$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa File: AS216360.roa (raw, json) Hash identifier: h3zBuFy7j7I48iU8dREY3o6yjpA1RDyWsoUxIJfsVDI= Subject key identifier: 0A:C1:B7:2E:DE:47:2E:56:04:09:E4:6D:6B:69:E2:91:73:C3:32:C8 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 350C5EC1023BFDE30BB525B62E9BBD9A50777473 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 216360 IP address blocks: 2a07:54c4:1762::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0c:5e:c1:02:3b:fd:e3:0b:b5:25:b6:2e:9b:bd:9a:50:77:74:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=0AC1B72EDE472E560409E46D6B69E29173C332C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:b8:35:10:ae:de:54:19:b7:b8:07:a1:57: 42:1a:74:71:eb:b1:0e:da:9c:77:ae:db:0b:6a:5d: 7d:d6:d9:b4:2a:85:d9:1a:47:96:2d:84:0a:50:a4: c4:78:25:c7:ec:3d:37:66:8c:c5:86:fe:07:e2:32: d3:98:57:b5:ff:c9:fe:81:67:3b:19:74:f6:a2:43: f3:3c:f8:d0:49:74:3d:ef:61:c6:bd:fe:c8:33:f7: b5:8c:4e:dd:c9:6b:2f:b2:ff:a5:a5:1f:74:f2:a7: 04:bf:43:d5:ec:b2:00:f5:a5:95:d3:ed:0f:24:ed: f7:81:09:10:b4:db:bd:2a:fa:9a:d3:98:00:5f:63: f7:eb:7b:17:05:c1:94:35:c4:81:e8:b8:74:07:e2: 4c:c6:d2:86:8c:ff:48:d5:43:94:0b:22:fa:b1:4b: 6f:c0:ce:17:21:9f:7d:f9:ba:3b:90:27:c5:10:df: 09:f0:23:c5:ad:14:8c:da:d4:48:ce:54:3b:2e:6a: 90:9a:b3:66:26:90:04:ef:e5:d3:5a:fc:c5:53:2f: 7f:2a:ab:02:e8:58:c5:ae:bf:b1:15:bf:d4:93:a8: aa:c3:6e:b7:a2:22:75:14:a4:7e:77:11:ae:5c:7c: d0:28:e6:31:00:0d:7a:8a:8b:75:a1:ad:ac:e8:aa: c5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C1:B7:2E:DE:47:2E:56:04:09:E4:6D:6B:69:E2:91:73:C3:32:C8 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1762::/48 Signature Algorithm: sha256WithRSAEncryption b5:b5:ef:29:cb:99:9e:f4:e7:06:8b:ea:e1:c1:ce:27:7e:07: f0:67:ad:ba:71:74:e8:0d:85:66:1a:ba:10:a0:af:55:c5:e0: 35:be:83:f9:70:87:7b:8f:b7:38:56:9e:ca:17:53:41:fa:70: 09:6c:40:57:78:32:26:cb:45:4e:c1:44:bb:30:04:e7:87:b4: be:cf:76:e1:57:cd:d8:18:ad:cf:0b:3f:4a:00:8e:a9:50:a2: 2b:3a:bc:1f:2a:3c:cc:35:ea:1e:55:5b:65:64:a9:46:fe:da: 48:a8:88:be:cb:f2:3b:3c:61:3d:3b:83:77:be:6b:dc:d1:0e: 29:08:9f:90:f9:16:39:25:69:31:1f:bb:31:52:4b:90:22:cb: 4d:5e:ac:68:9d:a4:2c:44:75:0c:44:32:6a:d0:78:05:c3:77: 71:d0:af:1a:1c:ab:25:d8:2a:b6:b7:93:82:07:b1:1e:3b:4f: cf:f6:7e:25:cc:b1:10:94:79:9a:ba:ca:16:38:99:ea:ea:03: 0f:44:4d:73:bd:7f:54:92:21:7c:d6:2a:1d:b8:62:9c:55:26: e0:94:9e:c0:29:2e:3a:47:9c:e5:fc:37:37:f3:33:bf:4a:25: 80:49:82:39:fd:c2:89:ae:d2:6d:51:78:38:58:a0:78:08:67: b5:52:a3:71 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNQxewQI7/eMLtSW2Lpu9mlB3dHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDBBQzFCNzJFREU0NzJFNTYwNDA5RTQ2RDZCNjlFMjkxNzNDMzMyQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsWLg1EK7eVBm3uAehV0IadHHr sQ7anHeu2wtqXX3W2bQqhdkaR5YthApQpMR4JcfsPTdmjMWG/gfiMtOYV7X/yf6B ZzsZdPaiQ/M8+NBJdD3vYca9/sgz97WMTt3Jay+y/6WlH3TypwS/Q9XssgD1pZXT 7Q8k7feBCRC0270q+prTmABfY/frexcFwZQ1xIHouHQH4kzG0oaM/0jVQ5QLIvqx S2/Azhchn335ujuQJ8UQ3wnwI8WtFIza1EjOVDsuapCas2YmkATv5dNa/MVTL38q qwLoWMWuv7EVv9STqKrDbreiInUUpH53Ea5cfNAo5jEADXqKi3WhrazoqsWhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCsG3Lt5HLlYECeRta2nikXPDMsgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzYwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdiMA0GCSqGSIb3DQEBCwUAA4IBAQC1te8py5me9OcGi+rhwc4nfgfwZ626cXTo DYVmGroQoK9VxeA1voP5cId7j7c4Vp7KF1NB+nAJbEBXeDImy0VOwUS7MATnh7S+ z3bhV83YGK3PCz9KAI6pUKIrOrwfKjzMNeoeVVtlZKlG/tpIqIi+y/I7PGE9O4N3 vmvc0Q4pCJ+Q+RY5JWkxH7sxUkuQIstNXqxonaQsRHUMRDJq0HgFw3dx0K8aHKsl 2Cq2t5OCB7EeO0/P9n4lzLEQlHmausoWOJnq6gMPRE1zvX9UkiF81ioduGKcVSbg lJ7AKS46R5zl/Dc38zO/SiWASYI5/cKJrtJtUXg4WKB4CGe1UqNx -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org