$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214203.roa File: AS214203.roa (raw, json) Hash identifier: Fqvx0X79+sjMWcBPp24b5P9oddts5FFS696M0Ip7jmM= Subject key identifier: 21:1A:F4:F3:65:E8:DE:6A:93:A9:13:E7:BF:D2:B6:DE:E9:C2:2D:6D Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 36EA4646006BE114F6CA2392EF4C39366B1B0F6F Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214203.roa Signing time: Mon 11 Nov 2024 20:22:49 +0000 ROA not before: Mon 11 Nov 2024 20:17:49 +0000 ROA not after: Mon 10 Nov 2025 20:22:49 +0000 asID: 214203 IP address blocks: 2a0a:6044:6700::/40 maxlen: 40 2a0a:6044:7a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ea:46:46:00:6b:e1:14:f6:ca:23:92:ef:4c:39:36:6b:1b:0f:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Nov 11 20:17:49 2024 GMT Not After : Nov 10 20:22:49 2025 GMT Subject: CN=211AF4F365E8DE6A93A913E7BFD2B6DEE9C22D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dc:db:12:a2:2f:74:94:e1:f8:0e:57:d9:b0: 7a:4b:ac:19:42:3f:35:19:a5:b4:44:ae:b1:19:d6: 9f:1b:2c:47:79:5b:25:83:45:b3:0b:77:f5:9b:86: 99:6e:95:43:7d:85:07:0e:c3:eb:37:dd:91:2e:86: d2:12:19:70:25:43:8f:89:b0:b2:07:3e:1b:30:80: 3f:79:c7:ca:a9:cb:4e:c2:cf:c9:68:f5:7f:cd:6b: e8:03:29:11:76:b4:35:99:e9:a6:f3:a6:f3:bd:e7: 94:b9:c7:24:e1:44:d0:97:a5:cb:53:c5:e2:e1:69: 06:53:9a:1d:68:9d:44:92:6d:60:4d:ba:c2:4d:5e: b4:f0:12:9c:26:91:e2:f7:3e:fa:80:3c:97:d3:b9: 71:69:21:70:5d:0c:03:80:cc:87:5c:fc:21:5a:c6: 71:56:ba:04:fb:fa:47:6e:5c:fc:96:af:13:59:81: 33:89:3d:be:8c:c1:79:76:47:15:83:27:f9:d7:6c: 32:6d:92:d7:ee:86:88:91:b2:21:41:41:47:db:6d: 0d:86:8e:6e:e9:7e:5e:3c:3f:9d:c1:47:3d:b5:07: e1:a0:bc:15:ff:ab:bb:2e:18:dd:94:3e:32:c1:a7: 7b:9e:fe:ec:52:e6:90:fe:bb:be:98:a9:3b:09:81: b1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1A:F4:F3:65:E8:DE:6A:93:A9:13:E7:BF:D2:B6:DE:E9:C2:2D:6D X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214203.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6700::/40 2a0a:6044:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 50:22:89:10:3b:dc:c5:4b:ff:3c:1e:cd:f1:d1:ea:3c:2b:b8: 81:e2:af:1f:5d:56:6a:2c:91:39:ba:96:2d:78:e1:b5:8c:96: 88:01:9d:eb:26:3c:de:9a:81:0d:4d:26:52:fd:72:d6:16:0a: 95:52:ee:43:23:2a:ce:b8:a9:70:a0:90:d7:6f:b0:96:06:bc: d2:a3:93:29:88:4c:00:a2:2e:0d:97:24:4f:e8:8a:54:b2:18: e5:65:5b:ad:e8:9d:56:d1:68:79:c8:55:b6:cb:89:69:e4:be: 37:f0:02:7d:3a:9b:15:7f:05:9c:3c:d9:7f:e7:7e:d2:2f:f0: 1b:af:bd:4a:c7:82:ef:1a:5b:3c:43:ce:15:c5:fc:68:7e:7e: 2b:46:53:de:be:03:ec:4f:60:1a:1c:9a:27:a7:54:50:08:93: 67:4d:26:da:d2:e9:ff:a2:14:75:4b:e5:8e:d1:31:4c:4e:e7: 47:dc:85:0e:88:95:d2:d1:08:7b:5b:da:5a:9b:c2:0a:ce:24: 51:84:a0:89:27:6a:ba:3d:28:44:91:72:5f:29:1e:c5:e7:72: 40:fe:3d:9a:24:ab:09:29:53:6a:43:4b:a5:f6:fe:be:3d:6d: ac:63:cf:0d:a9:e2:9f:a5:4e:38:95:ef:f5:c1:ef:12:67:6e: 2b:e1:5a:aa -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUNupGRgBr4RT2yiOS70w5NmsbD28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDExMTEyMDE3NDlaFw0yNTExMTAyMDIyNDlaMDMxMTAvBgNV BAMTKDIxMUFGNEYzNjVFOERFNkE5M0E5MTNFN0JGRDJCNkRFRTlDMjJENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ3NsSoi90lOH4DlfZsHpLrBlC PzUZpbRErrEZ1p8bLEd5WyWDRbMLd/WbhplulUN9hQcOw+s33ZEuhtISGXAlQ4+J sLIHPhswgD95x8qpy07Cz8lo9X/Na+gDKRF2tDWZ6abzpvO955S5xyThRNCXpctT xeLhaQZTmh1onUSSbWBNusJNXrTwEpwmkeL3PvqAPJfTuXFpIXBdDAOAzIdc/CFa xnFWugT7+kduXPyWrxNZgTOJPb6MwXl2RxWDJ/nXbDJtktfuhoiRsiFBQUfbbQ2G jm7pfl48P53BRz21B+GgvBX/q7suGN2UPjLBp3ue/uxS5pD+u76YqTsJgbFfAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUIRr082Xo3mqTqRPnv9K23unCLW0wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0MjAzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgpg RGcDBgAqCmBEejANBgkqhkiG9w0BAQsFAAOCAQEAUCKJEDvcxUv/PB7N8dHqPCu4 geKvH11WaiyRObqWLXjhtYyWiAGd6yY83pqBDU0mUv1y1hYKlVLuQyMqzripcKCQ 12+wlga80qOTKYhMAKIuDZckT+iKVLIY5WVbreidVtFoechVtsuJaeS+N/ACfTqb FX8FnDzZf+d+0i/wG6+9SseC7xpbPEPOFcX8aH5+K0ZT3r4D7E9gGhyaJ6dUUAiT Z00m2tLp/6IUdUvljtExTE7nR9yFDoiV0tEIe1vaWpvCCs4kUYSgiSdquj0oRJFy XykexedyQP49miSrCSlTakNLpfb+vj1trGPPDanin6VOOJXv9cHvEmduK+Faqg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org