$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214989.roa File: AS214989.roa (raw, json) Hash identifier: ybI0XEgtKgjj3z4+2by3E04TBz1MO8kS7Isr1qkhUQs= Subject key identifier: 30:47:7A:DE:AB:D2:76:B0:B4:BB:7F:75:A6:BD:B8:F5:5D:AD:60:F7 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 6E52D94814C2A15DCD5DBFC7D331007C5B68D7EF Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214989.roa Signing time: Thu 29 Aug 2024 03:41:15 +0000 ROA not before: Thu 29 Aug 2024 03:36:15 +0000 ROA not after: Thu 28 Aug 2025 03:41:15 +0000 asID: 214989 IP address blocks: 2a06:1281:5000::/36 maxlen: 36 2a06:1281:c000::/34 maxlen: 34 2a0a:6044:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:52:d9:48:14:c2:a1:5d:cd:5d:bf:c7:d3:31:00:7c:5b:68:d7:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:15 2024 GMT Not After : Aug 28 03:41:15 2025 GMT Subject: CN=30477ADEABD276B0B4BB7F75A6BDB8F55DAD60F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:07:c2:81:c4:4a:f2:60:28:58:09:dc:f3: a8:3d:95:5e:32:22:52:4f:ff:da:6d:1a:fb:4c:68: 46:f7:ee:a2:9a:9c:87:de:e9:a1:89:9c:07:a0:5f: 6b:0c:ac:26:39:d9:5b:cf:dd:d4:b5:81:d0:88:97: 5a:10:11:11:50:55:6c:6b:58:0c:10:d5:6a:39:4b: fc:44:b2:13:b6:16:a6:62:ad:0e:5a:13:3d:4e:3e: 9c:9a:4a:79:a6:6a:1d:e8:e6:f2:b5:35:e7:26:e8: 1d:79:8a:d8:e3:f9:dd:fa:a3:f1:01:00:e9:3e:ad: 1d:5f:64:48:0c:58:54:a6:7d:5b:c6:f6:b5:6c:4e: bb:81:b0:8c:b1:f6:ba:13:9b:e8:03:87:26:04:c2: 99:fe:75:a3:33:14:2d:42:33:b9:c1:b9:8a:b0:2f: 75:88:10:67:94:af:e6:ab:10:ab:6e:99:99:b2:fa: 5e:43:d2:8d:3e:16:f9:0f:69:4a:67:b0:8d:b9:aa: 00:29:b2:b6:c7:dd:8b:3b:f9:af:b7:e0:79:3b:66: ae:bd:76:75:fb:44:76:82:20:06:b7:92:07:dc:df: b2:73:19:38:b6:d2:17:b0:21:7e:a4:3e:11:59:c3: c0:80:50:a9:04:9d:94:25:64:b0:31:9c:db:ad:89: aa:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:47:7A:DE:AB:D2:76:B0:B4:BB:7F:75:A6:BD:B8:F5:5D:AD:60:F7 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS214989.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:5000::/36 2a06:1281:c000::/34 2a0a:6044:4000::/36 Signature Algorithm: sha256WithRSAEncryption 5a:f9:41:3d:83:93:51:9a:d4:cf:d7:c4:50:d3:38:c5:fb:97: bc:3c:51:be:8e:e9:6d:94:82:68:be:3d:48:e3:c9:e1:51:1c: 1f:55:b4:cf:9c:e5:4c:33:e1:c6:8a:62:2f:7c:c0:53:b8:ff: 39:c0:fb:4d:10:a2:a4:2f:b3:25:d0:d3:cd:4b:49:72:82:e2: 46:08:4b:74:03:c6:77:15:19:05:13:0c:2d:f6:d8:4d:ba:56: ad:9c:2e:05:52:79:ca:c7:e0:d6:05:8c:85:6b:b5:21:6d:05: 68:bb:eb:a6:48:55:98:30:d9:c0:63:45:54:90:d3:e8:2a:cd: 03:01:86:9e:23:b8:a0:3c:97:1b:1d:73:80:1b:54:bd:94:98: a1:78:fd:4f:2d:f9:c6:74:ab:13:f3:c8:a0:46:7a:47:39:20: 1a:8c:55:4c:cf:51:33:95:48:34:61:68:cb:02:2d:1f:b7:03: 6e:2c:a7:45:99:12:ab:3f:81:02:b8:ad:8f:fa:70:30:af:54: f5:0b:49:ec:31:2e:63:19:e3:d5:4a:ce:59:dd:c3:66:f5:d5: 6a:35:e9:54:b4:dc:d7:c2:00:27:60:77:11:88:71:f7:58:d5: 17:00:d8:00:57:54:73:32:d0:71:e0:d7:c3:91:f2:46:e5:4f: 69:f4:3b:20 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgIUblLZSBTCoV3NXb/H0zEAfFto1+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTVaFw0yNTA4MjgwMzQxMTVaMDMxMTAvBgNV BAMTKDMwNDc3QURFQUJEMjc2QjBCNEJCN0Y3NUE2QkRCOEY1NURBRDYwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRugfCgcRK8mAoWAnc86g9lV4y IlJP/9ptGvtMaEb37qKanIfe6aGJnAegX2sMrCY52VvP3dS1gdCIl1oQERFQVWxr WAwQ1Wo5S/xEshO2FqZirQ5aEz1OPpyaSnmmah3o5vK1Necm6B15itjj+d36o/EB AOk+rR1fZEgMWFSmfVvG9rVsTruBsIyx9roTm+gDhyYEwpn+daMzFC1CM7nBuYqw L3WIEGeUr+arEKtumZmy+l5D0o0+FvkPaUpnsI25qgApsrbH3Ys7+a+34Hk7Zq69 dnX7RHaCIAa3kgfc37JzGTi20hewIX6kPhFZw8CAUKkEnZQlZLAxnNutiarNAgMB AAGjggJMMIICSDAdBgNVHQ4EFgQUMEd63qvSdrC0u391pr249V2tYPcwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE0OTg5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAAjAYAwYEKgYS gVADBgYqBhKBwAMGBCoKYERAMA0GCSqGSIb3DQEBCwUAA4IBAQBa+UE9g5NRmtTP 18RQ0zjF+5e8PFG+jultlIJovj1I48nhURwfVbTPnOVMM+HGimIvfMBTuP85wPtN EKKkL7Ml0NPNS0lyguJGCEt0A8Z3FRkFEwwt9thNulatnC4FUnnKx+DWBYyFa7Uh bQVou+umSFWYMNnAY0VUkNPoKs0DAYaeI7igPJcbHXOAG1S9lJiheP1PLfnGdKsT 88igRnpHOSAajFVMz1EzlUg0YWjLAi0ftwNuLKdFmRKrP4ECuK2P+nAwr1T1C0ns MS5jGePVSs5Z3cNm9dVqNelUtNzXwgAnYHcRiHH3WNUXANgAV1RzMtBx4NfDkfJG 5U9p9Dsg -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:09 2024 by rpki-client on console-fra.rpki-client.org