$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa File: AS205398.roa (raw, json) Hash identifier: T/Bmi3GxVhepin3a0tGjI3IiIsOIwQym7IIc8fVXATE= Subject key identifier: 04:8D:DC:0B:2A:B1:BA:1F:04:D6:42:9F:57:32:7B:0A:C1:4F:D1:F5 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 4B215AFB6644C714866D87EDBEDFC0A391AAC227 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa Signing time: Thu 29 Aug 2024 03:41:18 +0000 ROA not before: Thu 29 Aug 2024 03:36:18 +0000 ROA not after: Thu 28 Aug 2025 03:41:18 +0000 asID: 205398 IP address blocks: 2a0a:6044:ad00::/40 maxlen: 48 2a0a:6044:ae00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:21:5a:fb:66:44:c7:14:86:6d:87:ed:be:df:c0:a3:91:aa:c2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:18 2024 GMT Not After : Aug 28 03:41:18 2025 GMT Subject: CN=048DDC0B2AB1BA1F04D6429F57327B0AC14FD1F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:77:f7:35:06:4e:df:af:f6:0c:c0:ba:4f: 48:72:a7:a7:e2:0c:6c:bb:44:4b:ae:a8:13:4d:6a: ed:05:cd:9b:c1:35:4b:22:4f:30:db:e4:d4:54:14: 48:d5:f4:e2:d8:f9:e2:65:65:50:4a:49:29:ff:5c: b5:77:b8:55:27:d7:34:0b:60:03:16:e1:04:bd:d7: 03:ce:3f:10:78:ed:29:07:5e:87:ce:34:70:e6:ff: a2:b3:d5:a5:a4:ca:85:29:90:32:58:1e:56:81:55: 1c:44:b5:57:19:3d:6f:4c:ae:ff:52:6f:49:c4:15: bc:2c:89:95:3f:21:47:e7:a0:12:a7:a4:fa:4e:35: 31:6f:7e:9a:51:9f:05:ac:1c:30:17:ac:ba:52:72: 26:4b:80:fa:32:43:4e:cc:06:8a:3c:4e:81:f3:30: 7c:c3:1f:2e:80:92:1b:3c:e6:6f:9c:8f:0e:a4:f5: 40:19:65:4d:d2:10:fb:a1:6d:64:5c:fd:33:33:16: 49:ae:bb:fe:d8:76:87:1b:f7:fb:a8:09:cc:06:ba: ab:b9:ac:3d:c3:f1:32:84:d6:2a:fa:11:f6:c9:d8: f5:5d:44:64:d3:df:42:86:b1:70:70:d5:71:a0:e0: f0:de:e8:04:aa:83:81:7e:71:0e:8a:19:37:fd:cb: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8D:DC:0B:2A:B1:BA:1F:04:D6:42:9F:57:32:7B:0A:C1:4F:D1:F5 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS205398.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ad00::-2a0a:6044:aeff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b7:bd:86:43:81:1f:cd:aa:0e:5f:39:0a:02:df:56:9b:22:56: 87:5e:6f:82:cd:0d:ee:88:e8:b1:69:16:0f:6e:c1:d7:a2:92: 4c:0a:b3:cb:7e:5d:d7:a1:46:f3:fd:42:5b:7f:19:02:93:d8: 7c:c8:db:36:5e:c9:63:25:e7:f6:9c:ee:7b:11:77:a0:78:74: 8b:be:8a:95:d0:05:2d:c7:d5:d9:4b:86:39:6f:66:61:8a:71: c0:c3:a7:47:db:42:f3:87:12:41:e3:f9:0e:bd:f5:80:a8:f5: 5e:1d:d9:0e:a5:d7:6b:cf:0e:f2:b4:fd:bf:a1:d5:08:98:13: ed:95:e6:eb:15:ae:4d:a9:1f:a8:3c:41:89:1b:b7:96:25:2c: cc:4e:e0:ac:ae:b5:15:c2:93:c4:70:ae:12:c1:84:78:e0:d4: 47:2c:f1:54:86:2f:4b:8a:f0:2e:a9:87:5c:8c:ba:e8:7c:5c: 22:62:9f:60:06:71:ba:52:45:68:ae:03:21:55:9f:5c:94:b6: be:78:4d:08:1b:99:f2:fc:b9:86:cf:00:b3:3d:ce:c3:b8:31: 63:eb:ba:59:75:2a:b8:f3:62:96:d4:d2:21:fb:70:ff:e6:62: 25:e2:6b:f8:8c:3e:2a:51:2a:f5:21:81:be:2f:eb:a8:4a:b3: 31:b5:29:bc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUSyFa+2ZExxSGbYftvt/Ao5GqwicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV BAMTKDA0OEREQzBCMkFCMUJBMUYwNEQ2NDI5RjU3MzI3QjBBQzE0RkQxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+JXf3NQZO36/2DMC6T0hyp6fi DGy7REuuqBNNau0FzZvBNUsiTzDb5NRUFEjV9OLY+eJlZVBKSSn/XLV3uFUn1zQL YAMW4QS91wPOPxB47SkHXofONHDm/6Kz1aWkyoUpkDJYHlaBVRxEtVcZPW9Mrv9S b0nEFbwsiZU/IUfnoBKnpPpONTFvfppRnwWsHDAXrLpSciZLgPoyQ07MBoo8ToHz MHzDHy6Akhs85m+cjw6k9UAZZU3SEPuhbWRc/TMzFkmuu/7Ydocb9/uoCcwGuqu5 rD3D8TKE1ir6EfbJ2PVdRGTT30KGsXBw1XGg4PDe6ASqg4F+cQ6KGTf9y2x7AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUBI3cCyqxuh8E1kKfVzJ7CsFP0fUwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjA1Mzk4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASMBADBgAq CmBErQMGACoKYESuMA0GCSqGSIb3DQEBCwUAA4IBAQC3vYZDgR/Nqg5fOQoC31ab IlaHXm+CzQ3uiOixaRYPbsHXopJMCrPLfl3XoUbz/UJbfxkCk9h8yNs2XsljJef2 nO57EXegeHSLvoqV0AUtx9XZS4Y5b2ZhinHAw6dH20LzhxJB4/kOvfWAqPVeHdkO pddrzw7ytP2/odUImBPtlebrFa5NqR+oPEGJG7eWJSzMTuCsrrUVwpPEcK4SwYR4 4NRHLPFUhi9LivAuqYdcjLrofFwiYp9gBnG6UkVorgMhVZ9clLa+eE0IG5ny/LmG zwCzPc7DuDFj67pZdSq482KW1NIh+3D/5mIl4mv4jD4qUSr1IYG+L+uoSrMxtSm8 -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:09 2024 by rpki-client on console-fra.rpki-client.org