$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa File: AS212934.roa (raw, json) Hash identifier: QOFxsvFN9rGpT4wOuMIvCQfruAXCehb6AYR/KxZ47vk= Subject key identifier: BC:B8:7D:E5:3A:BA:41:27:10:AE:5A:44:1C:FB:59:64:C8:0A:63:00 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3B38542F870F9B9919DFC3767BDB6862EAD69F92 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 212934 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 27 May 2024 07:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:38:54:2f:87:0f:9b:99:19:df:c3:76:7b:db:68:62:ea:d6:9f:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=BCB87DE53ABA412710AE5A441CFB5964C80A6300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b2:e1:1b:d1:5c:be:1a:e3:d5:24:97:d2:7d: b5:86:50:74:84:e5:f3:cf:83:26:73:7b:bd:ba:5f: 78:09:f6:31:cf:fe:21:82:76:93:ef:52:12:2f:1f: 8e:43:d0:ef:56:6c:07:f4:e9:50:01:8c:1f:6a:be: 62:d0:dd:3c:66:41:98:24:2f:04:22:23:8d:08:45: 78:d1:65:b5:21:13:f1:44:64:50:c0:80:e9:51:3a: 22:72:4c:c3:a5:ef:74:58:d8:ed:93:ee:4b:7f:5a: f3:e1:03:fa:1c:09:aa:4b:b3:66:91:b6:d6:5b:44: ac:25:02:cb:2a:e9:9a:72:e2:45:d2:42:f2:ec:fe: f8:59:55:d6:6b:67:79:f2:04:de:75:07:f7:6f:34: c1:fa:2a:20:14:ce:58:fe:eb:fd:68:78:0d:f8:8e: 1d:41:56:77:70:21:c9:dd:24:c0:d2:cb:9c:e0:4c: 04:9d:30:51:49:89:42:d9:fd:07:45:2b:75:83:d3: 16:0d:53:ac:02:63:5a:20:f8:af:23:7a:ff:c4:4d: 2f:82:d6:99:a3:5f:d3:8d:19:e5:ba:94:fe:61:2b: 78:a6:4b:f0:3d:ad:0a:23:42:d7:da:82:0a:71:92: 62:f2:9b:9d:2a:86:7e:b5:9b:53:03:dd:0c:b2:f7: f8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B8:7D:E5:3A:BA:41:27:10:AE:5A:44:1C:FB:59:64:C8:0A:63:00 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 34:fb:a4:5b:a0:6b:56:c2:56:fa:76:8e:fe:a6:57:fa:7d:8a: 87:2c:f7:e8:73:67:9a:d7:04:f4:1d:97:ed:b6:10:86:f7:2a: ae:b2:5d:4a:8e:42:27:df:d9:81:4c:64:f8:24:e4:ce:f3:73: 4e:1d:ef:97:ed:31:66:78:23:07:96:af:d2:14:37:64:d1:18: 6a:60:52:31:dd:e3:38:9d:4a:2e:1f:03:b5:8a:57:f7:db:d0: e6:d3:25:0b:2a:85:24:bc:4c:0b:86:52:51:07:62:31:89:44: 05:58:41:78:44:0c:e1:84:0b:f8:fb:19:39:39:43:e9:f4:5f: 2f:47:77:60:ee:15:1b:06:62:94:8e:49:77:24:25:0e:a6:a1: 77:2d:c9:e6:1f:20:1d:b5:27:ae:7c:25:ae:db:94:d8:4f:02: 2f:0e:4f:11:72:c5:a5:42:40:dd:ef:23:30:1d:a9:04:30:2a: 73:c5:e4:8b:78:67:82:e8:89:32:ea:e2:dd:65:4b:27:c3:17: 0c:10:b7:fe:7a:c1:10:62:03:41:f8:ff:4d:58:42:b5:e1:cc: 70:e9:4c:4a:04:8d:6f:7e:c7:d1:31:11:39:c1:b7:40:c6:ec: 82:22:78:9c:26:56:09:3b:61:43:8f:14:d0:29:d7:eb:be:e1: 0b:89:fe:1e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOzhUL4cPm5kZ38N2e9toYurWn5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKEJDQjg3REU1M0FCQTQxMjcxMEFFNUE0NDFDRkI1OTY0QzgwQTYzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUsuEb0Vy+GuPVJJfSfbWGUHSE 5fPPgyZze726X3gJ9jHP/iGCdpPvUhIvH45D0O9WbAf06VABjB9qvmLQ3TxmQZgk LwQiI40IRXjRZbUhE/FEZFDAgOlROiJyTMOl73RY2O2T7kt/WvPhA/ocCapLs2aR ttZbRKwlAssq6Zpy4kXSQvLs/vhZVdZrZ3nyBN51B/dvNMH6KiAUzlj+6/1oeA34 jh1BVndwIcndJMDSy5zgTASdMFFJiULZ/QdFK3WD0xYNU6wCY1og+K8jev/ETS+C 1pmjX9ONGeW6lP5hK3imS/A9rQojQtfaggpxkmLym50qhn61m1MD3Qyy9/hlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvLh95Tq6QScQrlpEHPtZZMgKYwAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyOTM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA0+6RboGtWwlb6do7+plf6fYqHLPfoc2ea 1wT0HZftthCG9yqusl1KjkIn39mBTGT4JOTO83NOHe+X7TFmeCMHlq/SFDdk0Rhq YFIx3eM4nUouHwO1ilf329Dm0yULKoUkvEwLhlJRB2IxiUQFWEF4RAzhhAv4+xk5 OUPp9F8vR3dg7hUbBmKUjkl3JCUOpqF3LcnmHyAdtSeufCWu25TYTwIvDk8RcsWl QkDd7yMwHakEMCpzxeSLeGeC6Iky6uLdZUsnwxcMELf+esEQYgNB+P9NWEK14cxw 6UxKBI1vfsfRMRE5wbdAxuyCInicJlYJO2FDjxTQKdfrvuELif4e -----END CERTIFICATE-----Generated at Sun May 26 15:44:24 2024 by rpki-client on console-fra.rpki-client.org