$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa File: AS212294.roa (raw, json) Hash identifier: FLrMY55yZ+XHP74iPqHtQjOKvHTaCpnHmaB1h6Oc5EI= Subject key identifier: 46:53:D5:CE:9B:94:24:8C:2C:BE:A7:50:47:74:0A:A2:C5:7F:F4:04 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 28FF79CB6FBCFF0DBEB61538C0EFCF55F3759BBB Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 212294 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ff:79:cb:6f:bc:ff:0d:be:b6:15:38:c0:ef:cf:55:f3:75:9b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=4653D5CE9B94248C2CBEA75047740AA2C57FF404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0f:ab:4b:19:a9:f6:9c:12:94:8f:cd:47:50: a4:f6:ae:b5:b3:40:94:5a:22:40:98:69:9b:f2:79: 20:6b:b2:07:c5:84:89:45:fd:f2:a8:1d:54:0d:1b: 0a:1f:05:8e:c6:a2:ce:af:4b:79:c5:68:fb:0f:6b: 9f:30:5d:7f:a9:25:f9:3a:dd:78:4a:a5:8a:3b:f4: 7f:fa:91:99:9c:80:20:9b:31:43:79:ca:27:c2:72: c6:70:14:7b:54:3c:2d:60:ec:02:60:88:28:e3:79: 37:83:c6:12:9c:6e:31:15:c8:71:78:5b:c0:46:e9: 6a:61:75:b7:85:86:b0:c1:47:45:02:28:8c:b9:1f: 7c:56:ed:4d:6d:0e:9f:8e:cd:9d:e1:48:6e:a1:f3: 44:ef:8b:3e:c5:64:40:6b:28:45:ba:ee:72:11:05: fd:b7:f0:d2:91:d2:95:18:2a:98:b9:4c:d7:b7:a4: 59:d3:83:7f:46:65:43:cd:cb:74:87:e6:81:12:2e: 09:e9:ff:27:b4:39:97:d6:12:74:02:e2:76:62:1c: 39:27:35:48:45:9b:0d:be:16:64:38:2a:40:7f:d2: ee:4e:93:8f:be:e1:d1:0e:95:04:5d:f4:5b:3d:51: 2f:c2:ac:e9:d0:0d:fa:19:13:bb:95:b3:d7:a8:89: 12:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:53:D5:CE:9B:94:24:8C:2C:BE:A7:50:47:74:0A:A2:C5:7F:F4:04 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 47:44:7d:02:14:9e:b4:be:1f:4b:87:d7:64:dc:65:13:13:93: 42:43:73:34:88:8d:2a:1d:4a:69:fc:55:cc:60:e4:f8:6a:66: d7:03:78:33:55:64:d4:cf:c7:18:90:fb:ae:ff:64:46:94:fc: 90:c7:ae:7d:1d:12:6a:be:28:82:43:7d:aa:66:27:a4:d6:26: d5:4a:d1:ba:2c:e1:90:29:18:7c:cf:cc:68:73:18:31:2e:0f: 85:e9:d7:a5:73:01:22:fe:b5:bc:c3:dc:c4:c2:1b:74:04:5f: 13:13:95:92:a9:3f:fa:0b:f6:65:b3:3a:76:b7:43:63:07:c6: c4:cd:f3:39:a9:51:ed:2e:86:b0:f3:69:85:1b:47:a9:cb:48: 7d:32:bf:f4:5b:5d:2d:c2:9c:67:ff:d5:91:d8:5f:06:ed:ec: 7e:fb:5f:cb:e2:74:64:51:98:e0:40:8b:49:9c:10:85:7c:03: 2c:9e:92:2a:ce:4b:a6:cd:e4:f7:f5:0c:eb:fb:42:83:74:fe: d9:a2:3d:dd:1b:9d:18:e6:e5:1a:fa:85:3a:37:21:12:6c:ee: 93:7e:6f:51:c8:56:13:fa:f6:28:44:97:32:b3:60:bc:05:1a: 81:ef:ab:c8:89:2d:61:95:97:75:33:db:16:8e:de:33:3d:84: 81:8f:d7:54 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKP95y2+8/w2+thU4wO/PVfN1m7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKDQ2NTNENUNFOUI5NDI0OEMyQ0JFQTc1MDQ3NzQwQUEyQzU3RkY0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVD6tLGan2nBKUj81HUKT2rrWz QJRaIkCYaZvyeSBrsgfFhIlF/fKoHVQNGwofBY7Gos6vS3nFaPsPa58wXX+pJfk6 3XhKpYo79H/6kZmcgCCbMUN5yifCcsZwFHtUPC1g7AJgiCjjeTeDxhKcbjEVyHF4 W8BG6WphdbeFhrDBR0UCKIy5H3xW7U1tDp+OzZ3hSG6h80Tviz7FZEBrKEW67nIR Bf238NKR0pUYKpi5TNe3pFnTg39GZUPNy3SH5oESLgnp/ye0OZfWEnQC4nZiHDkn NUhFmw2+FmQ4KkB/0u5Ok4++4dEOlQRd9Fs9US/CrOnQDfoZE7uVs9eoiRKfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURlPVzpuUJIwsvqdQR3QKosV/9AQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyMjk0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBHRH0CFJ60vh9Lh9dk3GUTE5NCQ3M0iI0q HUpp/FXMYOT4ambXA3gzVWTUz8cYkPuu/2RGlPyQx659HRJqviiCQ32qZiek1ibV StG6LOGQKRh8z8xocxgxLg+F6delcwEi/rW8w9zEwht0BF8TE5WSqT/6C/Zlszp2 t0NjB8bEzfM5qVHtLoaw82mFG0epy0h9Mr/0W10twpxn/9WR2F8G7ex++1/L4nRk UZjgQItJnBCFfAMsnpIqzkumzeT39Qzr+0KDdP7Zoj3dG50Y5uUa+oU6NyESbO6T fm9RyFYT+vYoRJcys2C8BRqB76vIiS1hlZd1M9sWjt4zPYSBj9dU -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org