$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215823.roa File: AS215823.roa (raw, json) Hash identifier: djcVtHg7O6OibpIoOlWyYIygNwrdJG3IEpNS2me+uyU= Subject key identifier: BC:B4:0D:9C:6F:E9:06:19:FE:D9:12:0D:9A:D3:F4:86:E0:E1:CE:69 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 67923D33BF8DC6C56FD01E29397612D4FEA4093F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215823.roa Signing time: Tue 19 Nov 2024 22:33:35 +0000 ROA not before: Tue 19 Nov 2024 22:28:35 +0000 ROA not after: Tue 18 Nov 2025 22:33:35 +0000 asID: 215823 IP address blocks: 2a07:54c4::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:92:3d:33:bf:8d:c6:c5:6f:d0:1e:29:39:76:12:d4:fe:a4:09:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Nov 19 22:28:35 2024 GMT Not After : Nov 18 22:33:35 2025 GMT Subject: CN=BCB40D9C6FE90619FED9120D9AD3F486E0E1CE69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:63:9a:5e:94:6f:17:d2:b3:1d:29:4d:aa:6f: 6f:d1:be:e3:c9:67:db:39:b0:42:28:d1:a7:d4:26: 91:7c:f9:42:55:6d:e7:da:3a:9d:31:47:14:c1:76: 37:f9:09:6a:d3:07:6b:71:95:75:a2:15:1e:97:25: 3d:03:ba:c2:a1:41:ba:bb:0f:f7:73:50:23:dc:74: 42:91:0e:16:41:0b:fa:bb:86:19:f7:23:6e:d4:7c: 49:14:d6:85:bc:f2:83:fb:f0:32:9b:f5:a9:f1:51: 4b:e7:45:f6:3b:41:28:5d:64:c7:e1:5d:24:a3:c3: 55:ee:11:d8:ea:84:77:37:ed:00:2a:0e:07:f2:8e: c0:f5:6b:f2:d2:64:c4:f8:16:18:5d:dc:38:77:3f: 1e:54:40:b7:ce:a3:3e:56:8c:05:83:d0:12:0a:9b: 10:6f:6f:38:5f:11:dd:5b:e7:e1:30:3b:a0:ee:ac: 34:e3:63:a9:94:d7:08:18:7a:8b:e5:a2:f3:09:49: ca:f4:24:c1:66:6d:a1:fc:63:93:21:68:c7:ef:7b: 20:2c:f6:72:29:8f:fd:0c:4e:8d:a4:63:a4:be:74: ee:7c:d4:44:08:1a:2f:56:91:2e:7f:7a:4f:17:ab: 5b:83:76:ee:7d:ac:7b:39:7b:06:4c:11:a1:70:df: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B4:0D:9C:6F:E9:06:19:FE:D9:12:0D:9A:D3:F4:86:E0:E1:CE:69 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215823.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4::/44 Signature Algorithm: sha256WithRSAEncryption 01:67:d2:b8:ab:93:d6:5b:23:54:e5:90:da:7f:ed:1a:8b:28: 3d:bc:c1:ec:3d:60:ed:d1:b4:41:06:22:af:1b:8d:b1:c2:c1: 54:96:b1:44:b1:86:2e:ac:68:81:e8:f9:d8:31:18:01:4b:af: d1:1a:e5:37:2e:01:00:d8:70:00:5b:f5:f7:b2:37:55:db:4e: 5c:93:4a:2b:20:6e:fc:70:c3:fc:0b:1c:92:5d:e2:64:af:8f: e0:24:3a:d3:6a:4d:e7:93:a9:ce:77:24:9f:e6:8f:99:e4:6e: 46:ca:b0:b3:69:24:51:2e:98:63:b9:6f:29:39:d8:9d:b4:b1: 8f:1c:c0:75:5a:46:0e:b4:b4:a4:1c:10:0b:84:df:54:a1:ff: 78:25:77:08:fd:9f:41:5a:cc:d7:9a:29:c5:fe:9b:54:8f:be: 59:94:b7:b9:44:92:19:f3:01:5b:69:4a:fe:48:3e:cf:10:1e: 86:ca:3b:02:b6:ae:ab:e2:b6:2c:72:d5:c9:43:92:70:82:fb: 32:9d:ea:51:6c:15:35:fd:b3:ef:1a:cd:0c:62:8f:0f:d1:12: 27:da:a4:0b:ce:4d:76:8a:48:b3:04:5b:53:dc:89:88:cd:27: b2:1d:e5:76:dc:ba:24:bb:4e:42:95:bc:b1:91:05:5f:2e:cb: 03:a7:18:73 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ5I9M7+NxsVv0B4pOXYS1P6kCT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDExMTkyMjI4MzVaFw0yNTExMTgyMjMzMzVaMDMxMTAvBgNV BAMTKEJDQjQwRDlDNkZFOTA2MTlGRUQ5MTIwRDlBRDNGNDg2RTBFMUNFNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Y5pelG8X0rMdKU2qb2/RvuPJ Z9s5sEIo0afUJpF8+UJVbefaOp0xRxTBdjf5CWrTB2txlXWiFR6XJT0DusKhQbq7 D/dzUCPcdEKRDhZBC/q7hhn3I27UfEkU1oW88oP78DKb9anxUUvnRfY7QShdZMfh XSSjw1XuEdjqhHc37QAqDgfyjsD1a/LSZMT4Fhhd3Dh3Px5UQLfOoz5WjAWD0BIK mxBvbzhfEd1b5+EwO6DurDTjY6mU1wgYeovlovMJScr0JMFmbaH8Y5MhaMfveyAs 9nIpj/0MTo2kY6S+dO581EQIGi9WkS5/ek8Xq1uDdu59rHs5ewZMEaFw36XZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvLQNnG/pBhn+2RINmtP0huDhzmkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1ODIzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU xAAAMA0GCSqGSIb3DQEBCwUAA4IBAQABZ9K4q5PWWyNU5ZDaf+0aiyg9vMHsPWDt 0bRBBiKvG42xwsFUlrFEsYYurGiB6PnYMRgBS6/RGuU3LgEA2HAAW/X3sjdV205c k0orIG78cMP8CxySXeJkr4/gJDrTak3nk6nOdySf5o+Z5G5GyrCzaSRRLphjuW8p OdidtLGPHMB1WkYOtLSkHBALhN9Uof94JXcI/Z9BWszXminF/ptUj75ZlLe5RJIZ 8wFbaUr+SD7PEB6GyjsCtq6r4rYsctXJQ5JwgvsynepRbBU1/bPvGs0MYo8P0RIn 2qQLzk12ikizBFtT3ImIzSeyHeV23Loku05ClbyxkQVfLssDpxhz -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org