$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214681.roa File: AS214681.roa (raw, json) Hash identifier: aXy5gL1w/N1x2ujreJpjR5ZZryplJ4jp8GpaD5V1WO8= Subject key identifier: D6:17:EE:E3:F9:D6:CB:93:67:66:94:F8:FF:C0:6A:E8:58:6C:A6:0C Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 4F818D9944F45CD68E428148C438883BEFA959DD Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214681.roa Signing time: Thu 29 Aug 2024 03:41:18 +0000 ROA not before: Thu 29 Aug 2024 03:36:18 +0000 ROA not after: Thu 28 Aug 2025 03:41:18 +0000 asID: 214681 IP address blocks: 2a0a:6044:ac90::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 19 Sep 2024 12:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:81:8d:99:44:f4:5c:d6:8e:42:81:48:c4:38:88:3b:ef:a9:59:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:18 2024 GMT Not After : Aug 28 03:41:18 2025 GMT Subject: CN=D617EEE3F9D6CB93676694F8FFC06AE8586CA60C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:1c:a9:94:b2:79:c7:a8:b0:e2:73:f9:3f: c9:bb:c0:6b:67:82:a4:61:4f:8b:4a:b6:44:31:01: b1:9a:8b:ea:a5:ea:5e:7f:39:78:b6:62:89:34:e5: ad:2c:9b:45:f5:9b:92:21:d0:63:45:53:cc:48:8a: 85:43:8d:39:42:3e:49:d0:4e:f8:55:92:f7:6c:06: 8e:33:18:bd:fc:c2:c3:d0:47:7f:0b:ef:d7:33:cd: b5:05:c2:53:c6:4c:e8:bd:e6:4e:5e:84:84:69:38: dc:f1:c4:3a:34:bd:e0:d5:86:f3:09:be:e2:38:fd: 21:c0:8d:6a:b0:06:b9:47:dd:64:2e:9e:e9:eb:2b: bb:75:35:90:0a:54:9f:54:4b:5c:17:d7:25:22:4e: 33:94:87:6a:a3:48:52:a6:8f:85:0b:ce:63:4b:45: f8:79:35:a5:56:10:16:fc:5d:5d:9a:23:77:37:3a: d0:94:63:40:ba:68:06:37:21:d2:4b:fb:31:0a:d1: 1b:50:1c:df:a2:10:69:dd:f8:2a:cc:ee:52:cf:85: eb:e7:70:28:0b:84:80:10:53:cf:f2:41:18:30:ef: 85:58:4f:96:a4:f9:2b:f9:71:61:8c:4c:93:b7:5e: 64:9b:95:a4:7f:a1:89:0d:4c:fd:c5:c6:af:20:cb: 31:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:17:EE:E3:F9:D6:CB:93:67:66:94:F8:FF:C0:6A:E8:58:6C:A6:0C X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac90::/44 Signature Algorithm: sha256WithRSAEncryption 86:03:0e:88:2c:a8:c9:42:ec:00:3a:0a:f5:75:22:e1:e9:55: 96:26:0a:33:3a:c5:b1:24:51:29:82:8c:56:1b:f8:ae:a7:28: 73:73:b9:9e:83:e8:1c:c1:ef:1a:83:73:65:cb:43:a4:60:27: 3c:32:c6:db:b0:57:e6:07:39:31:7c:bd:95:91:48:7e:62:42: d3:b0:73:67:91:1f:ec:c4:0f:97:0d:ac:9b:32:a9:9c:b1:c4: 85:06:54:7b:7c:a5:dc:59:13:c0:c1:7f:a1:1b:57:62:a6:9c: f1:ef:0f:58:87:96:2f:33:93:2f:37:ba:ac:67:5d:17:2e:c8: 4b:6e:1d:14:42:29:9c:f7:65:22:a9:79:85:d4:56:99:a1:ac: b8:5c:85:9d:ac:d2:58:02:18:03:a7:71:37:83:b0:99:60:98: d0:98:22:8d:76:83:c3:9f:82:37:29:ca:e5:8e:3d:9f:df:27: 57:97:43:53:f3:b1:13:93:68:71:68:f5:d6:d1:6d:9a:de:57: 53:bf:ab:02:2b:44:d4:04:bc:b7:31:74:ab:c8:0b:f2:3b:94: a8:f1:20:72:94:63:26:ac:d6:73:91:7e:98:44:ec:1d:35:87: 4a:63:b9:09:8a:7e:b1:a1:84:ea:53:ad:33:61:32:bb:93:2f: 66:2a:6f:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT4GNmUT0XNaOQoFIxDiIO++pWd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV BAMTKEQ2MTdFRUUzRjlENkNCOTM2NzY2OTRGOEZGQzA2QUU4NTg2Q0E2MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0nByplLJ5x6iw4nP5P8m7wGtn gqRhT4tKtkQxAbGai+ql6l5/OXi2Yok05a0sm0X1m5Ih0GNFU8xIioVDjTlCPknQ TvhVkvdsBo4zGL38wsPQR38L79czzbUFwlPGTOi95k5ehIRpONzxxDo0veDVhvMJ vuI4/SHAjWqwBrlH3WQununrK7t1NZAKVJ9US1wX1yUiTjOUh2qjSFKmj4ULzmNL Rfh5NaVWEBb8XV2aI3c3OtCUY0C6aAY3IdJL+zEK0RtQHN+iEGnd+CrM7lLPhevn cCgLhIAQU8/yQRgw74VYT5ak+Sv5cWGMTJO3XmSblaR/oYkNTP3Fxq8gyzGPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1hfu4/nWy5NnZpT4/8Bq6FhspgwwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0NjgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg RKyQMA0GCSqGSIb3DQEBCwUAA4IBAQCGAw6ILKjJQuwAOgr1dSLh6VWWJgozOsWx JFEpgoxWG/iupyhzc7meg+gcwe8ag3Nly0OkYCc8MsbbsFfmBzkxfL2VkUh+YkLT sHNnkR/sxA+XDaybMqmcscSFBlR7fKXcWRPAwX+hG1dippzx7w9Yh5YvM5MvN7qs Z10XLshLbh0UQimc92UiqXmF1FaZoay4XIWdrNJYAhgDp3E3g7CZYJjQmCKNdoPD n4I3Kcrljj2f3ydXl0NT87ETk2hxaPXW0W2a3ldTv6sCK0TUBLy3MXSryAvyO5So 8SBylGMmrNZzkX6YROwdNYdKY7kJin6xoYTqU60zYTK7ky9mKm+B -----END CERTIFICATE-----Generated at Wed Sep 18 19:06:58 2024 by rpki-client on console-ams.rpki-client.org