$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: pXM//iLDzuc86JsaAYakC1U1sBt54ehkh+61pg1H7Oc= Subject key identifier: 63:E7:2A:29:19:9A:2F:9A:D1:A4:D1:0A:9C:3D:B5:20:77:FC:59:97 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7097011676D16B6B660441D745584E7872D1865D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 210475 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:97:01:16:76:d1:6b:6b:66:04:41:d7:45:58:4e:78:72:d1:86:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=63E72A29199A2F9AD1A4D10A9C3DB52077FC5997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:03:64:da:6f:3e:2d:38:ee:67:97:2f:03: 98:1e:8e:4b:a8:11:10:cf:0f:aa:ad:21:1d:66:4e: c5:35:e6:04:b6:76:53:10:01:65:0e:59:e5:5f:c0: 7a:a9:68:64:e2:a9:5e:fa:b7:a4:b2:b7:98:d9:4b: fa:fd:00:ad:64:4c:3e:ed:97:d0:f5:9d:0b:4a:41: 5a:c4:64:cb:6f:c0:ea:c2:1d:c0:4a:55:c6:8c:e5: 68:fd:78:f6:4a:b9:d8:9f:fa:7d:65:b7:7d:49:40: 98:8a:58:89:8c:e3:cf:27:07:bf:d1:22:6e:80:8d: a6:63:85:4c:6d:e5:e6:b0:9a:5b:94:b4:6d:cf:8b: e0:65:ad:20:db:12:d6:69:61:2f:b5:53:f0:0d:a8: b2:04:93:4d:fd:42:08:33:61:f3:dd:15:b3:8a:6a: 43:8f:d6:7c:50:cb:32:8e:53:d5:c4:4c:53:82:da: 5d:be:4f:32:7c:0a:c6:67:26:c4:16:4a:a2:a4:6d: 90:16:cc:77:bd:4d:9f:44:fa:f6:a6:5a:e0:65:30: 84:c1:fa:96:27:11:b0:38:fc:20:70:7b:e0:bb:33: a3:b2:6d:fa:ad:28:97:1f:5c:01:b3:7c:28:1a:11: df:d4:42:13:f9:91:1d:25:b4:96:93:32:dc:5f:8f: 24:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E7:2A:29:19:9A:2F:9A:D1:A4:D1:0A:9C:3D:B5:20:77:FC:59:97 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 76:b5:e4:e5:6a:a4:96:41:53:5f:94:de:b4:20:f8:29:8f:e2: 47:2f:a1:ea:6c:04:44:77:45:57:8d:76:77:20:96:4e:a0:00: d9:99:d4:c5:60:b5:92:d2:0e:a6:ab:0f:8f:c1:f7:bd:f9:02: 36:93:59:05:71:3e:e3:c5:8a:84:72:0b:29:09:fd:6e:52:9c: 2d:87:05:3c:bd:89:59:5b:2d:9b:8a:38:4c:3e:d8:d0:37:8b: 14:ac:a2:e3:b9:63:1d:b3:bd:53:df:c9:da:19:62:26:7a:4f: de:d4:25:88:c8:5a:68:c5:74:4e:af:d2:5f:79:e6:c9:ca:11: e6:46:40:4d:41:dd:53:3c:dd:c2:63:14:37:f3:e4:c2:dc:20: 87:b8:bc:e5:1d:66:00:12:27:97:9d:16:59:b4:4b:19:54:55: 3a:01:9e:61:a1:ba:b3:17:f0:b3:99:42:ab:44:96:b3:90:5d: 48:6d:fd:39:18:e3:e0:2d:24:e8:71:f0:48:0a:f2:d1:2f:f8: 2c:aa:e6:78:40:b1:51:40:59:c5:5a:d8:61:aa:63:03:8f:55: 1f:12:72:b6:8d:b9:14:ed:54:f0:af:b5:ed:51:74:5b:87:7d: ab:3c:81:4e:1b:6e:30:66:38:a3:ca:cc:e0:1d:27:a5:18:01: 0a:2c:3a:56 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUcJcBFnbRa2tmBEHXRVhOeHLRhl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDYzRTcyQTI5MTk5QTJGOUFEMUE0RDEwQTlDM0RCNTIwNzdGQzU5OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1xANk2m8+LTjuZ5cvA5gejkuo ERDPD6qtIR1mTsU15gS2dlMQAWUOWeVfwHqpaGTiqV76t6Syt5jZS/r9AK1kTD7t l9D1nQtKQVrEZMtvwOrCHcBKVcaM5Wj9ePZKudif+n1lt31JQJiKWImM488nB7/R Im6AjaZjhUxt5eawmluUtG3Pi+BlrSDbEtZpYS+1U/ANqLIEk039QggzYfPdFbOK akOP1nxQyzKOU9XETFOC2l2+TzJ8CsZnJsQWSqKkbZAWzHe9TZ9E+vamWuBlMITB +pYnEbA4/CBwe+C7M6OybfqtKJcfXAGzfCgaEd/UQhP5kR0ltJaTMtxfjyT1AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUY+cqKRmaL5rRpNEKnD21IHf8WZcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEwNDc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgdU wTcDBgQqB1THADANBgkqhkiG9w0BAQsFAAOCAQEAdrXk5WqklkFTX5TetCD4KY/i Ry+h6mwERHdFV412dyCWTqAA2ZnUxWC1ktIOpqsPj8H3vfkCNpNZBXE+48WKhHIL KQn9blKcLYcFPL2JWVstm4o4TD7Y0DeLFKyi47ljHbO9U9/J2hliJnpP3tQliMha aMV0Tq/SX3nmycoR5kZATUHdUzzdwmMUN/Pkwtwgh7i85R1mABInl50WWbRLGVRV OgGeYaG6sxfws5lCq0SWs5BdSG39ORjj4C0k6HHwSAry0S/4LKrmeECxUUBZxVrY YapjA49VHxJyto25FO1U8K+17VF0W4d9qzyBThtuMGY4o8rM4B0npRgBCiw6Vg== -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org