$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa File: AS211954.roa (raw, json) Hash identifier: lIY6qRGLDgAoQvWsYfEu/wcSyIAQ31THoUgpLXpbvos= Subject key identifier: BF:1B:E3:B5:F4:43:01:29:75:25:25:5D:C8:A0:52:7D:45:26:1C:FB Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4607426A27C17072B5F6FC50D56E9219B8377BBB Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 211954 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:07:42:6a:27:c1:70:72:b5:f6:fc:50:d5:6e:92:19:b8:37:7b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=BF1BE3B5F44301297525255DC8A0527D45261CFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:36:79:99:82:75:dc:2e:6e:ad:07:60:db: b5:fa:93:d7:2c:92:ce:1d:b8:0b:b8:c3:b6:cd:2d: 05:aa:a6:d5:16:ae:4d:77:50:08:7d:e8:5b:6c:61: f8:ed:07:62:35:83:e3:e6:e9:5e:64:c0:0f:02:8c: f9:2f:6e:81:3b:4d:8b:6c:1f:8e:d6:e4:6f:03:58: ff:6c:dd:88:4f:c9:a4:4e:3e:04:24:b7:0a:92:5e: 7e:3d:8d:fb:f7:c9:a1:59:73:54:89:f5:77:25:92: 0b:5e:b9:62:6a:19:fb:c5:28:23:25:5a:4f:19:07: 22:a1:f4:92:70:d4:67:36:7e:8f:b4:95:75:b2:b4: a1:e2:a9:d1:77:b0:e2:67:71:8d:68:f6:47:8b:3d: d6:42:52:fc:70:aa:b6:a7:4c:0d:93:b9:b0:b6:92: f9:aa:16:6c:d6:09:9f:e0:96:9e:14:f6:33:82:33: 75:9f:1f:ea:71:f3:00:90:08:4b:4e:0f:93:82:c7: 3a:8f:06:7f:8a:91:16:97:e8:4c:49:6f:be:1d:6e: 78:5a:f6:fc:b6:4f:92:34:e9:42:0e:6c:58:68:28: ce:9e:45:4f:78:f6:7e:2c:5a:90:22:23:92:27:46: 2d:4c:ae:7c:d7:88:7e:fa:7e:98:41:8f:a8:db:19: 90:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:1B:E3:B5:F4:43:01:29:75:25:25:5D:C8:A0:52:7D:45:26:1C:FB X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a2:41:57:69:51:5e:45:d5:34:70:90:74:76:67:de:c7:fb:06: ee:e5:3f:5a:06:c4:c0:1d:35:28:d8:aa:c3:3b:57:c0:01:81: ad:94:f9:3d:a5:50:d6:6d:4a:e9:a9:b8:17:34:ba:1d:91:2a: bf:5d:bb:d9:11:9e:73:10:40:29:2d:6d:c5:60:ab:30:4a:57: 22:35:96:92:61:30:d0:f7:f1:6d:44:a1:0d:93:42:d9:1e:3c: a3:38:a7:89:ae:62:4d:a9:07:27:9b:fa:eb:c1:e3:f6:08:07: a2:96:aa:66:f2:b3:08:17:83:1f:88:7d:3a:07:42:e1:68:40: 81:ae:fa:7d:b7:38:b2:a0:c7:cc:6a:a5:15:c5:09:e8:a6:27: cd:5e:06:00:23:0b:2c:55:35:fe:c9:ab:a6:6a:bb:4d:78:bf: e7:11:86:0e:8c:12:a3:4f:23:e2:c5:81:3b:6e:52:0c:78:61: 87:f2:7c:5f:8c:27:74:d5:93:a1:dd:c6:00:c7:52:52:50:d2: b6:67:f5:a5:87:b5:fa:8b:47:35:4b:d7:66:ef:7a:b1:80:99: aa:e7:76:a2:de:0e:a9:42:65:38:43:b9:f8:5a:60:5c:fc:05: 52:04:83:fd:3e:01:87:3d:db:8c:f9:3a:98:ac:dd:ae:22:9d: 23:b9:7e:c7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURgdCaifBcHK19vxQ1W6SGbg3e7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTVaFw0yNTA4MTkwMjMxNTVaMDMxMTAvBgNV BAMTKEJGMUJFM0I1RjQ0MzAxMjk3NTI1MjU1REM4QTA1MjdENDUyNjFDRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/GDZ5mYJ13C5urQdg27X6k9cs ks4duAu4w7bNLQWqptUWrk13UAh96FtsYfjtB2I1g+Pm6V5kwA8CjPkvboE7TYts H47W5G8DWP9s3YhPyaROPgQktwqSXn49jfv3yaFZc1SJ9XclkgteuWJqGfvFKCMl Wk8ZByKh9JJw1Gc2fo+0lXWytKHiqdF3sOJncY1o9keLPdZCUvxwqranTA2TubC2 kvmqFmzWCZ/glp4U9jOCM3WfH+px8wCQCEtOD5OCxzqPBn+KkRaX6ExJb74dbnha 9vy2T5I06UIObFhoKM6eRU949n4sWpAiI5InRi1MrnzXiH76fphBj6jbGZCRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvxvjtfRDASl1JSVdyKBSfUUmHPswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjExOTU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCiQVdpUV5F1TRwkHR2Z97H+wbu5T9aBsTA HTUo2KrDO1fAAYGtlPk9pVDWbUrpqbgXNLodkSq/XbvZEZ5zEEApLW3FYKswSlci NZaSYTDQ9/FtRKENk0LZHjyjOKeJrmJNqQcnm/rrweP2CAeilqpm8rMIF4MfiH06 B0LhaECBrvp9tziyoMfMaqUVxQnopifNXgYAIwssVTX+yaumartNeL/nEYYOjBKj TyPixYE7blIMeGGH8nxfjCd01ZOh3cYAx1JSUNK2Z/Wlh7X6i0c1S9dm73qxgJmq 53ai3g6pQmU4Q7n4WmBc/AVSBIP9PgGHPduM+TqYrN2uIp0juX7H -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org