$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS214930.roa File: AS214930.roa (raw, json) Hash identifier: kQJBYCsY3AvZ2cEJBAddmhU8p0HGWji30Os7t1lwHKA= Subject key identifier: 1C:A2:6E:FF:F9:4F:E8:95:9D:B9:DC:7C:AC:9A:3B:66:02:14:2A:07 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 50DDE6ACF6ECB9D734E3980F8B4C1DB4EF534FEB Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS214930.roa Signing time: Wed 29 May 2024 17:01:44 +0000 ROA not before: Wed 29 May 2024 16:56:44 +0000 ROA not after: Wed 28 May 2025 17:01:44 +0000 asID: 214930 IP address blocks: 2a07:54c1:c400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:dd:e6:ac:f6:ec:b9:d7:34:e3:98:0f:8b:4c:1d:b4:ef:53:4f:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: May 29 16:56:44 2024 GMT Not After : May 28 17:01:44 2025 GMT Subject: CN=1CA26EFFF94FE8959DB9DC7CAC9A3B6602142A07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:6a:c9:14:4f:21:6c:ce:6d:c0:f3:86:45: 35:56:8b:1f:18:9e:f1:a1:b7:4c:1a:eb:d5:24:1d: a4:a3:04:ee:76:18:e4:95:fd:fc:c0:9c:d8:6e:36: a4:bc:74:28:54:e2:bb:5f:fe:d8:39:29:11:9b:30: 66:54:52:76:d0:7a:ce:7a:3d:58:7b:b3:a6:23:98: ad:19:f3:f5:f7:55:95:44:b1:73:80:dd:8d:ef:16: ac:51:4e:5f:ac:e7:21:68:b4:b1:b3:1a:ee:3b:68: d7:af:27:7f:0b:0b:0b:cb:c1:a8:db:47:22:a8:96: 67:65:db:10:19:1b:02:2c:ce:57:bb:22:e1:08:38: 2c:53:54:70:22:7e:50:21:f4:b4:2c:fd:ea:50:62: 88:70:24:0d:fe:3f:1a:98:bf:45:d0:dd:a5:c6:28: ce:5a:df:09:a2:f7:35:43:6f:d7:76:6b:8e:13:75: 5a:17:91:a6:6c:db:56:62:15:ff:fc:c2:b7:96:ef: 0a:25:79:fd:99:a7:60:a5:6e:50:da:9a:f7:f5:1c: ad:70:f2:8e:4b:61:7b:ea:9b:80:02:e7:98:bc:0f: 6a:6e:a3:20:aa:19:fb:db:a1:44:59:59:62:b1:6c: 48:43:d7:63:39:72:ac:aa:76:eb:b6:a8:31:f5:ec: f5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A2:6E:FF:F9:4F:E8:95:9D:B9:DC:7C:AC:9A:3B:66:02:14:2A:07 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS214930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c400::/40 Signature Algorithm: sha256WithRSAEncryption 15:71:14:a1:e6:a4:5a:10:b4:96:de:65:2c:15:6e:45:45:c2: 95:05:e7:18:ca:e4:60:f2:0d:b0:eb:b5:ac:d2:a5:02:43:80: 59:c4:89:3c:f6:c0:bc:5e:67:89:b6:1d:43:03:36:3a:08:f3: 05:02:9d:0e:78:6f:3e:2c:ef:26:bf:b2:22:21:14:6c:41:07: 29:37:fc:92:ee:55:e6:9a:be:85:1b:02:5c:95:a5:aa:1f:b2: e5:eb:8c:5c:9b:86:d7:be:51:90:97:4d:36:aa:37:3f:c3:14: e5:c4:9f:95:94:8f:04:8f:e5:73:74:ca:76:33:06:5a:85:6f: f2:e9:0a:72:b9:a3:f7:7e:06:d3:7a:e7:6b:51:4d:1f:d7:65: e2:f1:fe:4a:2b:a9:ee:69:ac:1b:5e:ef:ce:0b:0a:91:76:2d: a1:3e:f4:dc:fd:6c:7e:b0:71:d0:b4:47:ae:cc:2a:49:75:2b: 4e:a4:19:de:de:7a:23:6a:79:3c:bc:20:6c:07:25:15:41:98: ce:4b:b8:41:15:a4:91:43:00:4e:fe:13:b2:54:bc:99:4c:01: 02:bb:58:4f:dd:94:be:ac:84:4f:ff:e1:57:58:e8:f2:8a:90: ff:af:36:6f:25:6f:0b:ff:67:99:5c:ea:2a:98:e1:b1:2e:2a: 79:bd:25:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUN3mrPbsudc045gPi0wdtO9TT+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA1MjkxNjU2NDRaFw0yNTA1MjgxNzAxNDRaMDMxMTAvBgNV BAMTKDFDQTI2RUZGRjk0RkU4OTU5REI5REM3Q0FDOUEzQjY2MDIxNDJBMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3bGrJFE8hbM5twPOGRTVWix8Y nvGht0wa69UkHaSjBO52GOSV/fzAnNhuNqS8dChU4rtf/tg5KRGbMGZUUnbQes56 PVh7s6YjmK0Z8/X3VZVEsXOA3Y3vFqxRTl+s5yFotLGzGu47aNevJ38LCwvLwajb RyKolmdl2xAZGwIszle7IuEIOCxTVHAiflAh9LQs/epQYohwJA3+PxqYv0XQ3aXG KM5a3wmi9zVDb9d2a44TdVoXkaZs21ZiFf/8wreW7wolef2Zp2ClblDamvf1HK1w 8o5LYXvqm4AC55i8D2puoyCqGfvboURZWWKxbEhD12M5cqyqduu2qDH17PXjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHKJu//lP6JWdudx8rJo7ZgIUKgcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE0OTMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wcQwDQYJKoZIhvcNAQELBQADggEBABVxFKHmpFoQtJbeZSwVbkVFwpUF5xjK5GDy DbDrtazSpQJDgFnEiTz2wLxeZ4m2HUMDNjoI8wUCnQ54bz4s7ya/siIhFGxBByk3 /JLuVeaavoUbAlyVpaofsuXrjFybhte+UZCXTTaqNz/DFOXEn5WUjwSP5XN0ynYz BlqFb/LpCnK5o/d+BtN652tRTR/XZeLx/korqe5prBte784LCpF2LaE+9Nz9bH6w cdC0R67MKkl1K06kGd7eeiNqeTy8IGwHJRVBmM5LuEEVpJFDAE7+E7JUvJlMAQK7 WE/dlL6shE//4VdY6PKKkP+vNm8lbwv/Z5lc6iqY4bEuKnm9Ja4= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org