$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa File: AS215575.roa (raw, json) Hash identifier: Xiz2EAclzuj9FLLQp9SDxOBIalQfRAd2dA+n+OLNT2M= Subject key identifier: 17:EB:92:B3:78:27:A2:41:11:18:47:8D:7F:C3:D8:AE:FD:5D:33:D0 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 1F5494E8DBEBBE190FB1E1F13681C79AF3C41E7E Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa Signing time: Mon 11 Nov 2024 02:40:09 +0000 ROA not before: Mon 11 Nov 2024 02:35:09 +0000 ROA not after: Mon 10 Nov 2025 02:40:09 +0000 asID: 215575 IP address blocks: 2a0a:6044:6800::/40 maxlen: 48 2a0a:6044:ac80::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:54:94:e8:db:eb:be:19:0f:b1:e1:f1:36:81:c7:9a:f3:c4:1e:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Nov 11 02:35:09 2024 GMT Not After : Nov 10 02:40:09 2025 GMT Subject: CN=17EB92B37827A2411118478D7FC3D8AEFD5D33D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:42:ec:7b:52:ae:b6:33:fb:e1:03:a4:0d:ea: 27:d7:bd:b1:30:8a:70:09:59:4e:3f:7b:79:54:04: 85:4f:e1:41:48:84:57:68:8d:63:c2:27:3f:16:08: 07:d9:10:0c:f0:12:ef:9f:a6:e5:59:8c:62:21:3a: 2c:bb:be:ab:f9:46:c5:1c:23:bd:12:3a:7f:2b:78: 4d:76:a5:88:83:8c:6a:02:ec:22:4f:b2:22:91:b9: 3a:58:0b:e0:da:14:8c:f2:0c:f4:8e:b2:c2:ae:05: 2e:e8:0b:5e:0f:06:4f:96:62:6b:a2:27:ca:bf:84: 48:81:59:45:4b:0c:54:08:ba:9d:9d:fa:41:8b:36: 75:b4:9b:50:b0:4b:86:8c:26:56:de:ef:61:bd:c4: 9b:f5:35:58:56:0e:89:f6:7f:bb:b8:56:d9:36:38: e1:8e:6c:79:ca:f4:6f:cb:14:93:4b:53:f3:ab:a4: f6:08:d0:cc:3e:f7:bc:b3:24:ce:dd:30:30:da:d7: 44:2b:fc:5d:00:f4:b7:6d:fb:83:e2:4b:77:d1:ba: b7:30:c9:f7:33:15:17:a3:cb:8b:59:de:59:9a:9f: 24:46:b3:c7:51:75:4d:f3:f9:72:71:7f:36:70:53: 6e:61:1d:d9:79:61:f7:e0:6a:cb:9d:11:bc:26:c4: 62:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EB:92:B3:78:27:A2:41:11:18:47:8D:7F:C3:D8:AE:FD:5D:33:D0 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215575.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6800::/40 2a0a:6044:ac80::/44 Signature Algorithm: sha256WithRSAEncryption 9f:50:03:b6:d7:ce:ad:2a:d2:dd:b1:af:9d:13:1d:9e:0c:11: 49:29:5e:4d:cd:e0:76:98:e9:90:0f:cc:24:30:e7:89:a2:9a: 94:6c:00:64:b5:a3:2a:b0:37:59:04:b8:73:11:1d:63:6c:0d: 3d:55:8a:62:bb:84:5d:9d:7d:e2:3f:a3:2e:b4:df:c7:d2:1b: 73:55:0b:9b:11:34:49:2b:eb:f4:9c:e8:cd:3f:bd:4c:28:f8: 87:8d:f0:92:19:ab:18:46:b1:68:e9:0c:15:41:6b:d9:16:86: 0e:44:44:39:49:38:92:d9:60:1b:98:b1:20:49:bb:ba:72:60: 6b:4b:ad:fa:98:9a:8a:0a:02:b5:70:b6:b6:a5:86:4b:10:92: f9:2e:b7:5a:04:98:8e:82:42:34:4f:a1:8e:79:70:2e:3c:1b: 05:ca:68:98:07:b8:98:87:b2:ca:fb:1b:b0:68:fe:03:a1:48: 91:74:7f:58:b7:41:1f:30:cd:9e:24:d5:27:40:ad:7f:9f:41: 6c:f4:8e:13:27:03:ca:22:32:c4:27:c8:7b:0d:c2:e3:02:62: 02:45:5a:01:4d:35:54:c5:7a:3d:79:10:79:93:ad:07:6d:59: ab:42:a7:4d:e7:6a:a7:2d:af:15:30:7d:19:6f:02:ee:82:64: b2:0a:a6:2c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUH1SU6NvrvhkPseHxNoHHmvPEHn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDExMTEwMjM1MDlaFw0yNTExMTAwMjQwMDlaMDMxMTAvBgNV BAMTKDE3RUI5MkIzNzgyN0EyNDExMTE4NDc4RDdGQzNEOEFFRkQ1RDMzRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGQux7Uq62M/vhA6QN6ifXvbEw inAJWU4/e3lUBIVP4UFIhFdojWPCJz8WCAfZEAzwEu+fpuVZjGIhOiy7vqv5RsUc I70SOn8reE12pYiDjGoC7CJPsiKRuTpYC+DaFIzyDPSOssKuBS7oC14PBk+WYmui J8q/hEiBWUVLDFQIup2d+kGLNnW0m1CwS4aMJlbe72G9xJv1NVhWDon2f7u4Vtk2 OOGObHnK9G/LFJNLU/OrpPYI0Mw+97yzJM7dMDDa10Qr/F0A9Ldt+4PiS3fRurcw yfczFRejy4tZ3lmanyRGs8dRdU3z+XJxfzZwU25hHdl5YffgasudEbwmxGKlAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUF+uSs3gnokERGEeNf8PYrv1dM9AwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1NTc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKgpg RGgDBwQqCmBErIAwDQYJKoZIhvcNAQELBQADggEBAJ9QA7bXzq0q0t2xr50THZ4M EUkpXk3N4HaY6ZAPzCQw54mimpRsAGS1oyqwN1kEuHMRHWNsDT1VimK7hF2dfeI/ oy6038fSG3NVC5sRNEkr6/Sc6M0/vUwo+IeN8JIZqxhGsWjpDBVBa9kWhg5ERDlJ OJLZYBuYsSBJu7pyYGtLrfqYmooKArVwtralhksQkvkut1oEmI6CQjRPoY55cC48 GwXKaJgHuJiHssr7G7Bo/gOhSJF0f1i3QR8wzZ4k1SdArX+fQWz0jhMnA8oiMsQn yHsNwuMCYgJFWgFNNVTFej15EHmTrQdtWatCp03naqctrxUwfRlvAu6CZLIKpiw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org