$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211380.roa File: AS211380.roa (raw, json) Hash identifier: KSXBJlUaSypt7AKJN31w/KyFwWyQEKFeznOXXZbWYb4= Subject key identifier: E7:40:29:2A:5B:3F:40:73:7F:E4:F4:D4:B5:FE:11:79:77:0C:8D:41 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3ADDB1CDA4C6813059EA6AACA64F18D654731D9D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211380.roa Signing time: Tue 19 Sep 2023 02:14:54 +0000 ROA not before: Tue 19 Sep 2023 02:09:54 +0000 ROA not after: Tue 17 Sep 2024 02:14:54 +0000 asID: 211380 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:dd:b1:cd:a4:c6:81:30:59:ea:6a:ac:a6:4f:18:d6:54:73:1d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:54 2023 GMT Not After : Sep 17 02:14:54 2024 GMT Subject: CN=E740292A5B3F40737FE4F4D4B5FE1179770C8D41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:5a:97:9b:68:14:8d:df:c7:a5:a5:79:90: a5:6b:e1:4d:a8:11:a7:36:71:56:a8:56:53:06:2c: eb:db:62:f7:7c:21:1b:6d:14:a0:1c:92:a4:e6:61: 4e:da:13:bf:91:c1:96:bf:1e:3f:71:a4:1b:ba:59: bd:a0:d6:38:1b:8c:fa:3c:b1:b8:b7:14:67:c8:5b: f9:c1:6a:38:6d:02:17:b6:e9:5e:2c:88:1c:11:b8: e1:0f:f8:46:d8:90:e9:80:8f:2f:b9:1b:1d:a3:b2: 6f:5a:59:8f:dc:b0:cb:a2:17:6a:77:1c:b1:95:57: bf:28:00:db:46:1b:79:ca:f8:27:d0:ed:bc:55:54: d1:67:b0:ee:2c:70:9c:f5:d8:fc:33:04:1b:5e:5e: a5:37:35:38:48:a8:f8:90:4a:25:16:07:7c:59:c4: 68:5f:0f:9e:e9:7b:a2:c0:41:87:8d:59:60:5b:83: 20:76:4c:e1:22:75:5f:6f:dc:db:3c:d0:d6:1c:c0: 04:de:c3:40:79:5e:67:26:eb:f0:8d:bb:10:96:ec: b5:6c:4a:95:c3:35:8c:33:4d:98:10:87:8d:2d:cd: 28:ed:b1:2d:0b:23:34:ce:03:d7:c7:4e:9e:1c:bc: 0c:3f:31:35:d6:eb:d7:23:4a:17:58:79:58:3d:16: d4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:40:29:2A:5B:3F:40:73:7F:E4:F4:D4:B5:FE:11:79:77:0C:8D:41 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211380.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 77:2f:30:84:b6:c0:d9:5f:c9:89:db:8d:12:81:b4:74:2a:e7: 8d:86:d6:1c:5a:0f:df:e4:6a:83:d3:8c:5e:0f:1d:dd:30:67: 84:3b:32:1f:b2:81:54:fd:ea:47:07:40:a5:74:3b:b1:f4:91: ca:a7:16:27:53:88:31:e8:e1:84:58:63:1a:9d:6d:39:14:4b: 29:53:df:48:d9:56:60:61:9a:e8:4e:5c:00:0a:3f:f8:31:fb: 1a:3d:1d:bd:3a:86:d2:a9:24:0b:f4:76:57:23:11:c1:cf:84: 5b:3d:cd:2f:e8:9a:14:f2:b2:6a:17:ee:b4:2a:95:1a:04:20: 66:a8:72:e4:7b:58:bf:84:5c:99:6a:dd:5d:d7:b1:51:ab:61: c2:c2:5b:ce:de:d6:8e:bf:5f:92:ac:14:4a:1a:ab:97:57:0a: c7:79:31:0e:c1:6f:28:0a:1d:67:75:54:a7:1e:85:b5:4d:54: 35:ac:d8:5d:97:b6:40:90:f1:b9:ed:46:29:85:71:63:c6:93: 5a:a1:83:af:a2:18:73:fd:e6:dc:f9:c5:5b:56:10:37:e4:cf: 9e:aa:8f:59:71:31:21:4d:00:8b:0e:c5:45:85:a1:36:6c:9e: 87:5d:d8:af:97:c4:ff:c2:46:28:4d:ec:87:31:7e:43:cb:a2: fb:fe:d2:3a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOt2xzaTGgTBZ6mqspk8Y1lRzHZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTRaFw0yNDA5MTcwMjE0NTRaMDMxMTAvBgNV BAMTKEU3NDAyOTJBNUIzRjQwNzM3RkU0RjRENEI1RkUxMTc5NzcwQzhENDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2FVqXm2gUjd/HpaV5kKVr4U2o Eac2cVaoVlMGLOvbYvd8IRttFKAckqTmYU7aE7+RwZa/Hj9xpBu6Wb2g1jgbjPo8 sbi3FGfIW/nBajhtAhe26V4siBwRuOEP+EbYkOmAjy+5Gx2jsm9aWY/csMuiF2p3 HLGVV78oANtGG3nK+CfQ7bxVVNFnsO4scJz12PwzBBteXqU3NThIqPiQSiUWB3xZ xGhfD57pe6LAQYeNWWBbgyB2TOEidV9v3Ns80NYcwATew0B5Xmcm6/CNuxCW7LVs SpXDNYwzTZgQh40tzSjtsS0LIzTOA9fHTp4cvAw/MTXW69cjShdYeVg9FtQZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU50ApKls/QHN/5PTUtf4ReXcMjUEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjExMzgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQB3LzCEtsDZX8mJ240SgbR0KueNhtYcWg/f 5GqD04xeDx3dMGeEOzIfsoFU/epHB0CldDux9JHKpxYnU4gx6OGEWGManW05FEsp U99I2VZgYZroTlwACj/4MfsaPR29OobSqSQL9HZXIxHBz4RbPc0v6JoU8rJqF+60 KpUaBCBmqHLke1i/hFyZat1d17FRq2HCwlvO3taOv1+SrBRKGquXVwrHeTEOwW8o Ch1ndVSnHoW1TVQ1rNhdl7ZAkPG57UYphXFjxpNaoYOvohhz/ebc+cVbVhA35M+e qo9ZcTEhTQCLDsVFhaE2bJ6HXdivl8T/wkYoTeyHMX5Dy6L7/tI6 -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org