$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215192.roa File: AS215192.roa (raw, json) Hash identifier: of45DwoZ3Vi+rtuANC/2TDkOs98TdtEZO7ENyKicUyY= Subject key identifier: 88:BB:DB:13:7C:7B:28:14:62:92:F7:36:4F:2E:CE:29:CB:29:94:BA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 236628D7285E86E26783492CFFE8248468A852DF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215192.roa Signing time: Wed 17 Apr 2024 17:39:20 +0000 ROA not before: Wed 17 Apr 2024 17:34:20 +0000 ROA not after: Wed 16 Apr 2025 17:39:20 +0000 asID: 215192 IP address blocks: 2a07:54c1:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:66:28:d7:28:5e:86:e2:67:83:49:2c:ff:e8:24:84:68:a8:52:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Apr 17 17:34:20 2024 GMT Not After : Apr 16 17:39:20 2025 GMT Subject: CN=88BBDB137C7B28146292F7364F2ECE29CB2994BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:cc:41:f7:52:ab:1b:c2:f6:10:84:66:97: 33:37:52:04:e7:84:32:bf:ed:1c:86:d8:41:32:5d: 5b:9b:76:1a:e2:78:f1:2d:a7:ac:9a:97:5a:50:11: 8b:86:f3:7e:89:3b:51:c9:48:f8:0d:32:e4:a8:56: 1d:dc:8d:c6:99:f4:62:f5:af:b0:55:7b:84:dd:1e: 38:83:fd:77:6d:59:0c:2e:45:98:6b:5d:84:5c:fb: b8:c4:b8:68:d3:98:e8:98:66:e1:9a:1d:13:b4:3b: 6c:7d:23:bf:62:be:20:66:10:93:1d:3b:1c:cd:95: 5a:c8:e3:b0:c0:40:fc:4b:a4:ec:d0:bf:c2:0e:0b: 33:0b:59:de:14:2f:d7:f0:9e:28:94:05:d9:b5:44: f0:e6:a8:d7:2a:54:de:21:28:72:79:4d:23:cc:0d: 01:35:ec:c1:18:e5:55:ed:f3:ec:07:a1:cd:fa:97: cf:a9:ca:2b:af:f8:ba:27:80:a6:70:38:cb:e2:4b: 03:f8:50:a8:a6:3f:f4:df:c3:b3:0f:6f:fa:d3:cf: 49:8d:d7:65:a3:85:25:9f:66:81:90:da:05:9a:83: 22:85:da:26:06:44:72:cf:60:b2:e8:dd:9c:07:40: 39:60:1b:41:96:0b:e2:31:0b:be:0b:e5:6e:e7:98: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BB:DB:13:7C:7B:28:14:62:92:F7:36:4F:2E:CE:29:CB:29:94:BA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215192.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c200::/40 Signature Algorithm: sha256WithRSAEncryption 27:90:97:fd:dd:e0:45:50:d3:63:5f:dc:e3:07:98:5e:7a:be: 9e:36:23:76:b3:18:eb:43:0f:2c:cc:a4:5f:5f:9b:62:51:48: a9:da:9b:35:67:6f:cd:0a:f0:8a:62:b5:59:b4:1d:20:d7:6e: ad:dd:59:f6:d6:70:2b:17:47:1f:aa:9c:27:25:8d:d0:ec:b1: 24:1f:09:e8:48:32:ca:d8:f7:80:bd:06:87:d0:8b:d6:c0:bb: cf:79:b4:0a:c8:af:a3:a1:5b:cb:58:6f:45:35:2a:96:22:5f: 6b:71:29:35:26:1b:da:0e:b8:7e:1a:bf:59:c4:76:c7:46:2d: e7:81:40:51:39:83:52:81:3e:98:08:1c:29:7d:94:f9:7d:32: c5:6e:d8:78:85:e6:17:aa:e3:c3:74:16:0c:05:6c:64:0c:e4: 24:22:bf:06:2e:63:98:1e:76:b3:96:6b:3a:d9:d8:20:47:d8: 5c:87:80:dc:48:0b:9b:f6:50:2f:56:19:59:02:89:eb:71:3d: 2d:48:95:03:2c:21:26:58:63:02:50:a7:0b:54:e1:64:74:d5: 9a:03:27:da:40:14:ea:62:f3:d8:b6:e6:b9:92:f0:90:94:0b: b1:69:a5:7b:c3:23:e6:21:4a:b5:5e:60:9c:0a:70:fe:db:19: 70:5a:7f:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI2Yo1yhehuJng0ks/+gkhGioUt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA0MTcxNzM0MjBaFw0yNTA0MTYxNzM5MjBaMDMxMTAvBgNV BAMTKDg4QkJEQjEzN0M3QjI4MTQ2MjkyRjczNjRGMkVDRTI5Q0IyOTk0QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyd8xB91KrG8L2EIRmlzM3UgTn hDK/7RyG2EEyXVubdhriePEtp6yal1pQEYuG836JO1HJSPgNMuSoVh3cjcaZ9GL1 r7BVe4TdHjiD/XdtWQwuRZhrXYRc+7jEuGjTmOiYZuGaHRO0O2x9I79iviBmEJMd OxzNlVrI47DAQPxLpOzQv8IOCzMLWd4UL9fwniiUBdm1RPDmqNcqVN4hKHJ5TSPM DQE17MEY5VXt8+wHoc36l8+pyiuv+LongKZwOMviSwP4UKimP/Tfw7MPb/rTz0mN 12WjhSWfZoGQ2gWagyKF2iYGRHLPYLLo3ZwHQDlgG0GWC+IxC74L5W7nmGTHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiLvbE3x7KBRikvc2Ty7OKcsplLowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1MTkyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wcIwDQYJKoZIhvcNAQELBQADggEBACeQl/3d4EVQ02Nf3OMHmF56vp42I3azGOtD DyzMpF9fm2JRSKnamzVnb80K8IpitVm0HSDXbq3dWfbWcCsXRx+qnCcljdDssSQf CehIMsrY94C9BofQi9bAu895tArIr6OhW8tYb0U1KpYiX2txKTUmG9oOuH4av1nE dsdGLeeBQFE5g1KBPpgIHCl9lPl9MsVu2HiF5heq48N0FgwFbGQM5CQivwYuY5ge drOWazrZ2CBH2FyHgNxIC5v2UC9WGVkCietxPS1IlQMsISZYYwJQpwtU4WR01ZoD J9pAFOpi89i25rmS8JCUC7FppXvDI+YhSrVeYJwKcP7bGXBafyo= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org