$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215820.roa File: AS215820.roa (raw, json) Hash identifier: VbQp1Njf8/7/k+nTdiKvfgsA25B+1AR6odz6L5wQr08= Subject key identifier: 27:82:35:DD:8D:E7:F1:DE:34:F9:E0:87:45:1E:C3:6E:51:DC:25:87 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 1ACC89EAF6775F1492B6209D8EC7B48EE3D3A9BF Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215820.roa Signing time: Thu 29 Aug 2024 03:41:19 +0000 ROA not before: Thu 29 Aug 2024 03:36:19 +0000 ROA not after: Thu 28 Aug 2025 03:41:19 +0000 asID: 215820 IP address blocks: 2a06:1281:6000::/36 maxlen: 48 2a0a:6044:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:cc:89:ea:f6:77:5f:14:92:b6:20:9d:8e:c7:b4:8e:e3:d3:a9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:19 2024 GMT Not After : Aug 28 03:41:19 2025 GMT Subject: CN=278235DD8DE7F1DE34F9E087451EC36E51DC2587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:c3:aa:8e:fb:55:11:3b:52:5f:7e:80:34: 48:a8:e2:48:29:c4:46:2d:f5:65:07:f0:b0:50:c3: d9:b4:88:44:f6:b9:a1:d4:c4:c6:15:d3:78:83:82: 89:a8:37:4b:40:b6:e2:ca:11:68:a1:30:25:54:8e: d6:33:f1:ae:79:d2:ba:6d:7d:1c:a4:e4:73:e0:56: 17:88:88:26:fe:f3:c4:69:14:55:69:96:0b:55:88: e7:7b:9b:a2:eb:f2:ef:e1:cc:a5:1a:70:88:8a:c6: 9d:2d:e1:ab:15:60:af:25:84:71:d6:81:35:4d:17: 22:fa:29:b0:93:73:67:7e:a7:3d:5f:2f:3c:24:0b: 35:46:44:ab:ed:a4:e8:2c:88:66:69:62:e7:cc:46: 5a:d2:f2:8e:9b:fb:14:3d:8e:de:57:0e:68:57:2d: a0:6f:ac:23:cf:77:d4:42:5a:a2:d7:46:f5:e2:d8: de:93:86:44:29:b8:cc:76:d8:a8:63:d8:35:66:d5: f5:e6:a0:a4:5a:83:c5:8d:d1:05:41:cc:6c:3e:6b: 92:cf:ef:a6:35:e0:66:6a:f1:30:5b:c3:18:fd:00: b3:11:e2:06:37:95:90:d3:90:6d:22:21:a1:09:68: ef:29:88:c3:7d:07:01:72:ed:cb:7e:6c:1f:9e:81: 1a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:82:35:DD:8D:E7:F1:DE:34:F9:E0:87:45:1E:C3:6E:51:DC:25:87 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215820.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:6000::/36 2a0a:6044:7400::/40 Signature Algorithm: sha256WithRSAEncryption a6:7b:19:19:86:e4:0f:1f:83:73:8e:5d:3b:ff:79:45:69:9d: c3:00:c5:d9:9f:4f:a6:6b:3c:94:94:99:37:cc:83:86:72:e9: 78:c9:6b:25:31:f5:b1:5e:e4:d9:85:a1:52:de:2a:99:a3:14: 5e:1b:66:90:79:a8:47:b8:cc:d9:65:d3:1e:65:20:75:b9:1b: 5d:61:bf:20:d7:4c:4d:51:c4:e2:20:e9:cb:fd:57:56:4a:db: f8:54:e0:05:74:42:fd:98:fd:f9:c0:0f:99:2a:c0:b7:eb:8a: 93:43:9a:0a:92:45:40:9b:c7:44:10:40:5e:64:ee:ab:d6:e8: 71:b9:02:88:a3:99:de:c1:39:6c:49:49:a0:d7:18:7f:d6:c0: 26:73:99:27:b3:8a:2b:a6:d9:d4:2a:ad:69:22:90:be:34:85: 17:79:e0:8e:22:a3:aa:84:0e:ca:48:38:41:0d:9c:de:0a:52: 99:07:0a:ce:a6:95:41:98:d9:bb:b0:a4:8f:bf:f5:41:dd:20: 6d:03:9a:e4:15:d9:88:3a:4a:96:5e:46:4d:36:c1:96:e7:fd: 89:2b:f6:d3:64:ff:59:52:b6:c5:56:29:0d:25:c6:00:c7:a8: 3e:d5:71:6a:fc:51:bb:9e:4f:ea:9b:c1:6b:94:56:a9:67:81: 1a:f4:c9:42 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUGsyJ6vZ3XxSStiCdjse0juPTqb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTlaFw0yNTA4MjgwMzQxMTlaMDMxMTAvBgNV BAMTKDI3ODIzNUREOERFN0YxREUzNEY5RTA4NzQ1MUVDMzZFNTFEQzI1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCDMOqjvtVETtSX36ANEio4kgp xEYt9WUH8LBQw9m0iET2uaHUxMYV03iDgomoN0tAtuLKEWihMCVUjtYz8a550rpt fRyk5HPgVheIiCb+88RpFFVplgtViOd7m6Lr8u/hzKUacIiKxp0t4asVYK8lhHHW gTVNFyL6KbCTc2d+pz1fLzwkCzVGRKvtpOgsiGZpYufMRlrS8o6b+xQ9jt5XDmhX LaBvrCPPd9RCWqLXRvXi2N6ThkQpuMx22Khj2DVm1fXmoKRag8WN0QVBzGw+a5LP 76Y14GZq8TBbwxj9ALMR4gY3lZDTkG0iIaEJaO8piMN9BwFy7ct+bB+egRq5AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUJ4I13Y3n8d40+eCHRR7DblHcJYcwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1ODIwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYEKgYS gWADBgAqCmBEdDANBgkqhkiG9w0BAQsFAAOCAQEApnsZGYbkDx+Dc45dO/95RWmd wwDF2Z9Ppms8lJSZN8yDhnLpeMlrJTH1sV7k2YWhUt4qmaMUXhtmkHmoR7jM2WXT HmUgdbkbXWG/INdMTVHE4iDpy/1XVkrb+FTgBXRC/Zj9+cAPmSrAt+uKk0OaCpJF QJvHRBBAXmTuq9bocbkCiKOZ3sE5bElJoNcYf9bAJnOZJ7OKK6bZ1CqtaSKQvjSF F3ngjiKjqoQOykg4QQ2c3gpSmQcKzqaVQZjZu7Ckj7/1Qd0gbQOa5BXZiDpKll5G TTbBluf9iSv202T/WVK2xVYpDSXGAMeoPtVxavxRu55P6pvBa5RWqWeBGvTJQg== -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:09 2024 by rpki-client on console-fra.rpki-client.org