$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa File: AS210152.roa (raw, json) Hash identifier: IfsO8wmDR77hF/5fArVformvN667otCwUR23MTxNK6c= Subject key identifier: 57:6F:4E:13:E7:49:D7:D7:42:4C:32:3E:CB:47:FA:EE:94:50:D4:2B Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 10148399A32ABDCAAC8ED5288FEB3D2EC8E1CF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 210152 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:14:83:99:a3:2a:bd:ca:ac:8e:d5:28:8f:eb:3d:2e:c8:e1:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=576F4E13E749D7D7424C323ECB47FAEE9450D42B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3b:b8:f4:1e:e3:06:d5:48:53:f0:e2:31:6b: fe:fb:c0:4e:54:76:05:56:36:2f:87:c8:87:b9:bf: 09:bf:e1:b7:81:77:7e:01:67:8f:c9:29:e5:2c:6d: 6f:95:c3:0a:ef:ec:68:9a:35:f5:2d:a8:f9:06:d2: 4e:a5:31:a5:23:98:2d:ee:24:de:27:41:62:ae:68: 0f:2c:5c:cc:5b:72:17:aa:e5:e1:4a:13:c6:1f:bb: 25:6a:4f:e0:15:8e:5c:fa:02:27:96:c2:6f:95:9f: 20:11:d4:af:63:12:66:95:6f:a9:9c:5d:6d:e2:e4: aa:eb:7e:a1:78:e4:dc:de:4b:76:5f:6e:40:3b:9d: 94:b6:02:b1:d5:91:c9:ee:b1:b7:c7:75:24:a3:b0: ae:16:03:81:da:ba:28:d9:88:d2:57:18:25:bf:8b: 49:31:77:9e:9f:59:b9:5b:89:ae:3f:da:bc:4d:ef: f2:4f:4a:2d:01:e9:b2:20:0e:c0:e1:44:f0:b3:a9: bf:8b:1e:55:6e:e0:72:a8:8c:1f:f5:09:05:2a:cd: 7e:1c:1a:6c:20:84:34:f5:97:76:3c:14:eb:ff:33: 23:df:7c:82:54:0d:41:26:b8:be:99:c5:44:6b:df: 88:13:e0:f2:d7:40:7c:44:3d:a3:4e:fc:c1:c0:d7: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6F:4E:13:E7:49:D7:D7:42:4C:32:3E:CB:47:FA:EE:94:50:D4:2B X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c2:b00b::/48 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 7a:1d:bc:12:76:61:32:5f:7d:85:20:aa:91:c8:db:b9:66:00: e9:4a:2c:01:2e:a4:a9:ae:a5:d0:a4:bb:7d:05:5f:35:38:9b: 04:74:f6:d7:d9:21:1b:a9:34:13:c4:b6:0e:70:ea:19:92:9b: 85:c0:8a:26:bd:1c:4c:da:0e:97:02:e5:22:6b:a1:32:21:fd: 70:ad:db:76:df:41:ab:09:17:ca:1e:05:cf:bd:11:60:64:29: e3:cc:37:93:47:16:7b:9c:62:37:25:99:91:fb:c9:de:e7:27: 2f:cb:09:a8:9a:c5:b9:3f:5d:d3:ab:c8:af:33:d8:69:b4:c9: eb:42:0a:3d:7c:24:48:c5:89:50:8d:8f:f5:1f:bf:a0:01:c4: 6c:fb:58:b4:70:62:8b:75:e1:89:2f:23:dc:3b:71:00:3c:01: a0:71:b7:9f:a2:a7:f7:7e:2a:c8:e0:a0:16:0a:88:69:84:03: 26:e2:86:e9:e6:33:c7:52:cb:71:77:2d:9f:86:e1:74:b9:f5: e1:10:36:f8:0d:71:31:26:43:74:d8:53:6f:50:2a:ed:ca:b6: 95:22:3e:ee:5f:a1:98:42:be:4f:51:b9:4b:42:78:a4:1a:5e: 67:fd:ff:2c:a2:e0:c4:df:01:5f:65:f8:2d:8c:98:99:0d:a2: 99:b4:8c:8e -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgITEBSDmaMqvcqsjtUoj+s9LsjhzzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBF MUUyRjhFMB4XDTIzMDkxOTAyMDk1OFoXDTI0MDkxNzAyMTQ1OFowMzExMC8GA1UE AxMoNTc2RjRFMTNFNzQ5RDdENzQyNEMzMjNFQ0I0N0ZBRUU5NDUwRDQyQjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM47uPQe4wbVSFPw4jFr/vvATlR2 BVY2L4fIh7m/Cb/ht4F3fgFnj8kp5Sxtb5XDCu/saJo19S2o+QbSTqUxpSOYLe4k 3idBYq5oDyxczFtyF6rl4UoTxh+7JWpP4BWOXPoCJ5bCb5WfIBHUr2MSZpVvqZxd beLkqut+oXjk3N5Ldl9uQDudlLYCsdWRye6xt8d1JKOwrhYDgdq6KNmI0lcYJb+L STF3np9ZuVuJrj/avE3v8k9KLQHpsiAOwOFE8LOpv4seVW7gcqiMH/UJBSrNfhwa bCCENPWXdjwU6/8zI998glQNQSa4vpnFRGvfiBPg8tdAfEQ9o078wcDXJcMCAwEA AaOCAk0wggJJMB0GA1UdDgQWBBRXb04T50nX10JMMj7LR/rulFDUKzAfBgNVHSME GDAWgBRB9lfPNWTyM7l39ArKXkvRDh4vjjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRkYjUtYmJkMy01Y2NhNjMzY2Fl M2YvMC80MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBFMUUyRjhFLmNy bDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3luYzovL3Jwa2kt cnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVj OTFiZTNmOWQvMi80MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBFMUUy RjhFLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5jOi8vcnN5 bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00 ZGI1LWJiZDMtNWNjYTYzM2NhZTNmLzAvQVMyMTAxNTIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwMgYIKwYBBQUHAQcBAf8EIzAhMB8EAgACMBkDBgAqB1TB NwMHACoHVMKwCwMGBCoHVMcAMA0GCSqGSIb3DQEBCwUAA4IBAQB6HbwSdmEyX32F IKqRyNu5ZgDpSiwBLqSprqXQpLt9BV81OJsEdPbX2SEbqTQTxLYOcOoZkpuFwIom vRxM2g6XAuUia6EyIf1wrdt230GrCRfKHgXPvRFgZCnjzDeTRxZ7nGI3JZmR+8ne 5ycvywmomsW5P13Tq8ivM9hptMnrQgo9fCRIxYlQjY/1H7+gAcRs+1i0cGKLdeGJ LyPcO3EAPAGgcbefoqf3firI4KAWCohphAMm4obp5jPHUstxdy2fhuF0ufXhEDb4 DXExJkN02FNvUCrtyraVIj7uX6GYQr5PUblLQnikGl5n/f8souDE3wFfZfgtjJiZ DaKZtIyO -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org