$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa File: AS214129.roa (raw, json) Hash identifier: vDoGKwERFzLt81JTMU4b4+7zLBeKApg3JdM51bEy1co= Subject key identifier: 6D:F6:B5:4C:54:CB:52:01:EE:0C:B2:6E:D7:14:BE:E9:33:13:78:4E Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 65644085A85FAC2ED796941BE9CB5F47B5952A0A Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa Signing time: Sun 27 Oct 2024 19:41:39 +0000 ROA not before: Sun 27 Oct 2024 19:36:39 +0000 ROA not after: Sun 26 Oct 2025 19:41:39 +0000 asID: 214129 IP address blocks: 2a0a:6044:6300::/40 maxlen: 48 2a0a:6044:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:64:40:85:a8:5f:ac:2e:d7:96:94:1b:e9:cb:5f:47:b5:95:2a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Oct 27 19:36:39 2024 GMT Not After : Oct 26 19:41:39 2025 GMT Subject: CN=6DF6B54C54CB5201EE0CB26ED714BEE93313784E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:d4:c2:51:b1:4e:b5:d5:8b:de:bb:58:80: 14:0c:67:9f:5f:54:7b:4f:69:a4:33:c2:0c:8a:5b: 9b:f7:a3:a7:71:77:83:91:59:8e:f2:3f:27:a0:95: 1c:63:79:35:db:e4:0b:29:f7:37:44:73:7c:df:53: a2:83:ab:5f:37:96:3b:9e:5c:0f:dd:28:04:17:d7: f2:0e:9a:49:85:e9:74:04:40:b5:42:cc:56:e5:cb: 37:8a:e9:44:b8:50:91:3d:67:c2:39:f9:92:8d:32: 0e:11:aa:05:60:47:55:e7:79:32:32:74:7f:27:be: 97:1e:ab:2a:75:3c:65:dd:36:b1:c1:ef:90:e7:69: 82:0c:e2:9f:ee:82:c2:1c:df:4b:20:03:7a:c7:cf: bb:71:78:e9:ad:88:73:d6:63:f7:ec:eb:86:9e:fc: 3a:75:25:70:bf:39:63:4b:33:b4:ce:45:d9:48:bd: c0:e7:8c:99:9a:d0:c4:71:4f:67:ff:96:23:f8:c7: 0f:11:66:c1:8d:77:8f:39:90:71:e1:4f:d9:07:af: db:a8:a6:cb:52:c3:ba:4b:ad:35:f9:ec:a4:fa:64: 9e:2b:ed:1f:b0:94:7e:b7:b7:80:fd:4e:b3:46:be: e5:fd:82:64:a2:a8:39:41:03:28:4f:56:22:56:cb: 6c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F6:B5:4C:54:CB:52:01:EE:0C:B2:6E:D7:14:BE:E9:33:13:78:4E X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214129.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6300::/40 2a0a:6044:6500::/40 Signature Algorithm: sha256WithRSAEncryption c0:b9:0e:14:d2:7b:63:00:bf:52:1a:7a:b2:41:0d:36:0a:f3: 2c:42:96:3b:91:bc:96:75:d0:1b:8d:bd:20:9e:5c:8a:14:52: 7f:73:da:45:ad:73:65:aa:dc:b5:95:61:04:73:21:a5:6a:dc: 1a:38:16:8e:07:10:5c:d0:6f:8a:27:96:f0:83:10:5b:a7:28: e3:50:bc:c5:90:5a:30:fc:32:c0:86:97:c1:31:3c:4b:4f:eb: 5b:c4:5d:80:e5:7f:d7:d1:15:ee:af:39:43:d8:42:92:a0:24: 0f:c9:af:c7:5b:f5:69:6d:4b:af:0b:e8:be:dd:42:b1:f0:d3: 1b:d3:c1:3c:41:47:33:4d:d3:94:f6:98:bd:b2:e8:30:c0:99: 38:d1:9b:14:5a:99:37:60:dd:06:19:2c:55:a7:7d:e2:d5:e7: 9e:37:e1:d9:69:ff:23:a4:43:4d:b9:9f:1e:7d:27:4e:bd:5f: 68:b2:f0:4e:82:54:2c:82:ad:42:12:d9:4f:02:04:1a:4b:81: 5b:64:f8:d0:14:93:43:55:f3:2c:84:6c:70:71:63:ee:2a:e1: 29:ac:e7:0b:48:f6:31:ee:c2:de:fc:58:f8:11:05:00:cd:27: b7:03:be:23:60:05:7c:f4:65:08:8b:ff:06:9f:9f:c9:19:f9: 7b:3a:62:c3 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUZWRAhahfrC7XlpQb6ctfR7WVKgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDEwMjcxOTM2MzlaFw0yNTEwMjYxOTQxMzlaMDMxMTAvBgNV BAMTKDZERjZCNTRDNTRDQjUyMDFFRTBDQjI2RUQ3MTRCRUU5MzMxMzc4NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq79TCUbFOtdWL3rtYgBQMZ59f VHtPaaQzwgyKW5v3o6dxd4ORWY7yPyeglRxjeTXb5Asp9zdEc3zfU6KDq183ljue XA/dKAQX1/IOmkmF6XQEQLVCzFblyzeK6US4UJE9Z8I5+ZKNMg4RqgVgR1XneTIy dH8nvpceqyp1PGXdNrHB75DnaYIM4p/ugsIc30sgA3rHz7txeOmtiHPWY/fs64ae /Dp1JXC/OWNLM7TORdlIvcDnjJma0MRxT2f/liP4xw8RZsGNd485kHHhT9kHr9uo pstSw7pLrTX57KT6ZJ4r7R+wlH63t4D9TrNGvuX9gmSiqDlBAyhPViJWy2xzAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUbfa1TFTLUgHuDLJu1xS+6TMTeE4wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTI5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgpg RGMDBgAqCmBEZTANBgkqhkiG9w0BAQsFAAOCAQEAwLkOFNJ7YwC/Uhp6skENNgrz LEKWO5G8lnXQG429IJ5cihRSf3PaRa1zZarctZVhBHMhpWrcGjgWjgcQXNBviieW 8IMQW6co41C8xZBaMPwywIaXwTE8S0/rW8RdgOV/19EV7q85Q9hCkqAkD8mvx1v1 aW1Lrwvovt1CsfDTG9PBPEFHM03TlPaYvbLoMMCZONGbFFqZN2DdBhksVad94tXn njfh2Wn/I6RDTbmfHn0nTr1faLLwToJULIKtQhLZTwIEGkuBW2T40BSTQ1XzLIRs cHFj7irhKaznC0j2Me7C3vxY+BEFAM0ntwO+I2AFfPRlCIv/Bp+fyRn5ezpiww== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org