$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212149.roa File: AS212149.roa (raw, json) Hash identifier: wm3gMiLEs0WncKrbLshuEWYgwGtqu3RD0vggvV+GK64= Subject key identifier: 03:BA:47:90:82:46:77:58:E2:6E:CA:AE:B4:B1:FB:31:DA:9C:1C:BD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6050653B099D7C70A2DD5F93C5A92FC9EA76959F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212149.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 212149 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:50:65:3b:09:9d:7c:70:a2:dd:5f:93:c5:a9:2f:c9:ea:76:95:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=03BA479082467758E26ECAAEB4B1FB31DA9C1CBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:37:2a:9f:8a:97:96:a3:47:75:c7:5b:93:12: ed:9f:10:07:b9:bd:07:d2:70:16:83:88:8e:58:ef: da:f0:0a:45:0f:0c:da:ca:de:53:c8:18:b8:7e:73: c8:fe:c9:f2:23:69:c6:96:b8:ce:6e:fb:ce:fd:c1: 93:38:06:bc:95:ac:c0:d6:ca:db:9d:7c:04:2d:b6: bd:b3:47:95:1e:e1:7b:9a:7e:b7:99:85:a5:fc:2b: 5c:08:14:92:aa:89:31:96:a7:b9:44:c7:32:59:0b: 11:11:67:e3:b2:d8:23:9c:93:94:25:a8:84:f7:38: 80:04:00:4e:c6:b4:cf:18:09:eb:eb:3f:e1:5c:aa: 52:c1:6c:5b:ff:d2:03:67:f4:c3:d8:d6:58:8a:36: e6:b7:9f:90:05:5e:32:68:f0:42:62:2d:a3:3a:04: 22:a9:14:87:36:a1:b8:d2:de:d1:2e:29:ad:05:3a: f1:c4:bd:6e:e8:dc:00:f6:6d:99:d5:a4:0a:b1:62: d5:02:a0:0c:9b:0e:5a:75:53:aa:eb:68:c4:5b:7d: 24:7c:3d:3d:e5:08:e0:33:df:22:c1:5c:e9:78:2f: 97:3b:10:b8:b2:ad:8c:c9:58:c7:92:ee:44:b8:14: 2c:ed:f4:98:f0:2d:3f:d3:d2:6d:80:59:c6:3a:e3: 85:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BA:47:90:82:46:77:58:E2:6E:CA:AE:B4:B1:FB:31:DA:9C:1C:BD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212149.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 95:58:d7:33:06:58:d9:9f:e5:4e:fc:4a:e2:ec:23:78:98:1b: 71:55:b4:fb:2a:f8:21:75:e8:65:5e:23:a0:26:17:0c:1f:13: b7:4d:bc:10:0a:a2:14:2a:30:4e:6f:1c:06:ec:88:1e:4d:4b: 70:06:93:f4:f8:7f:7b:d1:ec:e0:a2:ee:4b:ed:b2:15:0d:93: 64:97:4f:17:91:dd:7c:c2:71:da:3b:bb:de:a4:15:23:1f:f4: f1:13:e9:4e:dc:35:c1:53:6b:58:f5:62:83:e1:98:a5:34:86: f8:9f:2c:c0:fe:33:fa:bc:71:7c:c2:10:fe:f1:d0:9d:d5:2e: bc:79:0b:ab:65:1a:f9:b3:1a:77:a0:fb:8c:7d:82:d4:d4:a4: 2f:86:0b:61:fe:b9:ac:33:1b:fd:09:02:1f:ce:a1:f7:cf:5c: d6:de:30:75:9d:87:4d:a6:0c:c0:7d:2d:18:25:37:ca:0d:3a: e9:95:51:fd:db:48:22:b2:3b:1f:c5:f0:fd:99:17:54:c4:6e: b8:2a:2c:a3:39:b2:87:f0:2e:a3:7a:66:05:61:3e:53:ec:15: 51:f2:67:bc:5b:34:bc:ad:6e:c2:3d:7d:cf:60:64:f6:a3:de: b5:6f:4e:f0:a2:42:7c:0b:b5:f5:c9:72:95:46:22:54:c4:66: ed:a2:37:85 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYFBlOwmdfHCi3V+Txakvyep2lZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKDAzQkE0NzkwODI0Njc3NThFMjZFQ0FBRUI0QjFGQjMxREE5QzFDQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzNyqfipeWo0d1x1uTEu2fEAe5 vQfScBaDiI5Y79rwCkUPDNrK3lPIGLh+c8j+yfIjacaWuM5u+879wZM4BryVrMDW ytudfAQttr2zR5Ue4XuafreZhaX8K1wIFJKqiTGWp7lExzJZCxERZ+Oy2COck5Ql qIT3OIAEAE7GtM8YCevrP+FcqlLBbFv/0gNn9MPY1liKNua3n5AFXjJo8EJiLaM6 BCKpFIc2objS3tEuKa0FOvHEvW7o3AD2bZnVpAqxYtUCoAybDlp1U6rraMRbfSR8 PT3lCOAz3yLBXOl4L5c7ELiyrYzJWMeS7kS4FCzt9JjwLT/T0m2AWcY644WHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUA7pHkIJGd1jibsqutLH7MdqcHL0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyMTQ5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCVWNczBljZn+VO/Eri7CN4mBtxVbT7Kvgh dehlXiOgJhcMHxO3TbwQCqIUKjBObxwG7IgeTUtwBpP0+H970ezgou5L7bIVDZNk l08Xkd18wnHaO7vepBUjH/TxE+lO3DXBU2tY9WKD4ZilNIb4nyzA/jP6vHF8whD+ 8dCd1S68eQurZRr5sxp3oPuMfYLU1KQvhgth/rmsMxv9CQIfzqH3z1zW3jB1nYdN pgzAfS0YJTfKDTrplVH920gisjsfxfD9mRdUxG64KiyjObKH8C6jemYFYT5T7BVR 8me8WzS8rW7CPX3PYGT2o961b07wokJ8C7X1yXKVRiJUxGbtojeF -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org