$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212276.roa File: AS212276.roa (raw, json) Hash identifier: 3qOlKMvXdpIXqrHSQCUs98gsuvVp0fuXpcSb8rFaLkI= Subject key identifier: 7B:AA:10:39:77:BC:ED:B0:A0:13:8C:00:FC:BA:5B:01:E8:5C:6E:71 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3312F91EE002EDF33AF860897EA299FDC10B8D99 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212276.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 212276 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:12:f9:1e:e0:02:ed:f3:3a:f8:60:89:7e:a2:99:fd:c1:0b:8d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=7BAA103977BCEDB0A0138C00FCBA5B01E85C6E71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:8c:42:95:8a:90:8a:6b:5b:7d:2c:d7:81: 9a:60:d1:00:10:78:46:dc:30:b1:d4:8a:5a:fd:91: 37:d8:f7:b1:42:cc:56:a8:2c:81:9c:f4:58:18:c8: 5a:50:7f:93:9b:ea:08:18:1c:24:d8:b1:e4:36:1b: 36:6f:7b:72:c2:6b:ca:2d:09:88:28:d2:34:4d:e5: 51:f5:a6:f9:a1:a7:32:56:c9:41:ba:b4:ba:48:15: ca:cc:57:30:9a:fd:99:3c:d9:82:a8:84:36:19:03: 63:9e:58:ec:ed:86:9a:ec:ee:d8:f1:5d:9f:ed:3c: 71:c8:36:0f:f1:15:2e:75:d6:f7:3f:df:d4:3f:5e: 1e:b6:e5:93:30:5e:e2:07:b6:b7:ab:3b:bd:9e:9f: 00:4e:5d:a2:f9:8b:04:ef:0e:f1:07:e0:e0:89:ae: ba:97:8a:79:bc:07:81:1c:0f:b0:da:c1:e1:a6:62: 80:7d:44:98:c5:fe:46:d8:24:13:4d:ea:94:2f:cb: b2:36:d6:15:78:0c:98:64:b3:ae:cf:bd:25:7a:c1: c0:79:11:18:b5:07:8d:e8:35:e5:cd:a1:bb:37:00: b9:7e:c1:88:b8:0e:5d:e3:af:56:bc:df:92:1c:8d: 0b:fb:87:8e:f5:a3:de:52:1b:96:e4:64:4e:99:19: 2e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AA:10:39:77:BC:ED:B0:A0:13:8C:00:FC:BA:5B:01:E8:5C:6E:71 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212276.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a7:f1:ea:d2:d1:c2:2c:23:b3:23:56:8e:ef:0b:9c:a2:74:8d: d5:12:40:b2:a5:52:8c:86:d9:51:2b:a6:96:61:19:ab:a8:df: ad:42:42:99:05:95:ee:0c:c9:e5:ac:9a:40:95:ef:7f:71:7b: a7:52:23:63:47:86:67:bb:d7:42:38:41:26:95:f0:11:9a:52: b0:3f:23:78:d7:58:fe:c4:17:8a:a0:e0:46:db:6c:b3:d2:88: eb:07:f6:f5:77:12:13:9b:8c:de:af:95:e2:1c:06:03:95:26: 44:a1:91:d8:c2:97:90:06:ca:a3:98:f6:e2:11:77:07:2b:f9: e2:f2:ce:82:75:f4:88:c0:55:26:dd:bc:aa:38:02:f8:af:8b: cb:9e:a0:6e:db:e4:b5:46:41:c3:1e:2b:b9:94:e4:53:cb:5e: d7:62:be:9f:45:fe:15:76:0b:e6:c1:f3:10:96:94:63:68:79: e1:df:1f:67:3f:c0:e2:d7:11:01:78:63:db:e3:5d:d7:54:aa: 34:33:f3:4e:ed:75:b1:26:c3:00:7d:61:25:fd:f1:5b:1e:bc: 98:c4:f4:77:e9:67:69:d5:a7:d9:16:44:4c:11:af:1e:dc:5f: c0:5c:2d:ad:4b:40:95:3b:f0:59:80:33:0e:86:04:eb:b6:81: 1e:2b:da:cd -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMxL5HuAC7fM6+GCJfqKZ/cELjZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDdCQUExMDM5NzdCQ0VEQjBBMDEzOEMwMEZDQkE1QjAxRTg1QzZFNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2hYxClYqQimtbfSzXgZpg0QAQ eEbcMLHUilr9kTfY97FCzFaoLIGc9FgYyFpQf5Ob6ggYHCTYseQ2GzZve3LCa8ot CYgo0jRN5VH1pvmhpzJWyUG6tLpIFcrMVzCa/Zk82YKohDYZA2OeWOzthprs7tjx XZ/tPHHINg/xFS511vc/39Q/Xh625ZMwXuIHtrerO72enwBOXaL5iwTvDvEH4OCJ rrqXinm8B4EcD7DaweGmYoB9RJjF/kbYJBNN6pQvy7I21hV4DJhks67PvSV6wcB5 ERi1B43oNeXNobs3ALl+wYi4Dl3jr1a835IcjQv7h471o95SG5bkZE6ZGS79AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUe6oQOXe87bCgE4wA/LpbAehcbnEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyMjc2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCn8erS0cIsI7MjVo7vC5yidI3VEkCypVKM htlRK6aWYRmrqN+tQkKZBZXuDMnlrJpAle9/cXunUiNjR4Znu9dCOEEmlfARmlKw PyN411j+xBeKoOBG22yz0ojrB/b1dxITm4zer5XiHAYDlSZEoZHYwpeQBsqjmPbi EXcHK/ni8s6CdfSIwFUm3byqOAL4r4vLnqBu2+S1RkHDHiu5lORTy17XYr6fRf4V dgvmwfMQlpRjaHnh3x9nP8Di1xEBeGPb413XVKo0M/NO7XWxJsMAfWEl/fFbHryY xPR36Wdp1afZFkRMEa8e3F/AXC2tS0CVO/BZgDMOhgTrtoEeK9rN -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org