02:a8:60:cc: 33:dd:3d:c1:42:45:b3:57:27:7f:ec:e7:1a:f4:c5:bb:bf:17: 42:1b:79:de:86:bd:f7:4b:d0:20:3a:e7:c5:ff:bf:d4:05:33: 83:f5:2b:67:94:93:ec:3c:e9:1d:54:02:82:93:3e:24:e6:2d: eb:56:24:60:04:63:18:60:a4:9e:cb:d3:d3:94:f5:91:1c:94: a0:c0:3f:77:43:a1:7c:1f:fb:b3:01:68:f6:8a:08:e2:d6:3a: 14:38:8f:c4:e4:1e:19:ee:9f:15:f8:d4:a7:58:93:9e:c9:73: 87:a8:c5:aa:dd:d3:bb:a7:1e:6e:af:10:78:c8:64:42:7f:63: 8f:e6:ed:43:03:56:ac:c2:92:af:5d:c9:67:b8:d8:87:98:28: 4e:7e:1a:9b:54:be:24:73:da:00:d1:27:1e:0f:b7:fb:d7:ae: 32:49:ef:f0:06:7d:2b:29:7b:b2:15:a6:89:98:94:3c:98:ae: 7f:83:f2:c2:45:df:c7:14:08:ef:96:ba:5a:81:e0:f2:b3:70: 79:00:66:cf:e3:18:66:f8:ab:a4:84:fa:c3:c1:ad:a4:f0:de: 4d:2e:3c:27 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgIUYOEWHKc2dVUP4yFuNtxnMd44HNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNDQ2Y2ZhMzgxYzcxNmQ2YTc2OWQwMTY0NGIxZmVkN2Qw ZGYzMmQzZjNhNWRlMjYxNDQwHhcNMjQxMTAzMjIyNTE5WhcNMjUxMTAyMjIzMDE5 WjAzMTEwLwYDVQQDEyhENDNEOTc2NTFERkFDN0RGQzVDMzNCOUQ2MkI0REI2RDBD RjBFNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9iCOZBAQ4KD MlV8yQi8CrIjRT+ODyd4vxHaKOob5ihhYwTKWbvT782xo7XpvDgwaMRvo2jcQXER 2Hris5BrI7z6SMOMIyNoBvXAIt4OQDF7EK1J3wp+5bhsxoYHydQ/yoboGD6Q3z5Q woddhwbU90/PWkg0yjL8l5DWM60lLJE2rMD28/F3hpH9+7Bgh1h9erTh5sJN0pCa C7DkpCTXx2qnghoYDiihVhU0tWvTyjmrh8eZezMp4wOs4c6mZJhbKPyDNd4kE6TC 8Td/wnr5KB5FNn6a9ZFnIhcScK2gaGnAgYZG3Fvet/y4VXYc3WNHoz+XlrNBszBb iwQy21/aXQIDAQABo4ICVjCCAlIwHQYDVR0OBBYEFNQ9l2Ud+sffxcM7nWK0220M 8OUSMB8GA1UdIwQYMBaAFATDpe9ECnkxp7ttwKCCEcSQ4gnjMA4GA1UdDwEB/wQE AwIHgDBcBgNVHR8EVTBTMFGgT6BNhktyc3luYzovL3JzeW5jLnJwLmtpL3JlcG8v YWNpLzEvMDRDM0E1RUY0NDBBNzkzMUE3QkI2REMwQTA4MjExQzQ5MEUyMDlFMy5j cmwwgfMGCCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBr aS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBh LTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvMDM1NzI3MmMtYTc5YS00NWJmLTk1ODYt OTJkZDQ5ZWYzMjIzLzhhMTc3Y2Q2LWQ5MWUtNGMxNS05OTJlLTczMzdiOGU4OTRh OC80NDZjZmEzODFjNzE2ZDZhNzY5ZDAxNjQ0YjFmZWQ3ZDBkZjMyZDNmM2E1ZGUy NjE0NC5jZXIwcQYIKwYBBQUHAQsEZTBjMGEGCCsGAQUFBzALhlVyc3luYzovL3Jz eW5jLnJwLmtpL3JlcG8vYWNpLzEvMzIzMzJlMzEzMzM4MmUzNTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMDMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAXijgwDQYJKoZIhvcN AQELBQADggEBABLjr2fvdYXRnLjO/3TGyJ9Ux3NSQwJ0XSQS4mZIKVuWAqhgzDPd PcFCRbNXJ3/s5xr0xbu/F0Ibed6GvfdL0CA658X/v9QFM4P1K2eUk+w86R1UAoKT PiTmLetWJGAEYxhgpJ7L09OU9ZEclKDAP3dDoXwf+7MBaPaKCOLWOhQ4j8TkHhnu nxX41KdYk57Jc4eoxard07unHm6vEHjIZEJ/Y4/m7UMDVqzCkq9dyWe42IeYKE5+ GptUviRz2gDRJx4Pt/vXrjJJ7/AGfSspe7IVpomYlDyYrn+D8sJF38cUCO+WulqB 4PKzcHkAZs/jGGb4q6SE+sPBraTw3k0uPCc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:52 2024 by rpki-client on console-ams.rpki-client.org