$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa File: AS216360.roa (raw, json) Hash identifier: y5MXzID4Xg7mWHeS6yfdu5IlRCrf+e9wofWiEXF9+Ws= Subject key identifier: EE:EE:B5:C4:EA:6C:FF:D5:93:C1:7A:75:F3:1C:53:A8:44:EE:C9:30 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3C34840C36275721CDB77E9475AC7D327991F05F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 216360 IP address blocks: 2a07:54c4:1762::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:34:84:0c:36:27:57:21:cd:b7:7e:94:75:ac:7d:32:79:91:f0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=EEEEB5C4EA6CFFD593C17A75F31C53A844EEC930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:32:62:e7:8d:a2:8e:c7:a5:5d:a3:fb:c3:67: b6:53:e1:25:cf:85:d4:59:8a:dd:cc:17:00:81:0b: 12:b1:df:df:7b:b1:3d:c8:0c:87:0c:46:c0:71:6d: 5b:f0:f5:11:39:95:4b:3d:fb:2b:64:b7:89:b1:5a: e5:9a:f6:3c:2d:8b:3b:0e:f1:6f:b7:93:7a:5d:69: 9b:05:37:c5:00:84:4e:cd:86:a5:45:91:f3:dd:95: 72:e1:9c:2e:a6:35:70:48:f1:04:b2:94:04:a5:0c: 2e:90:f5:60:b3:1f:df:6f:ac:aa:33:c8:7d:c8:68: de:98:c5:33:b4:24:61:fc:50:65:10:dc:c4:bb:02: 66:ce:43:c7:e0:13:2a:a1:81:fb:41:f5:d5:97:e2: fb:65:be:77:ea:bf:f8:18:3b:55:19:1f:03:4d:f0: 3b:ad:14:7b:7b:a1:02:aa:09:9c:97:55:06:90:81: a0:69:05:36:cb:e9:72:5c:51:d2:00:da:34:c4:10: 4a:ac:7f:1c:ba:89:37:56:de:7a:8b:2d:fd:cb:d0: 7d:48:b9:96:7a:ac:2c:af:f8:7a:6d:2a:93:c3:11: ec:8f:84:79:ec:e9:cc:6d:d2:f7:57:7b:66:9f:1f: 59:d0:b1:29:19:c7:21:70:e2:d9:7f:79:b2:01:e6: 45:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EE:B5:C4:EA:6C:FF:D5:93:C1:7A:75:F3:1C:53:A8:44:EE:C9:30 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1762::/48 Signature Algorithm: sha256WithRSAEncryption 98:10:02:0c:24:eb:aa:ab:45:1e:5d:10:ea:11:62:0d:77:d6: 8f:79:a9:1e:60:0e:0b:50:ea:bc:79:f5:6c:34:e3:ca:1c:9a: 4f:f9:f8:1f:f1:67:08:70:63:d0:d9:fe:54:52:4a:5e:74:98: ac:34:f6:38:dc:19:db:9f:15:22:74:47:05:25:74:6d:f8:dd: c9:bf:48:ca:dc:65:45:5d:b7:5a:d2:84:e9:a9:41:ab:98:8d: 4f:65:f5:57:00:05:6c:41:c3:f1:07:b7:e2:7f:51:f3:db:26: 89:23:92:7c:d2:af:39:a0:46:53:fc:c3:ff:f8:42:87:0d:7a: 0b:94:47:6e:2d:64:69:29:a6:13:e2:3e:c9:86:01:30:f7:11: e0:08:f2:8d:b2:b4:5e:2a:23:4b:94:d6:12:7e:a4:00:c8:76: ec:a0:77:f3:d7:78:77:26:b4:43:6f:57:d2:2d:f2:c5:c6:0f: bb:77:b6:17:fe:d2:38:c3:4e:1a:eb:38:e5:6e:a6:a5:11:47: 8e:25:1a:73:4b:a5:60:89:9c:c8:fa:d7:d8:9f:57:88:31:91: 80:ff:e2:2c:53:b6:7c:57:54:59:b9:7a:59:a4:2a:36:56:7e: dc:f9:f9:83:a3:61:78:83:22:bb:cd:d4:a1:e0:47:f7:b2:56: 58:93:c1:a5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPDSEDDYnVyHNt36Udax9MnmR8F8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKEVFRUVCNUM0RUE2Q0ZGRDU5M0MxN0E3NUYzMUM1M0E4NDRFRUM5MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjMmLnjaKOx6Vdo/vDZ7ZT4SXP hdRZit3MFwCBCxKx3997sT3IDIcMRsBxbVvw9RE5lUs9+ytkt4mxWuWa9jwtizsO 8W+3k3pdaZsFN8UAhE7NhqVFkfPdlXLhnC6mNXBI8QSylASlDC6Q9WCzH99vrKoz yH3IaN6YxTO0JGH8UGUQ3MS7AmbOQ8fgEyqhgftB9dWX4vtlvnfqv/gYO1UZHwNN 8DutFHt7oQKqCZyXVQaQgaBpBTbL6XJcUdIA2jTEEEqsfxy6iTdW3nqLLf3L0H1I uZZ6rCyv+HptKpPDEeyPhHns6cxt0vdXe2afH1nQsSkZxyFw4tl/ebIB5kVtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7u61xOps/9WTwXp18xxTqETuyTAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2MzYwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdiMA0GCSqGSIb3DQEBCwUAA4IBAQCYEAIMJOuqq0UeXRDqEWINd9aPeakeYA4L UOq8efVsNOPKHJpP+fgf8WcIcGPQ2f5UUkpedJisNPY43BnbnxUidEcFJXRt+N3J v0jK3GVFXbda0oTpqUGrmI1PZfVXAAVsQcPxB7fif1Hz2yaJI5J80q85oEZT/MP/ +EKHDXoLlEduLWRpKaYT4j7JhgEw9xHgCPKNsrReKiNLlNYSfqQAyHbsoHfz13h3 JrRDb1fSLfLFxg+7d7YX/tI4w04a6zjlbqalEUeOJRpzS6VgiZzI+tfYn1eIMZGA /+IsU7Z8V1RZuXpZpCo2Vn7c+fmDo2F4gyK7zdSh4Ef3slZYk8Gl -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org