$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa File: AS210152.roa (raw, json) Hash identifier: HwmLacfMX0MrQjCn02TxfyYPVnHqRBYX88hWWdJXEus= Subject key identifier: 71:BE:BE:8C:09:90:81:1D:4F:05:32:3E:52:9D:BC:DB:12:93:C7:95 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6CF97734A4B4100C4FE288C91D8195069DE97613 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 210152 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f9:77:34:a4:b4:10:0c:4f:e2:88:c9:1d:81:95:06:9d:e9:76:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=71BEBE8C0990811D4F05323E529DBCDB1293C795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:23:2b:bd:cb:7b:ed:73:6e:11:e8:45:80: 0d:58:12:80:0e:56:06:4f:8f:bb:b1:7a:55:c2:b6: 32:e7:82:97:51:ab:62:c0:a8:59:fd:e3:69:02:40: 32:20:6e:27:20:0a:b7:04:5c:ed:3b:06:4c:83:83: 1c:93:02:c2:b9:8e:eb:5d:4a:29:01:f5:43:78:ee: b3:a4:ef:be:60:f6:d5:6e:ae:8c:9e:b3:ab:66:ae: f0:3e:2c:3a:2e:f7:33:67:29:d2:26:9e:96:81:fe: 63:21:1e:f8:6a:47:18:83:0f:ea:57:d7:63:0c:bd: 53:90:b6:fc:73:30:d0:ae:5f:44:b9:bb:68:36:94: 98:da:df:35:4b:65:3e:0f:42:94:96:ab:61:b7:e7: 5f:7c:a3:36:54:ca:c5:25:b1:65:c6:83:b3:15:d9: 57:57:6d:db:8d:13:18:19:50:4d:ef:f0:34:a6:2b: d0:8c:4c:85:38:fb:05:98:b0:f8:88:de:25:18:8b: 27:ed:c8:52:9a:e9:6a:d8:af:a4:f8:9f:c3:d8:ee: 8e:60:ac:f5:d3:0c:22:f2:23:c7:21:aa:df:5f:01: 9a:23:3e:3c:2e:18:fe:d1:bc:2a:9a:25:b4:3d:fe: ea:7b:45:d4:db:ad:00:7a:6f:ff:51:e6:37:d6:53: 4c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:BE:BE:8C:09:90:81:1D:4F:05:32:3E:52:9D:BC:DB:12:93:C7:95 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c2:b00b::/48 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 7e:32:ee:b6:89:c3:a4:86:3a:30:dc:52:84:93:b6:0a:1a:74: 18:1e:03:bd:33:7a:13:29:be:9c:28:98:4f:f8:8c:80:37:60: 6e:73:de:72:54:fa:3c:fd:f9:2e:c9:83:ea:f0:54:ed:b9:0f: a2:5a:dd:01:df:6d:17:57:28:8e:83:2b:fa:2b:f6:c2:b5:ab: 79:c6:5e:c0:ce:70:e9:d2:93:0e:c9:39:a9:be:5d:9b:cf:61: 54:1d:68:12:78:be:35:46:78:45:b9:5b:17:69:91:33:60:97: 85:8e:ae:30:fd:cb:7f:e1:d5:dc:b0:90:d9:a4:b0:27:02:eb: b6:6e:e9:71:2b:e7:73:34:c3:c1:e2:e3:e9:17:66:be:16:14: 75:68:2c:00:e5:8b:d4:b7:71:4f:12:9b:df:0f:85:c3:c9:59: 8a:b2:58:79:d8:b7:52:21:d6:28:ed:26:a9:cd:dd:af:52:11: cb:40:55:9b:19:12:42:09:cd:db:94:05:ae:93:19:fb:cd:b0: 78:3a:51:1b:2f:20:84:00:b3:8e:00:b4:42:53:1d:08:51:08: df:1f:13:f4:5e:0c:b9:be:c3:a9:f1:dc:27:3a:7b:a0:f6:29: 26:26:88:5c:8a:87:f1:1d:7d:18:12:d0:ae:c0:e3:25:54:b9: 1c:46:b4:fb -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUbPl3NKS0EAxP4ojJHYGVBp3pdhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDcxQkVCRThDMDk5MDgxMUQ0RjA1MzIzRTUyOURCQ0RCMTI5M0M3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4MSMrvct77XNuEehFgA1YEoAO VgZPj7uxelXCtjLngpdRq2LAqFn942kCQDIgbicgCrcEXO07BkyDgxyTAsK5jutd SikB9UN47rOk775g9tVuroyes6tmrvA+LDou9zNnKdImnpaB/mMhHvhqRxiDD+pX 12MMvVOQtvxzMNCuX0S5u2g2lJja3zVLZT4PQpSWq2G35198ozZUysUlsWXGg7MV 2VdXbduNExgZUE3v8DSmK9CMTIU4+wWYsPiI3iUYiyftyFKa6WrYr6T4n8PY7o5g rPXTDCLyI8chqt9fAZojPjwuGP7RvCqaJbQ9/up7RdTbrQB6b/9R5jfWU0xPAgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUcb6+jAmQgR1PBTI+Up282xKTx5UwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEwMTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAAjAZAwYAKgdU wTcDBwAqB1TCsAsDBgQqB1THADANBgkqhkiG9w0BAQsFAAOCAQEAfjLutonDpIY6 MNxShJO2Chp0GB4DvTN6Eym+nCiYT/iMgDdgbnPeclT6PP35LsmD6vBU7bkPolrd Ad9tF1cojoMr+iv2wrWrecZewM5w6dKTDsk5qb5dm89hVB1oEni+NUZ4RblbF2mR M2CXhY6uMP3Lf+HV3LCQ2aSwJwLrtm7pcSvnczTDweLj6RdmvhYUdWgsAOWL1Ldx TxKb3w+Fw8lZirJYedi3UiHWKO0mqc3dr1IRy0BVmxkSQgnN25QFrpMZ+82weDpR Gy8ghACzjgC0QlMdCFEI3x8T9F4Mub7DqfHcJzp7oPYpJiaIXIqH8R19GBLQrsDj JVS5HEa0+w== -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org