$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214908.roa File: AS214908.roa (raw, json) Hash identifier: fSeHFt9TVpL2W+nCWYQz9z/CxlyVo0Ap0SZNOpXcfWw= Subject key identifier: B9:E7:1B:BB:31:32:E3:CD:C2:98:35:70:C1:79:4A:46:5D:5C:10:9C Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 2B8F392750B37546E610E1DFFCB46B6423CBAE76 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214908.roa Signing time: Thu 29 Aug 2024 03:41:17 +0000 ROA not before: Thu 29 Aug 2024 03:36:17 +0000 ROA not after: Thu 28 Aug 2025 03:41:17 +0000 asID: 214908 IP address blocks: 2a0a:6044:aa05::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:8f:39:27:50:b3:75:46:e6:10:e1:df:fc:b4:6b:64:23:cb:ae:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:17 2024 GMT Not After : Aug 28 03:41:17 2025 GMT Subject: CN=B9E71BBB3132E3CDC2983570C1794A465D5C109C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fb:14:f6:1c:e9:90:40:c9:fd:02:48:24:55: d2:3c:06:5d:78:97:aa:83:4c:7d:5f:c0:29:ad:43: 01:49:ad:d2:66:a6:99:1d:bf:b1:46:6d:06:6a:35: 34:1d:e5:06:7c:36:0b:ee:0b:a7:f6:73:be:02:bd: 2c:a7:93:0c:ee:c5:34:0f:7d:8f:e3:ff:9a:24:9c: 27:68:c1:14:6d:c9:1e:c2:e5:5c:d3:5a:6e:74:34: 3b:81:f9:ae:7e:21:86:bd:bc:b6:33:a8:4c:02:f0: 7d:cb:30:83:78:6d:56:db:19:c5:7c:70:56:eb:4e: d5:8d:ad:5c:bb:f5:f1:9b:45:e7:2d:79:9e:df:54: 60:b7:da:65:48:b5:96:ec:22:2d:66:fc:9b:b0:87: 28:38:3f:34:a7:ea:43:90:82:6d:8c:75:e8:8a:a7: 0e:cf:7f:91:35:32:9f:39:a7:50:a5:07:73:3a:01: 52:31:42:51:0b:be:da:26:78:76:a1:3c:94:dc:30: 45:86:12:5b:45:29:c0:77:96:64:8f:5b:26:79:7b: 69:41:68:3d:b2:34:ee:e8:4d:64:ce:7b:11:61:17: 25:06:c0:31:bb:5b:50:48:87:e8:2d:03:94:d1:e5: ea:84:aa:ac:d2:aa:69:c1:26:5d:be:5e:4e:3d:6a: f7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E7:1B:BB:31:32:E3:CD:C2:98:35:70:C1:79:4A:46:5D:5C:10:9C X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214908.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa05::/48 Signature Algorithm: sha256WithRSAEncryption ac:63:b2:52:0f:e2:90:41:76:74:a4:3d:9c:36:22:10:23:43: 48:22:9f:f0:a7:84:9e:50:31:c5:82:0f:96:e8:cd:1a:dd:bf: 37:6d:3d:b7:81:38:49:5a:17:75:68:a6:4e:22:e3:7d:6e:6b: b9:27:6e:0b:f3:c0:f1:8c:d5:58:f4:4a:95:9b:bb:de:72:c3: b4:1a:7c:c8:ea:ec:08:49:a7:7e:8c:b1:ee:75:cb:74:b6:b7: 72:f0:96:e9:65:06:c0:33:39:c3:6d:b1:ad:2c:8e:88:c6:e0: 64:b2:38:10:c2:68:48:57:8f:5e:94:99:49:a3:66:cc:41:b2: c9:4b:cd:8f:23:de:59:99:73:13:0a:97:0c:54:b7:3f:ac:fa: d5:9c:f8:78:35:45:71:cc:7b:d4:16:da:38:77:03:cc:e8:bc: e7:2c:c6:6e:8b:78:f6:2f:75:94:45:f1:8a:24:c2:3e:3c:4c: 43:90:a5:72:f1:33:32:55:ee:8d:71:f4:ce:9d:d7:55:9e:f1: 97:09:c1:a4:89:f8:eb:e2:61:27:75:ba:f4:5a:e3:5b:16:e8: b5:02:15:70:d9:70:44:e0:82:b1:ae:7e:92:dd:4c:b3:62:64: 20:2e:17:be:d5:e0:0a:33:d8:1c:bb:5b:3d:36:d7:4c:7d:fe: 3c:be:01:e1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUK485J1CzdUbmEOHf/LRrZCPLrnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV BAMTKEI5RTcxQkJCMzEzMkUzQ0RDMjk4MzU3MEMxNzk0QTQ2NUQ1QzEwOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ+xT2HOmQQMn9AkgkVdI8Bl14 l6qDTH1fwCmtQwFJrdJmppkdv7FGbQZqNTQd5QZ8NgvuC6f2c74CvSynkwzuxTQP fY/j/5oknCdowRRtyR7C5VzTWm50NDuB+a5+IYa9vLYzqEwC8H3LMIN4bVbbGcV8 cFbrTtWNrVy79fGbRecteZ7fVGC32mVItZbsIi1m/Juwhyg4PzSn6kOQgm2MdeiK pw7Pf5E1Mp85p1ClB3M6AVIxQlELvtomeHahPJTcMEWGEltFKcB3lmSPWyZ5e2lB aD2yNO7oTWTOexFhFyUGwDG7W1BIh+gtA5TR5eqEqqzSqmnBJl2+Xk49aveBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuecbuzEy483CmDVwwXlKRl1cEJwwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0OTA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgpg RKoFMA0GCSqGSIb3DQEBCwUAA4IBAQCsY7JSD+KQQXZ0pD2cNiIQI0NIIp/wp4Se UDHFgg+W6M0a3b83bT23gThJWhd1aKZOIuN9bmu5J24L88DxjNVY9EqVm7vecsO0 GnzI6uwISad+jLHudct0trdy8JbpZQbAMznDbbGtLI6IxuBksjgQwmhIV49elJlJ o2bMQbLJS82PI95ZmXMTCpcMVLc/rPrVnPh4NUVxzHvUFto4dwPM6LznLMZui3j2 L3WURfGKJMI+PExDkKVy8TMyVe6NcfTOnddVnvGXCcGkifjr4mEndbr0WuNbFui1 AhVw2XBE4IKxrn6S3UyzYmQgLhe+1eAKM9gcu1s9NtdMff48vgHh -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org