$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215828.roa File: AS215828.roa (raw, json) Hash identifier: D9hTitWXxAMO/MmnHpgdgqGoYGNAsfFZ60vJVn7VVoQ= Subject key identifier: 95:40:D3:21:4A:98:17:6F:65:AA:82:98:DC:01:04:8B:DA:4A:8C:6D Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 68722AA902B2FA9ADB5B03283151BE8CEB92463A Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215828.roa Signing time: Sat 30 Dec 2023 21:54:13 +0000 ROA not before: Sat 30 Dec 2023 21:49:13 +0000 ROA not after: Sat 28 Dec 2024 21:54:13 +0000 asID: 215828 IP address blocks: 2a07:54c1:4400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:72:2a:a9:02:b2:fa:9a:db:5b:03:28:31:51:be:8c:eb:92:46:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 30 21:49:13 2023 GMT Not After : Dec 28 21:54:13 2024 GMT Subject: CN=9540D3214A98176F65AA8298DC01048BDA4A8C6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:1b:91:af:90:31:bf:b6:0f:29:32:ca:25: 5f:61:8a:2d:5f:01:04:07:1e:7e:66:80:25:8f:65: dc:72:e6:9a:7d:9e:0b:cd:4a:c8:45:7b:90:00:a2: c0:fe:aa:6d:52:f1:2b:d3:85:e1:1f:c5:2a:b0:7a: 7c:10:a3:2b:b4:dc:aa:3c:19:c5:ba:35:5a:c0:0a: 67:8a:90:ad:00:59:c0:72:28:3c:17:d1:48:9c:9e: 1e:5d:92:e2:ff:a8:83:c8:f6:71:5a:b0:9c:42:cc: 87:f9:5d:0c:73:18:27:86:63:41:cb:f2:2b:92:56: 5a:ce:84:4f:67:7a:50:ac:fe:ae:c4:96:23:b4:02: 71:15:72:c8:cb:2c:44:15:c1:57:18:dc:0f:bc:fb: f3:e5:6f:7d:57:18:a8:86:e3:c8:c4:a1:7d:f6:1b: 1d:82:65:a2:e4:9b:f5:e0:70:af:fb:eb:08:f1:ce: 6c:0d:9a:57:b9:e1:bf:27:68:c4:21:eb:79:e0:49: 98:3c:2b:d4:3a:35:4a:f1:40:51:76:6e:b4:b0:a9: 01:47:a5:ec:14:ad:2f:f7:d4:fa:3a:02:05:da:29: cd:8a:d7:bf:79:a6:21:0c:a5:5b:5d:07:49:9b:27: 53:f4:43:b8:21:a4:4b:0e:30:46:1a:94:46:b6:35: f4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:40:D3:21:4A:98:17:6F:65:AA:82:98:DC:01:04:8B:DA:4A:8C:6D X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS215828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4400::/40 Signature Algorithm: sha256WithRSAEncryption 6c:73:fa:ff:76:ba:6d:c6:b6:d7:98:6d:90:5d:15:7d:9c:4e: 1f:62:de:5b:ae:4b:82:dd:f9:1c:aa:45:66:17:79:ca:3d:9c: e2:e8:d4:5a:16:ff:c4:4d:a8:08:dc:c0:4f:61:de:22:0e:bd: 55:1a:b7:b0:a9:a4:b4:e5:7b:c8:eb:f0:4d:bb:1e:45:5a:e7: 3c:fc:1e:7f:d0:a0:45:5b:8b:1d:36:44:c6:a3:7e:2b:46:7d: 6c:11:cc:2f:35:fe:a4:6a:7f:d2:2d:2b:b5:47:b7:3c:10:00: f2:af:18:23:b2:77:40:09:0c:10:7a:7e:b3:40:9b:08:c8:8f: 15:5e:a5:a5:72:c4:29:58:55:2d:83:85:6a:e4:f1:96:a3:f0: ff:24:49:ba:9e:dc:58:df:07:f2:86:3b:92:89:84:a0:e7:73: 2d:ee:04:c5:d4:95:50:bf:6c:e3:1e:aa:d6:f2:bb:34:8f:12: 94:b8:b7:1e:72:24:6a:de:e7:e1:03:6b:c2:9e:18:c4:5f:8b: c9:da:67:14:b5:08:9b:8c:f5:3a:95:99:96:ed:ad:24:03:6b: 93:ad:3d:25:04:20:9a:8f:76:8c:e8:19:c1:53:2a:be:08:1c: c1:8a:9e:b2:0d:29:f9:27:f8:9b:1a:91:a0:84:69:a2:d1:26: bb:d3:35:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaHIqqQKy+prbWwMoMVG+jOuSRjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEyMzAyMTQ5MTNaFw0yNDEyMjgyMTU0MTNaMDMxMTAvBgNV BAMTKDk1NDBEMzIxNEE5ODE3NkY2NUFBODI5OERDMDEwNDhCREE0QThDNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa6huRr5Axv7YPKTLKJV9hii1f AQQHHn5mgCWPZdxy5pp9ngvNSshFe5AAosD+qm1S8SvTheEfxSqwenwQoyu03Ko8 GcW6NVrACmeKkK0AWcByKDwX0Uicnh5dkuL/qIPI9nFasJxCzIf5XQxzGCeGY0HL 8iuSVlrOhE9nelCs/q7EliO0AnEVcsjLLEQVwVcY3A+8+/Plb31XGKiG48jEoX32 Gx2CZaLkm/XgcK/76wjxzmwNmle54b8naMQh63ngSZg8K9Q6NUrxQFF2brSwqQFH pewUrS/31Po6AgXaKc2K1795piEMpVtdB0mbJ1P0Q7ghpEsOMEYalEa2NfSbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlUDTIUqYF29lqoKY3AEEi9pKjG0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE1ODI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUQwDQYJKoZIhvcNAQELBQADggEBAGxz+v92um3GtteYbZBdFX2cTh9i3luuS4Ld +RyqRWYXeco9nOLo1FoW/8RNqAjcwE9h3iIOvVUat7CppLTle8jr8E27HkVa5zz8 Hn/QoEVbix02RMajfitGfWwRzC81/qRqf9ItK7VHtzwQAPKvGCOyd0AJDBB6frNA mwjIjxVepaVyxClYVS2DhWrk8Zaj8P8kSbqe3FjfB/KGO5KJhKDncy3uBMXUlVC/ bOMeqtbyuzSPEpS4tx5yJGre5+EDa8KeGMRfi8naZxS1CJuM9TqVmZbtrSQDa5Ot PSUEIJqPdozoGcFTKr4IHMGKnrINKfkn+JsakaCEaaLRJrvTNUY= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org