$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa File: AS216311.roa (raw, json) Hash identifier: 45R+Dh1Ykt7n5rPVWmSeT16cTnsZFIi0G1774pbcGKk= Subject key identifier: BE:AD:6E:78:88:89:57:0C:73:E7:D6:13:89:40:72:5E:FD:31:69:34 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 553151A871368412A0179C21C256F3F5F8383A73 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa Signing time: Thu 27 Feb 2025 01:06:18 +0000 ROA not before: Thu 27 Feb 2025 01:01:18 +0000 ROA not after: Thu 26 Feb 2026 01:06:18 +0000 asID: 216311 IP address blocks: 2a07:54c1:c1ab::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 21:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:31:51:a8:71:36:84:12:a0:17:9c:21:c2:56:f3:f5:f8:38:3a:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 27 01:01:18 2025 GMT Not After : Feb 26 01:06:18 2026 GMT Subject: CN=BEAD6E788889570C73E7D6138940725EFD316934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:f3:51:d2:02:66:5d:32:49:e6:e4:60:67:7f: 98:5b:bc:ee:77:f7:87:21:e6:dd:7d:50:71:8c:e6: a1:2d:82:0e:2c:dd:73:e6:37:ac:77:89:60:ba:eb: f4:10:0f:a7:f1:eb:2b:e9:fc:d0:7d:89:ea:4f:04: 79:9f:e6:8f:e8:53:d8:b3:46:c6:60:3c:93:59:53: b6:d6:d4:90:05:de:e1:7b:29:4c:af:da:48:dd:d1: 4f:db:16:a1:52:24:6c:98:8a:76:49:8a:b5:aa:62: 33:91:2d:9c:06:4c:d2:cb:d7:94:d7:7a:46:9f:f2: bf:8a:10:14:97:6f:8e:7a:db:3b:1b:83:a1:85:19: d4:5e:07:cc:58:3f:be:3c:31:4c:88:7c:a5:5d:3a: a6:44:be:1f:bc:2f:16:2a:7c:12:10:62:85:20:8a: 97:c4:ad:a5:f5:97:13:b2:20:33:2f:e0:54:54:b3: 68:88:de:ab:29:cd:9a:87:7d:5b:7d:53:81:1a:47: 29:83:bb:c0:9c:17:1b:0c:ad:d5:c5:39:b6:bd:08: a4:02:31:6d:6e:32:cd:7c:da:61:2b:c2:32:a4:e4: e1:5f:5c:c6:9d:73:f2:bf:e3:0c:72:26:06:f5:1c: db:85:38:74:bb:f2:fa:cd:47:56:b3:4d:60:57:d5: 2d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AD:6E:78:88:89:57:0C:73:E7:D6:13:89:40:72:5E:FD:31:69:34 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c1ab::/48 Signature Algorithm: sha256WithRSAEncryption 60:26:e6:f7:69:0f:1d:c5:13:76:d6:8c:2a:bd:40:dd:f9:6e: e7:e5:24:64:3b:4f:cf:49:cc:f1:37:76:c9:c3:1e:52:a7:89: 52:98:75:e1:2d:67:4c:7d:c5:30:de:68:b4:e8:4a:71:63:6e: 8d:97:ac:14:e1:3b:79:6c:ba:c7:30:65:aa:cc:78:bb:30:31: 87:82:c5:56:ee:42:7a:02:3f:0b:66:40:e8:b1:25:ad:83:88: d9:cb:e2:40:e0:1e:f2:32:b2:06:8b:a5:8f:97:90:88:6c:dc: 0b:58:67:14:44:46:b9:15:ae:7a:5a:b9:de:21:4c:f1:87:74: f9:17:5b:56:cf:ae:c4:9f:0b:0e:af:9f:63:88:05:c8:b7:c3: dd:fd:03:f8:45:28:ab:9f:ff:61:03:cc:85:1d:40:8a:29:71: 2f:ef:a8:e6:cd:09:67:52:7b:3e:a4:bf:d1:24:27:5f:6d:e0: 45:d1:30:29:7f:f8:ab:0a:af:35:ee:60:be:22:c8:03:6e:00: 4e:e8:fb:d3:ae:05:f0:3b:2d:1b:3d:a5:39:91:a7:04:c2:2f: af:79:2b:db:31:d1:a3:0c:c5:0c:89:80:65:63:09:1a:a7:7c: cb:67:fd:62:ee:c8:99:4f:26:d7:72:26:44:ca:24:cf:8d:a4: b4:90:8b:26 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVTFRqHE2hBKgF5whwlbz9fg4OnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAyMjcwMTAxMThaFw0yNjAyMjYwMTA2MThaMDMxMTAvBgNV BAMTKEJFQUQ2RTc4ODg4OTU3MEM3M0U3RDYxMzg5NDA3MjVFRkQzMTY5MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy81HSAmZdMknm5GBnf5hbvO53 94ch5t19UHGM5qEtgg4s3XPmN6x3iWC66/QQD6fx6yvp/NB9iepPBHmf5o/oU9iz RsZgPJNZU7bW1JAF3uF7KUyv2kjd0U/bFqFSJGyYinZJirWqYjORLZwGTNLL15TX ekaf8r+KEBSXb4562zsbg6GFGdReB8xYP748MUyIfKVdOqZEvh+8LxYqfBIQYoUg ipfEraX1lxOyIDMv4FRUs2iI3qspzZqHfVt9U4EaRymDu8CcFxsMrdXFOba9CKQC MW1uMs182mErwjKk5OFfXMadc/K/4wxyJgb1HNuFOHS78vrNR1azTWBX1S2PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvq1ueIiJVwxz59YTiUByXv0xaTQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzExLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wcGrMA0GCSqGSIb3DQEBCwUAA4IBAQBgJub3aQ8dxRN21owqvUDd+W7n5SRkO0/P SczxN3bJwx5Sp4lSmHXhLWdMfcUw3mi06EpxY26Nl6wU4Tt5bLrHMGWqzHi7MDGH gsVW7kJ6Aj8LZkDosSWtg4jZy+JA4B7yMrIGi6WPl5CIbNwLWGcUREa5Fa56Wrne IUzxh3T5F1tWz67EnwsOr59jiAXIt8Pd/QP4RSirn/9hA8yFHUCKKXEv76jmzQln Uns+pL/RJCdfbeBF0TApf/irCq817mC+IsgDbgBO6PvTrgXwOy0bPaU5kacEwi+v eSvbMdGjDMUMiYBlYwkap3zLZ/1i7siZTybXciZEyiTPjaS0kIsm -----END CERTIFICATE-----Generated at Thu Apr 3 07:06:15 2025 by rpki-client