$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa File: AS215502.roa (raw, json) Hash identifier: e/EnhB0BmN6TiV4gHdeWeUNmslXYmNeJ39PhVpi+ktE= Subject key identifier: E1:EF:AF:7D:DF:6D:7A:8E:E3:AF:03:55:50:06:44:07:16:E8:22:F3 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 43FB655CB35CAA26BD9B754DE7163ACD6F8EF6DE Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa Signing time: Thu 29 Aug 2024 03:41:18 +0000 ROA not before: Thu 29 Aug 2024 03:36:18 +0000 ROA not after: Thu 28 Aug 2025 03:41:18 +0000 asID: 215502 IP address blocks: 2a0a:6044:b800::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:fb:65:5c:b3:5c:aa:26:bd:9b:75:4d:e7:16:3a:cd:6f:8e:f6:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:18 2024 GMT Not After : Aug 28 03:41:18 2025 GMT Subject: CN=E1EFAF7DDF6D7A8EE3AF03555006440716E822F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ea:47:41:ba:d3:f4:a0:4d:3a:00:dc:3b:5a: d1:2f:54:52:9e:9c:dd:43:aa:11:66:40:c3:61:99: 69:cb:f3:23:60:59:0f:23:34:09:0e:2f:a0:ac:28: 37:a2:cb:e1:58:6d:8f:e7:0b:9a:9a:1d:a8:ae:db: e2:7e:ba:4a:38:bd:bc:65:51:bf:a0:04:bc:ad:cd: 06:ed:4e:2c:e6:a9:68:05:cf:18:0d:71:76:34:8d: 3a:f6:e8:0f:82:ac:33:c9:2e:4b:a1:97:e6:29:be: be:97:10:4c:ac:c2:08:8e:24:b5:a7:14:4b:b2:50: 31:4f:0d:29:65:7c:89:04:f3:de:99:14:e9:7a:54: fc:ae:2b:30:22:ad:a7:6c:3a:5e:9d:bd:63:65:0b: aa:a8:a8:00:db:81:79:1b:36:fa:7e:f0:ac:40:a9: 1e:56:e7:84:83:66:3d:97:5c:c8:da:35:cf:51:93: 78:28:a0:ac:cc:09:92:d6:5f:8a:c8:b1:b8:2d:29: db:15:c9:6d:57:0b:89:60:8e:75:a6:99:52:be:16: c9:14:16:0d:1c:fb:61:83:db:35:9e:e8:39:5e:e7: b7:02:12:2a:0a:e9:52:e9:ca:1d:1b:d2:7e:b5:1f: 1e:aa:9e:6f:35:22:f5:fa:75:e9:75:c2:0f:16:16: 04:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EF:AF:7D:DF:6D:7A:8E:E3:AF:03:55:50:06:44:07:16:E8:22:F3 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b800::/40 Signature Algorithm: sha256WithRSAEncryption b9:38:fc:54:29:0e:e3:7e:5f:e5:06:4b:cf:37:2e:1d:94:28: 4c:22:00:75:43:23:16:7e:2c:c5:34:59:f5:36:e0:84:db:49: 8e:a0:b9:d9:42:42:51:b5:bf:3f:1f:6b:af:9c:c5:c8:eb:c9: 11:98:45:2a:05:3e:18:a0:40:37:83:cb:a8:20:ba:b0:1e:1e: 24:37:2c:ea:e4:dd:03:d3:5f:79:8d:e8:c4:72:45:65:3b:54: 74:88:3c:7e:0d:29:79:b1:b4:20:b5:e0:ba:fc:17:ed:ff:ca: cf:67:e7:39:ce:64:53:42:10:02:23:b0:44:54:f2:63:15:e1: fd:9f:a2:9e:09:73:d9:3b:1a:29:1c:ed:51:58:41:cd:1f:c8: 5f:49:ba:cd:30:75:8c:10:9a:b0:4c:07:2c:ab:54:99:b8:2d: b8:bc:77:e2:0e:ac:7b:cd:9f:d9:17:1a:82:ae:d3:54:56:b0: 5b:f5:46:26:06:5c:f6:67:c1:0f:37:79:cd:44:15:47:de:52: 67:78:93:6d:df:e3:7c:85:ff:b7:a4:6d:4e:a6:1f:5f:62:b6: d7:86:e5:f3:24:2e:57:bb:fb:6d:50:99:72:78:8e:0b:6b:9f: b2:9f:20:80:8e:30:a9:32:91:8d:cc:0a:71:a0:fa:d7:c9:42: bd:0b:04:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ/tlXLNcqia9m3VN5xY6zW+O9t4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV BAMTKEUxRUZBRjdEREY2RDdBOEVFM0FGMDM1NTUwMDY0NDA3MTZFODIyRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg6kdButP0oE06ANw7WtEvVFKe nN1DqhFmQMNhmWnL8yNgWQ8jNAkOL6CsKDeiy+FYbY/nC5qaHaiu2+J+uko4vbxl Ub+gBLytzQbtTizmqWgFzxgNcXY0jTr26A+CrDPJLkuhl+Ypvr6XEEyswgiOJLWn FEuyUDFPDSllfIkE896ZFOl6VPyuKzAiradsOl6dvWNlC6qoqADbgXkbNvp+8KxA qR5W54SDZj2XXMjaNc9Rk3gooKzMCZLWX4rIsbgtKdsVyW1XC4lgjnWmmVK+FskU Fg0c+2GD2zWe6Dle57cCEioK6VLpyh0b0n61Hx6qnm81IvX6del1wg8WFgTBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4e+vfd9teo7jrwNVUAZEBxboIvMwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1NTAyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RLgwDQYJKoZIhvcNAQELBQADggEBALk4/FQpDuN+X+UGS883Lh2UKEwiAHVDIxZ+ LMU0WfU24ITbSY6gudlCQlG1vz8fa6+cxcjryRGYRSoFPhigQDeDy6ggurAeHiQ3 LOrk3QPTX3mN6MRyRWU7VHSIPH4NKXmxtCC14Lr8F+3/ys9n5znOZFNCEAIjsERU 8mMV4f2fop4Jc9k7Gikc7VFYQc0fyF9Jus0wdYwQmrBMByyrVJm4Lbi8d+IOrHvN n9kXGoKu01RWsFv1RiYGXPZnwQ83ec1EFUfeUmd4k23f43yF/7ekbU6mH19itteG 5fMkLle7+21QmXJ4jgtrn7KfIICOMKkykY3MCnGg+tfJQr0LBIM= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:16 2024 by rpki-client on console-ams.rpki-client.org