$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa File: AS212934.roa (raw, json) Hash identifier: DoWTfxsSCRZ6H9Xc8FMtmMa2RWv4D0EVVMsR3L4rkA8= Subject key identifier: A4:53:59:6B:DE:61:B8:5F:1A:98:24:4E:94:8E:0F:B9:BA:86:EE:CF Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4796BB05F3C45E3F1CFB2951ACA974AE2994C26B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 212934 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:96:bb:05:f3:c4:5e:3f:1c:fb:29:51:ac:a9:74:ae:29:94:c2:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=A453596BDE61B85F1A98244E948E0FB9BA86EECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:73:e1:c6:78:88:eb:d9:d5:42:61:34:7f:89: d5:17:9d:25:14:7b:90:67:97:17:57:a1:d7:92:0a: 49:5d:b4:23:b6:9f:18:41:6f:0d:21:5d:03:0b:5a: db:6c:cc:2c:ac:19:d2:8b:0a:33:3e:4f:25:bd:c9: e5:01:32:f9:cc:ca:5a:f0:54:f4:6b:db:e7:b7:3b: b3:c1:5e:f4:46:74:88:a3:f9:78:29:ce:72:f3:63: d4:03:e6:bb:f8:df:9a:aa:cb:8b:bd:39:b8:ed:b8: 9f:02:74:30:21:a7:2a:ed:58:e9:64:8d:6e:25:b9: 47:0b:1f:ca:7e:75:c7:33:31:5e:4d:08:72:8d:a6: f5:27:4e:9b:e4:0b:53:30:66:6f:bc:e9:0f:97:61: 8e:60:3a:73:5e:3a:8f:f1:e9:fa:88:68:63:f7:5d: 21:a9:fc:30:b6:a9:46:e7:97:5d:56:b8:de:89:15: ed:5f:27:d8:b9:95:88:ba:1e:26:38:52:10:35:60: ca:c8:15:ea:0d:78:9c:6c:ed:48:5d:92:36:9b:f2: 42:f0:48:fd:95:c0:d9:b3:eb:ce:59:47:16:2c:22: d8:20:8e:50:d1:5f:f9:c5:0a:42:59:00:14:99:81: 3f:cf:28:b5:be:93:a8:b9:89:56:9d:fe:78:1f:d0: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:53:59:6B:DE:61:B8:5F:1A:98:24:4E:94:8E:0F:B9:BA:86:EE:CF X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS212934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 1f:39:d2:54:1a:71:cc:89:4e:87:e6:b2:b1:0f:ad:0d:7a:86: 79:8e:82:7f:fe:a3:b2:ee:be:fb:da:9a:fe:ea:8b:d2:2f:8a: 32:ef:5b:c7:2c:5a:de:d4:62:2f:3c:67:08:94:69:81:71:c8: c5:90:a7:58:32:a7:64:1e:b8:66:c4:54:17:27:70:b3:4c:8d: dc:8a:12:d8:d0:83:09:0f:5d:06:7a:58:b6:6f:de:17:16:6e: 98:1a:c6:7e:b8:52:9f:93:b8:ff:c6:83:bd:77:a1:29:b3:d1: 92:b5:19:1b:03:a8:92:33:57:d2:af:06:11:58:75:2f:eb:ed: f6:1a:ae:f8:d3:c5:f9:1d:8c:cc:27:f5:04:75:a6:51:4d:59: d4:a6:0e:8d:02:83:ca:32:a8:13:bc:7e:d1:9f:1b:82:52:fe: 27:a9:7c:e1:2f:19:80:d1:dc:5f:50:7c:5c:4e:7a:7e:b7:74: 52:39:15:f7:a7:f6:e9:f8:4f:dc:dc:30:87:4c:80:11:c9:41: 9f:43:72:8a:f6:d0:b1:7e:69:b9:98:39:fb:7a:97:30:e2:e2: 15:b8:ef:3d:dd:74:33:d8:95:b1:5e:be:ae:a8:c2:c1:94:6c: 2b:b5:f6:f6:6a:8d:92:45:04:ca:30:47:1c:c2:f3:d7:43:bd: d0:be:d3:8d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUR5a7BfPEXj8c+ylRrKl0rimUwmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTVaFw0yNTA4MTkwMjMxNTVaMDMxMTAvBgNV BAMTKEE0NTM1OTZCREU2MUI4NUYxQTk4MjQ0RTk0OEUwRkI5QkE4NkVFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZc+HGeIjr2dVCYTR/idUXnSUU e5BnlxdXodeSCkldtCO2nxhBbw0hXQMLWttszCysGdKLCjM+TyW9yeUBMvnMylrw VPRr2+e3O7PBXvRGdIij+XgpznLzY9QD5rv435qqy4u9ObjtuJ8CdDAhpyrtWOlk jW4luUcLH8p+dcczMV5NCHKNpvUnTpvkC1MwZm+86Q+XYY5gOnNeOo/x6fqIaGP3 XSGp/DC2qUbnl11WuN6JFe1fJ9i5lYi6HiY4UhA1YMrIFeoNeJxs7Uhdkjab8kLw SP2VwNmz685ZRxYsItggjlDRX/nFCkJZABSZgT/PKLW+k6i5iVad/ngf0JYpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpFNZa95huF8amCROlI4PubqG7s8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEyOTM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAfOdJUGnHMiU6H5rKxD60NeoZ5joJ//qOy 7r772pr+6ovSL4oy71vHLFre1GIvPGcIlGmBccjFkKdYMqdkHrhmxFQXJ3CzTI3c ihLY0IMJD10Geli2b94XFm6YGsZ+uFKfk7j/xoO9d6Eps9GStRkbA6iSM1fSrwYR WHUv6+32Gq7408X5HYzMJ/UEdaZRTVnUpg6NAoPKMqgTvH7RnxuCUv4nqXzhLxmA 0dxfUHxcTnp+t3RSORX3p/bp+E/c3DCHTIARyUGfQ3KK9tCxfmm5mDn7epcw4uIV uO893XQz2JWxXr6uqMLBlGwrtfb2ao2SRQTKMEccwvPXQ73QvtON -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org