$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52210.roa File: AS52210.roa (raw, json) Hash identifier: H6C9+KqKeQu1a+EWWnRmuvq7y8ltr1rxCek1a4ZDs04= Subject key identifier: 58:50:5D:85:12:23:0E:C1:45:E1:34:9C:93:E3:24:45:6F:AE:48:21 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 591379C8CD67A824FA2342A61AF69A580E580299 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52210.roa Signing time: Tue 19 Sep 2023 02:14:59 +0000 ROA not before: Tue 19 Sep 2023 02:09:59 +0000 ROA not after: Tue 17 Sep 2024 02:14:59 +0000 asID: 52210 IP address blocks: 2a07:54c4:174b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:13:79:c8:cd:67:a8:24:fa:23:42:a6:1a:f6:9a:58:0e:58:02:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:59 2023 GMT Not After : Sep 17 02:14:59 2024 GMT Subject: CN=58505D8512230EC145E1349C93E324456FAE4821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0e:aa:03:4b:55:ad:7b:45:7f:fd:b1:7a:8e: f5:5c:9b:63:aa:d8:64:38:4d:69:50:10:fb:f5:2d: 0e:fc:9e:82:65:7d:6b:c1:22:dd:20:9c:6e:d6:72: 0a:a7:62:47:14:03:51:44:3f:77:9f:61:1e:f9:24: 0f:b3:a2:70:80:71:f8:0c:b8:50:f7:24:91:70:52: 4e:4f:f7:3e:4f:70:5b:92:76:e9:b6:a3:8c:91:70: bc:d9:ac:f1:0c:ff:36:75:53:39:75:c5:a4:a4:b5: 4c:e3:5b:7e:45:e5:14:65:1e:db:de:07:04:a0:01: 2b:27:12:57:11:00:b0:4d:2f:d4:d6:26:68:99:d3: 61:b6:cb:45:e3:f5:2c:e0:84:e0:c6:e0:c5:83:99: a1:f7:8b:9e:2a:2b:ed:79:bf:d3:fc:8e:2b:4a:26: ab:66:08:50:7f:63:b8:0e:9c:75:5a:89:36:2d:4f: 12:2d:d4:a0:8c:68:d0:32:07:2a:8c:ec:69:51:72: fd:7a:ba:e4:9e:49:b7:c0:4f:9b:7b:bf:d4:e6:8f: e0:d5:59:b0:95:14:48:8c:5d:7d:99:50:eb:83:b8: 41:4e:27:44:33:98:c9:43:99:de:eb:50:68:70:9e: 1b:d1:a8:bd:7e:a8:20:67:4c:88:09:ef:62:08:40: 1b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:50:5D:85:12:23:0E:C1:45:E1:34:9C:93:E3:24:45:6F:AE:48:21 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174b::/48 Signature Algorithm: sha256WithRSAEncryption 0d:4d:74:d9:b3:b3:bc:4b:6c:06:f3:86:8e:e7:6c:7a:0e:32: 71:8a:7d:5d:88:c8:74:cc:60:41:92:6f:11:a4:27:78:96:d5: f4:21:2d:aa:f2:75:0b:fb:52:8b:81:d6:83:f9:00:26:06:0f: c5:6a:bf:d4:1d:6f:00:38:72:a7:64:59:7f:01:98:63:68:27: be:19:9b:0b:0f:31:a1:be:da:a9:12:1e:64:ea:c6:f0:35:ee: 65:ce:05:96:1e:27:a9:44:d7:80:81:07:60:98:eb:fe:f5:11: 62:2f:41:7d:fb:80:7e:5d:cf:26:e2:cc:32:fa:45:7a:f0:17: 71:e3:ec:dc:4c:57:ae:8a:4b:bf:58:2f:e4:39:ad:5a:7d:b1: b1:ee:46:61:45:3a:b8:e4:2d:6b:60:e2:b8:cb:ea:34:91:e8: 88:aa:0f:cf:66:f0:72:b0:8d:2b:48:27:e1:d6:db:8e:e0:fc: ae:5b:25:a9:53:54:6b:b6:e6:27:a3:e7:87:82:4d:3d:98:c2: 71:fd:62:4a:ef:74:b1:0c:33:65:07:5c:12:bf:ad:cb:e9:4d: ae:c2:a5:ef:1b:da:9f:60:53:4b:f6:72:5a:ea:bc:8a:ec:38: 2b:fd:e8:aa:87:eb:06:db:00:67:5a:30:9e:26:5e:8e:9f:67: 59:f2:5e:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWRN5yM1nqCT6I0KmGvaaWA5YApkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTlaFw0yNDA5MTcwMjE0NTlaMDMxMTAvBgNV BAMTKDU4NTA1RDg1MTIyMzBFQzE0NUUxMzQ5QzkzRTMyNDQ1NkZBRTQ4MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRDqoDS1Wte0V//bF6jvVcm2Oq 2GQ4TWlQEPv1LQ78noJlfWvBIt0gnG7WcgqnYkcUA1FEP3efYR75JA+zonCAcfgM uFD3JJFwUk5P9z5PcFuSdum2o4yRcLzZrPEM/zZ1Uzl1xaSktUzjW35F5RRlHtve BwSgASsnElcRALBNL9TWJmiZ02G2y0Xj9SzghODG4MWDmaH3i54qK+15v9P8jitK JqtmCFB/Y7gOnHVaiTYtTxIt1KCMaNAyByqM7GlRcv16uuSeSbfAT5t7v9Tmj+DV WbCVFEiMXX2ZUOuDuEFOJ0QzmMlDmd7rUGhwnhvRqL1+qCBnTIgJ72IIQBu9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWFBdhRIjDsFF4TSck+MkRW+uSCEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTIyMTAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0swDQYJKoZIhvcNAQELBQADggEBAA1NdNmzs7xLbAbzho7nbHoOMnGKfV2IyHTM YEGSbxGkJ3iW1fQhLarydQv7UouB1oP5ACYGD8Vqv9QdbwA4cqdkWX8BmGNoJ74Z mwsPMaG+2qkSHmTqxvA17mXOBZYeJ6lE14CBB2CY6/71EWIvQX37gH5dzybizDL6 RXrwF3Hj7NxMV66KS79YL+Q5rVp9sbHuRmFFOrjkLWtg4rjL6jSR6IiqD89m8HKw jStIJ+HW247g/K5bJalTVGu25iej54eCTT2YwnH9YkrvdLEMM2UHXBK/rcvpTa7C pe8b2p9gU0v2clrqvIrsOCv96KqH6wbbAGdaMJ4mXo6fZ1nyXgo= -----END CERTIFICATE-----Generated at Wed May 8 05:13:20 2024 by rpki-client on console-fra.rpki-client.org