$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216401.roa File: AS216401.roa (raw, json) Hash identifier: sK17TOSY5rFlRl75/0IRWEBRgAniPL6WT3MdxWfO/hQ= Subject key identifier: 38:AA:BD:15:82:90:02:E9:12:00:DC:A4:D5:33:3D:AC:88:5D:2D:2C Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 6A33F6761411AFEED4D581A3E13B77B8BDCA7545 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216401.roa Signing time: Thu 29 Aug 2024 03:41:19 +0000 ROA not before: Thu 29 Aug 2024 03:36:19 +0000 ROA not after: Thu 28 Aug 2025 03:41:19 +0000 asID: 216401 IP address blocks: 2a0a:6044:b500::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:33:f6:76:14:11:af:ee:d4:d5:81:a3:e1:3b:77:b8:bd:ca:75:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:19 2024 GMT Not After : Aug 28 03:41:19 2025 GMT Subject: CN=38AABD15829002E91200DCA4D5333DAC885D2D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3f:29:a1:72:72:a4:ff:9c:5e:5a:8f:d2:99: 99:a3:b9:ad:7d:e2:11:67:68:f0:56:7e:9c:84:d0: 26:3b:82:fd:ea:8d:4d:0f:27:27:1a:e7:fb:b3:e5: 84:bd:fa:b7:d4:26:43:d7:31:46:61:cd:1c:28:ce: 37:65:b0:4b:9a:f1:f8:99:92:15:28:8a:8e:28:57: cf:18:e1:6c:8b:63:5f:35:00:92:f5:f6:61:01:2f: 21:df:6a:4c:cf:0f:97:a5:30:f1:b3:a6:21:3d:37: 51:ad:b9:c3:cb:e3:2a:89:ff:fa:22:4a:74:54:e6: 27:ab:cf:a1:01:b8:bf:0b:19:22:56:09:48:05:94: b0:1f:f4:08:80:ac:5d:44:f0:1f:4f:d4:ff:3b:d4: 8e:c1:76:72:6e:f0:76:39:e0:b3:6c:98:ef:fc:d8: f9:01:27:52:68:8e:04:91:79:41:33:16:24:9b:f2: f6:97:f8:a1:1e:94:08:a4:55:a5:dc:d0:ea:56:c8: 43:72:e3:71:cd:68:46:f7:13:5b:5e:04:7f:3d:21: 12:da:3e:f7:fd:8d:8c:30:65:b0:9d:a6:6c:ea:1c: e7:11:ac:b5:e9:0a:6f:29:11:ce:5f:d6:15:c6:4a: 53:9f:85:ab:e6:7b:54:93:6e:5e:c5:87:32:a3:68: a6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AA:BD:15:82:90:02:E9:12:00:DC:A4:D5:33:3D:AC:88:5D:2D:2C X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS216401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b500::/40 Signature Algorithm: sha256WithRSAEncryption 5f:13:c5:92:88:2b:34:3b:ef:0b:95:c9:cd:b0:c2:d2:ee:02: 9c:e1:b7:3e:89:32:f0:46:08:85:32:71:c8:d3:c7:82:56:2b: 4e:64:db:16:29:15:77:6b:7f:6e:1d:f3:d1:47:e6:d4:d5:d5: 3a:c7:01:ff:21:62:ec:c9:aa:bf:1d:0a:25:f9:6c:da:f3:5a: fd:50:da:a8:5e:3b:81:74:08:cb:90:d0:34:15:1d:29:43:c8: 2b:ca:0c:26:b2:77:9d:48:9a:40:33:85:4b:ac:29:12:f1:4a: 61:53:f6:53:c1:93:67:2a:5e:c7:d9:2c:df:ad:5e:c5:6c:09: f3:17:ae:7d:4e:bd:3e:2e:fb:74:4a:21:fb:5d:e4:29:4c:13: 49:08:c2:08:2b:4a:a3:54:e7:ca:80:4b:22:39:8c:60:ab:ad: 1d:ef:cd:f0:25:40:ac:d8:8d:71:e8:4d:23:21:e0:6b:04:ff: dc:6a:d7:31:36:47:56:93:cb:09:77:16:78:43:48:de:ed:e5: 53:e1:87:05:72:7a:43:71:94:a8:02:cb:e8:7f:1c:cc:93:72: e2:0d:8d:42:f2:93:6d:e1:69:ce:b8:93:04:98:69:4b:81:db: ae:cf:2f:0a:6d:fb:a2:4e:e0:df:76:ee:d7:1f:38:12:88:0a: b3:dd:bd:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUajP2dhQRr+7U1YGj4Tt3uL3KdUUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTlaFw0yNTA4MjgwMzQxMTlaMDMxMTAvBgNV BAMTKDM4QUFCRDE1ODI5MDAyRTkxMjAwRENBNEQ1MzMzREFDODg1RDJEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcPymhcnKk/5xeWo/SmZmjua19 4hFnaPBWfpyE0CY7gv3qjU0PJyca5/uz5YS9+rfUJkPXMUZhzRwozjdlsEua8fiZ khUoio4oV88Y4WyLY181AJL19mEBLyHfakzPD5elMPGzpiE9N1GtucPL4yqJ//oi SnRU5ierz6EBuL8LGSJWCUgFlLAf9AiArF1E8B9P1P871I7BdnJu8HY54LNsmO/8 2PkBJ1JojgSReUEzFiSb8vaX+KEelAikVaXc0OpWyENy43HNaEb3E1teBH89IRLa Pvf9jYwwZbCdpmzqHOcRrLXpCm8pEc5f1hXGSlOfhavme1STbl7FhzKjaKbnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOKq9FYKQAukSANyk1TM9rIhdLSwwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE2NDAxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RLUwDQYJKoZIhvcNAQELBQADggEBAF8TxZKIKzQ77wuVyc2wwtLuApzhtz6JMvBG CIUyccjTx4JWK05k2xYpFXdrf24d89FH5tTV1TrHAf8hYuzJqr8dCiX5bNrzWv1Q 2qheO4F0CMuQ0DQVHSlDyCvKDCayd51ImkAzhUusKRLxSmFT9lPBk2cqXsfZLN+t XsVsCfMXrn1OvT4u+3RKIftd5ClME0kIwggrSqNU58qASyI5jGCrrR3vzfAlQKzY jXHoTSMh4GsE/9xq1zE2R1aTywl3FnhDSN7t5VPhhwVyekNxlKgCy+h/HMyTcuIN jULyk23hac64kwSYaUuB267PLwpt+6JO4N927tcfOBKICrPdvZg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:43 2024 by rpki-client on console-ams.rpki-client.org