$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa File: AS215386.roa (raw, json) Hash identifier: Y4RKghpydpMEwzfM7J0WQznFpxTA2EZlu4pN7sX//0U= Subject key identifier: 94:7F:38:5F:38:5E:4E:14:CB:B0:47:C2:6C:17:34:ED:D3:79:83:53 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 6EC0563254803290B0FADB4A2885BFFFE8E71DEC Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa Signing time: Thu 29 Aug 2024 03:41:17 +0000 ROA not before: Thu 29 Aug 2024 03:36:17 +0000 ROA not after: Thu 28 Aug 2025 03:41:17 +0000 asID: 215386 IP address blocks: 2a0a:6044:ac20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 06:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c0:56:32:54:80:32:90:b0:fa:db:4a:28:85:bf:ff:e8:e7:1d:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:17 2024 GMT Not After : Aug 28 03:41:17 2025 GMT Subject: CN=947F385F385E4E14CBB047C26C1734EDD3798353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:81:0f:57:2f:bf:c2:36:35:dd:00:f1:6a:bb: cb:85:2c:fc:e6:59:27:a9:ea:bf:5f:49:ef:98:47: 86:f8:8b:85:fa:4e:cd:2b:b8:95:18:00:f0:d4:75: ac:47:f1:6f:de:82:35:d5:56:0b:1d:98:37:04:c5: b5:8b:49:6e:a7:78:28:1b:03:e7:eb:27:b1:cf:a9: 42:8b:e3:de:d2:d8:23:0f:48:8c:1f:2f:a0:49:45: 8d:1e:69:a7:0f:59:96:ae:ea:3d:ba:b2:81:fa:59: a5:27:77:0f:31:17:a8:a9:55:6b:74:35:d2:03:57: ad:9b:31:4c:6d:6a:38:f9:a7:5f:2c:bb:60:d0:fb: 44:59:26:9f:f0:f8:12:b7:14:72:4e:47:ef:ee:51: 79:a3:ac:93:65:ab:60:c4:e2:07:07:20:85:b6:ce: be:18:ef:9f:40:b0:ee:84:72:f6:1c:fd:4f:bf:13: 8e:83:20:10:8f:52:83:88:24:07:92:e8:63:ed:39: ac:56:3f:d7:f7:66:4e:b5:4d:d6:31:3e:fd:80:4a: b6:c0:79:16:f5:81:a6:5d:7e:2d:51:60:f2:c9:6d: 74:4d:01:c3:5b:4f:54:a3:a0:2f:ad:86:86:59:77: 0a:58:28:09:de:c7:6f:d4:6e:07:15:22:7e:e8:68: 26:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7F:38:5F:38:5E:4E:14:CB:B0:47:C2:6C:17:34:ED:D3:79:83:53 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215386.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac20::/44 Signature Algorithm: sha256WithRSAEncryption 14:af:7e:f7:d5:47:9f:50:1d:4b:0c:e7:f2:c7:3d:d4:9b:ca: 20:e1:99:ad:7e:f9:42:93:05:d2:bb:1a:b2:bd:dd:34:bd:ec: 09:d2:a7:97:51:91:90:f8:57:c4:ca:24:d3:35:d1:56:f9:67: 1f:41:11:dd:17:61:fb:3e:89:d2:f1:13:ad:77:e4:f2:71:77: b5:bb:e0:6b:e8:a7:e5:4b:58:99:13:e8:b5:9f:58:f0:44:3f: cc:3b:ee:f1:6c:63:c2:e3:3b:81:b1:53:ec:e7:f5:6e:94:ca: 1b:48:4f:e0:55:c0:8b:56:eb:a5:53:90:f5:43:f1:75:06:5f: f9:b3:56:ee:55:ee:d5:a8:df:1e:1f:a9:09:6b:5a:09:7d:e1: 8c:4b:cc:bc:d5:81:de:0d:20:cb:8f:30:1a:3b:fa:ab:13:82: c8:77:04:2d:2b:0b:fd:11:56:54:1f:a9:63:8d:ec:85:9f:b1: f1:45:8d:c2:3e:75:11:1b:ca:82:63:e7:97:a9:cd:52:8d:50: bf:64:20:71:cb:db:45:08:6e:46:d7:25:c2:b7:1e:ae:5d:39: 7e:8b:9b:e2:8b:34:4d:dd:a3:3f:04:ef:99:7f:0e:10:54:c7: 98:99:40:f8:15:dd:6c:4d:12:2b:2f:69:30:9f:52:6b:6c:f4: 0c:35:cb:7b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbsBWMlSAMpCw+ttKKIW//+jnHewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV BAMTKDk0N0YzODVGMzg1RTRFMTRDQkIwNDdDMjZDMTczNEVERDM3OTgzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTgQ9XL7/CNjXdAPFqu8uFLPzm WSep6r9fSe+YR4b4i4X6Ts0ruJUYAPDUdaxH8W/egjXVVgsdmDcExbWLSW6neCgb A+frJ7HPqUKL497S2CMPSIwfL6BJRY0eaacPWZau6j26soH6WaUndw8xF6ipVWt0 NdIDV62bMUxtajj5p18su2DQ+0RZJp/w+BK3FHJOR+/uUXmjrJNlq2DE4gcHIIW2 zr4Y759AsO6EcvYc/U+/E46DIBCPUoOIJAeS6GPtOaxWP9f3Zk61TdYxPv2ASrbA eRb1gaZdfi1RYPLJbXRNAcNbT1SjoC+thoZZdwpYKAnex2/UbgcVIn7oaCaHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlH84XzheThTLsEfCbBc07dN5g1MwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1Mzg2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg RKwgMA0GCSqGSIb3DQEBCwUAA4IBAQAUr3731UefUB1LDOfyxz3Um8og4ZmtfvlC kwXSuxqyvd00vewJ0qeXUZGQ+FfEyiTTNdFW+WcfQRHdF2H7PonS8ROtd+TycXe1 u+Br6KflS1iZE+i1n1jwRD/MO+7xbGPC4zuBsVPs5/VulMobSE/gVcCLVuulU5D1 Q/F1Bl/5s1buVe7VqN8eH6kJa1oJfeGMS8y81YHeDSDLjzAaO/qrE4LIdwQtKwv9 EVZUH6ljjeyFn7HxRY3CPnURG8qCY+eXqc1SjVC/ZCBxy9tFCG5G1yXCtx6uXTl+ i5viizRN3aM/BO+Zfw4QVMeYmUD4Fd1sTRIrL2kwn1JrbPQMNct7 -----END CERTIFICATE-----Generated at Sat Sep 28 13:04:57 2024 by rpki-client on console-fra.rpki-client.org