$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa File: AS212294.roa (raw, json) Hash identifier: Tz2m00fNfY3Je/fols7MiCNEYfGWLWlZrJPaiMwNM70= Subject key identifier: 16:5E:61:31:65:59:04:0B:A4:AB:E2:B4:FC:27:E0:9E:55:D0:F3:30 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5F058ACC27BD92F985D72BB3C62ABF698599361B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 212294 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:05:8a:cc:27:bd:92:f9:85:d7:2b:b3:c6:2a:bf:69:85:99:36:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=165E61316559040BA4ABE2B4FC27E09E55D0F330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:bf:14:d9:92:2f:ce:07:08:92:88:04:6a:7a: 97:d0:4f:b7:7d:a3:fd:27:c3:ab:fd:9d:5b:95:ca: 40:f2:ee:fa:0a:c3:85:77:d5:14:86:c1:9a:04:65: 0a:ce:ac:23:d6:89:19:dd:6d:04:84:fc:fa:64:ce: 1e:77:cc:03:b2:1c:8d:dc:69:3d:d9:2e:5a:5f:c1: 13:c8:17:bd:b4:d7:0f:af:8d:8a:34:af:9e:41:33: 0e:60:ef:fd:60:12:e5:49:29:5f:f4:35:8e:25:15: 9b:20:9e:2c:ce:12:58:5e:5b:6b:77:fe:70:a3:31: 63:15:2c:7f:57:46:fc:ee:23:61:26:b2:7f:4e:5a: 4f:be:8b:6b:a3:3a:fa:c1:70:07:d9:39:55:20:cf: 41:9d:a8:6f:a1:e5:ac:da:d4:a2:c9:68:cf:ec:af: 08:04:04:9d:c3:7b:d0:30:6a:34:dd:b6:5f:1b:19: 11:2b:fd:53:87:1d:73:a4:5a:34:b1:98:39:70:6b: 9b:c9:84:54:d3:b9:ee:00:87:7d:43:b8:79:40:70: dd:8a:56:5d:38:f7:87:1d:9e:c1:ab:a1:34:7c:e0: 6a:85:74:4a:23:8f:e2:e9:a2:cb:09:fd:97:94:cf: a5:15:0f:3c:01:f4:bf:88:04:ed:93:dd:82:1c:bf: 95:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5E:61:31:65:59:04:0B:A4:AB:E2:B4:FC:27:E0:9E:55:D0:F3:30 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212294.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption ab:ee:f0:f3:80:fb:18:28:53:ac:05:ba:3f:30:74:f4:a4:b7: a0:5a:d0:fe:bb:34:09:a1:23:fc:4c:2d:40:c3:62:61:e9:c5: 17:08:a5:66:7e:19:c2:39:87:17:0d:df:93:98:7e:a5:ca:cc: 8b:e5:5a:d3:6e:1e:47:e7:0d:18:fe:3a:f0:e9:0d:01:d3:b1: 06:db:c0:f8:90:3f:fc:01:78:f4:05:75:4e:5f:2c:ba:40:ff: 2e:bc:46:cb:95:d3:ce:47:2b:dc:13:1c:f2:19:73:c0:16:99: b1:21:8b:76:97:10:23:09:2a:88:b0:79:f3:32:87:a5:f2:c5: f4:a5:f1:01:d1:be:2e:05:00:a4:6e:f6:9a:53:49:c6:c9:f2: 95:39:ba:0f:76:fd:bb:ca:8f:65:be:7a:da:23:5e:1d:62:d0: 9f:7e:b7:7c:5e:7f:e6:0f:87:7a:50:08:de:ee:59:e8:0e:80: bf:5e:75:f2:fa:4f:c2:49:e4:2b:d8:f6:57:39:54:a8:10:7a: 85:cb:1d:83:87:e3:c3:0e:49:97:95:91:27:0f:5f:ff:4d:e4: 18:72:9a:f6:b2:d2:95:53:74:b2:dd:ee:99:a5:04:83:4f:ee: 53:45:08:56:42:ae:14:ff:10:03:2f:58:48:bb:d9:bb:c8:e7: 05:1c:30:09 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUXwWKzCe9kvmF1yuzxiq/aYWZNhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDE2NUU2MTMxNjU1OTA0MEJBNEFCRTJCNEZDMjdFMDlFNTVEMEYzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuvxTZki/OBwiSiARqepfQT7d9 o/0nw6v9nVuVykDy7voKw4V31RSGwZoEZQrOrCPWiRndbQSE/Ppkzh53zAOyHI3c aT3ZLlpfwRPIF7201w+vjYo0r55BMw5g7/1gEuVJKV/0NY4lFZsgnizOElheW2t3 /nCjMWMVLH9XRvzuI2Emsn9OWk++i2ujOvrBcAfZOVUgz0GdqG+h5aza1KLJaM/s rwgEBJ3De9AwajTdtl8bGREr/VOHHXOkWjSxmDlwa5vJhFTTue4Ah31DuHlAcN2K Vl0494cdnsGroTR84GqFdEojj+LpossJ/ZeUz6UVDzwB9L+IBO2T3YIcv5UJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFl5hMWVZBAukq+K0/CfgnlXQ8zAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyMjk0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCr7vDzgPsYKFOsBbo/MHT0pLegWtD+uzQJ oSP8TC1Aw2Jh6cUXCKVmfhnCOYcXDd+TmH6lysyL5VrTbh5H5w0Y/jrw6Q0B07EG 28D4kD/8AXj0BXVOXyy6QP8uvEbLldPORyvcExzyGXPAFpmxIYt2lxAjCSqIsHnz Moel8sX0pfEB0b4uBQCkbvaaU0nGyfKVOboPdv27yo9lvnraI14dYtCffrd8Xn/m D4d6UAje7lnoDoC/XnXy+k/CSeQr2PZXOVSoEHqFyx2Dh+PDDkmXlZEnD1//TeQY cpr2stKVU3Sy3e6ZpQSDT+5TRQhWQq4U/xADL1hIu9m7yOcFHDAJ -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org