$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215382.roa File: AS215382.roa (raw, json) Hash identifier: Lo91rKB7xYqOvQYZBs72sExfRDZQ8pBNIX6owbCKDvE= Subject key identifier: E2:37:DB:62:EF:18:90:12:47:59:2E:22:82:89:5F:B3:C0:0A:3A:DC Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0E5AB01C53EBB8D5FAF662F3766DD0924C1E42C6 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215382.roa Signing time: Thu 14 Mar 2024 19:31:53 +0000 ROA not before: Thu 14 Mar 2024 19:26:53 +0000 ROA not after: Thu 13 Mar 2025 19:31:53 +0000 asID: 215382 IP address blocks: 2a07:54c1:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:5a:b0:1c:53:eb:b8:d5:fa:f6:62:f3:76:6d:d0:92:4c:1e:42:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 14 19:26:53 2024 GMT Not After : Mar 13 19:31:53 2025 GMT Subject: CN=E237DB62EF18901247592E2282895FB3C00A3ADC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5a:c8:bb:7a:7a:e2:ad:0e:70:33:f9:1e:a4: 11:32:ea:fb:39:fd:50:ea:c7:e7:73:36:fe:02:de: 60:a5:10:46:6c:42:f4:71:c0:16:38:ea:3f:da:47: 84:a8:c7:d8:b9:d1:83:d4:91:d6:e5:7f:ce:cf:21: 70:af:db:64:11:3e:99:2e:d0:2c:38:c9:c1:29:ba: fd:b0:5b:0b:8e:0b:40:b1:72:b0:21:26:b0:9a:be: 5d:15:03:5d:38:8c:4d:19:c5:27:42:a7:ce:49:69: ea:cd:4f:df:c9:f6:26:17:b3:29:bd:6d:78:0d:3b: 4b:a0:ca:76:07:f0:ed:3e:bd:b0:7d:72:70:e3:29: 6f:3c:c0:ae:9a:a9:53:d8:aa:4f:83:9c:be:ce:e9: 8c:e4:e6:69:34:e2:ed:e4:cb:a8:d4:cd:fd:6f:d9: ae:cf:c5:d0:33:26:17:47:a8:02:6e:ba:ab:4d:6d: 76:31:81:9c:b1:81:40:4e:18:95:4b:91:86:75:dd: 35:4c:52:69:5d:9e:a8:4a:cc:71:fb:5f:0d:73:33: 0d:1d:fa:c6:91:92:40:b4:d8:5e:f0:a6:05:01:ff: a6:56:73:64:3d:f9:39:77:b7:05:74:58:10:52:e1: 1c:fd:15:cc:00:9d:ee:8b:24:41:96:93:7e:04:b6: 0d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:37:DB:62:EF:18:90:12:47:59:2E:22:82:89:5F:B3:C0:0A:3A:DC X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215382.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2100::/40 Signature Algorithm: sha256WithRSAEncryption 88:00:3c:3a:80:bb:9f:e7:c9:13:eb:3e:00:d7:6b:82:bd:64: 91:2d:6b:58:98:14:0e:af:87:bd:26:ad:f8:d1:bc:4e:ec:4e: 17:ea:85:6f:ff:68:b8:fe:36:42:3e:32:a6:43:e1:70:39:b5: 89:0c:69:10:70:a2:bf:67:18:e0:33:be:42:cb:32:17:14:e6: 6a:f9:48:a9:82:ae:cf:8c:0a:60:0f:14:5b:65:37:04:30:30: 28:e5:fe:75:79:3d:5a:89:b3:24:32:e7:d9:e4:50:88:a2:25: 24:ba:ce:02:07:6a:dd:f2:db:1c:d3:c5:0b:0e:26:b8:41:c3: 34:18:a4:fb:e3:92:26:3f:59:ee:f1:ef:6b:3e:52:5b:b3:db: 0a:8d:df:68:02:79:5e:ec:46:ed:71:d0:df:d2:6b:96:7c:84: 57:63:db:41:2f:c3:69:db:7c:e5:7b:f0:a5:78:72:6d:9b:15: 4a:76:01:bb:99:ca:14:dd:2b:c6:db:6c:68:16:8c:54:f0:d9: 11:e6:b6:3b:6c:46:d5:fc:94:69:07:50:4f:b4:87:6a:33:26: 71:0f:32:ef:da:f9:33:a2:08:a0:8a:ce:21:9a:81:06:de:0b: e1:4e:ac:9f:37:a0:0e:16:ae:63:c5:83:8f:d9:e2:28:f2:f5: dd:97:c9:fb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDlqwHFPruNX69mLzdm3QkkweQsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMTQxOTI2NTNaFw0yNTAzMTMxOTMxNTNaMDMxMTAvBgNV BAMTKEUyMzdEQjYyRUYxODkwMTI0NzU5MkUyMjgyODk1RkIzQzAwQTNBREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTWsi7enrirQ5wM/kepBEy6vs5 /VDqx+dzNv4C3mClEEZsQvRxwBY46j/aR4Sox9i50YPUkdblf87PIXCv22QRPpku 0Cw4ycEpuv2wWwuOC0CxcrAhJrCavl0VA104jE0ZxSdCp85JaerNT9/J9iYXsym9 bXgNO0ugynYH8O0+vbB9cnDjKW88wK6aqVPYqk+DnL7O6Yzk5mk04u3ky6jUzf1v 2a7PxdAzJhdHqAJuuqtNbXYxgZyxgUBOGJVLkYZ13TVMUmldnqhKzHH7Xw1zMw0d +saRkkC02F7wpgUB/6ZWc2Q9+Tl3twV0WBBS4Rz9FcwAne6LJEGWk34Etg1jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4jfbYu8YkBJHWS4igolfs8AKOtwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1MzgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSEwDQYJKoZIhvcNAQELBQADggEBAIgAPDqAu5/nyRPrPgDXa4K9ZJEta1iYFA6v h70mrfjRvE7sThfqhW//aLj+NkI+MqZD4XA5tYkMaRBwor9nGOAzvkLLMhcU5mr5 SKmCrs+MCmAPFFtlNwQwMCjl/nV5PVqJsyQy59nkUIiiJSS6zgIHat3y2xzTxQsO JrhBwzQYpPvjkiY/We7x72s+Uluz2wqN32gCeV7sRu1x0N/Sa5Z8hFdj20Evw2nb fOV78KV4cm2bFUp2AbuZyhTdK8bbbGgWjFTw2RHmtjtsRtX8lGkHUE+0h2ozJnEP Mu/a+TOiCKCKziGagQbeC+FOrJ83oA4WrmPFg4/Z4ijy9d2Xyfs= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org