$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215039.roa File: AS215039.roa (raw, json) Hash identifier: L0iddqKhp4FZ28rmj5A+8arUCpIwdCwks8K95M8I59A= Subject key identifier: D2:AC:2B:84:CF:2F:22:D0:E3:76:6B:91:39:4F:5C:3E:15:A5:38:D5 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 11EE1E875A35017425F8B0EB1B4B536CC4C865DD Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215039.roa Signing time: Thu 29 Aug 2024 03:41:16 +0000 ROA not before: Thu 29 Aug 2024 03:36:16 +0000 ROA not after: Thu 28 Aug 2025 03:41:16 +0000 asID: 215039 IP address blocks: 2a0a:6044:ac50::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ee:1e:87:5a:35:01:74:25:f8:b0:eb:1b:4b:53:6c:c4:c8:65:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:16 2024 GMT Not After : Aug 28 03:41:16 2025 GMT Subject: CN=D2AC2B84CF2F22D0E3766B91394F5C3E15A538D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:93:d2:6d:04:cb:1e:5c:eb:46:45:01:f2:01: 4d:ec:ac:e0:79:4a:c6:55:fb:57:77:54:38:d9:fa: 49:8d:d9:15:e4:4a:fa:73:e8:f6:1f:01:1d:f6:43: c6:b3:22:56:17:03:6a:6d:bb:33:3a:a1:d2:88:46: 7d:c2:3f:48:c8:ff:34:95:c9:05:86:73:65:e1:33: 4f:b9:65:20:6a:c0:de:48:4f:a3:a0:c7:68:b2:ee: 12:ef:39:2b:ab:3a:b1:70:3c:ea:6a:e0:ac:62:6f: ba:8d:88:f7:fe:e7:d2:bf:10:92:77:dd:70:1a:8f: ed:aa:79:1c:b6:bf:81:7c:c4:0e:4d:24:89:cd:e1: 37:6b:dc:26:9f:08:ad:1a:8d:51:8b:f5:a5:32:ff: a4:0c:75:2d:c6:3e:57:78:b4:2f:de:39:44:d8:35: 8d:c0:23:4a:fd:47:4a:83:52:09:69:3b:2a:b6:11: 2f:a4:7d:3c:46:36:fb:7a:59:b5:00:7d:c3:2f:1f: 9e:c4:60:31:92:b3:3d:9c:7c:23:0a:40:da:a3:e9: f3:72:b3:27:1e:60:d0:d6:5e:78:47:8f:52:d8:79: ae:d0:2e:0b:2f:df:cb:7d:bd:de:0d:34:02:b5:7b: 39:d8:bd:0a:57:87:9b:a2:92:66:1d:0a:04:05:f9: 02:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AC:2B:84:CF:2F:22:D0:E3:76:6B:91:39:4F:5C:3E:15:A5:38:D5 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac50::/44 Signature Algorithm: sha256WithRSAEncryption 2b:26:a4:82:b6:4b:9a:14:7d:c7:6b:30:04:53:40:e7:36:d4: 47:8d:92:78:f7:64:84:36:a0:03:f0:68:eb:a0:3b:f6:aa:b3: 2b:4f:76:cb:2d:0c:9a:53:04:9e:be:5a:b8:8e:f0:32:6c:fe: 78:2b:25:cb:e0:91:6a:ae:25:5a:42:ba:b3:03:35:bc:d3:c5: e0:2b:f5:79:e4:c0:f4:6e:c9:bb:f8:7b:0a:3d:ca:a9:91:d2: 98:0e:90:f2:d4:8e:7c:51:5c:68:10:d1:e5:f3:6a:3a:be:d3: 96:e0:71:6a:aa:51:8f:a3:48:95:aa:06:9d:48:e8:f3:81:c3: a6:3f:62:e8:2d:ad:a3:56:72:61:c4:2b:69:6e:52:c8:6a:02: e5:06:12:c5:18:63:2d:28:18:df:3e:44:e5:e9:d5:2c:2a:df: b9:b7:de:ad:36:d3:93:22:d6:84:88:58:79:e8:af:d5:aa:4a: 27:5e:ed:83:54:2b:13:4b:53:dc:6f:39:56:b1:1e:f4:be:80: 19:40:ff:a3:73:8f:d0:f4:00:fd:fb:e6:17:d7:e3:90:a7:f6: 69:a0:a0:b0:1f:9c:dc:3a:56:40:26:3c:e8:ae:d3:e7:ba:9a: bf:f9:ba:7f:ff:5e:e2:01:e9:a7:07:d5:37:e2:5b:e0:86:8b: 8b:c4:08:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEe4eh1o1AXQl+LDrG0tTbMTIZd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTZaFw0yNTA4MjgwMzQxMTZaMDMxMTAvBgNV BAMTKEQyQUMyQjg0Q0YyRjIyRDBFMzc2NkI5MTM5NEY1QzNFMTVBNTM4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkk9JtBMseXOtGRQHyAU3srOB5 SsZV+1d3VDjZ+kmN2RXkSvpz6PYfAR32Q8azIlYXA2ptuzM6odKIRn3CP0jI/zSV yQWGc2XhM0+5ZSBqwN5IT6Ogx2iy7hLvOSurOrFwPOpq4Kxib7qNiPf+59K/EJJ3 3XAaj+2qeRy2v4F8xA5NJInN4Tdr3CafCK0ajVGL9aUy/6QMdS3GPld4tC/eOUTY NY3AI0r9R0qDUglpOyq2ES+kfTxGNvt6WbUAfcMvH57EYDGSsz2cfCMKQNqj6fNy syceYNDWXnhHj1LYea7QLgsv38t9vd4NNAK1eznYvQpXh5uikmYdCgQF+QI9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0qwrhM8vItDjdmuROU9cPhWlONUwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1MDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg RKxQMA0GCSqGSIb3DQEBCwUAA4IBAQArJqSCtkuaFH3HazAEU0DnNtRHjZJ492SE NqAD8GjroDv2qrMrT3bLLQyaUwSevlq4jvAybP54KyXL4JFqriVaQrqzAzW808Xg K/V55MD0bsm7+HsKPcqpkdKYDpDy1I58UVxoENHl82o6vtOW4HFqqlGPo0iVqgad SOjzgcOmP2LoLa2jVnJhxCtpblLIagLlBhLFGGMtKBjfPkTl6dUsKt+5t96tNtOT ItaEiFh56K/VqkonXu2DVCsTS1PcbzlWsR70voAZQP+jc4/Q9AD9++YX1+OQp/Zp oKCwH5zcOlZAJjzortPnupq/+bp//17iAemnB9U34lvghouLxAim -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org