$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211350.roa File: AS211350.roa (raw, json) Hash identifier: Tc/Vqofzf85Qttxy4hFdiUXk47Q5duzcmEfAkUwqucA= Subject key identifier: 21:83:7F:18:F4:04:01:A9:89:FF:23:56:B8:CC:66:79:74:08:A1:03 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3564DD241A06C2F63A889FA7F0C18B1D8BD3AE45 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211350.roa Signing time: Fri 29 Dec 2023 22:11:37 +0000 ROA not before: Fri 29 Dec 2023 22:06:37 +0000 ROA not after: Fri 27 Dec 2024 22:11:37 +0000 asID: 211350 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1755::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:64:dd:24:1a:06:c2:f6:3a:88:9f:a7:f0:c1:8b:1d:8b:d3:ae:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 29 22:06:37 2023 GMT Not After : Dec 27 22:11:37 2024 GMT Subject: CN=21837F18F40401A989FF2356B8CC66797408A103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:65:77:02:fc:9f:4a:ab:ed:5a:a5:31:48: 2f:41:da:27:46:f0:7b:7e:0e:34:94:f2:54:e3:e1: 08:83:93:f4:6b:3e:78:af:bb:c9:79:bf:9b:ae:37: 3f:dd:fc:b0:97:03:21:95:e5:06:09:d1:09:f7:7a: e1:b1:49:16:6e:fb:14:57:d1:91:7d:51:c5:1e:24: 13:d1:99:63:d7:53:19:0d:2e:6a:06:f8:d6:03:f0: b0:25:6f:6a:f5:2a:fb:ba:54:ec:fe:f7:3f:59:cd: ac:59:c7:aa:62:e3:cf:d2:4d:d8:62:37:8f:59:69: 97:d4:e7:32:ac:d1:45:87:55:75:b2:79:11:41:a8: 9e:5f:82:e0:a9:bb:59:58:04:71:98:04:91:3d:e3: 0c:3c:ea:e8:a5:a9:6c:ec:21:95:2b:a0:ce:de:da: 3d:c5:96:d2:6c:91:84:95:05:57:7f:a9:1c:22:0c: f7:d9:09:d0:45:37:12:47:80:41:7b:fe:cf:05:03: fe:59:82:4c:4c:ad:ba:f0:dd:fe:34:f1:5d:01:e3: 7e:36:26:aa:41:24:53:7f:a6:d9:3e:6b:c3:e3:68: 73:72:d0:5a:09:79:4c:6f:cf:81:79:36:54:b6:19: ca:c3:93:76:2f:9d:39:fc:ed:4e:85:cf:4d:ff:b6: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:83:7F:18:F4:04:01:A9:89:FF:23:56:B8:CC:66:79:74:08:A1:03 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211350.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1755::/48 Signature Algorithm: sha256WithRSAEncryption 85:5c:6a:81:c9:a9:5a:51:83:c2:8e:a1:2b:85:6b:be:84:cd: a4:ff:4a:00:77:24:14:b0:46:e2:ef:48:db:85:ae:d1:3e:8b: e8:a6:fa:22:05:f9:d6:49:ce:72:8c:9d:09:7c:c2:2c:79:5a: 61:77:f7:45:36:2b:15:2c:1d:56:c7:20:14:a6:51:37:48:83: 03:23:5a:ba:6f:33:8f:8e:dd:d0:5d:6b:91:ca:23:5f:a0:e3: 93:4d:04:1f:7d:ab:e7:e6:c9:cb:38:9a:65:e0:db:79:5d:e2: 96:33:e5:6a:ad:67:f6:3a:79:09:13:c0:b9:aa:a1:32:f1:75: 72:08:e7:1d:f8:6d:ad:ed:f2:6c:35:bd:d5:09:e2:a5:67:24: ff:63:9c:a7:f5:f3:94:00:05:5d:44:94:02:fc:09:74:36:9a: 2c:c2:f0:85:df:d5:92:71:65:83:1b:5c:48:b3:2c:12:b0:b0: 4b:3a:60:bc:da:64:ca:e7:7a:bf:ef:61:45:bf:cf:78:01:9f: cc:61:06:c7:91:82:58:64:5f:33:37:5f:82:2a:0c:e2:f2:f9: b0:47:9c:eb:81:90:a2:a3:c6:9d:21:d7:6c:11:5b:d9:a1:41: 75:7c:59:5b:39:28:6a:36:34:ee:b3:c8:a7:de:d8:69:bd:4d: 09:49:e2:cf -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUNWTdJBoGwvY6iJ+n8MGLHYvTrkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEyMjkyMjA2MzdaFw0yNDEyMjcyMjExMzdaMDMxMTAvBgNV BAMTKDIxODM3RjE4RjQwNDAxQTk4OUZGMjM1NkI4Q0M2Njc5NzQwOEExMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH/mV3AvyfSqvtWqUxSC9B2idG 8Ht+DjSU8lTj4QiDk/RrPnivu8l5v5uuNz/d/LCXAyGV5QYJ0Qn3euGxSRZu+xRX 0ZF9UcUeJBPRmWPXUxkNLmoG+NYD8LAlb2r1Kvu6VOz+9z9ZzaxZx6pi48/STdhi N49ZaZfU5zKs0UWHVXWyeRFBqJ5fguCpu1lYBHGYBJE94ww86uilqWzsIZUroM7e 2j3FltJskYSVBVd/qRwiDPfZCdBFNxJHgEF7/s8FA/5ZgkxMrbrw3f408V0B4342 JqpBJFN/ptk+a8PjaHNy0FoJeUxvz4F5NlS2GcrDk3YvnTn87U6Fz03/tifzAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUIYN/GPQEAamJ/yNWuMxmeXQIoQMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjExMzUwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdVMA0GCSqGSIb3DQEBCwUAA4IBAQCFXGqByalaUYPCjqErhWu+ hM2k/0oAdyQUsEbi70jbha7RPovopvoiBfnWSc5yjJ0JfMIseVphd/dFNisVLB1W xyAUplE3SIMDI1q6bzOPjt3QXWuRyiNfoOOTTQQffavn5snLOJpl4Nt5XeKWM+Vq rWf2OnkJE8C5qqEy8XVyCOcd+G2t7fJsNb3VCeKlZyT/Y5yn9fOUAAVdRJQC/Al0 NposwvCF39WScWWDG1xIsywSsLBLOmC82mTK53q/72FFv894AZ/MYQbHkYJYZF8z N1+CKgzi8vmwR5zrgZCio8adIddsEVvZoUF1fFlbOShqNjTus8in3thpvU0JSeLP -----END CERTIFICATE-----Generated at Wed May 8 05:13:20 2024 by rpki-client on console-fra.rpki-client.org