$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215680.roa File: AS215680.roa (raw, json) Hash identifier: NhQhBdE4fE5spjBsBthS2vjZKAO9D+HUtG06SQPcPAY= Subject key identifier: 51:56:4B:49:4F:73:10:D4:46:E4:6C:CD:BD:2C:C6:2B:66:38:D5:8F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 56EC3D48BE906D146892EE625C92962D3B5C9507 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215680.roa Signing time: Sat 29 Jun 2024 23:45:02 +0000 ROA not before: Sat 29 Jun 2024 23:40:02 +0000 ROA not after: Sat 28 Jun 2025 23:45:02 +0000 asID: 215680 IP address blocks: 2a07:54c1:c600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ec:3d:48:be:90:6d:14:68:92:ee:62:5c:92:96:2d:3b:5c:95:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jun 29 23:40:02 2024 GMT Not After : Jun 28 23:45:02 2025 GMT Subject: CN=51564B494F7310D446E46CCDBD2CC62B6638D58F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:34:b4:71:c6:20:42:ea:81:a8:9c:f7:b7:8a: 6d:57:98:42:1d:7b:4c:51:4a:a7:0d:e2:fb:ac:b5: f4:2f:7d:b3:b4:b7:1d:73:c5:f0:df:37:d4:c1:29: 73:cc:5b:50:37:5a:f7:3a:ef:08:e5:ca:fe:50:e6: c8:8f:80:ca:14:56:94:2d:e1:63:44:92:0a:af:69: 9d:28:c8:a7:be:75:e1:cb:51:f8:f2:cd:3d:0c:70: 64:67:b9:5e:d8:4b:14:e8:ea:52:a1:a6:cc:68:df: 80:b2:b6:7c:d0:da:99:a8:b7:cc:3e:a7:06:a4:a1: 0d:34:52:3c:ad:cf:1b:66:3b:6e:8f:74:62:06:cf: 8b:19:3d:90:d1:89:a4:9b:b3:e2:a0:77:e9:5d:2e: 0a:6d:30:39:43:59:33:7e:57:2f:57:ba:b3:4a:dd: 1c:83:f6:b6:76:bc:f9:af:fb:f0:b4:05:a0:04:9e: 38:b6:a7:f2:d8:e2:13:59:7c:58:4c:80:57:b9:e5: 89:4f:98:79:0d:96:b6:62:1d:b3:a1:46:00:a3:44: 86:91:13:42:e6:f6:8c:0b:18:96:d3:d9:1a:a3:e2: 05:46:f2:b6:ad:01:95:b2:d1:00:90:8a:67:cd:2a: 4e:fe:98:3c:e9:f5:1a:1f:bc:86:97:26:59:8a:7c: 80:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:56:4B:49:4F:73:10:D4:46:E4:6C:CD:BD:2C:C6:2B:66:38:D5:8F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c600::/40 Signature Algorithm: sha256WithRSAEncryption 67:60:42:9b:aa:4a:75:bd:4f:5e:77:37:38:ae:c0:21:52:0b: e1:82:a4:cb:22:05:f5:a1:d9:16:e4:54:ba:5f:b8:73:62:c2: 2b:5a:03:22:d1:06:82:5e:ce:05:a6:2a:7f:9b:8f:af:8e:71: 72:20:9b:1e:66:43:04:3a:48:a2:e7:50:d6:61:a1:50:2e:28: 9e:6c:97:24:d5:5e:96:ed:35:d4:2f:2f:64:24:54:21:e1:be: e0:d9:a2:fa:be:46:59:eb:db:96:9c:a1:50:d1:99:3c:70:69: 7c:f9:95:81:f4:c7:b2:31:10:82:a6:a7:84:fe:a2:29:88:af: ca:02:95:e2:c1:95:d8:c7:4e:31:65:9b:02:2c:f8:bd:95:82: 4f:80:bd:98:8b:9d:b5:a2:0b:a7:19:93:1f:18:c3:24:56:78: 73:aa:23:0c:26:1b:64:8c:11:bb:5d:4a:4d:89:a6:d0:34:f8: 8c:32:f1:fb:88:4a:fd:2e:12:4a:1f:93:e7:4f:02:8b:d6:48: 11:8b:a6:f5:75:d7:b1:f2:00:df:c2:0d:2c:b6:ec:7f:cf:52: 4b:99:84:8a:c4:b3:7d:2c:09:0b:4d:06:3f:8f:ef:a8:e8:38: 97:13:a5:aa:d2:e1:c1:d4:52:f4:b5:26:2a:4c:40:ef:04:0a: bf:bf:d8:d1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVuw9SL6QbRRoku5iXJKWLTtclQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA2MjkyMzQwMDJaFw0yNTA2MjgyMzQ1MDJaMDMxMTAvBgNV BAMTKDUxNTY0QjQ5NEY3MzEwRDQ0NkU0NkNDREJEMkNDNjJCNjYzOEQ1OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGNLRxxiBC6oGonPe3im1XmEId e0xRSqcN4vustfQvfbO0tx1zxfDfN9TBKXPMW1A3Wvc67wjlyv5Q5siPgMoUVpQt 4WNEkgqvaZ0oyKe+deHLUfjyzT0McGRnuV7YSxTo6lKhpsxo34CytnzQ2pmot8w+ pwakoQ00UjytzxtmO26PdGIGz4sZPZDRiaSbs+Kgd+ldLgptMDlDWTN+Vy9XurNK 3RyD9rZ2vPmv+/C0BaAEnji2p/LY4hNZfFhMgFe55YlPmHkNlrZiHbOhRgCjRIaR E0Lm9owLGJbT2Rqj4gVG8ratAZWy0QCQimfNKk7+mDzp9RofvIaXJlmKfIDTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUVZLSU9zENRG5GzNvSzGK2Y41Y8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1NjgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wcYwDQYJKoZIhvcNAQELBQADggEBAGdgQpuqSnW9T153NziuwCFSC+GCpMsiBfWh 2RbkVLpfuHNiwitaAyLRBoJezgWmKn+bj6+OcXIgmx5mQwQ6SKLnUNZhoVAuKJ5s lyTVXpbtNdQvL2QkVCHhvuDZovq+Rlnr25acoVDRmTxwaXz5lYH0x7IxEIKmp4T+ oimIr8oCleLBldjHTjFlmwIs+L2Vgk+AvZiLnbWiC6cZkx8YwyRWeHOqIwwmG2SM EbtdSk2JptA0+Iwy8fuISv0uEkofk+dPAovWSBGLpvV117HyAN/CDSy27H/PUkuZ hIrEs30sCQtNBj+P76joOJcTparS4cHUUvS1JipMQO8ECr+/2NE= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org