$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa File: AS211954.roa (raw, json) Hash identifier: cMMA1os+WtvyyhNvddjk9i0FWO2fR5/m5QD3L/B2vb4= Subject key identifier: EA:C9:03:7C:11:7F:72:EC:85:01:F1:EB:F8:14:DA:BD:F2:EC:4E:1C Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7DB1636665D38B94FEDD876844960AF2CDEC63BD Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 211954 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:b1:63:66:65:d3:8b:94:fe:dd:87:68:44:96:0a:f2:cd:ec:63:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=EAC9037C117F72EC8501F1EBF814DABDF2EC4E1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:c9:39:1f:ac:98:7d:04:d7:8b:40:00:34: e8:69:80:65:94:fc:0d:bc:65:4d:2c:c6:53:55:b6: 3c:33:6c:81:fd:66:40:72:37:fb:11:08:43:4b:63: 34:b5:9b:e5:6a:dd:5c:64:36:e8:07:9c:cf:52:b6: da:bd:33:d3:8c:20:64:e7:e8:3b:19:13:ce:1f:53: f5:02:17:b7:02:af:c9:be:89:61:9a:1d:66:da:0a: 02:b3:ff:bf:98:33:04:8f:7a:02:c9:e1:85:17:15: d4:f8:87:15:89:1c:cf:cc:6d:7c:32:dc:f1:5c:10: 2f:e1:df:b7:34:bb:93:90:3c:ee:22:ad:25:38:5a: e3:dd:83:57:4b:dc:35:62:b6:d8:7c:33:a8:e4:b5: f8:6d:30:46:c0:9e:d5:65:e8:21:75:9a:64:fb:df: 23:0c:2d:3c:4a:53:d3:b7:5c:9d:ce:18:16:b1:77: 1a:de:1e:57:ea:cd:72:39:5f:b5:6a:6b:fd:c3:59: a3:27:66:07:97:bf:b5:af:a0:9a:61:c5:bd:07:da: 3a:ac:6a:3f:fb:1d:9f:be:e2:73:ce:25:f4:2c:52: 9f:cd:bd:bf:00:89:5b:fb:41:60:13:fc:3c:5c:1b: 8f:81:4f:91:0b:e8:a1:3e:ec:6c:94:f5:7a:60:3e: b8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C9:03:7C:11:7F:72:EC:85:01:F1:EB:F8:14:DA:BD:F2:EC:4E:1C X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS211954.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 28:2d:37:81:9c:56:ba:09:cb:7c:76:87:2c:9b:a2:ae:bb:7b: cb:d3:2d:60:47:fa:95:88:0b:2d:1b:13:95:e3:9a:74:41:71: 86:a4:a0:46:b1:e6:69:2f:6c:db:8e:c5:3a:a8:38:1f:d4:f6: 76:c2:e3:ea:7b:ec:63:12:11:6d:d6:8f:84:c1:0d:8b:69:78: 68:09:75:bc:30:0a:a1:53:66:15:8d:62:a9:f8:0c:05:f4:f7: 46:b6:d8:e1:74:fa:9f:ae:1a:97:2c:c5:e9:dd:a5:37:02:78: 41:f8:6a:3f:08:b2:7c:b6:33:f4:f2:f9:fb:a3:78:44:13:1b: 25:ed:7b:5b:11:8d:a1:6c:a0:22:21:78:7d:ac:74:19:e6:5b: e1:01:81:b4:01:56:0e:06:0f:4a:80:be:af:06:81:1b:6a:e1: 96:a1:76:be:e6:3a:6f:d5:e6:60:cf:97:9e:e7:fb:32:db:41: f8:23:20:f4:63:78:84:bd:fa:3a:22:2a:00:88:b8:e4:6e:18: 61:55:6a:bc:ac:98:e2:15:63:74:8e:b9:01:42:66:ad:67:2f: b5:4d:17:af:d6:fd:a2:da:c6:20:e7:b6:2c:05:e1:73:ca:43: 91:1c:17:55:9c:27:4c:ec:2c:c4:d6:5b:30:74:67:c9:24:f9: 44:35:17:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfbFjZmXTi5T+3YdoRJYK8s3sY70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEVBQzkwMzdDMTE3RjcyRUM4NTAxRjFFQkY4MTREQUJERjJFQzRFMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzeMk5H6yYfQTXi0AANOhpgGWU /A28ZU0sxlNVtjwzbIH9ZkByN/sRCENLYzS1m+Vq3VxkNugHnM9Sttq9M9OMIGTn 6DsZE84fU/UCF7cCr8m+iWGaHWbaCgKz/7+YMwSPegLJ4YUXFdT4hxWJHM/MbXwy 3PFcEC/h37c0u5OQPO4irSU4WuPdg1dL3DVitth8M6jktfhtMEbAntVl6CF1mmT7 3yMMLTxKU9O3XJ3OGBaxdxreHlfqzXI5X7Vqa/3DWaMnZgeXv7WvoJphxb0H2jqs aj/7HZ++4nPOJfQsUp/Nvb8AiVv7QWAT/DxcG4+BT5EL6KE+7GyU9XpgPrjnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6skDfBF/cuyFAfHr+BTavfLsThwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjExOTU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAoLTeBnFa6Cct8docsm6Kuu3vL0y1gR/qV iAstGxOV45p0QXGGpKBGseZpL2zbjsU6qDgf1PZ2wuPqe+xjEhFt1o+EwQ2LaXho CXW8MAqhU2YVjWKp+AwF9PdGttjhdPqfrhqXLMXp3aU3AnhB+Go/CLJ8tjP08vn7 o3hEExsl7XtbEY2hbKAiIXh9rHQZ5lvhAYG0AVYOBg9KgL6vBoEbauGWoXa+5jpv 1eZgz5ee5/sy20H4IyD0Y3iEvfo6IioAiLjkbhhhVWq8rJjiFWN0jrkBQmatZy+1 TRev1v2i2sYg57YsBeFzykORHBdVnCdM7CzE1lswdGfJJPlENRfg -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org