$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS212085.roa File: AS212085.roa (raw, json) Hash identifier: jK8Blvy/bF2GYOt23W134M/7kpTTvdJqVvXxNh23tK8= Subject key identifier: E6:85:94:71:59:22:3C:CA:1E:C6:EA:65:24:FD:69:75:7D:9B:7E:2D Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 7E1C44F19901172072A4FEAAE0D04481D94C6395 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS212085.roa Signing time: Thu 29 Aug 2024 03:41:13 +0000 ROA not before: Thu 29 Aug 2024 03:36:13 +0000 ROA not after: Thu 28 Aug 2025 03:41:13 +0000 asID: 212085 IP address blocks: 2a0a:6044:ab00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:1c:44:f1:99:01:17:20:72:a4:fe:aa:e0:d0:44:81:d9:4c:63:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:13 2024 GMT Not After : Aug 28 03:41:13 2025 GMT Subject: CN=E685947159223CCA1EC6EA6524FD69757D9B7E2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b9:46:06:7e:ca:dd:68:2f:61:39:da:fe:88: 77:ef:68:44:43:36:6b:37:30:f7:9e:b2:42:fd:a8: f7:7c:c5:65:6f:35:9c:c6:5d:d0:a6:dc:1e:12:14: 54:bc:ca:cf:1d:bd:19:25:48:38:04:11:78:9e:62: b2:2a:66:dd:82:f1:e2:c9:8b:2c:94:d2:1d:09:80: 50:3f:18:12:c5:54:8c:9a:4f:2d:ea:cd:6f:de:ed: 51:ed:42:f0:ee:ec:7d:44:48:17:99:38:b0:46:38: 61:54:c2:9f:29:16:ce:91:b3:7a:d8:66:32:15:73: 46:fa:fd:2c:c5:05:29:d1:14:60:42:9e:1a:a8:92: 45:50:9d:47:99:1b:ee:fd:f7:21:19:34:9b:c2:af: 9b:cc:e9:10:68:66:36:d6:e7:d7:f6:86:92:7b:93: e1:0a:36:05:ce:cf:95:c5:b6:b6:e9:8a:32:2e:5e: 81:96:26:8a:a1:d2:21:3d:7e:99:b0:65:81:90:bd: d6:ca:4a:7c:4f:eb:78:18:5f:ae:31:39:45:dc:75: 98:65:6d:0e:42:ac:ee:3d:a3:5c:b4:db:d3:03:c3: 2f:f2:e8:a5:b2:f7:c3:7c:02:13:3b:28:f7:5e:9f: 68:35:30:93:40:21:4c:d7:1e:97:1d:0f:ae:2d:88: 20:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:85:94:71:59:22:3C:CA:1E:C6:EA:65:24:FD:69:75:7D:9B:7E:2D X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS212085.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ab00::/40 Signature Algorithm: sha256WithRSAEncryption 89:de:5a:d3:ed:29:b3:52:12:23:cd:2b:59:90:56:17:78:68: 7c:d7:0c:b0:f9:4c:90:05:74:b6:0b:77:d0:2e:b7:7b:b7:26: 59:45:e3:e2:7c:79:ab:79:1b:8c:88:0d:84:b0:11:36:65:f9: 6c:7d:3f:5f:91:7b:72:87:5b:88:5b:e0:1e:5a:b9:92:2a:39: 0b:41:26:3b:68:b8:22:61:e3:e1:6e:a6:3e:e2:59:20:fd:8a: 5d:4c:88:59:65:f5:c6:bd:d2:f2:cf:45:28:ca:2e:1e:cc:13: b3:9e:a5:6b:c1:ad:1c:c0:eb:34:00:f2:00:db:03:18:a6:da: 13:46:5c:5e:f8:51:44:3f:b5:58:7e:c4:eb:43:c2:01:13:34: 47:98:25:01:a1:5d:56:37:ec:9d:0d:fc:48:18:d6:33:31:fa: 96:dc:dc:fd:6d:32:2b:a8:db:11:18:14:74:c7:5f:0d:3c:45: 9c:4e:6c:ca:4d:3f:2f:fc:91:ac:fa:85:a1:3f:63:59:b4:c3: ae:0f:0d:39:1a:14:22:98:98:38:35:c0:53:48:72:df:e7:cb: f5:af:5b:47:33:c4:36:ad:73:d6:68:e2:65:ef:44:a3:fe:6b: e3:16:28:f0:89:19:be:98:62:06:57:8f:4c:96:e6:4d:9f:45: f6:83:ce:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfhxE8ZkBFyBypP6q4NBEgdlMY5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTNaFw0yNTA4MjgwMzQxMTNaMDMxMTAvBgNV BAMTKEU2ODU5NDcxNTkyMjNDQ0ExRUM2RUE2NTI0RkQ2OTc1N0Q5QjdFMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkuUYGfsrdaC9hOdr+iHfvaERD Nms3MPeeskL9qPd8xWVvNZzGXdCm3B4SFFS8ys8dvRklSDgEEXieYrIqZt2C8eLJ iyyU0h0JgFA/GBLFVIyaTy3qzW/e7VHtQvDu7H1ESBeZOLBGOGFUwp8pFs6Rs3rY ZjIVc0b6/SzFBSnRFGBCnhqokkVQnUeZG+799yEZNJvCr5vM6RBoZjbW59f2hpJ7 k+EKNgXOz5XFtrbpijIuXoGWJoqh0iE9fpmwZYGQvdbKSnxP63gYX64xOUXcdZhl bQ5CrO49o1y029MDwy/y6KWy98N8AhM7KPden2g1MJNAIUzXHpcdD64tiCCTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5oWUcVkiPMoexuplJP1pdX2bfi0wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjEyMDg1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RKswDQYJKoZIhvcNAQELBQADggEBAIneWtPtKbNSEiPNK1mQVhd4aHzXDLD5TJAF dLYLd9Aut3u3JllF4+J8eat5G4yIDYSwETZl+Wx9P1+Re3KHW4hb4B5auZIqOQtB JjtouCJh4+Fupj7iWSD9il1MiFll9ca90vLPRSjKLh7ME7OepWvBrRzA6zQA8gDb Axim2hNGXF74UUQ/tVh+xOtDwgETNEeYJQGhXVY37J0N/EgY1jMx+pbc3P1tMiuo 2xEYFHTHXw08RZxObMpNPy/8kaz6haE/Y1m0w64PDTkaFCKYmDg1wFNIct/ny/Wv W0czxDatc9Zo4mXvRKP+a+MWKPCJGb6YYgZXj0yW5k2fRfaDzvA= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org