$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa File: AS215541.roa (raw, json) Hash identifier: OWWGiejUIZiMaUAMo6BoHlgIUkiFG8ZsX4HW+dv8V2s= Subject key identifier: 5E:66:22:BA:A0:79:8A:FF:2A:95:DD:50:A6:75:FD:A0:5F:89:C8:5B Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 71B063810EBD45326918ADF9FDC257A1F8C6A123 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa Signing time: Thu 29 Aug 2024 03:41:16 +0000 ROA not before: Thu 29 Aug 2024 03:36:16 +0000 ROA not after: Thu 28 Aug 2025 03:41:16 +0000 asID: 215541 IP address blocks: 2a0a:6044:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b0:63:81:0e:bd:45:32:69:18:ad:f9:fd:c2:57:a1:f8:c6:a1:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:16 2024 GMT Not After : Aug 28 03:41:16 2025 GMT Subject: CN=5E6622BAA0798AFF2A95DD50A675FDA05F89C85B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e0:d8:4b:e1:c9:e2:4b:fb:ce:63:83:64:22: 23:64:37:89:2c:02:77:86:3d:fa:c3:b7:fa:b2:98: ec:1d:42:f6:5e:cc:9e:35:7c:54:20:f9:85:20:e1: 76:3e:4d:06:cb:e6:6f:80:98:f2:68:39:ea:9e:7e: d4:16:12:0e:33:96:d4:83:88:2a:f9:d6:80:7b:c5: 30:91:13:c6:ba:7d:7c:05:4f:52:b4:9e:f7:f5:ba: 0c:4b:89:78:92:c0:2b:50:51:b7:e2:0b:b5:05:4f: fe:56:93:99:78:c2:e7:84:b2:6d:1d:08:7b:a8:19: 4b:6d:4a:27:4c:80:87:d2:1b:49:0b:8e:d9:3d:e1: 3e:f7:24:52:58:54:df:41:ef:55:d0:1f:d9:ae:2a: 9c:ea:62:ff:d3:a2:00:6c:01:00:00:95:30:b3:31: 0d:75:a4:e7:7f:07:d6:e0:5b:7b:c3:7d:cc:a6:c8: 1d:f1:66:aa:f5:58:98:56:3a:b6:06:68:4e:0e:94: 81:99:b4:e3:2f:b6:8d:70:58:0e:0d:22:53:77:04: e3:06:dd:14:45:47:49:a6:de:57:88:67:d2:29:08: 14:f4:de:4a:a0:2a:27:b8:f3:6c:91:ff:76:36:79: 65:7e:a2:0a:93:b4:35:61:8a:95:30:85:2c:7e:2d: 66:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:66:22:BA:A0:79:8A:FF:2A:95:DD:50:A6:75:FD:A0:5F:89:C8:5B X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215541.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:5000::/36 Signature Algorithm: sha256WithRSAEncryption 47:7a:c8:4a:59:82:5a:03:aa:5d:28:74:81:ab:4c:01:b7:05: 57:3f:24:33:77:95:e7:02:1e:87:1b:db:06:f6:cc:6f:11:9a: 5c:1f:39:ca:da:0d:91:45:f4:ce:56:03:87:b8:76:9f:5e:f9: 21:a5:c3:e3:94:eb:f8:24:4d:20:22:bd:1f:a9:45:6c:09:52: 59:de:17:23:93:99:d7:cb:a7:d7:e1:74:6e:0d:ba:c4:d4:05: 2c:63:32:0d:06:0b:0c:00:4e:60:c7:b3:ea:fa:be:6e:5f:47: bb:80:1d:50:d0:c6:60:30:c0:c0:40:a6:4c:58:29:78:6c:f8: 24:ef:1b:19:da:92:2c:e9:a7:d7:c1:f0:1f:88:36:47:52:18: c3:f7:25:dc:da:39:54:56:61:94:8a:ee:9a:dd:a2:0e:e4:19: f6:a0:68:0a:64:1d:90:b8:f2:2b:11:64:cb:d7:2c:83:d8:ff: 52:20:2e:a0:bb:24:54:06:72:4a:41:1d:15:7b:3f:a8:96:74: 02:4a:08:d2:7f:07:a8:8e:d4:ef:44:45:e7:97:2f:cd:9e:5b: 94:bb:4d:8d:57:13:aa:10:2d:55:34:d1:d9:c3:0d:3a:88:9f: 21:86:36:bc:cf:47:78:51:bf:f8:66:14:1a:1e:5b:a9:c9:5e: cc:ec:7e:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcbBjgQ69RTJpGK35/cJXofjGoSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTZaFw0yNTA4MjgwMzQxMTZaMDMxMTAvBgNV BAMTKDVFNjYyMkJBQTA3OThBRkYyQTk1REQ1MEE2NzVGREEwNUY4OUM4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv4NhL4cniS/vOY4NkIiNkN4ks AneGPfrDt/qymOwdQvZezJ41fFQg+YUg4XY+TQbL5m+AmPJoOeqeftQWEg4zltSD iCr51oB7xTCRE8a6fXwFT1K0nvf1ugxLiXiSwCtQUbfiC7UFT/5Wk5l4wueEsm0d CHuoGUttSidMgIfSG0kLjtk94T73JFJYVN9B71XQH9muKpzqYv/TogBsAQAAlTCz MQ11pOd/B9bgW3vDfcymyB3xZqr1WJhWOrYGaE4OlIGZtOMvto1wWA4NIlN3BOMG 3RRFR0mm3leIZ9IpCBT03kqgKie482yR/3Y2eWV+ogqTtDVhipUwhSx+LWbPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXmYiuqB5iv8qld1QpnX9oF+JyFswHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1NTQxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgpg RFAwDQYJKoZIhvcNAQELBQADggEBAEd6yEpZgloDql0odIGrTAG3BVc/JDN3lecC Hocb2wb2zG8RmlwfOcraDZFF9M5WA4e4dp9e+SGlw+OU6/gkTSAivR+pRWwJUlne FyOTmdfLp9fhdG4NusTUBSxjMg0GCwwATmDHs+r6vm5fR7uAHVDQxmAwwMBApkxY KXhs+CTvGxnakizpp9fB8B+INkdSGMP3JdzaOVRWYZSK7prdog7kGfagaApkHZC4 8isRZMvXLIPY/1IgLqC7JFQGckpBHRV7P6iWdAJKCNJ/B6iO1O9EReeXL82eW5S7 TY1XE6oQLVU00dnDDTqInyGGNrzPR3hRv/hmFBoeW6nJXszsfiU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org