$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa File: AS215150.roa (raw, json) Hash identifier: FDEE32eLCmvVT/7VKA04c1q3WH6kJ3hnNV35zNRVAVg= Subject key identifier: 3E:E8:9A:B6:FC:D2:DC:FE:9C:CB:14:AE:95:61:40:E3:E0:3E:01:99 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 2E53F844D42F11C7517B94A4DB1A4AB5AD9ACADB Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa Signing time: Thu 29 Aug 2024 03:41:17 +0000 ROA not before: Thu 29 Aug 2024 03:36:17 +0000 ROA not after: Thu 28 Aug 2025 03:41:17 +0000 asID: 215150 IP address blocks: 2a0a:6044:acc0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:53:f8:44:d4:2f:11:c7:51:7b:94:a4:db:1a:4a:b5:ad:9a:ca:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:17 2024 GMT Not After : Aug 28 03:41:17 2025 GMT Subject: CN=3EE89AB6FCD2DCFE9CCB14AE956140E3E03E0199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:db:54:fd:d6:f4:81:3f:d7:c2:4e:1d:2a:d7: 74:90:b4:11:99:9b:41:a6:b6:48:15:9a:06:4f:83: ad:d9:23:4a:dc:8e:3f:e7:35:8a:65:17:74:5f:8c: 07:58:76:4f:5f:95:e7:8d:8d:ed:63:c1:97:0d:16: 2e:0c:a8:54:be:e2:79:43:86:5e:6a:f4:1e:2c:12: 45:6e:b3:6f:96:ce:90:61:ee:57:6c:e8:0e:c7:b5: 65:9b:f9:3e:78:c9:d7:f3:f6:3b:94:86:62:bc:66: 34:bd:43:ce:25:8c:c3:7b:bb:9d:71:b3:ea:bf:34: d6:5d:96:3a:da:2b:e8:c4:73:ec:2e:d3:9e:13:a2: ed:3c:61:97:46:87:a0:5b:c9:37:c5:31:9e:a4:e8: 23:f0:c2:07:5d:f1:b6:4d:58:0d:7f:39:e6:e1:ab: 9d:e7:d5:a5:9a:77:ce:b5:30:74:57:48:17:dc:66: 8c:77:a0:2e:1e:03:7e:02:e7:8e:f0:53:f4:f6:b0: 7d:14:b3:0e:c9:30:b8:08:56:c9:a7:17:0a:83:1a: 59:9f:4d:6d:66:a7:b3:67:84:00:a6:77:6f:1b:03: ea:79:d0:6b:e1:aa:db:38:07:ca:29:10:54:f3:df: 0c:a0:85:29:3d:ee:88:ac:b4:52:cf:01:07:78:06: 92:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E8:9A:B6:FC:D2:DC:FE:9C:CB:14:AE:95:61:40:E3:E0:3E:01:99 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:acc0::/44 Signature Algorithm: sha256WithRSAEncryption 17:52:7c:0e:9c:61:c7:cf:df:b2:5a:5f:b3:f8:9c:bb:bf:ed: 5e:1c:81:e8:8f:c5:84:86:cc:d2:a2:95:a5:55:34:c4:d4:7a: 06:4c:a3:5a:c2:e3:1d:19:7e:61:98:af:7c:52:34:54:80:28: c7:09:e7:d4:da:fe:c5:cf:07:37:dc:ab:fe:eb:ff:e5:ae:68: 23:29:0a:a8:f6:75:bb:d2:56:be:0f:5c:f6:f5:12:1f:88:4e: 21:fe:dc:2c:ce:1e:3e:cb:67:2e:b8:52:8d:f9:1b:7c:da:76: 79:3b:af:94:80:b7:80:64:74:94:47:20:f6:da:b1:2b:7c:b5: 2f:cc:b2:fc:34:f0:68:2e:aa:1a:ab:b7:9d:4a:74:78:09:03: 41:d9:9c:9c:46:f2:2c:d9:17:4b:1a:36:6c:a0:41:d2:13:3e: 2c:cc:df:e4:99:fd:c0:d7:f8:a4:51:a2:27:fa:f4:3f:24:7e: b4:f2:53:68:93:af:31:83:e9:f6:4b:e7:1a:93:a9:b5:5a:22: a9:b3:77:2f:6f:aa:3a:92:75:e0:fb:f6:de:1e:bd:cf:dd:cb: c1:5f:53:bb:51:39:ff:95:04:13:0a:69:da:a8:2e:ee:92:52: be:f0:f2:d5:66:a5:22:20:ec:32:93:c9:ca:c0:9a:96:5e:55: b8:e9:17:c3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULlP4RNQvEcdRe5Sk2xpKta2aytswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV BAMTKDNFRTg5QUI2RkNEMkRDRkU5Q0NCMTRBRTk1NjE0MEUzRTAzRTAxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf21T91vSBP9fCTh0q13SQtBGZ m0GmtkgVmgZPg63ZI0rcjj/nNYplF3RfjAdYdk9fleeNje1jwZcNFi4MqFS+4nlD hl5q9B4sEkVus2+WzpBh7lds6A7HtWWb+T54ydfz9juUhmK8ZjS9Q84ljMN7u51x s+q/NNZdljraK+jEc+wu054Tou08YZdGh6BbyTfFMZ6k6CPwwgdd8bZNWA1/Oebh q53n1aWad861MHRXSBfcZox3oC4eA34C547wU/T2sH0Usw7JMLgIVsmnFwqDGlmf TW1mp7NnhACmd28bA+p50Gvhqts4B8opEFTz3wyghSk97oistFLPAQd4BpKpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPuiatvzS3P6cyxSulWFA4+A+AZkwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1MTUwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg RKzAMA0GCSqGSIb3DQEBCwUAA4IBAQAXUnwOnGHHz9+yWl+z+Jy7v+1eHIHoj8WE hszSopWlVTTE1HoGTKNawuMdGX5hmK98UjRUgCjHCefU2v7Fzwc33Kv+6//lrmgj KQqo9nW70la+D1z29RIfiE4h/twszh4+y2cuuFKN+Rt82nZ5O6+UgLeAZHSURyD2 2rErfLUvzLL8NPBoLqoaq7edSnR4CQNB2ZycRvIs2RdLGjZsoEHSEz4szN/kmf3A 1/ikUaIn+vQ/JH608lNok68xg+n2S+cak6m1WiKps3cvb6o6knXg+/beHr3P3cvB X1O7UTn/lQQTCmnaqC7uklK+8PLVZqUiIOwyk8nKwJqWXlW46RfD -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:09 2024 by rpki-client on console-fra.rpki-client.org