$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa File: AS216056.roa (raw, json) Hash identifier: lHjslQ5XUgeY7AdU2Ef1WDRPmDQsIe7ZhN4crFPbXlg= Subject key identifier: 2A:2F:5E:98:A7:F9:06:86:4B:A9:15:3A:38:22:2B:30:18:0F:92:09 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2E8F5593FB2749DC42F55BBFEAF35A77A00BA15A Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa Signing time: Mon 01 Apr 2024 16:02:10 +0000 ROA not before: Mon 01 Apr 2024 15:57:10 +0000 ROA not after: Mon 31 Mar 2025 16:02:10 +0000 asID: 216056 IP address blocks: 2a07:54c1:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:8f:55:93:fb:27:49:dc:42:f5:5b:bf:ea:f3:5a:77:a0:0b:a1:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Apr 1 15:57:10 2024 GMT Not After : Mar 31 16:02:10 2025 GMT Subject: CN=2A2F5E98A7F906864BA9153A38222B30180F9209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7d:1c:ed:e5:55:b6:8d:55:36:53:96:02:6c: d5:d8:74:57:5f:27:60:10:ed:bf:b9:e6:00:d2:51: a1:2c:b6:6e:d2:f4:19:9f:ff:cc:0d:51:6b:9d:52: aa:4e:80:d1:e2:32:51:17:db:9f:32:ab:6b:1e:2d: a6:ce:d0:11:41:44:80:93:93:b6:dc:de:11:05:b4: 2b:28:10:7e:33:44:ae:50:3c:e9:c5:25:6d:e2:8b: e8:fc:17:b5:06:0c:09:46:39:b1:f4:11:17:86:0e: a6:72:9d:3f:4d:40:e1:5f:cc:b1:63:5e:9a:e3:be: 2d:3e:15:85:65:2d:40:48:fd:e0:13:0a:a6:d1:bc: 38:03:44:f0:e0:66:17:a2:c9:06:b6:c0:e5:1e:8f: 45:79:bd:8f:f8:4f:68:1d:a5:f8:98:5a:79:06:7d: f8:1f:2e:b5:56:52:cc:3a:a2:64:1c:52:6d:e5:0b: 2e:92:75:1c:16:fa:bf:28:58:30:09:6f:65:65:a4: a6:3f:09:ea:44:cd:2e:5d:be:71:c3:e9:c1:18:93: cf:6d:06:fd:ed:4d:bc:e1:7c:42:56:6b:11:72:37: 1e:1d:88:be:ae:b8:8d:eb:25:e6:ac:3c:aa:3f:aa: 02:77:b4:bc:de:72:97:ff:54:9f:ee:d6:3a:41:b7: 88:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2F:5E:98:A7:F9:06:86:4B:A9:15:3A:38:22:2B:30:18:0F:92:09 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2200::/40 Signature Algorithm: sha256WithRSAEncryption 6a:5c:e5:3a:7a:ab:21:d5:e9:eb:b6:fc:12:57:30:88:b9:fb: 88:6c:c8:85:16:fb:53:a7:28:b9:9d:12:1c:d4:a4:5f:0f:2d: c3:9d:2d:8c:7c:a3:7c:19:77:0a:bd:a6:07:6a:ed:23:fd:f7: 72:0a:88:12:cd:0e:1c:1a:33:ba:d2:72:82:b0:85:49:4b:b0: 62:88:c4:fc:68:b4:8f:e0:3b:60:a6:cc:4d:c0:19:fb:04:bf: cc:0d:92:c3:0a:a4:cf:dc:c9:0f:ec:f9:67:59:61:3d:4a:64: 88:20:d5:92:6f:e8:62:2d:21:04:de:3b:a5:b2:a8:8f:f6:1d: 9d:99:20:52:83:38:be:2e:cb:e6:ad:c3:ae:0a:23:3d:60:00: 4a:c9:94:35:e3:28:43:2f:5f:f4:5f:e7:71:70:a5:76:51:42: 12:68:5d:d2:2d:51:c0:c1:40:54:93:72:d8:a3:32:9a:3f:95: 6e:04:b1:1a:80:92:a8:08:ea:75:3e:81:1e:2b:f1:ea:e9:ea: b0:23:ae:b9:0c:42:a1:b3:ac:8f:db:4f:41:71:9b:21:e1:31: eb:96:46:8d:db:37:c1:bc:5c:47:6a:2d:9b:5e:bc:ef:27:ea: 96:d6:28:ca:8b:c1:e4:8c:cd:b7:81:fc:c8:80:eb:d0:75:59: 12:22:0c:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULo9Vk/snSdxC9Vu/6vNad6ALoVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA0MDExNTU3MTBaFw0yNTAzMzExNjAyMTBaMDMxMTAvBgNV BAMTKDJBMkY1RTk4QTdGOTA2ODY0QkE5MTUzQTM4MjIyQjMwMTgwRjkyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgfRzt5VW2jVU2U5YCbNXYdFdf J2AQ7b+55gDSUaEstm7S9Bmf/8wNUWudUqpOgNHiMlEX258yq2seLabO0BFBRICT k7bc3hEFtCsoEH4zRK5QPOnFJW3ii+j8F7UGDAlGObH0EReGDqZynT9NQOFfzLFj Xprjvi0+FYVlLUBI/eATCqbRvDgDRPDgZheiyQa2wOUej0V5vY/4T2gdpfiYWnkG ffgfLrVWUsw6omQcUm3lCy6SdRwW+r8oWDAJb2VlpKY/CepEzS5dvnHD6cEYk89t Bv3tTbzhfEJWaxFyNx4diL6uuI3rJeasPKo/qgJ3tLzecpf/VJ/u1jpBt4i7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKi9emKf5BoZLqRU6OCIrMBgPkgkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MDU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSIwDQYJKoZIhvcNAQELBQADggEBAGpc5Tp6qyHV6eu2/BJXMIi5+4hsyIUW+1On KLmdEhzUpF8PLcOdLYx8o3wZdwq9pgdq7SP993IKiBLNDhwaM7rScoKwhUlLsGKI xPxotI/gO2CmzE3AGfsEv8wNksMKpM/cyQ/s+WdZYT1KZIgg1ZJv6GItIQTeO6Wy qI/2HZ2ZIFKDOL4uy+atw64KIz1gAErJlDXjKEMvX/Rf53FwpXZRQhJoXdItUcDB QFSTctijMpo/lW4EsRqAkqgI6nU+gR4r8erp6rAjrrkMQqGzrI/bT0FxmyHhMeuW Ro3bN8G8XEdqLZtevO8n6pbWKMqLweSMzbeB/MiA69B1WRIiDAM= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org