$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa File: AS216311.roa (raw, json) Hash identifier: bSBmnLO5Z3SsHGl+dacdPpVf0LFrXvse5VzolS8BWu8= Subject key identifier: CA:26:45:F2:2E:FF:2E:6D:2C:0C:60:55:36:DF:E3:E2:F9:5F:1F:E0 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5FC8159CFAF62395102E8A8E5D84E40C5D3191C2 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa Signing time: Thu 28 Mar 2024 00:25:43 +0000 ROA not before: Thu 28 Mar 2024 00:20:43 +0000 ROA not after: Thu 27 Mar 2025 00:25:43 +0000 asID: 216311 IP address blocks: 2a07:54c1:c1ab::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c8:15:9c:fa:f6:23:95:10:2e:8a:8e:5d:84:e4:0c:5d:31:91:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 28 00:20:43 2024 GMT Not After : Mar 27 00:25:43 2025 GMT Subject: CN=CA2645F22EFF2E6D2C0C605536DFE3E2F95F1FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:78:72:fb:85:ea:57:94:f9:2f:81:3e:c1:42: 00:36:83:b6:68:3f:62:52:70:d8:a8:c0:fc:56:49: 24:6c:ef:d5:43:64:dc:35:ad:5b:6e:07:5b:e7:8a: 50:35:c0:2e:13:6b:d1:b0:19:17:88:c8:c9:eb:a2: cb:74:37:9d:3a:63:27:67:c8:30:40:1c:40:c5:54: b7:50:50:81:74:2e:97:3c:83:ff:45:f4:ef:81:19: cd:7f:6a:6c:6f:72:a3:b4:e7:b6:13:7f:e0:c1:ff: 82:c2:d4:cf:40:78:8b:5a:c8:8d:ae:c0:c2:e4:fc: 38:da:74:2f:14:a5:7e:03:8e:17:04:a1:a1:9a:f6: 49:fc:a1:5e:22:bb:f6:f8:dc:bf:7b:27:73:0b:fc: 6c:73:82:cd:58:53:96:bc:92:01:4b:cd:b1:fb:31: 89:39:c7:6c:2e:a0:08:b2:2f:90:6a:bf:ae:e6:44: 6d:07:92:7d:9c:e3:e5:06:62:c9:60:90:15:78:77: 93:8a:03:d3:79:f4:f3:68:04:c0:7b:2f:db:15:9b: 26:01:30:19:fc:46:61:53:0e:f8:72:fd:d6:2f:df: a5:f2:f4:c3:65:9b:23:1d:70:08:00:48:f8:30:f8: 91:96:8c:7c:06:1f:5e:2c:6f:4c:ce:7c:c7:63:92: 67:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:26:45:F2:2E:FF:2E:6D:2C:0C:60:55:36:DF:E3:E2:F9:5F:1F:E0 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c1ab::/48 Signature Algorithm: sha256WithRSAEncryption a3:b2:ed:38:f3:8c:1b:39:cd:6c:39:7e:02:ef:82:a5:10:8b: bd:62:8d:9c:ee:63:a8:6a:bc:e4:87:b8:83:08:76:38:43:b0: 5b:cb:24:46:85:08:91:e3:eb:ba:12:3f:fb:d5:34:01:ba:e1: 98:68:36:cb:f9:a9:7d:70:9a:35:1b:f5:b4:c2:cc:72:07:11: 4a:c6:6b:78:f2:41:6d:76:a6:bf:12:06:05:90:6b:ae:3f:0f: 16:58:dc:21:51:bd:f6:e4:f1:46:b8:f0:1d:d6:da:6f:ab:eb: 92:cf:a7:04:e6:6e:4d:9c:ae:1e:73:8d:f6:01:26:bc:72:ce: c0:75:53:bb:d6:3d:c3:dc:09:65:53:b4:85:c4:31:c3:ea:11: 75:20:1a:83:d7:64:aa:fc:7f:f4:07:d0:50:8c:02:24:3e:f2: 07:44:0d:aa:f1:89:47:16:fd:93:f0:47:f4:65:a5:d2:81:2d: f1:f3:7e:ac:85:b3:82:a6:c5:12:1b:d9:10:ee:0a:23:fc:78: cb:09:fc:a8:a7:ca:3a:09:b0:04:b3:17:3f:4e:41:67:50:38: dc:9b:cf:3a:13:4c:c5:b7:5c:0c:a7:7c:ab:df:12:ac:bc:7d: d1:bb:8b:cb:a5:a3:1a:b8:a8:61:dd:af:0c:db:82:dc:31:cf: 36:a9:38:6b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUX8gVnPr2I5UQLoqOXYTkDF0xkcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMjgwMDIwNDNaFw0yNTAzMjcwMDI1NDNaMDMxMTAvBgNV BAMTKENBMjY0NUYyMkVGRjJFNkQyQzBDNjA1NTM2REZFM0UyRjk1RjFGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJeHL7hepXlPkvgT7BQgA2g7Zo P2JScNiowPxWSSRs79VDZNw1rVtuB1vnilA1wC4Ta9GwGReIyMnrost0N506Yydn yDBAHEDFVLdQUIF0Lpc8g/9F9O+BGc1/amxvcqO057YTf+DB/4LC1M9AeItayI2u wMLk/DjadC8UpX4DjhcEoaGa9kn8oV4iu/b43L97J3ML/Gxzgs1YU5a8kgFLzbH7 MYk5x2wuoAiyL5Bqv67mRG0Hkn2c4+UGYslgkBV4d5OKA9N59PNoBMB7L9sVmyYB MBn8RmFTDvhy/dYv36Xy9MNlmyMdcAgASPgw+JGWjHwGH14sb0zOfMdjkmf7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyiZF8i7/Lm0sDGBVNt/j4vlfH+AwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzExLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wcGrMA0GCSqGSIb3DQEBCwUAA4IBAQCjsu0484wbOc1sOX4C74KlEIu9Yo2c7mOo arzkh7iDCHY4Q7BbyyRGhQiR4+u6Ej/71TQBuuGYaDbL+al9cJo1G/W0wsxyBxFK xmt48kFtdqa/EgYFkGuuPw8WWNwhUb325PFGuPAd1tpvq+uSz6cE5m5NnK4ec432 ASa8cs7AdVO71j3D3AllU7SFxDHD6hF1IBqD12Sq/H/0B9BQjAIkPvIHRA2q8YlH Fv2T8Ef0ZaXSgS3x836shbOCpsUSG9kQ7goj/HjLCfyop8o6CbAEsxc/TkFnUDjc m886E0zFt1wMp3yr3xKsvH3Ru4vLpaMauKhh3a8M24LcMc82qThr -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org