$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215600.roa File: AS215600.roa (raw, json) Hash identifier: FA92o9IFrfEIiQLJIA6dWHozis5cZKLRbaqFLnHwbsI= Subject key identifier: 62:A4:56:B9:DA:DA:C7:99:57:52:57:01:01:36:D1:A5:41:71:96:CA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 018E9EAC25D08F3D4519B1937F429B4BBF76B2AA Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215600.roa Signing time: Thu 01 Feb 2024 00:37:54 +0000 ROA not before: Thu 01 Feb 2024 00:32:54 +0000 ROA not after: Thu 30 Jan 2025 00:37:54 +0000 asID: 215600 IP address blocks: 2a07:54c3::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8e:9e:ac:25:d0:8f:3d:45:19:b1:93:7f:42:9b:4b:bf:76:b2:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 1 00:32:54 2024 GMT Not After : Jan 30 00:37:54 2025 GMT Subject: CN=62A456B9DADAC799575257010136D1A5417196CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:76:31:dc:bb:90:a3:2f:45:8e:23:6f:91:ff: 5f:d1:5e:03:fd:58:06:9e:95:6e:ef:a8:c8:31:e6: 0e:ac:8f:5f:06:68:87:24:54:d0:5c:1a:c3:00:f5: 30:c3:f2:38:e6:ac:bc:27:54:ab:53:7d:68:83:36: 3e:81:58:a1:68:33:20:c8:36:3f:1d:18:9b:cd:82: bc:ca:e4:36:38:0e:d1:aa:b3:9a:e4:1f:cf:85:16: 3b:08:e8:ea:30:9f:be:2f:71:ef:ed:0e:25:be:75: b9:db:e6:76:b3:4a:87:c6:92:33:3a:ca:7a:0a:97: 38:97:30:d3:66:81:3e:e1:aa:0f:d4:a1:90:29:7e: ae:65:eb:77:14:03:59:fa:c0:ce:67:18:1e:5c:2c: e1:4b:6a:8e:d7:48:82:87:78:af:25:d7:fa:8b:d6: 20:11:0b:31:87:0e:1d:fd:f5:ae:8d:e1:18:59:72: 12:a2:99:26:e5:20:83:9a:1d:0f:5e:53:7b:83:15: 96:d1:4e:8f:24:73:3b:6b:2a:6e:3e:9c:38:00:89: 9c:d6:d1:66:89:86:a3:d9:18:1b:86:7e:a9:e3:fa: 94:79:c4:7c:c1:f0:12:2c:b4:46:23:22:76:13:92: 8c:0b:93:d3:28:29:a5:3b:83:63:2a:6c:73:9c:39: 9e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A4:56:B9:DA:DA:C7:99:57:52:57:01:01:36:D1:A5:41:71:96:CA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c3::/32 Signature Algorithm: sha256WithRSAEncryption 9b:f6:d2:92:7c:5e:20:4a:52:1c:ee:cf:3f:00:48:77:95:b2: 44:5f:1b:6d:9b:bb:e6:b0:29:19:e8:f1:3a:5f:6c:54:b7:cf: ac:b1:b1:1a:97:ae:36:c2:aa:a7:d6:8c:89:d7:c2:ff:95:7d: 81:17:46:92:7d:8d:b0:03:41:e5:e4:c4:d2:a8:39:69:88:f2: 84:b3:5f:27:e6:e2:18:e2:14:de:b3:60:9b:ba:01:16:56:28: 6d:a9:7c:b3:55:57:f9:da:b0:1a:53:f6:92:77:b7:8c:d8:55: 29:42:a6:35:c3:f7:01:2f:cb:b7:3d:72:3c:d5:9b:bd:a8:78: ff:f5:f0:e3:d1:69:5c:27:78:3f:67:de:0c:f8:d1:d8:5e:ed: 80:ea:43:e3:9c:bf:e9:87:e0:c7:5f:1f:4d:eb:f2:c2:12:06: 63:53:60:49:ed:e0:eb:a2:03:08:65:3b:9e:68:9a:a7:cb:90: 9a:68:73:45:13:58:e0:4e:f9:06:9e:23:ef:c7:1b:cb:50:ed: bd:d8:f1:8a:87:c1:63:4a:e3:3a:f1:4b:0c:80:d5:8e:be:a2: 23:db:39:c0:73:f5:90:9f:47:1d:46:88:95:3c:9d:f2:8e:b1: d9:d6:79:71:d3:90:02:64:a4:19:f3:03:22:22:ea:89:c0:82: ae:7e:bc:56 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAY6erCXQjz1FGbGTf0KbS792sqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMDEwMDMyNTRaFw0yNTAxMzAwMDM3NTRaMDMxMTAvBgNV BAMTKDYyQTQ1NkI5REFEQUM3OTk1NzUyNTcwMTAxMzZEMUE1NDE3MTk2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvdjHcu5CjL0WOI2+R/1/RXgP9 WAaelW7vqMgx5g6sj18GaIckVNBcGsMA9TDD8jjmrLwnVKtTfWiDNj6BWKFoMyDI Nj8dGJvNgrzK5DY4DtGqs5rkH8+FFjsI6Oown74vce/tDiW+dbnb5nazSofGkjM6 ynoKlziXMNNmgT7hqg/UoZApfq5l63cUA1n6wM5nGB5cLOFLao7XSIKHeK8l1/qL 1iARCzGHDh399a6N4RhZchKimSblIIOaHQ9eU3uDFZbRTo8kcztrKm4+nDgAiZzW 0WaJhqPZGBuGfqnj+pR5xHzB8BIstEYjInYTkowLk9MoKaU7g2MqbHOcOZ6LAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYqRWudrax5lXUlcBATbRpUFxlsowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1NjAwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgdU wzANBgkqhkiG9w0BAQsFAAOCAQEAm/bSknxeIEpSHO7PPwBId5WyRF8bbZu75rAp GejxOl9sVLfPrLGxGpeuNsKqp9aMidfC/5V9gRdGkn2NsANB5eTE0qg5aYjyhLNf J+biGOIU3rNgm7oBFlYobal8s1VX+dqwGlP2kne3jNhVKUKmNcP3AS/Ltz1yPNWb vah4//Xw49FpXCd4P2feDPjR2F7tgOpD45y/6Yfgx18fTevywhIGY1NgSe3g66ID CGU7nmiap8uQmmhzRRNY4E75Bp4j78cby1DtvdjxiofBY0rjOvFLDIDVjr6iI9s5 wHP1kJ9HHUaIlTyd8o6x2dZ5cdOQAmSkGfMDIiLqicCCrn68Vg== -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org