$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215473.roa File: AS215473.roa (raw, json) Hash identifier: 065xPS6ZokhZF8fuiWxlsOe/4NG1JmkwPh94YE8S9d0= Subject key identifier: 54:47:3B:15:EB:51:A1:08:0A:CA:BE:E5:0F:8F:99:B5:E3:86:70:EF Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3ECBE807C83AA7A7EE4AC07C7873998366A6DC82 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215473.roa Signing time: Fri 08 Mar 2024 11:09:46 +0000 ROA not before: Fri 08 Mar 2024 11:04:46 +0000 ROA not after: Fri 07 Mar 2025 11:09:46 +0000 asID: 215473 IP address blocks: 2a07:54c1:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:cb:e8:07:c8:3a:a7:a7:ee:4a:c0:7c:78:73:99:83:66:a6:dc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 8 11:04:46 2024 GMT Not After : Mar 7 11:09:46 2025 GMT Subject: CN=54473B15EB51A1080ACABEE50F8F99B5E38670EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:db:8f:b6:ce:81:88:89:e2:96:fe:c8:c0:f9: 4e:2e:a1:71:cf:72:79:6b:7a:58:31:5a:40:a8:b5: 50:da:db:60:f3:e4:fb:6f:c2:13:7d:70:14:22:03: 30:4f:23:f1:bb:55:a7:5b:5c:e0:51:41:8a:63:44: bd:76:b3:75:25:45:e6:e0:f2:2f:19:ca:a2:1c:7e: 53:48:e7:4e:8b:c2:d0:31:91:9c:f8:f3:7d:99:ab: f1:fd:c1:ed:35:8b:b1:15:ee:50:21:1c:11:18:fb: 30:13:d2:76:c3:0d:55:38:97:f5:fc:0b:c5:03:6a: b6:6d:be:e0:a2:93:73:e8:92:16:e0:bd:f0:f1:4a: 4d:ae:3a:32:55:2d:03:c3:0d:8b:fe:c4:db:c4:e3: f9:fb:2a:fb:e0:9f:93:2a:89:43:91:95:5e:d9:04: 6f:53:40:a3:9a:cd:d4:62:fa:00:01:ba:a8:ce:00: f0:94:17:b5:fd:c2:37:0e:58:d5:8c:16:a7:5a:c0: 3f:a8:da:b5:67:33:d7:8c:f5:29:fc:01:c9:7e:c2: 0b:4b:26:d8:8f:c3:98:6b:c8:69:e8:e6:4c:a9:f6: bb:87:0f:be:3a:e4:93:7b:05:9f:f8:c5:38:3b:ee: 5b:ab:c2:fc:fc:52:5c:f2:29:85:a7:e0:9d:e5:00: b8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:47:3B:15:EB:51:A1:08:0A:CA:BE:E5:0F:8F:99:B5:E3:86:70:EF X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215473.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4900::/40 Signature Algorithm: sha256WithRSAEncryption 44:b8:d9:eb:c8:be:11:37:e8:75:ca:35:a4:37:bc:cc:25:d7: 32:4c:c7:2e:f7:dc:c7:9b:c7:63:12:61:b4:a8:e6:94:01:00: 5f:ea:59:19:5d:31:ce:bd:c6:7e:0e:86:e8:4b:4f:36:3f:dd: 8b:73:80:4e:86:8e:7e:80:72:10:63:19:39:66:74:b6:97:88: 87:97:66:f9:5b:b6:27:3c:b3:16:f2:6e:28:f4:13:31:f3:2a: ab:05:0d:67:ee:53:62:99:a0:da:e5:7c:ac:ec:17:24:2c:d2: 7c:80:dc:32:69:5e:52:c3:30:5d:91:70:4d:a2:6d:8b:67:a6: bf:a1:c9:35:ec:01:fd:67:38:73:77:3e:92:9a:2f:45:7c:b0: 70:02:02:db:bb:17:ed:d0:d2:70:c1:ef:7b:0b:d9:47:95:f0: 49:4b:55:64:79:b7:6a:9e:56:20:80:a2:b1:aa:61:cd:a9:ee: 82:f0:fe:5a:47:a2:7c:00:49:ad:69:30:f8:af:a4:5b:77:7b: 20:fc:22:a0:45:20:1e:fc:89:90:27:96:74:b7:5c:90:87:d0: d0:72:a9:1e:ca:8b:22:a1:c9:b1:5c:97:58:92:97:fe:91:04: 5c:0f:26:44:44:1f:23:63:34:42:86:54:55:14:2b:d2:59:4c: 2b:9b:fe:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPsvoB8g6p6fuSsB8eHOZg2am3IIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMDgxMTA0NDZaFw0yNTAzMDcxMTA5NDZaMDMxMTAvBgNV BAMTKDU0NDczQjE1RUI1MUExMDgwQUNBQkVFNTBGOEY5OUI1RTM4NjcwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD524+2zoGIieKW/sjA+U4uoXHP cnlrelgxWkCotVDa22Dz5PtvwhN9cBQiAzBPI/G7VadbXOBRQYpjRL12s3UlRebg 8i8ZyqIcflNI506LwtAxkZz4832Zq/H9we01i7EV7lAhHBEY+zAT0nbDDVU4l/X8 C8UDarZtvuCik3PokhbgvfDxSk2uOjJVLQPDDYv+xNvE4/n7Kvvgn5MqiUORlV7Z BG9TQKOazdRi+gABuqjOAPCUF7X9wjcOWNWMFqdawD+o2rVnM9eM9Sn8Acl+wgtL JtiPw5hryGno5kyp9ruHD7465JN7BZ/4xTg77lurwvz8UlzyKYWn4J3lALjjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVEc7FetRoQgKyr7lD4+ZteOGcO8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1NDczLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUkwDQYJKoZIhvcNAQELBQADggEBAES42evIvhE36HXKNaQ3vMwl1zJMxy733Meb x2MSYbSo5pQBAF/qWRldMc69xn4OhuhLTzY/3YtzgE6Gjn6AchBjGTlmdLaXiIeX Zvlbtic8sxbybij0EzHzKqsFDWfuU2KZoNrlfKzsFyQs0nyA3DJpXlLDMF2RcE2i bYtnpr+hyTXsAf1nOHN3PpKaL0V8sHACAtu7F+3Q0nDB73sL2UeV8ElLVWR5t2qe ViCAorGqYc2p7oLw/lpHonwASa1pMPivpFt3eyD8IqBFIB78iZAnlnS3XJCH0NBy qR7KiyKhybFcl1iSl/6RBFwPJkREHyNjNEKGVFUUK9JZTCub/qw= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org