$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210645.roa File: AS210645.roa (raw, json) Hash identifier: JT30hThGXy2eYYZWZxFK01dxEcbEgweTQl5GM1IInFw= Subject key identifier: F9:ED:CD:16:91:A4:67:5E:67:C5:45:C1:CC:94:6E:E5:FE:7D:03:B2 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7E0E4DB9DDEC7911A2791DC683CD3D1ACFF312 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210645.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 210645 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Sep 2024 02:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0e:4d:b9:dd:ec:79:11:a2:79:1d:c6:83:cd:3d:1a:cf:f3:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=F9EDCD1691A4675E67C545C1CC946EE5FE7D03B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:55:08:9f:c4:c9:bd:0a:46:b5:dd:be:bc:4b: 26:be:59:25:04:fe:01:9c:9a:67:cc:b3:28:9f:30: 06:a6:c0:26:39:c2:ae:a1:fe:14:1a:57:f9:19:62: 88:f1:6a:36:13:28:a2:3c:d9:b7:07:46:ea:ce:fc: 2b:a1:b2:14:3f:a7:33:a8:69:d3:15:10:03:9e:2e: b0:a2:09:a5:54:03:52:c9:bb:12:e6:20:be:22:0e: e8:0f:b0:17:43:5d:ad:ff:85:32:c3:e9:1b:07:36: b7:e6:41:f2:d7:8d:a8:50:92:e2:e5:ae:9a:48:ae: f3:78:21:73:6c:2a:b9:a6:f0:dd:a7:e4:37:ca:98: 16:26:03:74:3f:77:5d:c0:f1:1e:b0:20:96:c9:a7: a3:e3:f9:9f:8e:02:98:7a:80:75:15:00:cd:62:aa: 29:d9:9f:1a:c5:5f:1e:ff:8a:7b:5f:8b:57:0d:9f: f7:fe:99:f2:af:66:ec:24:5b:45:e2:c0:00:c0:0e: d6:97:01:51:4a:39:fd:69:eb:8e:96:1a:56:65:4f: 2a:26:d5:d1:5a:5e:8a:bb:1a:87:a8:4a:c8:35:fb: 84:5d:3b:98:f1:c4:03:11:85:aa:ab:f7:7b:d3:19: fc:03:eb:7e:12:99:36:a6:a0:83:a5:ee:23:de:6e: 6c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:ED:CD:16:91:A4:67:5E:67:C5:45:C1:CC:94:6E:E5:FE:7D:03:B2 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 65:13:88:7f:18:25:50:75:29:3f:87:36:22:6e:5d:92:44:74: 50:01:0c:60:b4:97:33:ca:17:ab:d8:f6:3b:22:fe:8d:54:e2: 6e:a1:78:ca:b1:f6:4f:12:1b:21:40:34:b6:ed:9f:4a:2b:38: 25:3d:b9:7f:17:b7:21:8e:97:ec:28:e9:30:3f:20:f0:0d:7e: b7:a2:05:e8:e1:cf:44:a2:8f:f9:35:87:e7:d9:f6:50:0a:24: 99:58:eb:a0:a8:22:d5:4b:c5:0f:c6:5f:00:a4:5e:c9:fa:2a: 14:88:59:fb:2a:bf:14:f5:d6:fa:3d:43:d0:c0:5c:a6:e0:ab: bb:ff:e3:9d:94:32:4d:67:af:29:bc:4f:99:f9:54:75:15:58: df:15:54:60:df:41:71:3c:5d:cd:42:b5:fb:61:cc:a5:36:56: a9:bf:af:37:87:f0:d4:3f:7a:aa:7b:f1:67:57:2d:27:8c:3b: 14:6d:e5:27:69:1b:bf:78:2d:f7:9c:be:5f:66:75:81:0e:14: a3:a3:b4:e8:58:62:f8:11:c5:be:44:95:a9:b4:c8:32:dd:75: 10:f1:79:ee:a1:ea:fc:7d:02:48:2e:6e:44:25:bb:a6:2c:1e: 7c:2f:63:c6:dd:39:e3:e2:67:f2:09:74:61:0e:4a:3e:a7:31: 7a:f8:19:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgITfg5Nud3seRGieR3Gg809Gs/zEjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBF MUUyRjhFMB4XDTI0MDgyMDAyMjY1NVoXDTI1MDgxOTAyMzE1NVowMzExMC8GA1UE AxMoRjlFRENEMTY5MUE0Njc1RTY3QzU0NUMxQ0M5NDZFRTVGRTdEMDNCMjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANNVCJ/Eyb0KRrXdvrxLJr5ZJQT+ AZyaZ8yzKJ8wBqbAJjnCrqH+FBpX+RliiPFqNhMoojzZtwdG6s78K6GyFD+nM6hp 0xUQA54usKIJpVQDUsm7EuYgviIO6A+wF0Ndrf+FMsPpGwc2t+ZB8teNqFCS4uWu mkiu83ghc2wquabw3afkN8qYFiYDdD93XcDxHrAglsmno+P5n44CmHqAdRUAzWKq KdmfGsVfHv+Ke1+LVw2f9/6Z8q9m7CRbReLAAMAO1pcBUUo5/WnrjpYaVmVPKibV 0Vpeirsah6hKyDX7hF07mPHEAxGFqqv3e9MZ/APrfhKZNqagg6XuI95ubDcCAwEA AaOCAj0wggI5MB0GA1UdDgQWBBT57c0WkaRnXmfFRcHMlG7l/n0DsjAfBgNVHSME GDAWgBRB9lfPNWTyM7l39ArKXkvRDh4vjjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRkYjUtYmJkMy01Y2NhNjMzY2Fl M2YvMC80MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBFMUUyRjhFLmNy bDCBkwYIKwYBBQUHAQEEgYYwgYMwgYAGCCsGAQUFBzAChnRyc3luYzovL3Jwa2kt cnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVj OTFiZTNmOWQvMi80MUY2NTdDRjM1NjRGMjMzQjk3N0Y0MEFDQTVFNEJEMTBFMUUy RjhFLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5jOi8vcnN5 bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00 ZGI1LWJiZDMtNWNjYTYzM2NhZTNmLzAvQVMyMTA2NDUucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAGUTiH8YJVB1KT+HNiJuXZJEdFABDGC0lzPK F6vY9jsi/o1U4m6heMqx9k8SGyFANLbtn0orOCU9uX8XtyGOl+wo6TA/IPANfrei Bejhz0Sij/k1h+fZ9lAKJJlY66CoItVLxQ/GXwCkXsn6KhSIWfsqvxT11vo9Q9DA XKbgq7v/452UMk1nrym8T5n5VHUVWN8VVGDfQXE8Xc1CtfthzKU2Vqm/rzeH8NQ/ eqp78WdXLSeMOxRt5SdpG794Lfecvl9mdYEOFKOjtOhYYvgRxb5Elam0yDLddRDx ee6h6vx9AkgubkQlu6YsHnwvY8bdOePiZ/IJdGEOSj6nMXr4GSA= -----END CERTIFICATE-----Generated at Sat Sep 7 08:29:56 2024 by rpki-client on console-ams.rpki-client.org