$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216141.roa File: AS216141.roa (raw, json) Hash identifier: iH93doXYVxiQ+vqluogoWZ6F1prq5gcFOe2XaPmAv+A= Subject key identifier: 9A:D4:1F:B1:A5:31:D2:D5:54:0A:A5:65:41:7A:CC:B5:25:1D:A6:53 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 5C169C21BDEA3D7002E7CE3A99985A2CE444A8FB Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216141.roa Signing time: Sat 28 Sep 2024 21:53:35 +0000 ROA not before: Sat 28 Sep 2024 21:48:35 +0000 ROA not after: Sat 27 Sep 2025 21:53:35 +0000 asID: 216141 IP address blocks: 2a06:1281:a000::/36 maxlen: 36 2a0a:6044:aa0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:16:9c:21:bd:ea:3d:70:02:e7:ce:3a:99:98:5a:2c:e4:44:a8:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Sep 28 21:48:35 2024 GMT Not After : Sep 27 21:53:35 2025 GMT Subject: CN=9AD41FB1A531D2D5540AA565417ACCB5251DA653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:33:1c:b8:73:33:23:51:60:69:e6:d9:af: 08:75:b2:5f:ec:6b:df:fc:49:4a:1c:9f:5b:9d:cd: 83:f3:c1:15:f6:18:ea:25:e3:f6:f5:03:30:d2:c7: 10:55:8f:3a:d5:27:09:b9:08:3c:8e:67:93:80:73: 49:f8:38:62:d9:1a:72:ba:b5:d3:bd:bd:30:d7:02: 99:3d:4e:ea:c0:a6:92:2b:b4:7d:fa:84:41:c7:89: 83:5e:95:fa:9a:c4:be:8b:43:5c:07:59:2d:2e:cb: 78:fc:4f:4d:09:46:ca:42:23:4a:4d:2c:fd:46:1f: f2:fb:87:20:ac:28:f7:c0:92:70:5f:da:dc:40:23: 69:0f:44:d8:20:e2:55:9c:8d:22:53:a6:16:94:7d: b5:6b:ce:74:fd:01:da:d6:55:a6:60:07:a7:7c:00: 52:42:2b:54:58:6e:4d:4d:bd:53:86:86:e8:b4:65: 2f:9a:4e:4b:04:ac:03:06:18:c7:23:ff:f7:c1:e1: e4:2b:fb:5c:ec:36:ac:1d:87:b1:1c:85:2f:3f:70: e2:90:43:76:7e:47:45:3c:18:a6:ad:bd:19:84:b4: 55:05:fe:4d:b2:46:f2:a3:01:2f:08:61:2c:34:79: 42:02:ab:f3:e3:64:df:b2:db:44:16:57:a2:7d:37: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D4:1F:B1:A5:31:D2:D5:54:0A:A5:65:41:7A:CC:B5:25:1D:A6:53 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:a000::/36 2a0a:6044:aa0f::/48 Signature Algorithm: sha256WithRSAEncryption 1e:3a:23:1d:52:38:d0:25:6f:26:c1:27:1d:31:db:7b:0f:f0: 77:38:ee:44:ae:ad:2f:b7:1e:0a:71:a3:64:01:9a:c9:77:3f: 55:cf:d9:64:df:95:65:be:fa:b4:ad:97:c0:da:81:0b:13:ea: f4:fa:7c:d1:b4:3c:37:81:98:42:c8:5f:90:7b:2e:63:ee:b9: 53:45:17:e7:06:4b:8a:64:84:64:d2:f8:7f:8a:ff:fd:63:af: 65:48:a9:bb:25:bc:64:e7:8c:dd:ff:77:31:a7:bb:f6:e2:ab: fa:ce:53:37:5a:3c:a6:2d:e7:40:67:8f:71:36:81:02:92:d0: e7:34:eb:96:c3:b4:b5:98:fc:4d:26:cb:b4:7a:a1:78:ad:7f: 50:f1:f6:e9:0d:48:b0:c0:d2:d3:8b:f5:eb:f5:4f:26:d4:d7: aa:82:7f:8a:7f:01:40:d9:08:bc:18:ba:fe:ee:e3:5e:95:ad: e2:2a:0e:53:fa:29:a2:d8:2a:d6:71:41:c7:ba:90:62:a2:37: 43:62:4c:3e:3a:b3:77:ba:77:39:8a:db:87:4f:43:51:0b:bd: 51:70:fe:cf:9e:b3:74:ae:1f:97:05:74:3c:fb:65:7f:2e:0c: a3:e9:a7:36:c6:65:83:99:9a:43:87:29:fc:00:1b:4c:f9:65: ef:22:ce:6e -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUXBacIb3qPXAC5846mZhaLOREqPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA5MjgyMTQ4MzVaFw0yNTA5MjcyMTUzMzVaMDMxMTAvBgNV BAMTKDlBRDQxRkIxQTUzMUQyRDU1NDBBQTU2NTQxN0FDQ0I1MjUxREE2NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1NjMcuHMzI1FgaebZrwh1sl/s a9/8SUocn1udzYPzwRX2GOol4/b1AzDSxxBVjzrVJwm5CDyOZ5OAc0n4OGLZGnK6 tdO9vTDXApk9TurAppIrtH36hEHHiYNelfqaxL6LQ1wHWS0uy3j8T00JRspCI0pN LP1GH/L7hyCsKPfAknBf2txAI2kPRNgg4lWcjSJTphaUfbVrznT9AdrWVaZgB6d8 AFJCK1RYbk1NvVOGhui0ZS+aTksErAMGGMcj//fB4eQr+1zsNqwdh7EchS8/cOKQ Q3Z+R0U8GKatvRmEtFUF/k2yRvKjAS8IYSw0eUICq/PjZN+y20QWV6J9N/XrAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUmtQfsaUx0tVUCqVlQXrMtSUdplMwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE2MTQxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYEKgYS gaADBwAqCmBEqg8wDQYJKoZIhvcNAQELBQADggEBAB46Ix1SONAlbybBJx0x23sP 8Hc47kSurS+3Hgpxo2QBmsl3P1XP2WTflWW++rStl8DagQsT6vT6fNG0PDeBmELI X5B7LmPuuVNFF+cGS4pkhGTS+H+K//1jr2VIqbslvGTnjN3/dzGnu/biq/rOUzda PKYt50Bnj3E2gQKS0Oc065bDtLWY/E0my7R6oXitf1Dx9ukNSLDA0tOL9ev1TybU 16qCf4p/AUDZCLwYuv7u416VreIqDlP6KaLYKtZxQce6kGKiN0NiTD46s3e6dzmK 24dPQ1ELvVFw/s+es3SuH5cFdDz7ZX8uDKPppzbGZYOZmkOHKfwAG0z5Ze8izm4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org