$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215243.roa File: AS215243.roa (raw, json) Hash identifier: QOvNgxxNC1lQitn74xZ9drztjPkAPZygb6lIqG4O7vE= Subject key identifier: 94:30:B0:70:98:B9:2A:DC:11:EE:E6:90:60:1A:38:FC:AE:14:C8:0E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6025EEE5607EDEF3CB378687A3B98E8CFFAD0FF7 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215243.roa Signing time: Tue 26 Mar 2024 18:41:55 +0000 ROA not before: Tue 26 Mar 2024 18:36:55 +0000 ROA not after: Tue 25 Mar 2025 18:41:55 +0000 asID: 215243 IP address blocks: 2a07:54c4:18a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:25:ee:e5:60:7e:de:f3:cb:37:86:87:a3:b9:8e:8c:ff:ad:0f:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 26 18:36:55 2024 GMT Not After : Mar 25 18:41:55 2025 GMT Subject: CN=9430B07098B92ADC11EEE690601A38FCAE14C80E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:f0:29:6f:ae:59:76:f8:38:ba:32:5b:d7: 6a:36:67:1c:eb:3c:22:0c:1b:a8:5b:93:60:c4:6f: fe:47:1d:50:b3:04:ff:57:ed:00:47:fb:92:18:35: 53:27:07:b6:e8:48:1d:d8:86:9e:9b:0a:3f:aa:df: ff:49:d2:72:10:3a:53:e1:10:69:f1:d4:b6:cb:f5: ed:78:e6:00:19:4c:2b:36:c6:68:f1:29:56:b5:27: d1:5b:b6:12:c8:b4:db:73:15:a1:c8:35:04:e7:f0: 78:2a:cc:45:c2:2a:f7:a0:9c:da:bf:48:d5:c2:46: 86:7d:98:d7:94:a6:4d:ae:6f:0e:36:f4:d0:7c:3d: fc:f1:b4:54:89:0f:d9:d5:f4:73:6c:b3:82:12:23: ae:5a:3c:e1:d0:b7:05:45:74:18:74:ca:9a:2d:b3: f1:92:0a:11:36:e9:6a:16:90:1d:5f:90:ee:ef:f8: 72:40:1e:fc:52:0d:66:5e:8c:3f:ec:ea:2d:4d:f3: 77:8e:82:69:ad:64:fb:63:3c:20:08:6d:3f:e3:62: 9f:a7:18:ad:cb:7b:27:3f:97:b2:90:97:2e:69:71: 94:b2:92:97:4d:43:b3:e3:dc:8b:4e:19:83:82:c0: c6:de:89:83:e4:e1:86:dc:f5:17:bf:69:a2:82:a1: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:30:B0:70:98:B9:2A:DC:11:EE:E6:90:60:1A:38:FC:AE:14:C8:0E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215243.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:18a0::/44 Signature Algorithm: sha256WithRSAEncryption 0c:82:fc:dc:ea:d4:ab:30:21:d6:2a:b6:56:0e:2b:a7:e5:68: 86:5e:4c:74:19:9f:65:c9:ec:64:2b:30:10:38:49:ce:9d:6a: 64:75:9c:1a:cd:92:24:55:6b:ad:32:b5:f5:48:8d:61:ff:d4: 89:8f:e8:ef:90:70:56:46:84:d0:a4:99:9f:e4:66:01:78:9f: 92:de:76:58:65:c6:16:b5:75:29:d3:47:22:a8:92:57:b9:21: 69:a1:ec:87:f6:33:e3:ee:6b:20:db:b7:3c:d7:8a:87:6e:28: 2b:71:5b:a9:15:46:77:53:e5:08:99:9e:31:66:0a:a5:2e:00: 48:46:36:06:61:8a:aa:fc:81:fd:c5:31:58:90:26:f0:5a:4a: 8d:b7:fe:17:57:77:43:10:0e:31:61:8d:ea:f9:ae:6f:33:ee: 91:1d:9f:b4:62:c4:f2:f2:b3:2a:ab:2d:6b:89:bf:a1:3f:b8: ae:46:f1:f4:b0:b8:5d:bb:80:ab:02:af:43:76:09:16:f2:46: 2c:25:2b:19:0b:1d:ff:95:8b:ca:f6:a0:22:00:71:7b:17:54: 85:e5:fb:3d:23:42:e5:e8:6b:ed:68:a4:58:b5:46:c9:a2:d4: a8:4a:18:da:dc:44:63:d2:22:88:e8:9d:14:d0:ef:aa:08:24: 9c:5f:21:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYCXu5WB+3vPLN4aHo7mOjP+tD/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMjYxODM2NTVaFw0yNTAzMjUxODQxNTVaMDMxMTAvBgNV BAMTKDk0MzBCMDcwOThCOTJBREMxMUVFRTY5MDYwMUEzOEZDQUUxNEM4MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6PvApb65Zdvg4ujJb12o2Zxzr PCIMG6hbk2DEb/5HHVCzBP9X7QBH+5IYNVMnB7boSB3Yhp6bCj+q3/9J0nIQOlPh EGnx1LbL9e145gAZTCs2xmjxKVa1J9FbthLItNtzFaHINQTn8HgqzEXCKvegnNq/ SNXCRoZ9mNeUpk2ubw429NB8PfzxtFSJD9nV9HNss4ISI65aPOHQtwVFdBh0ypot s/GSChE26WoWkB1fkO7v+HJAHvxSDWZejD/s6i1N83eOgmmtZPtjPCAIbT/jYp+n GK3Leyc/l7KQly5pcZSykpdNQ7Pj3ItOGYOCwMbeiYPk4Ybc9Re/aaKCoW4LAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUlDCwcJi5KtwR7uaQYBo4/K4UyA4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1MjQzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU xBigMA0GCSqGSIb3DQEBCwUAA4IBAQAMgvzc6tSrMCHWKrZWDiun5WiGXkx0GZ9l yexkKzAQOEnOnWpkdZwazZIkVWutMrX1SI1h/9SJj+jvkHBWRoTQpJmf5GYBeJ+S 3nZYZcYWtXUp00ciqJJXuSFpoeyH9jPj7msg27c814qHbigrcVupFUZ3U+UImZ4x ZgqlLgBIRjYGYYqq/IH9xTFYkCbwWkqNt/4XV3dDEA4xYY3q+a5vM+6RHZ+0YsTy 8rMqqy1rib+hP7iuRvH0sLhdu4CrAq9DdgkW8kYsJSsZCx3/lYvK9qAiAHF7F1SF 5fs9I0Ll6GvtaKRYtUbJotSoShja3ERj0iKI6J0U0O+qCCScXyGm -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org