$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa File: AS216339.roa (raw, json) Hash identifier: zZug68AvY8n45RMxbgCG1R2aUKuusYsDBhTSayuoBR0= Subject key identifier: D4:2D:E2:56:A2:55:C5:7E:C2:A9:E0:E0:5D:B4:C0:1C:54:18:B2:8E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0B36843A966FD3180DFD3C349D451BA67ED9C120 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 216339 IP address blocks: 2a07:54c1:3900::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 18 Jun 2024 21:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:36:84:3a:96:6f:d3:18:0d:fd:3c:34:9d:45:1b:a6:7e:d9:c1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=D42DE256A255C57EC2A9E0E05DB4C01C5418B28E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:c1:04:de:e5:6a:fd:a0:df:9f:4c:45:b3: 9e:8e:12:a5:c3:c6:7b:8d:4b:2a:15:ea:03:ae:6c: ea:5c:7f:7e:e4:47:3b:9a:a7:8e:d0:7f:26:6f:87: 85:4e:76:8e:59:11:06:d1:4e:3b:1f:17:5c:41:3d: d1:3c:bb:a7:c5:be:95:7d:9c:a3:85:48:54:5a:80: c7:67:a8:f2:4e:00:af:f9:52:ee:fd:52:12:0a:ee: b3:96:d9:b8:f4:73:60:a0:71:50:d5:dd:f1:b1:d8: 9a:bc:d5:b7:9a:af:73:19:80:46:8e:66:87:54:29: e8:b6:0a:04:76:0d:87:bf:ce:20:6e:88:ec:49:6e: d2:3f:a6:22:b9:7d:77:12:b5:9c:dd:da:7d:ae:18: 46:21:00:2d:ee:35:c6:55:e1:3b:a5:3b:2d:38:6e: bc:f0:5c:12:24:ed:18:3b:e9:4a:5d:82:9f:99:d4: 45:9c:ae:36:79:ab:1f:be:4a:90:19:cf:fa:35:4d: 8f:dd:f7:70:41:65:94:01:a8:80:c9:98:27:18:1d: e6:a5:9c:b2:83:4b:2c:9b:69:9c:28:11:54:4e:c9: 35:b2:ad:31:08:de:bd:c3:41:d0:54:89:0b:87:d4: 26:17:e7:c1:20:90:27:16:3d:78:ed:6d:bd:f4:34: 3d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2D:E2:56:A2:55:C5:7E:C2:A9:E0:E0:5D:B4:C0:1C:54:18:B2:8E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3900::/40 Signature Algorithm: sha256WithRSAEncryption 97:05:e4:43:02:0b:4a:1d:ac:7d:aa:2b:ba:4a:2e:20:92:1f: 6b:72:76:d6:23:e9:65:05:90:e4:2b:af:9d:28:f8:c9:89:9c: 63:dd:a2:a6:76:98:a4:b6:3e:0e:c6:c5:6f:7e:60:13:a8:ca: 03:fc:76:a8:65:63:27:71:1d:72:fe:77:3b:8c:8f:9c:cc:54: e3:d9:2c:ac:c7:b9:3a:22:78:3e:47:1f:aa:6b:c0:c5:39:63: 3a:e6:d5:09:83:83:35:0c:a7:3e:b7:f6:b2:bd:cf:68:6e:a2: 39:c6:7c:12:7f:3b:98:dc:c8:e6:97:6a:db:f1:7c:6d:45:70: cd:bd:16:2f:09:b0:e6:64:3d:4f:27:22:b2:31:b2:cd:20:66: 4f:19:a5:79:fc:8b:21:ec:a5:c4:12:1e:41:69:dc:3c:54:78: 64:09:19:5b:cd:86:f2:51:12:bf:f1:97:58:16:4d:88:20:24: 7d:f6:ee:b2:01:5a:d7:1b:e4:f7:d0:fb:01:b7:9a:f5:df:26: 49:08:08:cc:2d:3f:b5:04:80:f7:ef:4e:f4:1f:d6:bb:66:34: 86:e6:29:22:c8:2a:6e:e8:36:96:c9:c9:cb:12:72:6b:76:db: 82:7f:35:be:b6:a0:59:42:52:c6:da:fa:c6:83:d0:dc:81:4b: e0:9d:53:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzaEOpZv0xgN/Tw0nUUbpn7ZwSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKEQ0MkRFMjU2QTI1NUM1N0VDMkE5RTBFMDVEQjRDMDFDNTQxOEIyOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv3MEE3uVq/aDfn0xFs56OEqXD xnuNSyoV6gOubOpcf37kRzuap47QfyZvh4VOdo5ZEQbRTjsfF1xBPdE8u6fFvpV9 nKOFSFRagMdnqPJOAK/5Uu79UhIK7rOW2bj0c2CgcVDV3fGx2Jq81bear3MZgEaO ZodUKei2CgR2DYe/ziBuiOxJbtI/piK5fXcStZzd2n2uGEYhAC3uNcZV4TulOy04 brzwXBIk7Rg76Updgp+Z1EWcrjZ5qx++SpAZz/o1TY/d93BBZZQBqIDJmCcYHeal nLKDSyybaZwoEVROyTWyrTEI3r3DQdBUiQuH1CYX58EgkCcWPXjtbb30ND2hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1C3iVqJVxX7CqeDgXbTAHFQYso4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTkwDQYJKoZIhvcNAQELBQADggEBAJcF5EMCC0odrH2qK7pKLiCSH2tydtYj6WUF kOQrr50o+MmJnGPdoqZ2mKS2Pg7GxW9+YBOoygP8dqhlYydxHXL+dzuMj5zMVOPZ LKzHuToieD5HH6prwMU5Yzrm1QmDgzUMpz639rK9z2huojnGfBJ/O5jcyOaXatvx fG1FcM29Fi8JsOZkPU8nIrIxss0gZk8ZpXn8iyHspcQSHkFp3DxUeGQJGVvNhvJR Er/xl1gWTYggJH327rIBWtcb5PfQ+wG3mvXfJkkICMwtP7UEgPfvTvQf1rtmNIbm KSLIKm7oNpbJycsScmt224J/Nb62oFlCUsba+saD0NyBS+CdU0I= -----END CERTIFICATE-----Generated at Tue Jun 18 02:27:52 2024 by rpki-client on console-ams.rpki-client.org