$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa File: AS213880.roa (raw, json) Hash identifier: 9COiKN3u3YCV086bbzAUFNbwidcXdME74rwsybS47vk= Subject key identifier: 94:95:DC:50:AB:22:C9:E6:06:6F:36:19:C9:97:4B:99:12:FA:FA:80 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 01A6CD47791FBA36FACC8769BDF7AF8D4201396B Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa Signing time: Thu 21 Nov 2024 16:03:01 +0000 ROA not before: Thu 21 Nov 2024 15:58:01 +0000 ROA not after: Thu 20 Nov 2025 16:03:01 +0000 asID: 213880 IP address blocks: 2a0a:6044:6b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:a6:cd:47:79:1f:ba:36:fa:cc:87:69:bd:f7:af:8d:42:01:39:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Nov 21 15:58:01 2024 GMT Not After : Nov 20 16:03:01 2025 GMT Subject: CN=9495DC50AB22C9E6066F3619C9974B9912FAFA80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4f:2a:d4:dc:ee:ef:4b:2f:0d:7b:06:e8:20: fe:05:62:da:58:ff:a8:c4:b8:9b:2b:bb:5e:48:db: 94:2e:68:0b:da:91:0c:5b:91:7a:73:49:51:9c:8e: 32:6e:19:2b:c5:92:16:78:e7:44:f8:7f:45:7b:df: dc:e5:53:8d:ba:6c:dc:c5:c8:84:e9:61:ee:51:9b: 6b:b4:3e:6f:1d:45:12:ff:28:db:f9:1d:72:65:3e: 9b:4f:8a:2f:ef:4c:01:2a:3e:a9:80:cb:ac:a6:3d: 64:58:25:c4:fa:ea:06:b0:e0:49:3d:15:1e:e1:bb: 3b:e8:38:c7:f1:96:5a:f3:c7:0e:d3:f0:2b:1f:70: a1:17:9c:e6:5f:3e:47:46:6e:c8:cb:d7:72:91:9e: 03:08:49:0c:45:9c:d6:91:8f:22:1c:c3:1c:d9:ba: 62:e0:77:3b:74:e4:a0:60:8b:99:c8:a7:5e:64:80: f3:63:30:98:c3:d4:7b:c1:38:75:68:59:e0:ea:d1: 3e:84:0e:e9:c7:3c:be:49:42:98:66:f8:b6:12:33: 8e:da:bf:eb:2d:42:5a:86:f4:de:0f:27:72:6f:5f: 22:22:49:21:ed:cf:81:f1:5e:04:2b:8a:18:d4:7a: 03:31:75:fb:f7:7f:ed:48:31:cc:74:a6:3e:ac:ae: b0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:95:DC:50:AB:22:C9:E6:06:6F:36:19:C9:97:4B:99:12:FA:FA:80 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS213880.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6b00::/40 Signature Algorithm: sha256WithRSAEncryption 5f:16:3a:36:9d:9d:89:24:33:f5:56:62:ac:73:51:d8:69:bc: 8f:2a:f2:ab:2c:00:9b:07:e5:83:9e:6f:4a:b4:fe:1b:86:75: 46:51:4e:21:ab:69:74:60:35:49:ee:32:d7:cf:20:bb:fd:85: 32:55:27:9e:b2:6f:2c:5f:28:af:f8:62:bd:9f:a2:44:aa:5f: 1c:44:8a:6f:cf:34:4c:e7:8c:24:36:bf:df:ea:70:2d:c9:57: bb:ff:6c:a8:74:15:55:32:ad:81:46:54:10:91:40:bb:85:78: 44:04:71:fd:c1:90:ba:8b:fe:f6:f6:b3:b1:95:6d:94:84:9a: 5d:b0:71:44:89:a4:e1:99:a3:51:5e:16:16:cc:e1:cf:c2:3f: 25:bc:84:63:6b:dc:d4:bb:ee:df:94:bb:ed:80:fe:3b:d0:b8: 2c:a6:cc:c9:b7:a6:40:d2:b7:59:13:31:52:22:f5:59:fd:ff: 3f:8e:f4:7a:0b:5f:b1:6e:8d:87:48:37:7d:e8:8a:bf:17:48: 21:16:3e:91:bf:7f:85:fa:3a:ea:43:15:ce:1e:0b:26:15:8a: 54:bc:f3:bd:fa:34:78:05:4f:be:6b:1d:18:c7:60:40:1e:fb: 60:0c:21:3e:ec:f0:2b:f9:4d:5a:b3:e1:de:ef:52:c6:7f:26: f7:2f:a6:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAabNR3kfujb6zIdpvfevjUIBOWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDExMjExNTU4MDFaFw0yNTExMjAxNjAzMDFaMDMxMTAvBgNV BAMTKDk0OTVEQzUwQUIyMkM5RTYwNjZGMzYxOUM5OTc0Qjk5MTJGQUZBODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtTyrU3O7vSy8NewboIP4FYtpY /6jEuJsru15I25QuaAvakQxbkXpzSVGcjjJuGSvFkhZ450T4f0V739zlU426bNzF yITpYe5Rm2u0Pm8dRRL/KNv5HXJlPptPii/vTAEqPqmAy6ymPWRYJcT66gaw4Ek9 FR7huzvoOMfxllrzxw7T8CsfcKEXnOZfPkdGbsjL13KRngMISQxFnNaRjyIcwxzZ umLgdzt05KBgi5nIp15kgPNjMJjD1HvBOHVoWeDq0T6EDunHPL5JQphm+LYSM47a v+stQlqG9N4PJ3JvXyIiSSHtz4HxXgQrihjUegMxdfv3f+1IMcx0pj6srrDxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlJXcUKsiyeYGbzYZyZdLmRL6+oAwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjEzODgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RGswDQYJKoZIhvcNAQELBQADggEBAF8WOjadnYkkM/VWYqxzUdhpvI8q8qssAJsH 5YOeb0q0/huGdUZRTiGraXRgNUnuMtfPILv9hTJVJ56ybyxfKK/4Yr2fokSqXxxE im/PNEznjCQ2v9/qcC3JV7v/bKh0FVUyrYFGVBCRQLuFeEQEcf3BkLqL/vb2s7GV bZSEml2wcUSJpOGZo1FeFhbM4c/CPyW8hGNr3NS77t+Uu+2A/jvQuCymzMm3pkDS t1kTMVIi9Vn9/z+O9HoLX7FujYdIN33oir8XSCEWPpG/f4X6OupDFc4eCyYVilS8 8736NHgFT75rHRjHYEAe+2AMIT7s8Cv5TVqz4d7vUsZ/Jvcvpog= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org