$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211562.roa File: AS211562.roa (raw, json) Hash identifier: 1M+ISxgMRMsxCFDAxZH6SDQg1Q/hQKds75z0SzL39jQ= Subject key identifier: 21:E9:5A:79:FC:39:C2:39:40:1C:5A:4A:C4:CB:6E:7B:96:30:4C:DD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5E103989E5360A34AC2BAE30D5AD0351483D08E4 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211562.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 211562 IP address blocks: 2a07:54c4:1750::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:10:39:89:e5:36:0a:34:ac:2b:ae:30:d5:ad:03:51:48:3d:08:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=21E95A79FC39C239401C5A4AC4CB6E7B96304CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:31:e6:11:8a:f5:92:d1:7e:cf:f2:10:4f: 5c:ac:94:cc:b3:1f:4c:86:69:dd:33:c1:df:2d:dc: 98:5b:17:d8:08:c0:8b:4c:7f:78:5a:47:7b:53:f9: f2:ea:15:4e:86:80:a4:63:68:af:05:ff:fc:07:d2: 2a:a9:f4:b5:55:e1:50:87:23:72:1a:18:c1:c4:5e: 29:f0:1d:69:57:68:4e:54:3d:dd:6f:15:74:49:10: 6b:21:18:c3:83:fb:eb:bc:a4:f8:15:27:ab:f5:a6: 21:b2:7f:29:c0:99:d7:f3:b0:9f:c0:6e:15:5c:0c: 3c:a0:01:c0:f9:17:dd:9c:7c:f8:bb:d5:8a:c4:0c: 86:7a:04:66:97:dd:e0:4a:7d:5a:49:1b:d8:f9:fc: 2b:4d:5a:da:9b:68:db:1e:6c:e3:19:af:8d:46:81: ea:ba:69:0d:93:3f:b6:16:63:eb:d3:be:5b:b9:56: 47:03:9b:80:08:92:4a:0c:eb:37:e5:ed:c7:4c:24: a7:95:af:17:73:d5:92:4e:88:44:13:32:1f:bd:ef: 8f:5d:9e:df:02:16:92:ca:33:44:84:e0:b3:6c:81: 53:16:49:8f:98:a7:0e:d0:a2:51:56:d4:27:ad:01: 37:6f:36:63:71:3e:c7:3b:16:92:fb:7c:53:0b:1a: 97:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E9:5A:79:FC:39:C2:39:40:1C:5A:4A:C4:CB:6E:7B:96:30:4C:DD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1750::/48 Signature Algorithm: sha256WithRSAEncryption 3f:34:63:bf:7e:73:e3:87:8e:d4:a7:2f:84:28:4f:a3:0b:24: d2:0e:60:aa:c3:5f:a0:6e:6d:d9:83:16:db:69:01:9d:d2:99: 28:c5:ff:43:b9:af:43:02:76:9a:d5:81:b9:49:dc:db:d0:7a: 99:b8:c1:6e:9b:d4:2c:99:6c:94:65:e1:d1:35:3d:73:49:2b: 21:ff:f9:ec:b0:fd:e8:96:33:7b:13:a8:a2:72:4a:ea:f4:14: 69:26:41:06:66:3d:62:6a:2b:95:4f:fe:3c:05:a8:0f:7f:e5: e4:2d:d8:8e:f2:86:a0:67:a5:66:ec:98:38:ab:a9:1b:c7:f9: 02:03:2f:d3:77:f3:81:db:de:02:43:ac:b5:4c:c5:17:94:12: 41:0b:01:cd:cf:f2:4f:fd:98:20:7d:f8:ed:c9:12:74:26:b6: 4b:59:1c:88:5f:55:6e:43:92:68:98:75:c6:78:a0:73:60:43: 4d:ee:cc:0b:41:4e:48:67:12:94:b4:83:86:e2:fc:ad:9e:3d: 37:81:b5:59:6a:9f:65:48:9a:50:c5:1a:05:af:18:d9:06:87: 62:a8:ad:71:1d:8a:1e:5c:3d:5a:cf:20:4e:56:3c:d9:2b:50: 4f:39:cb:6a:0e:bc:76:46:55:08:d4:17:09:ca:63:c2:ab:04: af:d7:d6:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXhA5ieU2CjSsK64w1a0DUUg9COQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKDIxRTk1QTc5RkMzOUMyMzk0MDFDNUE0QUM0Q0I2RTdCOTYzMDRDREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC47DHmEYr1ktF+z/IQT1yslMyz H0yGad0zwd8t3JhbF9gIwItMf3haR3tT+fLqFU6GgKRjaK8F//wH0iqp9LVV4VCH I3IaGMHEXinwHWlXaE5UPd1vFXRJEGshGMOD++u8pPgVJ6v1piGyfynAmdfzsJ/A bhVcDDygAcD5F92cfPi71YrEDIZ6BGaX3eBKfVpJG9j5/CtNWtqbaNsebOMZr41G geq6aQ2TP7YWY+vTvlu5VkcDm4AIkkoM6zfl7cdMJKeVrxdz1ZJOiEQTMh+9749d nt8CFpLKM0SE4LNsgVMWSY+Ypw7QolFW1CetATdvNmNxPsc7FpL7fFMLGpcBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIelaefw5wjlAHFpKxMtue5YwTN0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjExNTYyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdQMA0GCSqGSIb3DQEBCwUAA4IBAQA/NGO/fnPjh47Upy+EKE+jCyTSDmCqw1+g bm3ZgxbbaQGd0pkoxf9Dua9DAnaa1YG5Sdzb0HqZuMFum9QsmWyUZeHRNT1zSSsh //nssP3oljN7E6iickrq9BRpJkEGZj1iaiuVT/48BagPf+XkLdiO8oagZ6Vm7Jg4 q6kbx/kCAy/Td/OB294CQ6y1TMUXlBJBCwHNz/JP/ZggffjtyRJ0JrZLWRyIX1Vu Q5JomHXGeKBzYENN7swLQU5IZxKUtIOG4vytnj03gbVZap9lSJpQxRoFrxjZBodi qK1xHYoeXD1azyBOVjzZK1BPOctqDrx2RlUI1BcJymPCqwSv19aT -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org