$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa File: AS215363.roa (raw, json) Hash identifier: ExjyRY238m5qPWOwF+SpKrd2SE0+0kUiLp2xmbTLVQE= Subject key identifier: 8E:5B:9F:32:87:E9:4E:6E:7A:21:DF:20:30:04:36:0F:C8:B2:36:26 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 58DA721E6C3C50D5FC4839C84BCA4C2940EE6E10 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa Signing time: Sat 09 Mar 2024 15:44:46 +0000 ROA not before: Sat 09 Mar 2024 15:39:46 +0000 ROA not after: Sat 08 Mar 2025 15:44:46 +0000 asID: 215363 IP address blocks: 2a07:54c1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:da:72:1e:6c:3c:50:d5:fc:48:39:c8:4b:ca:4c:29:40:ee:6e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 9 15:39:46 2024 GMT Not After : Mar 8 15:44:46 2025 GMT Subject: CN=8E5B9F3287E94E6E7A21DF203004360FC8B23626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:69:21:09:29:f8:8f:a8:5a:18:10:75:1c:9f: 75:1a:a0:34:05:3b:b2:93:e2:a2:d0:8a:33:de:e4: d6:84:2b:5e:cc:8e:55:0a:e7:d8:6e:23:1e:f5:a7: a8:60:9f:d0:a2:82:39:c0:b5:09:68:f3:82:94:9b: 7c:79:1e:97:aa:25:0c:1b:59:ab:3f:dc:b0:da:9e: 3d:d1:c7:f8:37:a4:09:c5:f0:c6:e5:7d:24:ec:e0: 50:7c:25:3a:ca:1d:9b:2b:71:fa:21:3d:74:5a:f9: 72:02:66:06:7a:75:56:1d:89:d3:b1:12:5a:d5:98: 37:76:76:82:59:92:bb:87:f8:2c:62:d4:40:f8:b0: f7:b6:12:8c:a0:90:56:f9:33:89:85:ec:dc:6b:97: d9:1e:b5:8b:ec:68:72:67:e7:d7:51:44:09:7e:1d: df:8f:77:d2:ea:4d:75:0b:58:8e:71:1f:f6:ed:58: 74:d6:4d:77:b1:09:00:dc:92:e3:39:65:99:78:49: 5d:86:3b:55:d2:4a:99:ac:70:18:db:ae:71:86:8f: b2:f2:91:62:03:a1:68:1a:19:73:cc:65:25:80:82: 94:5c:b5:c4:d2:1f:31:60:74:fc:0b:81:d3:1a:bb: e6:10:3c:4b:ff:4b:32:00:44:a8:21:46:46:5a:2d: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5B:9F:32:87:E9:4E:6E:7A:21:DF:20:30:04:36:0F:C8:B2:36:26 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2000::/40 Signature Algorithm: sha256WithRSAEncryption 4b:62:47:e7:ce:15:2e:ab:d7:a0:23:0e:0d:5c:c9:6b:ac:fe: 45:60:bf:26:ba:86:94:61:6a:80:2a:7c:06:2b:fd:9a:e7:20: b8:5e:74:9c:e3:b2:78:cc:95:47:93:8e:d3:26:dc:46:6f:10: 00:29:e2:fe:76:fd:70:ca:2a:22:1e:66:2f:7e:ea:96:13:40: d2:d9:c7:97:66:1f:49:03:37:40:b5:5e:86:3c:ce:78:36:39: 46:27:45:f5:6c:12:09:0f:04:92:75:e8:fb:cb:44:58:e8:92: cc:2f:38:57:11:c5:8f:35:6c:58:e5:ff:af:02:81:f6:27:20: e7:c4:5e:0b:2c:78:5e:20:f5:31:3f:b2:0d:58:fd:3d:1e:1b: 99:07:bd:98:10:3c:9f:ea:dd:8f:69:48:82:32:0a:e1:43:49: b5:59:0c:18:84:91:76:34:0b:21:c4:d0:12:55:8e:b1:11:88: 46:cc:76:14:09:7b:cd:a7:b2:76:10:63:11:9f:77:71:34:31: 8d:d6:73:a5:3e:bb:2c:10:b2:e7:b0:da:58:82:30:68:b0:d5: cc:97:22:f3:f2:31:ad:f9:10:5e:91:04:c4:34:39:be:99:da: 75:b8:e7:4f:23:db:c8:20:93:1e:77:a0:c1:14:5b:56:c1:2a: 21:c4:bb:6b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWNpyHmw8UNX8SDnIS8pMKUDubhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMDkxNTM5NDZaFw0yNTAzMDgxNTQ0NDZaMDMxMTAvBgNV BAMTKDhFNUI5RjMyODdFOTRFNkU3QTIxREYyMDMwMDQzNjBGQzhCMjM2MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvaSEJKfiPqFoYEHUcn3UaoDQF O7KT4qLQijPe5NaEK17MjlUK59huIx71p6hgn9CigjnAtQlo84KUm3x5HpeqJQwb Was/3LDanj3Rx/g3pAnF8MblfSTs4FB8JTrKHZsrcfohPXRa+XICZgZ6dVYdidOx ElrVmDd2doJZkruH+Cxi1ED4sPe2EoygkFb5M4mF7Nxrl9ketYvsaHJn59dRRAl+ Hd+Pd9LqTXULWI5xH/btWHTWTXexCQDckuM5ZZl4SV2GO1XSSpmscBjbrnGGj7Ly kWIDoWgaGXPMZSWAgpRctcTSHzFgdPwLgdMau+YQPEv/SzIARKghRkZaLYKjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjlufMofpTm56Id8gMAQ2D8iyNiYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1MzYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSAwDQYJKoZIhvcNAQELBQADggEBAEtiR+fOFS6r16AjDg1cyWus/kVgvya6hpRh aoAqfAYr/ZrnILhedJzjsnjMlUeTjtMm3EZvEAAp4v52/XDKKiIeZi9+6pYTQNLZ x5dmH0kDN0C1XoY8zng2OUYnRfVsEgkPBJJ16PvLRFjokswvOFcRxY81bFjl/68C gfYnIOfEXgsseF4g9TE/sg1Y/T0eG5kHvZgQPJ/q3Y9pSIIyCuFDSbVZDBiEkXY0 CyHE0BJVjrERiEbMdhQJe82nsnYQYxGfd3E0MY3Wc6U+uywQsuew2liCMGiw1cyX IvPyMa35EF6RBMQ0Ob6Z2nW4508j28ggkx53oMEUW1bBKiHEu2s= -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org