$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197737.roa File: AS197737.roa (raw, json) Hash identifier: fg3EKe7CoOTSZq7k2ABWxNyl1TvhHeZw8EsmhBTaBS8= Subject key identifier: BE:59:AB:18:2D:0D:7B:47:B9:A1:38:ED:36:FA:19:C4:4B:E5:C6:5A Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 21C12DA9BCFDC78445E6EB279171FED66BB9EF1D Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197737.roa Signing time: Thu 29 Aug 2024 03:41:17 +0000 ROA not before: Thu 29 Aug 2024 03:36:17 +0000 ROA not after: Thu 28 Aug 2025 03:41:17 +0000 asID: 197737 IP address blocks: 2a0a:6044:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c1:2d:a9:bc:fd:c7:84:45:e6:eb:27:91:71:fe:d6:6b:b9:ef:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:17 2024 GMT Not After : Aug 28 03:41:17 2025 GMT Subject: CN=BE59AB182D0D7B47B9A138ED36FA19C44BE5C65A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6f:f6:e8:67:36:19:1e:95:db:f4:22:b0:40: 2d:af:ef:f3:55:bd:d7:21:99:94:23:a1:19:3b:05: 24:10:f3:9d:ae:ae:7a:cf:26:c9:07:0e:a9:59:37: 73:c1:ec:e3:15:0a:a1:3d:a6:9f:3f:ce:e5:24:8e: 3f:2a:e2:db:14:bb:3a:1d:1b:c9:91:03:91:43:3c: 1f:e7:33:b7:2c:59:9c:b7:69:88:88:93:7b:d6:23: 80:64:81:dd:7c:d3:e5:dc:32:c1:93:df:b4:ea:10: c6:0c:bf:1f:95:e1:4d:db:a0:d6:e6:f5:64:9a:13: cc:b8:4d:b5:21:7a:5b:a8:4f:e3:bd:f7:58:12:ac: a4:1c:af:c0:e2:cd:e3:63:88:56:2e:0c:df:5d:99: 68:ec:06:6a:af:70:e2:f8:8e:24:67:d1:b2:cf:18: 76:54:f1:dc:e2:75:1d:ac:78:d2:fc:74:03:ae:d9: af:a8:b0:1c:df:9a:a7:fb:a9:af:7d:f0:23:70:ab: 2c:f9:1b:7c:21:d9:84:3e:3a:15:dc:0a:f2:bb:f0: c8:6b:67:7d:e2:c8:4d:cd:f3:14:77:10:1a:c0:47: f8:77:d5:c7:09:9d:7d:53:19:31:08:75:b1:ed:3b: 61:52:44:2e:ab:7d:be:fa:90:9c:8f:e1:27:99:da: 85:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:59:AB:18:2D:0D:7B:47:B9:A1:38:ED:36:FA:19:C4:4B:E5:C6:5A X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:a000::/40 Signature Algorithm: sha256WithRSAEncryption 8f:ad:90:43:90:f8:7c:eb:d9:bf:7e:ba:15:5c:76:e1:a3:a0: e0:1a:b3:e0:fe:35:d5:92:95:ad:88:b9:e0:1e:5e:f6:ac:99: 38:32:ae:fa:21:35:f0:d5:df:b1:45:1a:bd:76:fd:5d:c0:db: 71:9e:1a:3e:cd:fb:d5:e4:4c:82:b7:48:1f:22:c3:00:ed:fa: 64:c8:c4:ed:60:21:32:5b:95:4a:95:44:1d:6d:2c:5f:2f:e9: dc:11:10:cc:03:bb:fb:7b:e8:84:a5:8a:8e:26:4b:7a:4b:8b: ab:bc:ad:c4:3e:a6:c9:73:63:86:13:89:00:3b:9d:32:fe:e4: bb:c5:18:54:3c:ec:bb:fc:c0:91:71:b4:17:ef:8e:7d:e5:5c: ba:a4:b5:f0:c6:8d:e1:59:95:e8:ee:46:81:a1:8d:70:fc:50: 4f:c8:ad:55:28:32:12:3e:21:7b:c3:8e:31:a1:ab:e4:b3:cc: e0:ac:4f:7a:ff:3e:1d:b1:de:ed:54:75:1c:b3:64:7d:54:74: 3e:68:f1:27:e6:4d:60:0a:60:62:5b:cb:3a:a0:a3:d6:23:2e: b3:29:f6:57:a4:6a:0b:2d:c0:d4:89:50:70:67:56:12:83:00: c5:b0:d9:9c:43:bb:f2:04:f1:0f:aa:8c:ba:95:de:15:0f:6f: 24:46:bb:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIcEtqbz9x4RF5usnkXH+1mu57x0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV BAMTKEJFNTlBQjE4MkQwRDdCNDdCOUExMzhFRDM2RkExOUM0NEJFNUM2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTb/boZzYZHpXb9CKwQC2v7/NV vdchmZQjoRk7BSQQ852urnrPJskHDqlZN3PB7OMVCqE9pp8/zuUkjj8q4tsUuzod G8mRA5FDPB/nM7csWZy3aYiIk3vWI4Bkgd180+XcMsGT37TqEMYMvx+V4U3boNbm 9WSaE8y4TbUheluoT+O991gSrKQcr8DizeNjiFYuDN9dmWjsBmqvcOL4jiRn0bLP GHZU8dzidR2seNL8dAOu2a+osBzfmqf7qa998CNwqyz5G3wh2YQ+OhXcCvK78Mhr Z33iyE3N8xR3EBrAR/h31ccJnX1TGTEIdbHtO2FSRC6rfb76kJyP4SeZ2oWhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvlmrGC0Ne0e5oTjtNvoZxEvlxlowHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMTk3NzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RKAwDQYJKoZIhvcNAQELBQADggEBAI+tkEOQ+Hzr2b9+uhVcduGjoOAas+D+NdWS la2IueAeXvasmTgyrvohNfDV37FFGr12/V3A23GeGj7N+9XkTIK3SB8iwwDt+mTI xO1gITJblUqVRB1tLF8v6dwREMwDu/t76ISlio4mS3pLi6u8rcQ+pslzY4YTiQA7 nTL+5LvFGFQ87Lv8wJFxtBfvjn3lXLqktfDGjeFZlejuRoGhjXD8UE/IrVUoMhI+ IXvDjjGhq+SzzOCsT3r/Ph2x3u1UdRyzZH1UdD5o8SfmTWAKYGJbyzqgo9YjLrMp 9lekagstwNSJUHBnVhKDAMWw2ZxDu/IE8Q+qjLqV3hUPbyRGu6Q= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org