$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa File: AS213045.roa (raw, json) Hash identifier: fUWWCv9fhZ464mcBWP61C3N8/DOG36DyTF3krVEEWCo= Subject key identifier: 02:ED:14:C9:A8:3C:15:CE:DA:85:47:69:87:67:D0:3A:98:C8:ED:82 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7B1DEA60D2FAA81E7CC4A7BE90E8A9D8717227DF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 213045 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:1d:ea:60:d2:fa:a8:1e:7c:c4:a7:be:90:e8:a9:d8:71:72:27:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=02ED14C9A83C15CEDA8547698767D03A98C8ED82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f6:fc:19:0b:6a:2d:db:71:ea:2d:6f:77:13: 76:80:df:af:b5:57:8d:99:be:0e:b4:d9:35:54:e5: e8:5a:db:cd:d3:f3:4d:5a:05:bb:6b:ef:af:ac:db: 62:05:03:bf:8e:45:65:a0:41:56:7b:37:46:f2:71: 55:61:c6:fe:54:04:b5:b2:f4:a7:1f:ec:15:ff:14: 9a:bb:de:ec:50:43:97:3d:0c:97:4d:94:27:ee:a5: 08:f4:d5:25:18:06:93:b2:bd:c6:20:8e:85:bc:ab: 74:79:ca:b8:3d:f1:51:3e:70:2a:7b:d8:00:6f:f2: 8c:7c:ac:f7:ab:0c:9e:88:ae:10:32:a5:3a:5d:73: 49:90:ce:72:56:ca:69:37:a4:cc:d0:47:24:23:45: 77:96:aa:55:49:8f:f3:2c:f0:dc:28:9e:85:0a:ed: e5:fc:c5:0f:c4:3b:04:02:4a:54:f9:df:e7:2d:81: fa:97:eb:14:ec:86:8d:54:72:87:0c:19:9d:0d:d4: a3:a1:81:a3:42:c4:08:78:72:2a:a0:cc:29:c1:73: df:a9:7f:55:2a:4b:ab:06:a9:b0:b8:94:d0:a8:6d: 1c:5b:31:04:cf:86:81:41:ff:38:3d:22:39:e6:42: 82:3e:7e:4c:1a:0d:15:8d:40:54:8a:d3:e7:1e:a8: 57:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:ED:14:C9:A8:3C:15:CE:DA:85:47:69:87:67:D0:3A:98:C8:ED:82 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 34:cc:1e:fa:22:29:46:31:76:34:de:0d:21:a9:af:fb:48:21: 2a:ef:d8:b0:c7:82:51:3a:b9:f1:fd:dc:bc:36:13:75:69:64: ed:8b:bd:ec:db:99:ff:92:9e:de:74:ae:73:48:84:78:70:be: 80:8f:a4:cb:6e:e9:d5:fe:e8:d5:dc:89:b2:fd:84:61:3d:45: c4:ad:b4:59:1c:3c:8a:24:ba:39:19:7b:2d:6c:48:cf:13:9d: 7d:dc:41:46:52:64:33:9f:e2:56:30:92:25:ac:aa:af:72:87: 8b:1e:ce:81:dc:d2:6e:25:24:4f:2a:9c:18:5b:28:08:30:9c: 8a:05:03:01:48:9e:bf:92:80:2c:08:c3:ae:b2:23:11:f9:a7: 9e:b2:61:10:ad:9b:58:2d:37:8c:25:67:90:4a:d5:60:b4:1b: 99:10:22:80:97:20:83:27:33:f6:55:52:bf:85:f2:7b:25:e3: d3:02:d8:fa:da:21:6b:70:dc:9c:75:44:b2:c8:9c:0c:74:3b: 83:39:2e:ea:03:ea:b0:79:61:c3:18:ca:d5:20:f9:27:b7:27: d0:4f:c8:f8:17:2d:b8:0f:56:71:c4:5c:16:dd:f1:61:1d:53: a7:24:9e:d7:ee:ec:2f:9e:3f:df:cd:03:d6:f9:c4:67:5b:3b: 90:71:d7:b8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUex3qYNL6qB58xKe+kOip2HFyJ98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKDAyRUQxNEM5QTgzQzE1Q0VEQTg1NDc2OTg3NjdEMDNBOThDOEVEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9vwZC2ot23HqLW93E3aA36+1 V42Zvg602TVU5eha283T801aBbtr76+s22IFA7+ORWWgQVZ7N0bycVVhxv5UBLWy 9Kcf7BX/FJq73uxQQ5c9DJdNlCfupQj01SUYBpOyvcYgjoW8q3R5yrg98VE+cCp7 2ABv8ox8rPerDJ6IrhAypTpdc0mQznJWymk3pMzQRyQjRXeWqlVJj/Ms8NwonoUK 7eX8xQ/EOwQCSlT53+ctgfqX6xTsho1UcocMGZ0N1KOhgaNCxAh4ciqgzCnBc9+p f1UqS6sGqbC4lNCobRxbMQTPhoFB/zg9IjnmQoI+fkwaDRWNQFSK0+ceqFdDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAu0Uyag8Fc7ahUdph2fQOpjI7YIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEzMDQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA0zB76IilGMXY03g0hqa/7SCEq79iwx4JR Ornx/dy8NhN1aWTti73s25n/kp7edK5zSIR4cL6Aj6TLbunV/ujV3Imy/YRhPUXE rbRZHDyKJLo5GXstbEjPE5193EFGUmQzn+JWMJIlrKqvcoeLHs6B3NJuJSRPKpwY WygIMJyKBQMBSJ6/koAsCMOusiMR+aeesmEQrZtYLTeMJWeQStVgtBuZECKAlyCD JzP2VVK/hfJ7JePTAtj62iFrcNycdUSyyJwMdDuDOS7qA+qweWHDGMrVIPkntyfQ T8j4Fy24D1ZxxFwW3fFhHVOnJJ7X7uwvnj/fzQPW+cRnWzuQcde4 -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org