$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215459.roa File: AS215459.roa (raw, json) Hash identifier: KYWYwIl2cVAxooLCoRxlUF9+mGvV0jpajBVHZY+NcJs= Subject key identifier: 19:61:F0:C1:0C:7E:C9:05:32:E3:59:EB:D8:DF:A5:B3:CC:38:59:B5 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 648E506FB91D46C4BD299270BD08606A67DC8230 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215459.roa Signing time: Tue 27 Feb 2024 23:54:07 +0000 ROA not before: Tue 27 Feb 2024 23:49:07 +0000 ROA not after: Tue 25 Feb 2025 23:54:07 +0000 asID: 215459 IP address blocks: 2a07:54c4:19a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8e:50:6f:b9:1d:46:c4:bd:29:92:70:bd:08:60:6a:67:dc:82:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 27 23:49:07 2024 GMT Not After : Feb 25 23:54:07 2025 GMT Subject: CN=1961F0C10C7EC90532E359EBD8DFA5B3CC3859B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:69:b3:f7:59:df:e8:d1:24:39:5f:71:f7: ae:5d:24:9e:1c:55:12:4d:4a:c3:5e:4f:a5:3c:76: 6d:48:33:0b:70:8e:fb:9e:a4:9d:07:66:d4:89:e5: fe:bd:e1:95:a4:23:20:b7:08:20:a9:61:d2:de:b6: 1b:48:10:83:fb:c7:07:21:81:19:0a:05:b4:d3:e3: b0:67:8a:e0:ad:10:c1:ed:3d:4f:31:32:71:61:70: 90:f7:36:bc:7a:7d:9e:ca:46:1b:95:82:5f:b9:d5: 72:55:1e:22:87:59:d3:c5:e2:d0:97:3f:8d:04:3e: 09:c2:9a:0a:5c:6a:b9:8d:44:ee:22:6f:0b:4a:41: b3:a8:57:7f:43:81:79:79:5a:68:26:92:25:9e:8d: 08:70:6f:22:66:f0:60:72:37:88:c3:05:10:2c:ed: b5:a5:ba:54:87:f5:2f:56:da:8b:58:98:19:93:b0: a9:fb:ed:01:ff:1d:e8:a2:6f:30:51:30:f1:79:0e: 75:82:c3:4e:31:0e:c6:e9:d2:06:e6:40:40:61:74: d6:d0:c4:79:1c:02:eb:bb:3e:71:68:05:77:f3:5a: ca:7b:25:33:36:2b:43:62:8e:a9:a6:8b:34:55:ef: ae:ed:6f:3c:e9:12:e1:c5:d6:58:73:b6:34:86:df: e7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:61:F0:C1:0C:7E:C9:05:32:E3:59:EB:D8:DF:A5:B3:CC:38:59:B5 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215459.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:19a0::/44 Signature Algorithm: sha256WithRSAEncryption 47:4d:2d:57:ce:15:81:84:df:cc:6d:24:44:f1:25:1b:32:88: 3b:14:c9:56:c1:6b:30:3d:a6:de:7d:8d:14:f3:5d:2e:d5:28: 06:14:71:c0:30:4c:ce:e8:b9:a3:b7:82:9b:99:de:c9:f3:02: 32:53:ce:f9:2f:80:7b:d2:95:f7:f9:c9:45:12:38:81:c3:5a: fb:03:9a:ac:e3:77:01:46:71:fe:22:bb:f9:08:9c:0f:66:0d: c5:89:88:65:cb:b4:7f:87:4d:b2:52:20:d3:33:15:a6:9f:30: c4:c9:c4:a6:66:c8:4f:ba:fc:b6:60:c2:4c:1f:65:50:74:f7: b4:33:35:b8:a7:0f:a7:02:c6:5b:f0:6a:5e:89:e7:fb:a2:b6: 7d:c9:03:fb:1e:94:ee:21:39:95:23:75:5c:84:01:1b:74:9b: a6:ae:a9:11:1b:bf:9b:4f:f5:30:22:78:07:12:de:e7:e4:f9: e7:18:d7:ed:ac:34:71:18:14:b0:62:c9:4f:dd:a3:30:1f:f1: 18:1a:dc:3a:3e:07:06:ae:25:03:d1:4d:ff:25:7c:84:d9:e6: 4f:f5:7f:47:0a:a8:d6:58:a3:eb:41:90:95:7b:7c:9c:0a:41: 92:b1:85:5a:9d:11:00:01:79:15:d2:bd:bb:82:2f:25:fe:75: 61:f9:33:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZI5Qb7kdRsS9KZJwvQhgamfcgjAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMjcyMzQ5MDdaFw0yNTAyMjUyMzU0MDdaMDMxMTAvBgNV BAMTKDE5NjFGMEMxMEM3RUM5MDUzMkUzNTlFQkQ4REZBNUIzQ0MzODU5QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJWmz91nf6NEkOV9x965dJJ4c VRJNSsNeT6U8dm1IMwtwjvuepJ0HZtSJ5f694ZWkIyC3CCCpYdLethtIEIP7xwch gRkKBbTT47BniuCtEMHtPU8xMnFhcJD3Nrx6fZ7KRhuVgl+51XJVHiKHWdPF4tCX P40EPgnCmgpcarmNRO4ibwtKQbOoV39DgXl5WmgmkiWejQhwbyJm8GByN4jDBRAs 7bWlulSH9S9W2otYmBmTsKn77QH/HeiibzBRMPF5DnWCw04xDsbp0gbmQEBhdNbQ xHkcAuu7PnFoBXfzWsp7JTM2K0NijqmmizRV767tbzzpEuHF1lhztjSG3+fnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUGWHwwQx+yQUy41nr2N+ls8w4WbUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1NDU5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU xBmgMA0GCSqGSIb3DQEBCwUAA4IBAQBHTS1XzhWBhN/MbSRE8SUbMog7FMlWwWsw PabefY0U810u1SgGFHHAMEzO6Lmjt4Kbmd7J8wIyU875L4B70pX3+clFEjiBw1r7 A5qs43cBRnH+Irv5CJwPZg3FiYhly7R/h02yUiDTMxWmnzDEycSmZshPuvy2YMJM H2VQdPe0MzW4pw+nAsZb8Gpeief7orZ9yQP7HpTuITmVI3VchAEbdJumrqkRG7+b T/UwIngHEt7n5PnnGNftrDRxGBSwYslP3aMwH/EYGtw6PgcGriUD0U3/JXyE2eZP 9X9HCqjWWKPrQZCVe3ycCkGSsYVanREAAXkV0r27gi8l/nVh+TNw -----END CERTIFICATE-----Generated at Mon May 20 06:23:07 2024 by rpki-client on console-fra.rpki-client.org