$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa File: AS214161.roa (raw, json) Hash identifier: f+E48Sm10y8m7U7Q3XOla2MEXs+h1RWi9UzatjllX/E= Subject key identifier: C5:84:B8:AF:00:DF:B1:E1:48:C0:F6:44:B0:05:80:98:17:94:83:4F Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 71EAEE5CB675E9DF092D049468320AF74C540742 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa Signing time: Tue 29 Oct 2024 13:04:41 +0000 ROA not before: Tue 29 Oct 2024 12:59:41 +0000 ROA not after: Tue 28 Oct 2025 13:04:41 +0000 asID: 214161 IP address blocks: 2a0a:6044:aa11::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ea:ee:5c:b6:75:e9:df:09:2d:04:94:68:32:0a:f7:4c:54:07:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Oct 29 12:59:41 2024 GMT Not After : Oct 28 13:04:41 2025 GMT Subject: CN=C584B8AF00DFB1E148C0F644B00580981794834F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:cd:01:8d:9b:49:e2:38:da:45:fa:eb:6b:e8: cf:a0:7b:1a:85:2d:67:7c:1a:f5:1b:6b:5f:96:12: f2:3b:63:25:3a:66:7a:c2:aa:8d:5f:2c:66:cf:89: 8c:aa:88:41:68:05:5d:2f:b3:e6:93:9f:3f:df:c4: 55:32:d6:27:bf:ac:99:5d:e4:da:06:f9:3d:42:61: da:16:7a:ae:a2:26:12:a6:79:7a:ab:03:a0:2a:ca: 73:cd:aa:76:8f:73:44:df:be:e0:4f:ba:c6:67:c5: 1e:67:38:5a:53:c4:88:c8:b2:3f:de:8b:25:85:02: 4a:7d:73:a9:c6:cc:18:0c:8b:b0:f3:20:c7:f5:a4: 66:98:5d:3c:e3:84:7b:2d:30:46:2e:9c:34:95:04: 5c:5b:13:5d:ae:c5:93:98:2c:92:ab:e5:ac:09:33: 64:54:5d:a2:5e:27:77:c5:19:2a:ef:7f:3f:94:fa: bb:9f:27:4c:e5:25:8e:fb:06:9d:66:15:9a:89:98: 72:8a:8c:ea:eb:c9:4b:af:bc:67:f2:1e:c5:92:27: 7f:10:1c:47:13:b9:0e:48:5c:12:3a:68:80:db:58: b8:73:44:f1:86:0d:37:9d:6d:a7:ec:b9:44:3d:4c: 7d:bd:1c:a1:59:a9:38:bb:e9:0f:eb:cc:f8:f2:b8: ed:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:84:B8:AF:00:DF:B1:E1:48:C0:F6:44:B0:05:80:98:17:94:83:4F X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214161.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa11::/48 Signature Algorithm: sha256WithRSAEncryption 26:bb:7a:d7:d8:60:af:6b:1f:e6:91:27:df:c8:59:73:15:47: 70:eb:2f:86:dc:aa:21:fa:8b:b7:57:49:75:bb:7e:41:72:f7: b2:ee:6a:51:79:27:45:93:86:fc:9c:a8:cb:6d:39:b1:45:33: 9c:5b:d3:c5:a2:4a:78:58:7f:c0:35:b4:31:9c:c8:7e:78:86: 08:7a:a6:e3:bf:d0:ef:8d:5a:60:ef:78:8b:c8:fb:d2:41:45: 83:6e:5a:e9:0c:9b:5e:fc:9e:78:c4:11:e6:d5:3e:6f:1a:52: d0:21:bb:6b:be:55:15:44:6a:d6:af:fe:d3:d8:56:76:1b:af: 87:1a:0a:77:e3:eb:e5:30:31:94:9f:6d:d3:11:61:35:27:83: 18:7d:ae:83:9a:1c:3f:5e:10:43:2b:c0:be:fb:b4:45:b9:d2: 64:a8:ce:db:ec:5e:fd:6c:e2:c0:8f:42:60:32:c5:fa:48:cb: a1:a7:3b:d0:f6:3e:b9:48:08:20:fb:c5:70:1e:0f:f0:14:23: 2e:24:cb:bd:2c:00:47:26:8a:71:4d:fb:30:c0:58:de:8f:fd: 56:1c:9b:f0:4a:90:e0:fe:d8:0e:c2:ff:68:14:4d:2b:ae:24: ab:60:2f:47:d3:e5:7d:e5:ac:c0:29:93:88:6a:6a:43:3c:ea: 16:75:8b:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUceruXLZ16d8JLQSUaDIK90xUB0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDEwMjkxMjU5NDFaFw0yNTEwMjgxMzA0NDFaMDMxMTAvBgNV BAMTKEM1ODRCOEFGMDBERkIxRTE0OEMwRjY0NEIwMDU4MDk4MTc5NDgzNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBzQGNm0niONpF+utr6M+gexqF LWd8GvUba1+WEvI7YyU6ZnrCqo1fLGbPiYyqiEFoBV0vs+aTnz/fxFUy1ie/rJld 5NoG+T1CYdoWeq6iJhKmeXqrA6AqynPNqnaPc0TfvuBPusZnxR5nOFpTxIjIsj/e iyWFAkp9c6nGzBgMi7DzIMf1pGaYXTzjhHstMEYunDSVBFxbE12uxZOYLJKr5awJ M2RUXaJeJ3fFGSrvfz+U+rufJ0zlJY77Bp1mFZqJmHKKjOrryUuvvGfyHsWSJ38Q HEcTuQ5IXBI6aIDbWLhzRPGGDTedbafsuUQ9TH29HKFZqTi76Q/rzPjyuO1NAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUxYS4rwDfseFIwPZEsAWAmBeUg08wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTYxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpg RKoRMA0GCSqGSIb3DQEBCwUAA4IBAQAmu3rX2GCvax/mkSffyFlzFUdw6y+G3Koh +ou3V0l1u35Bcvey7mpReSdFk4b8nKjLbTmxRTOcW9PFokp4WH/ANbQxnMh+eIYI eqbjv9DvjVpg73iLyPvSQUWDblrpDJte/J54xBHm1T5vGlLQIbtrvlUVRGrWr/7T 2FZ2G6+HGgp34+vlMDGUn23TEWE1J4MYfa6Dmhw/XhBDK8C++7RFudJkqM7b7F79 bOLAj0JgMsX6SMuhpzvQ9j65SAgg+8VwHg/wFCMuJMu9LABHJopxTfswwFjej/1W HJvwSpDg/tgOwv9oFE0rriSrYC9H0+V95azAKZOIampDPOoWdYuT -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org