$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa File: AS216056.roa (raw, json) Hash identifier: r7+AcyYZLbWnMZalYhW8wRpToLO9jgghv3sAHOGzel0= Subject key identifier: 4B:CE:AD:D7:77:E8:46:2A:33:0F:61:3B:13:9E:F1:67:F2:48:D8:00 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 41FED49A4E0A1B4FF7342A0B055A35048675D59F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa Signing time: Mon 03 Mar 2025 16:06:18 +0000 ROA not before: Mon 03 Mar 2025 16:01:18 +0000 ROA not after: Mon 02 Mar 2026 16:06:18 +0000 asID: 216056 IP address blocks: 2a07:54c1:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:fe:d4:9a:4e:0a:1b:4f:f7:34:2a:0b:05:5a:35:04:86:75:d5:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 3 16:01:18 2025 GMT Not After : Mar 2 16:06:18 2026 GMT Subject: CN=4BCEADD777E8462A330F613B139EF167F248D800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:ac:87:9b:1c:43:c8:c9:2e:dd:66:d7:92: 9b:63:75:49:f2:d4:1d:36:ff:6a:04:c8:75:37:84: a0:c1:c6:66:0c:52:32:b9:01:b1:57:38:62:7e:58: 14:b7:4b:34:07:b7:b2:79:c7:d5:ff:3a:95:cc:7a: aa:95:39:cf:f8:44:58:cc:50:4d:2a:dc:26:91:29: 50:ff:a0:d5:73:b2:58:e3:9a:08:e3:6c:5f:3f:98: f8:bf:a5:a3:f7:da:bf:7a:16:1a:6d:84:c9:af:60: 1a:6b:91:d4:1b:4d:73:3c:1e:2f:3f:64:dd:28:e8: 10:e2:e1:23:23:fe:69:47:d8:2d:f2:6f:13:42:92: 74:6b:bb:6b:4f:de:76:db:e6:0b:99:58:c8:cf:14: a2:79:7c:a9:21:25:f4:1e:80:7d:45:3a:22:d5:91: 7c:a5:36:74:f9:a0:a9:90:f6:0b:2d:e4:e3:2d:47: d8:2a:f5:ad:84:50:1f:ba:31:04:6c:cf:e1:9a:4b: 25:5c:19:44:d3:08:6d:d9:0d:07:ca:1a:e9:0f:d6: 99:22:96:a9:db:bf:5c:b2:5a:a3:00:ac:a2:76:cc: 82:67:dc:78:f5:46:42:48:90:10:1a:cc:86:ca:c2: 1b:6c:bb:44:db:07:b5:60:90:eb:26:e1:a4:b2:d8: a4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CE:AD:D7:77:E8:46:2A:33:0F:61:3B:13:9E:F1:67:F2:48:D8:00 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2200::/40 Signature Algorithm: sha256WithRSAEncryption 46:ff:75:e0:38:b5:8d:ba:5f:dd:b3:9c:ae:7b:76:a0:f7:e2: 73:ec:48:96:92:2d:07:d6:6d:0e:71:cd:d4:bd:e2:56:14:5d: 38:31:6c:ef:ca:7d:53:88:68:06:52:80:5e:1f:c8:7b:dd:e4: ad:5c:7b:09:eb:d1:f4:8f:77:46:4e:ab:f5:ed:42:d9:5d:e5: 30:ca:e5:fc:90:18:07:4c:33:50:fb:da:c5:06:26:01:70:93: 59:3b:ff:e2:f1:5f:04:cc:ce:ef:2f:64:b4:c2:fb:89:68:b1: 30:17:2b:fd:38:3a:c9:0e:fb:b7:ac:ca:ca:5e:dc:d4:1c:02: 41:08:cb:c9:64:60:8b:66:94:79:91:b5:fa:52:1c:b8:ae:50: b1:f7:aa:24:5c:30:76:16:75:ea:37:fa:7b:a1:59:f5:ed:fb: 3d:f7:4d:99:8a:c7:b8:ae:12:1c:50:2e:f6:d4:e6:f0:31:bc: 78:7b:77:65:01:83:6d:14:5b:f5:aa:6a:78:12:9d:73:fc:52: f5:0c:90:e1:e9:ce:5a:f4:9a:a2:24:58:7e:69:2d:b3:dc:95: 30:c0:02:9c:e1:55:35:ec:0a:43:1b:1b:08:16:2e:93:98:d7: 49:ec:c2:c8:1d:da:6b:fc:c6:2c:02:30:59:38:e6:9a:7d:db: 59:14:e9:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQf7Umk4KG0/3NCoLBVo1BIZ11Z8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAzMDMxNjAxMThaFw0yNjAzMDIxNjA2MThaMDMxMTAvBgNV BAMTKDRCQ0VBREQ3NzdFODQ2MkEzMzBGNjEzQjEzOUVGMTY3RjI0OEQ4MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF16yHmxxDyMku3WbXkptjdUny 1B02/2oEyHU3hKDBxmYMUjK5AbFXOGJ+WBS3SzQHt7J5x9X/OpXMeqqVOc/4RFjM UE0q3CaRKVD/oNVzsljjmgjjbF8/mPi/paP32r96FhpthMmvYBprkdQbTXM8Hi8/ ZN0o6BDi4SMj/mlH2C3ybxNCknRru2tP3nbb5guZWMjPFKJ5fKkhJfQegH1FOiLV kXylNnT5oKmQ9gst5OMtR9gq9a2EUB+6MQRsz+GaSyVcGUTTCG3ZDQfKGukP1pki lqnbv1yyWqMArKJ2zIJn3Hj1RkJIkBAazIbKwhtsu0TbB7VgkOsm4aSy2KT1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS86t13foRiozD2E7E57xZ/JI2AAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MDU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSIwDQYJKoZIhvcNAQELBQADggEBAEb/deA4tY26X92znK57dqD34nPsSJaSLQfW bQ5xzdS94lYUXTgxbO/KfVOIaAZSgF4fyHvd5K1cewnr0fSPd0ZOq/XtQtld5TDK 5fyQGAdMM1D72sUGJgFwk1k7/+LxXwTMzu8vZLTC+4losTAXK/04OskO+7esyspe 3NQcAkEIy8lkYItmlHmRtfpSHLiuULH3qiRcMHYWdeo3+nuhWfXt+z33TZmKx7iu EhxQLvbU5vAxvHh7d2UBg20UW/WqangSnXP8UvUMkOHpzlr0mqIkWH5pLbPclTDA ApzhVTXsCkMbGwgWLpOY10nswsgd2mv8xiwCMFk45pp921kU6S0= -----END CERTIFICATE-----Generated at Fri Apr 4 17:04:44 2025 by rpki-client