$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa File: AS213045.roa (raw, json) Hash identifier: oA7eHy61C3ysXVpQt4yZmuzdQZNp6t9EpWhXz/0L3kQ= Subject key identifier: 9B:B7:35:56:89:61:5B:0C:BC:0C:52:BE:B8:74:2E:94:6D:8D:2D:30 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 53B7AD979EF6AB0808F77D3CDC4DDF7B70521ED1 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 213045 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b7:ad:97:9e:f6:ab:08:08:f7:7d:3c:dc:4d:df:7b:70:52:1e:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=9BB7355689615B0CBC0C52BEB8742E946D8D2D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9a:79:00:25:ac:84:4e:c8:a1:dc:4c:3a:ae: bd:2b:bd:ac:84:1f:03:3a:60:d7:06:1b:88:11:84: 02:01:d8:e9:14:44:b2:e2:6e:fc:c8:08:98:c8:76: e8:4a:99:33:82:e7:5a:ff:9b:5a:45:11:c5:d8:2f: af:ea:cd:bc:1f:5f:6a:d1:51:8c:0b:20:0c:36:98: 28:0e:85:90:77:3f:dc:e2:b6:a1:e0:41:7c:51:db: 7d:99:1d:8a:c4:b9:6f:11:11:3c:7b:46:75:2f:c6: 46:54:a9:ae:4f:72:a3:ff:25:40:0f:16:ac:10:0c: 05:b2:9d:f5:5b:2f:d0:b8:24:23:af:03:e9:22:2a: df:e1:bd:42:9b:04:a2:45:a9:35:ec:44:61:cd:53: b8:f2:6e:c5:95:95:9c:cb:da:8f:4d:f4:7e:bf:d2: b7:83:9f:1e:e2:c4:78:7f:57:52:7a:8d:73:62:13: 34:67:44:e0:f7:16:5d:da:ef:c1:a7:9e:12:b3:f9: 05:d1:32:96:5d:a7:85:4e:3d:86:97:85:58:ee:bf: 5b:66:27:8d:8a:53:28:cf:81:0d:32:aa:c6:7b:5f: 11:fb:cc:1b:a0:12:d5:ee:72:8c:2b:20:14:44:ae: 95:61:26:cd:0d:0d:e9:a1:cf:27:06:bb:36:4a:4c: 1f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B7:35:56:89:61:5B:0C:BC:0C:52:BE:B8:74:2E:94:6D:8D:2D:30 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS213045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3f:57:59:bb:48:2f:85:9b:79:07:3d:1b:f6:dd:ce:48:c1:0c: ee:f7:64:94:f1:63:0d:0a:25:ad:cd:ec:02:78:8b:ee:c0:61: 70:57:8b:25:af:6c:51:3a:93:06:ab:91:24:d7:56:ff:f3:24: 81:59:e1:db:c4:ae:43:dc:d2:c0:4e:b3:d4:a8:3c:45:6e:b1: e8:00:64:27:0d:41:04:b8:b8:3d:2e:e0:95:bf:c5:bc:df:b4: 5f:6d:26:a4:9b:95:52:5e:15:3f:cd:ea:57:c1:0e:4d:3f:9c: 43:10:ec:c2:bd:e1:3e:07:a9:4d:69:d0:52:59:0d:4b:8f:68: 9d:a1:5d:65:8e:ea:b3:bb:09:37:82:f0:85:46:f9:7a:4d:55: f5:5b:78:92:75:2a:ca:11:5e:aa:75:77:63:ae:76:53:d4:7c: d7:18:86:12:53:06:87:fe:4c:20:b0:34:b5:59:1c:50:ea:ea: 61:a7:e6:0b:00:cb:17:e8:25:8f:fa:fe:be:ef:75:85:29:f4: f6:6d:81:c6:6e:69:3e:48:e9:aa:a4:fa:c8:7c:ff:75:10:70: d4:ff:1c:0e:2f:92:74:a0:a0:14:6d:5f:0e:1b:41:0d:bd:6d: b6:73:88:e0:34:41:81:97:53:b4:74:21:80:66:d2:c7:c6:77: 54:a1:3d:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUU7etl572qwgI93083E3fe3BSHtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDlCQjczNTU2ODk2MTVCMENCQzBDNTJCRUI4NzQyRTk0NkQ4RDJEMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMmnkAJayETsih3Ew6rr0rvayE HwM6YNcGG4gRhAIB2OkURLLibvzICJjIduhKmTOC51r/m1pFEcXYL6/qzbwfX2rR UYwLIAw2mCgOhZB3P9zitqHgQXxR232ZHYrEuW8RETx7RnUvxkZUqa5PcqP/JUAP FqwQDAWynfVbL9C4JCOvA+kiKt/hvUKbBKJFqTXsRGHNU7jybsWVlZzL2o9N9H6/ 0reDnx7ixHh/V1J6jXNiEzRnROD3Fl3a78GnnhKz+QXRMpZdp4VOPYaXhVjuv1tm J42KUyjPgQ0yqsZ7XxH7zBugEtXucowrIBRErpVhJs0NDemhzycGuzZKTB93AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm7c1VolhWwy8DFK+uHQulG2NLTAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEzMDQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA/V1m7SC+Fm3kHPRv23c5IwQzu92SU8WMN CiWtzewCeIvuwGFwV4slr2xROpMGq5Ek11b/8ySBWeHbxK5D3NLATrPUqDxFbrHo AGQnDUEEuLg9LuCVv8W837RfbSakm5VSXhU/zepXwQ5NP5xDEOzCveE+B6lNadBS WQ1Lj2idoV1ljuqzuwk3gvCFRvl6TVX1W3iSdSrKEV6qdXdjrnZT1HzXGIYSUwaH /kwgsDS1WRxQ6uphp+YLAMsX6CWP+v6+73WFKfT2bYHGbmk+SOmqpPrIfP91EHDU /xwOL5J0oKAUbV8OG0ENvW22c4jgNEGBl1O0dCGAZtLHxndUoT19 -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org