$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa File: AS214172.roa (raw, json) Hash identifier: BP0zgrf1hUHBVHLnYyKr63XPNaiHL9jlN33xN0ad+T0= Subject key identifier: A0:E3:6F:D5:CA:24:6C:34:27:D4:63:28:83:7F:2A:8A:0F:77:31:51 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 7720AA4F8D6BC909F3B8F1E25E827DC684C5A0BB Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa Signing time: Mon 23 Sep 2024 09:31:23 +0000 ROA not before: Mon 23 Sep 2024 09:26:23 +0000 ROA not after: Mon 22 Sep 2025 09:31:23 +0000 asID: 214172 IP address blocks: 2a0a:6044:6200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:20:aa:4f:8d:6b:c9:09:f3:b8:f1:e2:5e:82:7d:c6:84:c5:a0:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Sep 23 09:26:23 2024 GMT Not After : Sep 22 09:31:23 2025 GMT Subject: CN=A0E36FD5CA246C3427D46328837F2A8A0F773151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6c:c4:29:2e:8e:3d:5e:30:dd:67:43:ff:5c: 00:51:82:61:e7:99:28:28:d5:4f:0d:e4:89:a0:bc: f8:40:48:fb:45:0f:16:fb:7d:67:e0:67:e6:cb:71: 0a:60:c7:1e:c8:1e:57:9a:02:53:b6:7f:0d:0c:29: 0f:fa:9d:7b:77:76:4b:61:01:74:f1:a5:84:b1:c4: 5f:81:cd:de:90:ce:1c:75:ed:4b:42:95:72:ed:8a: b9:07:8d:d8:3d:c6:c4:6e:52:4c:ba:f1:8a:a8:c5: b4:bb:13:89:56:50:06:db:35:7d:a7:6b:47:9c:0d: 61:b9:a1:79:be:92:51:e7:da:e0:8d:60:85:05:a1: 1b:b9:e1:50:c7:f6:0e:f7:96:b2:64:6d:94:2e:cf: 49:42:85:30:40:e7:da:9f:a1:66:b2:81:33:d7:57: f0:c3:6d:29:a3:05:da:38:30:32:2d:07:ee:b8:28: cf:17:01:f4:bd:2e:c2:81:9f:80:51:b4:66:97:75: 6b:1b:de:4d:1e:80:9d:04:9a:2f:15:07:10:91:f4: a2:81:fe:48:92:9f:9b:7b:fd:13:cc:22:63:60:c3: 84:3b:0b:ca:99:1c:80:74:47:7e:77:39:6e:c2:ef: 78:d8:ef:2a:26:b4:16:25:42:5c:c1:ff:4b:0c:37: f0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E3:6F:D5:CA:24:6C:34:27:D4:63:28:83:7F:2A:8A:0F:77:31:51 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6200::/40 Signature Algorithm: sha256WithRSAEncryption 01:06:f0:67:90:c5:e7:02:82:65:73:8f:22:4f:c7:21:13:aa: 2b:38:fa:27:8d:07:0a:8d:c5:01:b8:2a:60:0e:d7:fd:85:fd: e4:e7:ee:5d:9d:9c:fb:ed:d5:ab:1a:fe:ea:38:9c:e5:7f:64: 7d:94:95:10:2a:d7:61:fb:cc:32:da:07:dc:40:ac:dc:88:ff: 47:bc:02:78:b9:b5:77:3d:f3:5e:3c:97:25:15:c3:60:ac:f8: b7:47:3e:b9:95:df:7f:aa:84:b0:27:d1:d8:e7:9e:18:cd:5c: c1:4d:2a:c3:b0:3d:ef:43:69:03:19:5f:f6:b5:27:e1:81:f6: 48:4b:bc:af:e6:b0:fb:68:f8:03:fd:d7:ea:38:a2:39:d4:11: 22:2e:e5:53:65:3a:41:7f:7e:53:6e:66:da:8b:ed:c8:7d:23: 20:90:b5:ad:66:13:0a:f7:91:b2:5c:f5:b7:95:b3:ef:a7:9d: 6e:fa:98:75:48:6b:21:d6:ea:14:65:28:f7:f4:d0:8e:cd:92: c8:e9:73:77:9a:8a:f9:23:1d:cb:6f:42:b5:66:31:16:56:84: eb:a1:a5:c0:5b:b6:4a:18:69:aa:4a:57:ad:a9:86:69:72:66: 1e:b7:63:42:82:0d:40:97:e2:86:28:fd:30:0a:fa:d0:2f:2a: 6e:16:83:ee -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdyCqT41ryQnzuPHiXoJ9xoTFoLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA5MjMwOTI2MjNaFw0yNTA5MjIwOTMxMjNaMDMxMTAvBgNV BAMTKEEwRTM2RkQ1Q0EyNDZDMzQyN0Q0NjMyODgzN0YyQThBMEY3NzMxNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChbMQpLo49XjDdZ0P/XABRgmHn mSgo1U8N5ImgvPhASPtFDxb7fWfgZ+bLcQpgxx7IHleaAlO2fw0MKQ/6nXt3dkth AXTxpYSxxF+Bzd6Qzhx17UtClXLtirkHjdg9xsRuUky68YqoxbS7E4lWUAbbNX2n a0ecDWG5oXm+klHn2uCNYIUFoRu54VDH9g73lrJkbZQuz0lChTBA59qfoWaygTPX V/DDbSmjBdo4MDItB+64KM8XAfS9LsKBn4BRtGaXdWsb3k0egJ0Emi8VBxCR9KKB /kiSn5t7/RPMImNgw4Q7C8qZHIB0R353OW7C73jY7yomtBYlQlzB/0sMN/CNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoONv1cokbDQn1GMog38qig93MVEwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTcyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RGIwDQYJKoZIhvcNAQELBQADggEBAAEG8GeQxecCgmVzjyJPxyETqis4+ieNBwqN xQG4KmAO1/2F/eTn7l2dnPvt1asa/uo4nOV/ZH2UlRAq12H7zDLaB9xArNyI/0e8 Ani5tXc98148lyUVw2Cs+LdHPrmV33+qhLAn0djnnhjNXMFNKsOwPe9DaQMZX/a1 J+GB9khLvK/msPto+AP91+o4ojnUESIu5VNlOkF/flNuZtqL7ch9IyCQta1mEwr3 kbJc9beVs++nnW76mHVIayHW6hRlKPf00I7Nksjpc3eaivkjHctvQrVmMRZWhOuh pcBbtkoYaapKV62phmlyZh63Y0KCDUCX4oYo/TAK+tAvKm4Wg+4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org