$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa File: AS216339.roa (raw, json) Hash identifier: yrcCtOrsZf2RmrS9LIltJkOayQ4NBzPR5KIHmR1jRR4= Subject key identifier: 03:0D:B8:3A:82:B7:52:AE:89:8B:A3:7F:65:35:F5:07:40:2C:FD:98 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0E3F93B0A4BFCEADB280629F95EE826126076DFF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 216339 IP address blocks: 2a07:54c1:3900::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3f:93:b0:a4:bf:ce:ad:b2:80:62:9f:95:ee:82:61:26:07:6d:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=030DB83A82B752AE898BA37F6535F507402CFD98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c9:c7:83:73:fe:cc:66:8d:e3:7c:06:a0:ce: a6:55:cb:f2:ff:e7:6d:5f:56:0b:bd:fd:58:17:c8: 43:8e:a0:57:eb:6b:1c:88:9f:38:0d:f3:7a:3c:89: fc:1b:a4:23:23:e0:95:f2:57:71:96:29:00:28:2a: 7e:e8:be:8f:09:4e:b0:02:28:bb:cd:07:a8:9a:fe: e4:01:c4:e8:2b:4b:49:66:30:c5:8a:ee:b8:ca:12: 83:fd:26:af:39:bc:75:74:0f:3f:5f:d6:1b:d7:1a: 30:6a:04:47:5c:66:12:06:f2:57:72:0c:10:c3:96: 27:23:23:67:a3:84:37:45:a0:b2:2e:a6:3a:70:49: 6b:7a:b1:ed:ff:7b:2f:be:5e:f7:15:3a:66:d7:51: 01:87:4a:d7:55:18:a9:1d:ad:ba:9e:98:36:ad:7c: 40:3f:ee:fb:97:e5:af:3c:bb:b2:ea:e4:0c:37:e7: 4f:3e:e1:fb:c9:58:84:4e:38:7e:46:b5:73:21:7d: a4:61:31:b2:8c:48:30:49:0c:55:e1:70:f7:78:32: 8a:92:51:c1:47:74:fb:67:27:e3:1f:4d:ac:00:d3: e4:fc:2c:8f:a8:63:fe:10:2d:42:85:84:16:de:5e: a7:40:a2:e9:65:c4:6a:56:e1:14:d2:3e:52:ee:57: e4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0D:B8:3A:82:B7:52:AE:89:8B:A3:7F:65:35:F5:07:40:2C:FD:98 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3900::/40 Signature Algorithm: sha256WithRSAEncryption b7:24:e7:8f:f4:fc:5a:e3:21:6a:37:03:e4:86:78:57:d0:ae: 22:de:f0:93:91:62:58:03:0f:c3:ef:16:a5:72:c5:ec:49:a8: a3:a3:f4:9a:f2:fc:a4:05:17:c9:34:f4:48:4c:85:34:be:8e: 0c:29:8b:8e:44:e6:6e:0f:e0:05:7f:4a:d6:a0:45:b2:c3:81: 06:af:27:d6:c1:5f:65:f1:15:d6:ff:f8:e8:22:28:a5:02:b2: 55:9a:52:ec:b4:95:71:04:03:5a:ea:14:c2:82:07:b8:18:eb: d2:d1:fc:36:56:c0:7b:b0:8d:da:e1:31:4e:56:41:b8:c8:82: 8d:5a:89:ce:c6:48:02:7f:c4:90:ed:a6:3a:4c:af:48:c8:77: 37:37:53:65:95:7b:cc:88:a4:c0:42:e2:3e:47:68:0f:35:54: 6a:8b:6c:01:03:cc:c2:a0:2f:36:43:b3:8e:09:d1:92:1d:c4: 75:62:14:1d:25:fb:5c:9a:79:51:00:e2:a0:ab:3a:d3:68:68: 6e:b1:21:64:94:a8:67:eb:c1:e5:b3:d9:50:6d:6e:75:47:a3: a7:18:72:bd:7c:d2:ca:42:c5:3f:23:b7:f3:a2:cb:82:70:66: 4c:ef:66:c8:42:8b:f6:df:83:c3:d5:f0:70:91:a0:d5:fb:83: 37:8e:d0:be -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDj+TsKS/zq2ygGKfle6CYSYHbf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKDAzMERCODNBODJCNzUyQUU4OThCQTM3RjY1MzVGNTA3NDAyQ0ZEOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTyceDc/7MZo3jfAagzqZVy/L/ 521fVgu9/VgXyEOOoFfraxyInzgN83o8ifwbpCMj4JXyV3GWKQAoKn7ovo8JTrAC KLvNB6ia/uQBxOgrS0lmMMWK7rjKEoP9Jq85vHV0Dz9f1hvXGjBqBEdcZhIG8ldy DBDDlicjI2ejhDdFoLIupjpwSWt6se3/ey++XvcVOmbXUQGHStdVGKkdrbqemDat fEA/7vuX5a88u7Lq5Aw3508+4fvJWIROOH5GtXMhfaRhMbKMSDBJDFXhcPd4MoqS UcFHdPtnJ+MfTawA0+T8LI+oY/4QLUKFhBbeXqdAoullxGpW4RTSPlLuV+SfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAw24OoK3Uq6Ji6N/ZTX1B0As/ZgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTkwDQYJKoZIhvcNAQELBQADggEBALck54/0/FrjIWo3A+SGeFfQriLe8JORYlgD D8PvFqVyxexJqKOj9Jry/KQFF8k09EhMhTS+jgwpi45E5m4P4AV/StagRbLDgQav J9bBX2XxFdb/+OgiKKUCslWaUuy0lXEEA1rqFMKCB7gY69LR/DZWwHuwjdrhMU5W QbjIgo1aic7GSAJ/xJDtpjpMr0jIdzc3U2WVe8yIpMBC4j5HaA81VGqLbAEDzMKg LzZDs44J0ZIdxHViFB0l+1yaeVEA4qCrOtNoaG6xIWSUqGfrweWz2VBtbnVHo6cY cr180spCxT8jt/Oiy4JwZkzvZshCi/bfg8PV8HCRoNX7gzeO0L4= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org