$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216401.roa File: AS216401.roa (raw, json) Hash identifier: QJlnLl3UNy1MMKKRxC/G99wHeot9OHo4RFG1w3rTDFk= Subject key identifier: 9B:F1:41:5C:63:E5:B5:17:EF:D5:B1:B4:0D:99:A0:7F:28:7C:39:93 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2AF7E7C646B92E136814B93B7DF37CD1FE01CE78 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216401.roa Signing time: Thu 29 Aug 2024 19:32:02 +0000 ROA not before: Thu 29 Aug 2024 19:27:02 +0000 ROA not after: Thu 28 Aug 2025 19:32:02 +0000 asID: 216401 IP address blocks: 2a07:54c7:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f7:e7:c6:46:b9:2e:13:68:14:b9:3b:7d:f3:7c:d1:fe:01:ce:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 29 19:27:02 2024 GMT Not After : Aug 28 19:32:02 2025 GMT Subject: CN=9BF1415C63E5B517EFD5B1B40D99A07F287C3993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ec:57:76:4d:ef:81:0f:f9:83:f7:8c:a5:c6: 20:da:a8:6b:e1:45:a9:d1:d1:be:94:eb:0e:0f:75: 5c:87:e2:be:3e:8e:f4:2e:98:88:d0:dd:79:7e:5b: 00:93:d2:74:2e:3c:0c:6d:14:a1:7c:de:72:ae:b4: 1f:95:11:07:0d:db:60:a6:0d:84:00:6c:a1:f4:f9: cb:4a:74:5e:c9:4b:92:55:1f:55:86:e1:86:01:45: 7c:e2:81:13:d8:94:66:01:fa:39:0e:b0:13:81:3b: 46:9f:47:fd:1c:82:89:8c:3e:1a:9d:4c:7d:7f:55: ec:d5:f3:71:cb:7e:2e:1f:3f:dd:0a:d6:57:fd:83: 57:4a:85:ef:a3:cc:f7:bb:6f:78:a8:a0:2c:c9:98: b5:b8:90:b5:5c:ff:3c:9d:86:de:1b:d2:8d:c1:75: c7:44:90:e8:7d:7d:69:09:ed:d9:f5:fc:e4:78:41: 6e:e0:18:53:4a:fc:07:71:cf:da:fc:1d:7b:91:e6: 08:45:74:03:3d:32:89:81:3d:27:b9:84:76:9d:91: 21:0f:b4:3a:12:65:48:ca:b7:ff:41:04:4c:3d:32: 98:17:a0:0b:af:18:a9:5b:70:7f:96:81:d3:1f:3d: a4:c7:3f:d8:69:4f:87:98:08:bf:85:9c:ca:fd:45: b5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F1:41:5C:63:E5:B5:17:EF:D5:B1:B4:0D:99:A0:7F:28:7C:39:93 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS216401.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:1000::/36 Signature Algorithm: sha256WithRSAEncryption 99:73:c9:da:44:04:5b:bd:35:3d:0c:29:85:be:fb:f8:e0:46: e0:ef:27:9d:47:9d:f3:00:17:e6:e9:9f:53:6f:ec:d5:87:4e: dd:4d:1b:60:27:50:77:76:d0:e0:3a:f7:4c:aa:c1:5f:74:25: 81:04:65:d4:4c:55:5e:02:af:0d:ec:70:62:0b:9f:be:58:56: 3e:d5:00:c2:88:9e:22:b2:45:7d:8f:f6:d3:9a:f3:92:9e:fc: f3:db:d3:d2:42:20:da:dc:22:9e:2e:4b:ff:4b:d2:41:81:ad: 18:5a:e0:6a:d0:ca:fb:64:4f:42:99:c7:18:3a:a4:78:1f:63: 64:71:bc:c3:4a:ba:4b:ac:a9:e9:a1:c8:7a:3d:56:1f:e7:d1: 55:bc:a2:52:fe:ed:21:ac:22:24:4d:c3:92:d9:35:6a:f1:2e: c0:e1:c6:fb:be:f5:34:d6:0f:52:d0:ca:f2:62:64:42:c3:e2: 0e:b9:0b:f5:55:6b:9e:60:23:c9:be:8d:d3:bc:8d:b9:2c:f6: 2f:73:a4:fb:e0:03:c3:39:14:51:fd:54:fd:7d:6b:0a:35:c6: 5a:c7:19:c2:00:db:4d:ba:db:82:09:e7:6b:31:27:cf:36:6e: 4d:f2:f6:36:66:86:b5:48:29:32:cd:4b:1e:24:67:7d:66:8c: 5d:a9:dc:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKvfnxka5LhNoFLk7ffN80f4BzngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjkxOTI3MDJaFw0yNTA4MjgxOTMyMDJaMDMxMTAvBgNV BAMTKDlCRjE0MTVDNjNFNUI1MTdFRkQ1QjFCNDBEOTlBMDdGMjg3QzM5OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7Fd2Te+BD/mD94ylxiDaqGvh RanR0b6U6w4PdVyH4r4+jvQumIjQ3Xl+WwCT0nQuPAxtFKF83nKutB+VEQcN22Cm DYQAbKH0+ctKdF7JS5JVH1WG4YYBRXzigRPYlGYB+jkOsBOBO0afR/0cgomMPhqd TH1/VezV83HLfi4fP90K1lf9g1dKhe+jzPe7b3iooCzJmLW4kLVc/zydht4b0o3B dcdEkOh9fWkJ7dn1/OR4QW7gGFNK/Adxz9r8HXuR5ghFdAM9MomBPSe5hHadkSEP tDoSZUjKt/9BBEw9MpgXoAuvGKlbcH+WgdMfPaTHP9hpT4eYCL+FnMr9RbUBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUm/FBXGPltRfv1bG0DZmgfyh8OZMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjE2NDAxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdU xxAwDQYJKoZIhvcNAQELBQADggEBAJlzydpEBFu9NT0MKYW++/jgRuDvJ51HnfMA F+bpn1Nv7NWHTt1NG2AnUHd20OA690yqwV90JYEEZdRMVV4Crw3scGILn75YVj7V AMKIniKyRX2P9tOa85Ke/PPb09JCINrcIp4uS/9L0kGBrRha4GrQyvtkT0KZxxg6 pHgfY2RxvMNKukusqemhyHo9Vh/n0VW8olL+7SGsIiRNw5LZNWrxLsDhxvu+9TTW D1LQyvJiZELD4g65C/VVa55gI8m+jdO8jbks9i9zpPvgA8M5FFH9VP19awo1xlrH GcIA202624IJ52sxJ882bk3y9jZmhrVIKTLNSx4kZ31mjF2p3Gw= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org