$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa File: 32332e3136342e3135322e302f32342d3234203d3e203236353631.roa (raw, json) Hash identifier: Ufvh495kVHTsvuscjFimK/5B3fifdcUwR5A1Uohco9k= Subject key identifier: 6F:AA:7B:C9:81:BC:58:47:27:2D:32:81:76:54:6E:6E:DE:A4:AD:F8 Certificate issuer: /CN=d90d8aba2a52e658722522ec42c626f029750e015dbdba418f Certificate serial: 1199DD23D5E2929A4FEB228930836153E16EB508 Authority key identifier: B7:3B:05:97:1A:1A:76:BD:F1:BC:61:A5:17:8B:00:B4:FF:71:BA:BB Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a52e658722522ec42c626f029750e015dbdba418f.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa Signing time: Thu 20 Mar 2025 17:35:35 +0000 ROA not before: Thu 20 Mar 2025 17:30:35 +0000 ROA not after: Thu 19 Mar 2026 17:35:35 +0000 asID: 26561 IP address blocks: 23.164.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/B73B05971A1A76BDF1BC61A5178B00B4FF71BABB.crl rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/B73B05971A1A76BDF1BC61A5178B00B4FF71BABB.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a52e658722522ec42c626f029750e015dbdba418f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/0ec17157-66de-4aab-85e7-28af4de430e2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/871da40f-793a-4a45-a0a9-978148321a07.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 07:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:99:dd:23:d5:e2:92:9a:4f:eb:22:89:30:83:61:53:e1:6e:b5:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d90d8aba2a52e658722522ec42c626f029750e015dbdba418f Validity Not Before: Mar 20 17:30:35 2025 GMT Not After : Mar 19 17:35:35 2026 GMT Subject: CN=6FAA7BC981BC5847272D328176546E6EDEA4ADF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:d1:f2:19:16:ab:1a:a5:fb:8f:0c:e0:3c: da:30:13:bf:c0:9c:44:28:3a:7c:8c:d9:32:09:2d: 2d:42:f5:db:7c:7e:5c:ad:44:f1:c9:a1:b4:f4:f8: 89:60:86:81:6f:c1:66:cb:f2:0b:12:2d:d7:a7:27: 3e:46:f7:78:bc:0d:4b:a8:1a:f0:b9:17:f1:d3:73: 5e:b4:9f:00:0a:af:ba:ee:bc:d0:c0:a9:6b:a1:b6: ab:ef:7a:77:3e:34:f4:54:57:cc:14:9d:e7:fb:b2: 61:e3:4a:6f:29:f1:d1:c8:75:9b:50:aa:e0:43:9e: 5a:4a:06:da:3c:2a:f3:69:b4:b7:23:ec:a4:d7:22: 46:39:ca:4c:ae:1b:e7:dc:69:1b:ae:f2:25:10:5b: ef:bd:f0:5b:4f:da:4c:8d:7e:92:3c:67:6d:3b:38: 66:4e:ef:f2:4b:72:f1:16:2a:4b:cc:31:2d:dd:98: 25:ea:1f:59:a9:8b:b4:e3:cc:0a:4b:d1:cc:a9:8e: f6:91:a6:9a:aa:f5:fd:70:37:4b:6c:b7:04:31:f1: 0a:af:6f:89:b8:15:e7:58:c3:96:f3:b2:fd:92:ae: e6:57:7c:24:43:52:d7:11:cb:d3:79:e6:2f:fe:0d: 79:04:ee:76:2e:52:41:db:4c:9e:60:01:63:34:f4: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:AA:7B:C9:81:BC:58:47:27:2D:32:81:76:54:6E:6E:DE:A4:AD:F8 X509v3 Authority Key Identifier: keyid:B7:3B:05:97:1A:1A:76:BD:F1:BC:61:A5:17:8B:00:B4:FF:71:BA:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/B73B05971A1A76BDF1BC61A5178B00B4FF71BABB.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a52e658722522ec42c626f029750e015dbdba418f.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3b86cb77-69ac-43d9-9f6c-fc53066beb88/2/32332e3136342e3135322e302f32342d3234203d3e203236353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.164.152.0/24 Signature Algorithm: sha256WithRSAEncryption 23:9f:12:55:43:0d:d3:0e:2d:90:77:35:73:35:bb:f3:1e:7d: a4:56:4c:c4:c1:89:3e:5b:a0:6c:49:a6:d6:23:39:21:d6:77: 35:b3:b1:a7:33:08:d9:6a:76:db:32:c9:37:0c:d6:59:cc:b4: 68:5c:09:15:a7:ad:ae:81:21:6c:9b:ff:d2:3e:82:7e:63:8b: 9b:5f:13:5f:64:35:e7:96:72:24:87:42:54:e2:8f:9e:c6:5a: e8:41:f8:cf:58:c4:45:ba:88:d9:67:9a:a6:6f:bc:36:b9:8b: 91:61:d9:40:29:f1:ec:6d:7c:4c:28:1c:a5:b0:ae:b7:51:3f: 92:ec:2e:9d:61:62:fd:19:96:a7:d8:63:93:01:0e:55:70:ad: 5c:c0:f9:bd:aa:63:1c:45:3c:65:f3:ec:5b:f1:aa:b5:2f:41: 2f:20:27:0a:4c:dc:91:09:57:00:a4:f4:4b:8f:47:07:6b:05: 48:be:6e:70:d9:cf:49:a3:98:fe:15:08:88:c6:4c:89:b4:56: 42:da:86:a7:b6:5b:07:fa:78:35:ad:1f:3f:fb:c3:b5:6e:c4: 68:4a:aa:cd:24:2c:65:8c:9b:82:04:8d:0e:16:8d:36:65:1b: 6e:21:dd:c4:b1:b9:b3:7c:ae:3c:22:47:52:1e:8e:2d:32:fc: cc:60:85:d2 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUEZndI9XikppP6yKJMINhU+FutQgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTUyZTY1ODcyMjUyMmVjNDJjNjI2ZjAy OTc1MGUwMTVkYmRiYTQxOGYwHhcNMjUwMzIwMTczMDM1WhcNMjYwMzE5MTczNTM1 WjAzMTEwLwYDVQQDEyg2RkFBN0JDOTgxQkM1ODQ3MjcyRDMyODE3NjU0NkU2RURF QTRBREY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAye7R8hkWqxql +48M4DzaMBO/wJxEKDp8jNkyCS0tQvXbfH5crUTxyaG09PiJYIaBb8Fmy/ILEi3X pyc+Rvd4vA1LqBrwuRfx03NetJ8ACq+67rzQwKlrobar73p3PjT0VFfMFJ3n+7Jh 40pvKfHRyHWbUKrgQ55aSgbaPCrzabS3I+yk1yJGOcpMrhvn3GkbrvIlEFvvvfBb T9pMjX6SPGdtOzhmTu/yS3LxFipLzDEt3Zgl6h9ZqYu048wKS9HMqY72kaaaqvX9 cDdLbLcEMfEKr2+JuBXnWMOW87L9kq7mV3wkQ1LXEcvTeeYv/g15BO52LlJB20ye YAFjNPSTZwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFG+qe8mBvFhHJy0ygXZUbm7e pK34MB8GA1UdIwQYMBaAFLc7BZcaGna98bxhpReLALT/cbq7MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZj LWZjNTMwNjZiZWI4OC8yL0I3M0IwNTk3MUExQTc2QkRGMUJDNjFBNTE3OEIwMEI0 RkY3MUJBQkIuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTUyZTY1ODcyMjUyMmVjNDJjNjI2ZjAyOTc1 MGUwMTVkYmRiYTQxOGYuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzNiODZjYjc3LTY5YWMtNDNkOS05ZjZjLWZjNTMwNjZiZWI4OC8yLzMyMzMyZTMx MzYzNDJlMzEzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM1MzYzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEABekmDANBgkqhkiG9w0BAQsFAAOCAQEAI58SVUMN0w4tkHc1czW7 8x59pFZMxMGJPlugbEmm1iM5IdZ3NbOxpzMI2Wp22zLJNwzWWcy0aFwJFaetroEh bJv/0j6CfmOLm18TX2Q155ZyJIdCVOKPnsZa6EH4z1jERbqI2Weapm+8NrmLkWHZ QCnx7G18TCgcpbCut1E/kuwunWFi/RmWp9hjkwEOVXCtXMD5vapjHEU8ZfPsW/Gq tS9BLyAnCkzckQlXAKT0S49HB2sFSL5ucNnPSaOY/hUIiMZMibRWQtqGp7ZbB/p4 Na0fP/vDtW7EaEqqzSQsZYybggSNDhaNNmUbbiHdxLG5s3yuPCJHUh6OLTL8zGCF 0g== -----END CERTIFICATE-----Generated at Sun Apr 27 11:01:20 2025 by rpki-client