$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214911.roa File: AS214911.roa (raw, json) Hash identifier: nhzMSamfzFzF3bLKxr04wTJ8kHs3GLx+zeCWQ7ZhNWI= Subject key identifier: 53:43:6E:DC:A8:3C:F1:32:32:5B:47:90:AF:12:39:AD:F4:67:AA:CE Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 03375E0AE644A5F76FC5CCD05B1487FB7BDF0A18 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214911.roa Signing time: Mon 28 Oct 2024 15:03:18 +0000 ROA not before: Mon 28 Oct 2024 14:58:18 +0000 ROA not after: Mon 27 Oct 2025 15:03:18 +0000 asID: 214911 IP address blocks: 2a09:54c6:4000::/36 maxlen: 36 2a09:54c6:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:37:5e:0a:e6:44:a5:f7:6f:c5:cc:d0:5b:14:87:fb:7b:df:0a:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Oct 28 14:58:18 2024 GMT Not After : Oct 27 15:03:18 2025 GMT Subject: CN=53436EDCA83CF132325B4790AF1239ADF467AACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:a3:e6:12:52:bb:68:b4:bf:ce:1a:40:33: ec:5e:97:83:11:8d:eb:d7:73:17:d5:21:0a:5b:24: a7:14:a6:f6:36:8d:48:07:d4:39:be:c3:bb:c2:cb: bb:ed:0f:60:4e:00:44:f0:f4:9f:a4:55:ed:6a:ea: 62:d0:e0:d1:19:ae:97:9b:e3:19:e0:3e:1a:a2:56: 2d:93:87:e2:ba:42:bb:96:01:a7:9e:81:88:01:a8: 04:b1:b8:d1:c0:77:f6:ba:67:32:38:26:5f:ca:5c: ab:d3:3d:d2:db:42:a3:b3:9b:31:36:c5:1f:c3:a5: 6b:28:7d:be:bd:49:03:41:1b:42:02:e0:8f:e7:dc: 6f:c7:76:13:0b:e1:97:c4:49:04:8e:89:05:33:89: 33:2e:8e:a8:22:30:8d:7a:e2:6b:58:4e:5b:2b:9e: 0f:c5:df:ac:45:64:62:f0:98:41:3a:98:91:16:1f: 30:55:9e:0c:d0:01:4d:c0:4f:b7:0d:b1:69:08:0e: e5:2d:14:2c:3b:b1:45:2e:a8:b6:27:e9:4e:6c:e7: 64:e5:b9:97:24:ed:fa:ca:04:e2:f8:74:d0:a0:42: 40:63:14:11:1d:8a:70:40:e5:3b:b0:05:df:35:93: c2:db:53:8f:a4:f4:9a:08:b5:d8:37:b3:6e:a3:84: b3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:43:6E:DC:A8:3C:F1:32:32:5B:47:90:AF:12:39:AD:F4:67:AA:CE X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214911.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:4000::/36 2a09:54c6:c000::/36 Signature Algorithm: sha256WithRSAEncryption a8:6c:20:a5:2c:4c:c2:41:d2:c8:38:ac:de:30:2d:56:9f:63: 7d:7a:80:99:aa:35:8f:e4:23:68:d0:a8:6c:d4:d8:93:46:ea: af:df:6f:cf:8f:1b:eb:94:1c:78:fb:89:c6:e4:a2:56:e4:ce: 31:80:06:4d:e0:30:66:50:e4:76:2b:2c:ae:dd:1e:6b:06:15: dc:2d:1d:93:ad:fb:a4:eb:c2:dc:99:eb:cf:d7:92:64:42:94: 06:78:63:30:18:41:17:87:0d:89:4f:45:22:14:7f:10:9e:97: e9:90:49:66:e5:68:0d:fc:8d:a0:ac:55:95:71:a3:5a:f9:44: 19:cb:96:37:3d:63:b3:da:af:79:44:db:13:ab:b2:c3:f8:41: 3a:01:0c:cd:e1:da:5c:6b:ed:73:7e:ce:1c:c7:f1:0c:19:e2: 8b:69:ac:36:ad:59:c3:91:f9:27:5f:15:46:3e:a9:16:eb:ae: ba:bc:73:30:8e:67:45:c3:33:74:4c:86:40:8a:17:e6:ad:22: 3d:32:df:e3:f1:e7:32:e6:50:23:fc:98:37:1e:f2:45:de:79: 19:7f:4c:de:b4:ba:47:0c:73:df:53:4f:8c:63:e8:e1:60:ac: 0d:25:ba:cc:e0:96:4b:62:c4:4c:83:b0:eb:f4:e3:cf:9f:67: 4b:d9:66:5b -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUAzdeCuZEpfdvxczQWxSH+3vfChgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDEwMjgxNDU4MThaFw0yNTEwMjcxNTAzMThaMDMxMTAvBgNV BAMTKDUzNDM2RURDQTgzQ0YxMzIzMjVCNDc5MEFGMTIzOUFERjQ2N0FBQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDgqPmElK7aLS/zhpAM+xel4MR jevXcxfVIQpbJKcUpvY2jUgH1Dm+w7vCy7vtD2BOAETw9J+kVe1q6mLQ4NEZrpeb 4xngPhqiVi2Th+K6QruWAaeegYgBqASxuNHAd/a6ZzI4Jl/KXKvTPdLbQqOzmzE2 xR/DpWsofb69SQNBG0IC4I/n3G/HdhML4ZfESQSOiQUziTMujqgiMI164mtYTlsr ng/F36xFZGLwmEE6mJEWHzBVngzQAU3AT7cNsWkIDuUtFCw7sUUuqLYn6U5s52Tl uZck7frKBOL4dNCgQkBjFBEdinBA5TuwBd81k8LbU4+k9JoItdg3s26jhLP1AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUU0Nu3Kg88TIyW0eQrxI5rfRnqs4wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0OTExLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKglU xkADBgQqCVTGwDANBgkqhkiG9w0BAQsFAAOCAQEAqGwgpSxMwkHSyDis3jAtVp9j fXqAmao1j+QjaNCobNTYk0bqr99vz48b65QcePuJxuSiVuTOMYAGTeAwZlDkdiss rt0eawYV3C0dk637pOvC3Jnrz9eSZEKUBnhjMBhBF4cNiU9FIhR/EJ6X6ZBJZuVo DfyNoKxVlXGjWvlEGcuWNz1js9qveUTbE6uyw/hBOgEMzeHaXGvtc37OHMfxDBni i2msNq1Zw5H5J18VRj6pFuuuurxzMI5nRcMzdEyGQIoX5q0iPTLf4/HnMuZQI/yY Nx7yRd55GX9M3rS6Rwxz31NPjGPo4WCsDSW6zOCWS2LETIOw6/Tjz59nS9lmWw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org