$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa File: AS214182.roa (raw, json) Hash identifier: Pxro6kbatsHw3hRl5QXh9WVCGDF2TMHtYbK3BFdDbH4= Subject key identifier: B8:4E:79:FF:C8:90:B3:3E:65:15:B7:1A:D5:A1:60:38:4D:F1:70:E1 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 655FF7E67FDACB9843595F5FED2EE039D9EC43AE Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa Signing time: Thu 03 Oct 2024 18:22:47 +0000 ROA not before: Thu 03 Oct 2024 18:17:47 +0000 ROA not after: Thu 02 Oct 2025 18:22:47 +0000 asID: 214182 IP address blocks: 2a0a:6044:aa0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:5f:f7:e6:7f:da:cb:98:43:59:5f:5f:ed:2e:e0:39:d9:ec:43:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Oct 3 18:17:47 2024 GMT Not After : Oct 2 18:22:47 2025 GMT Subject: CN=B84E79FFC890B33E6515B71AD5A160384DF170E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e8:14:51:79:73:90:4f:eb:cb:5c:1b:5d:2b: b9:a4:da:66:e7:da:67:11:de:db:6a:7d:e8:3c:fc: f1:7f:95:34:56:92:f9:53:bb:71:4f:74:0a:db:a9: 4c:da:6b:01:46:45:fd:b8:e8:70:65:a1:c4:19:84: 24:ae:79:da:9c:d2:30:ec:d4:91:ec:29:8d:30:2a: 20:45:42:d3:c9:c2:67:f2:a2:13:f7:6b:7d:9b:d3: da:63:1b:83:7a:64:99:6e:16:d1:03:3c:4c:f8:e6: c9:5f:48:32:0d:79:f8:e3:f2:ec:54:93:c4:47:57: 52:5e:20:86:3e:e6:c9:8a:1c:c4:e2:e7:38:eb:a4: 9e:23:90:2c:00:8f:ab:c6:d4:3f:3f:d9:55:f4:09: e7:90:cb:b0:0f:c7:51:7f:9d:46:68:7c:4c:5e:6f: 22:3b:23:92:29:e5:e7:e4:5f:7d:91:67:dc:9f:97: f0:b6:75:f8:ec:1a:c8:c6:1e:09:49:43:82:ce:32: e6:e3:d4:c0:42:86:4f:de:e9:c8:44:7b:c4:92:2c: d9:ce:0e:30:0c:f3:1e:1a:88:99:4d:83:8e:7f:31: ad:5a:d2:0a:5c:ea:37:2a:f9:b7:df:66:03:3d:a5: 51:a8:b6:26:02:28:d0:ee:07:79:00:dc:9f:5c:c7: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4E:79:FF:C8:90:B3:3E:65:15:B7:1A:D5:A1:60:38:4D:F1:70:E1 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214182.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa0d::/48 Signature Algorithm: sha256WithRSAEncryption 4d:f0:92:fb:8e:08:80:df:1e:3f:d6:be:cb:00:1b:35:25:a1: 86:3e:06:1b:76:b0:1d:74:1b:7c:24:72:9d:b8:23:2b:8b:f2: 3b:37:43:4d:b0:2c:f0:6e:4c:47:b7:0e:62:ab:a7:a4:e1:7c: d2:46:6c:c6:25:4e:40:85:2a:9f:4b:40:6c:04:ee:df:38:85: 4b:cb:09:6c:f2:df:70:37:12:ea:66:61:2e:ff:c5:68:ba:bf: b7:a5:5c:a0:a1:63:a0:10:f4:5f:e4:a2:77:d5:53:cf:86:87: 2c:02:3b:0c:94:e0:bf:3a:62:62:aa:48:8e:32:fa:82:cf:17: cf:0c:b1:62:f8:b8:a9:59:a9:38:b1:3d:ef:48:e7:fd:af:2a: f5:2f:31:59:12:30:7b:67:7b:e8:04:aa:a2:ff:82:7f:f7:96: a6:9c:48:a4:ec:14:58:52:44:9d:56:59:dc:68:96:0f:05:26: 3a:a8:b1:56:c7:ca:a9:aa:b6:86:18:01:ee:be:76:9c:e0:6d: e5:e6:71:ba:cb:32:fa:08:b2:95:e3:c6:f9:31:63:75:2e:c4: 4d:60:fb:1b:93:c9:9a:a2:6f:0e:0b:1c:7a:38:dd:2c:67:80: 65:e9:b6:23:67:89:70:87:82:f7:70:75:74:74:d2:01:7e:a4: ac:b1:62:fc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZV/35n/ay5hDWV9f7S7gOdnsQ64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDEwMDMxODE3NDdaFw0yNTEwMDIxODIyNDdaMDMxMTAvBgNV BAMTKEI4NEU3OUZGQzg5MEIzM0U2NTE1QjcxQUQ1QTE2MDM4NERGMTcwRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK6BRReXOQT+vLXBtdK7mk2mbn 2mcR3ttqfeg8/PF/lTRWkvlTu3FPdArbqUzaawFGRf246HBlocQZhCSuedqc0jDs 1JHsKY0wKiBFQtPJwmfyohP3a32b09pjG4N6ZJluFtEDPEz45slfSDINefjj8uxU k8RHV1JeIIY+5smKHMTi5zjrpJ4jkCwAj6vG1D8/2VX0CeeQy7APx1F/nUZofExe byI7I5Ip5efkX32RZ9yfl/C2dfjsGsjGHglJQ4LOMubj1MBChk/e6chEe8SSLNnO DjAM8x4aiJlNg45/Ma1a0gpc6jcq+bffZgM9pVGotiYCKNDuB3kA3J9cx6R3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuE55/8iQsz5lFbca1aFgOE3xcOEwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MTgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpg RKoNMA0GCSqGSIb3DQEBCwUAA4IBAQBN8JL7jgiA3x4/1r7LABs1JaGGPgYbdrAd dBt8JHKduCMri/I7N0NNsCzwbkxHtw5iq6ek4XzSRmzGJU5AhSqfS0BsBO7fOIVL ywls8t9wNxLqZmEu/8Vour+3pVygoWOgEPRf5KJ31VPPhocsAjsMlOC/OmJiqkiO MvqCzxfPDLFi+LipWak4sT3vSOf9ryr1LzFZEjB7Z3voBKqi/4J/95amnEik7BRY UkSdVlncaJYPBSY6qLFWx8qpqraGGAHuvnac4G3l5nG6yzL6CLKV48b5MWN1LsRN YPsbk8maom8OCxx6ON0sZ4Bl6bYjZ4lwh4L3cHV0dNIBfqSssWL8 -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org