$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215135.roa File: AS215135.roa (raw, json) Hash identifier: hMxOQpJ+HwcHHLFwaqUavFgG+G4da2fVQsmwnTIj5uU= Subject key identifier: 68:14:A4:F9:44:F1:D9:7C:99:3C:9E:18:A5:57:7B:C8:51:8E:59:35 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 24BFECDCD535FD6555FE80DAF25B424F0A9DFCA3 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215135.roa Signing time: Thu 29 Aug 2024 03:41:18 +0000 ROA not before: Thu 29 Aug 2024 03:36:18 +0000 ROA not after: Thu 28 Aug 2025 03:41:18 +0000 asID: 215135 IP address blocks: 2a0a:6044:aa04::/48 maxlen: 48 2a0a:6044:ac40::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bf:ec:dc:d5:35:fd:65:55:fe:80:da:f2:5b:42:4f:0a:9d:fc:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:18 2024 GMT Not After : Aug 28 03:41:18 2025 GMT Subject: CN=6814A4F944F1D97C993C9E18A5577BC8518E5935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ed:e2:5a:b8:81:c7:7d:d0:18:d1:fc:b0:de: b5:13:44:61:e9:8d:1f:c1:40:4b:4e:b3:71:5a:f1: 1f:15:d9:35:e8:cf:02:bc:a4:ce:3a:f2:f7:f7:7d: 29:59:2d:87:c7:3b:56:16:48:a0:2b:72:0f:b9:89: df:fb:e4:ab:e8:d7:c7:5a:88:ad:1d:03:2e:8f:e3: d9:a9:bf:96:70:fd:cf:fd:41:6d:d6:fb:16:87:5d: f5:3e:2d:1d:31:e8:cc:a3:89:3a:e7:fb:40:c7:b4: 00:eb:7d:a0:38:ca:3c:ee:77:60:64:9b:0f:15:2e: 37:b4:75:f8:1f:37:af:9f:d4:bb:92:e7:ad:9d:21: 4a:18:2d:a5:4c:43:92:b0:79:33:72:f4:26:62:ac: 66:16:0f:7e:0d:7c:b5:72:c1:2c:5a:be:70:3b:89: 08:0f:33:65:91:92:bf:5f:89:bc:61:d2:95:5f:c1: 33:0a:ca:4b:61:82:f9:a9:bf:a6:15:8c:25:bf:50: 04:22:10:17:5d:b5:d5:e1:94:04:d3:df:12:8a:da: 94:62:ca:ab:62:44:8e:0a:32:08:67:37:78:2c:f5: 06:45:0c:8d:26:67:d6:eb:2b:b0:0c:d4:eb:e9:5f: c5:07:34:5c:f4:ef:4b:23:3b:93:11:e8:4c:d4:39: 3f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:14:A4:F9:44:F1:D9:7C:99:3C:9E:18:A5:57:7B:C8:51:8E:59:35 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa04::/48 2a0a:6044:ac40::/44 Signature Algorithm: sha256WithRSAEncryption 7c:b0:db:49:89:2c:23:23:dd:95:ff:28:4e:0f:32:95:8b:74: 51:0b:35:c6:2a:67:d4:60:3e:04:c1:09:97:e1:19:d1:84:5e: 65:e0:5e:11:4f:5c:2c:25:e9:bb:dc:b3:00:a3:2e:c3:ac:3e: 99:a9:11:bf:9a:be:7c:ea:d5:c1:0c:33:96:38:4c:07:fb:dc: e8:ea:76:1c:fc:2f:c0:f5:94:b4:bd:80:48:45:7c:49:39:91: 41:37:00:98:c3:72:06:ce:14:95:5d:43:7c:85:fb:4d:f9:c5: 8d:cb:69:c8:0d:dc:54:dc:42:51:49:2b:21:6e:79:6c:23:0f: 00:13:45:72:c1:ac:e9:c3:b3:bd:60:8e:8a:bc:21:04:df:cc: 3a:73:fc:df:79:01:b5:9c:25:a9:b6:46:bf:20:e6:cd:f0:48: e9:c8:92:08:48:94:26:ce:89:c9:bf:ed:c5:b9:32:51:39:6d: 64:25:53:40:2e:4f:48:75:54:8e:52:53:40:d9:4b:a6:de:b2: a0:95:75:53:cf:a6:04:45:a1:b9:c5:c9:99:fe:cb:57:01:b8: d9:95:4c:3a:0e:a8:bc:83:c1:26:a5:c9:65:c9:d9:5a:57:e3: 98:7d:96:e9:b3:04:42:65:c0:96:fa:76:4e:61:06:ca:d0:c4: 4f:23:0f:e2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUJL/s3NU1/WVV/oDa8ltCTwqd/KMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV BAMTKDY4MTRBNEY5NDRGMUQ5N0M5OTNDOUUxOEE1NTc3QkM4NTE4RTU5MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl7eJauIHHfdAY0fyw3rUTRGHp jR/BQEtOs3Fa8R8V2TXozwK8pM468vf3fSlZLYfHO1YWSKArcg+5id/75Kvo18da iK0dAy6P49mpv5Zw/c/9QW3W+xaHXfU+LR0x6MyjiTrn+0DHtADrfaA4yjzud2Bk mw8VLje0dfgfN6+f1LuS562dIUoYLaVMQ5KweTNy9CZirGYWD34NfLVywSxavnA7 iQgPM2WRkr9fibxh0pVfwTMKykthgvmpv6YVjCW/UAQiEBddtdXhlATT3xKK2pRi yqtiRI4KMghnN3gs9QZFDI0mZ9brK7AM1OvpX8UHNFz070sjO5MR6EzUOT/TAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUaBSk+UTx2XyZPJ4YpVd7yFGOWTUwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1MTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgpg RKoEAwcEKgpgRKxAMA0GCSqGSIb3DQEBCwUAA4IBAQB8sNtJiSwjI92V/yhODzKV i3RRCzXGKmfUYD4EwQmX4RnRhF5l4F4RT1wsJem73LMAoy7DrD6ZqRG/mr586tXB DDOWOEwH+9zo6nYc/C/A9ZS0vYBIRXxJOZFBNwCYw3IGzhSVXUN8hftN+cWNy2nI DdxU3EJRSSshbnlsIw8AE0Vywazpw7O9YI6KvCEE38w6c/zfeQG1nCWptka/IObN 8EjpyJIISJQmzonJv+3FuTJROW1kJVNALk9IdVSOUlNA2Uum3rKglXVTz6YERaG5 xcmZ/stXAbjZlUw6Dqi8g8EmpcllydlaV+OYfZbpswRCZcCW+nZOYQbK0MRPIw/i -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org