$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214481.roa File: AS214481.roa (raw, json) Hash identifier: NXIK8ZJWv17dxA9w2UUBYKKjmvAPMdaxJ/u8p+m428o= Subject key identifier: BB:FB:48:EF:F6:61:1B:94:21:33:9B:5F:9E:71:F5:F2:FB:A1:08:9D Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 225E936F69ED7AE9350755BD1BD63BD256602D3F Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214481.roa Signing time: Thu 14 Nov 2024 16:38:14 +0000 ROA not before: Thu 14 Nov 2024 16:33:14 +0000 ROA not after: Thu 13 Nov 2025 16:38:14 +0000 asID: 214481 IP address blocks: 2a09:54c6:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5e:93:6f:69:ed:7a:e9:35:07:55:bd:1b:d6:3b:d2:56:60:2d:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Nov 14 16:33:14 2024 GMT Not After : Nov 13 16:38:14 2025 GMT Subject: CN=BBFB48EFF6611B9421339B5F9E71F5F2FBA1089D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ae:12:4a:3e:6e:01:2d:d1:1f:dd:f6:da:06: e3:e9:b0:d9:fc:1d:e4:63:85:32:6a:12:4d:61:45: a2:5f:ff:25:db:96:f5:88:24:36:ad:42:87:ec:c9: 3c:06:58:29:00:24:5b:17:63:7e:52:4d:ae:cd:27: 49:3c:61:d5:54:20:10:bf:f2:c9:39:7b:f9:f0:9f: 0d:ce:57:7d:3a:14:ea:94:6b:28:40:28:fc:5d:31: ba:b5:85:5f:af:13:1e:fd:3b:02:ef:b3:e7:0e:f3: fd:19:68:ca:05:73:b1:d7:26:3b:3c:d3:6b:a6:bc: 05:ec:b1:3d:af:b6:f8:a5:ff:da:ad:6e:d2:61:f3: a1:dd:c4:39:a3:63:67:b0:f4:dd:ac:ba:d2:28:c2: ba:bf:ed:2b:8f:6e:c2:29:c2:48:34:f0:27:d1:c3: c4:53:66:b6:e3:e4:81:58:a6:10:96:52:3b:5b:69: 96:e6:58:87:dd:a4:61:d5:5d:51:f7:6d:34:7d:db: 5a:c7:64:67:79:f3:b1:35:e5:36:3b:2b:5c:c1:d6: 35:77:75:c1:df:fe:b3:dc:41:5b:de:96:05:b5:0e: 7e:42:7b:0f:d0:79:05:2b:41:c2:eb:fb:01:2e:36: 52:03:17:53:7e:99:ed:27:1b:21:2d:47:e0:6a:f7: 3f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FB:48:EF:F6:61:1B:94:21:33:9B:5F:9E:71:F5:F2:FB:A1:08:9D X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:1000::/36 Signature Algorithm: sha256WithRSAEncryption ba:d3:ae:62:c4:f9:85:32:5c:64:ca:20:63:02:c4:36:cf:33: 84:a4:99:8e:d9:12:e5:12:8e:bd:2a:84:99:79:0b:db:41:3f: e6:28:32:7a:3d:fe:1b:2b:89:de:c8:19:5b:35:9f:64:3a:8d: ca:05:ea:fb:28:ae:96:09:28:e3:ef:c5:99:a9:31:a5:7c:ca: b7:8b:c8:37:fc:35:3d:86:04:f5:5e:eb:76:c9:d0:d8:43:24: cd:cc:03:98:82:db:df:e7:72:8f:c5:90:74:a8:47:1f:49:68: 5c:21:a3:78:8e:4c:2b:12:61:b8:f4:7f:0e:32:a9:93:c8:01: 0a:92:af:e9:cb:fb:27:12:2c:95:ec:0b:b1:7e:34:9d:90:f5: 52:f6:37:0d:76:05:49:a7:4f:04:2e:10:56:e9:f6:b2:37:ec: fd:29:1a:fc:b1:03:f1:bd:60:80:1a:00:37:03:15:8a:cf:a5: eb:0f:a0:ff:8a:bb:d9:25:20:76:a9:d5:5c:8c:e4:e6:c1:3e: 3d:de:4d:01:37:10:a5:78:e8:c3:03:3c:30:ac:c5:a1:56:42: 60:75:f1:86:38:83:97:03:40:fa:89:ad:f4:f7:3b:e3:e5:81: 3e:b7:fb:d8:a0:e3:51:1d:4b:73:f7:b0:98:7a:83:ec:44:54: 76:ee:d9:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIl6Tb2nteuk1B1W9G9Y70lZgLT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDExMTQxNjMzMTRaFw0yNTExMTMxNjM4MTRaMDMxMTAvBgNV BAMTKEJCRkI0OEVGRjY2MTFCOTQyMTMzOUI1RjlFNzFGNUYyRkJBMTA4OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDrhJKPm4BLdEf3fbaBuPpsNn8 HeRjhTJqEk1hRaJf/yXblvWIJDatQofsyTwGWCkAJFsXY35STa7NJ0k8YdVUIBC/ 8sk5e/nwnw3OV306FOqUayhAKPxdMbq1hV+vEx79OwLvs+cO8/0ZaMoFc7HXJjs8 02umvAXssT2vtvil/9qtbtJh86HdxDmjY2ew9N2sutIowrq/7SuPbsIpwkg08CfR w8RTZrbj5IFYphCWUjtbaZbmWIfdpGHVXVH3bTR921rHZGd587E15TY7K1zB1jV3 dcHf/rPcQVvelgW1Dn5Cew/QeQUrQcLr+wEuNlIDF1N+me0nGyEtR+Bq9z97AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUu/tI7/ZhG5QhM5tfnnH18vuhCJ0wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0NDgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKglU xhAwDQYJKoZIhvcNAQELBQADggEBALrTrmLE+YUyXGTKIGMCxDbPM4SkmY7ZEuUS jr0qhJl5C9tBP+YoMno9/hsrid7IGVs1n2Q6jcoF6vsorpYJKOPvxZmpMaV8yreL yDf8NT2GBPVe63bJ0NhDJM3MA5iC29/nco/FkHSoRx9JaFwho3iOTCsSYbj0fw4y qZPIAQqSr+nL+ycSLJXsC7F+NJ2Q9VL2Nw12BUmnTwQuEFbp9rI37P0pGvyxA/G9 YIAaADcDFYrPpesPoP+Ku9klIHap1VyM5ObBPj3eTQE3EKV46MMDPDCsxaFWQmB1 8YY4g5cDQPqJrfT3O+PlgT63+9ig41EdS3P3sJh6g+xEVHbu2Vg= -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:09 2024 by rpki-client on console-fra.rpki-client.org