$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197963.roa File: AS197963.roa (raw, json) Hash identifier: ZWf4oZUjkZqjgVsbr7F0n1SO+XD5H/MafEwRD/pSzUU= Subject key identifier: 84:89:AE:6F:EF:FF:78:FA:5F:DF:AA:7F:A4:3B:80:3A:70:7E:AA:DB Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 1F6305535DDB064871F5F37BA50BD62A5EA33346 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197963.roa Signing time: Thu 29 Aug 2024 03:41:17 +0000 ROA not before: Thu 29 Aug 2024 03:36:17 +0000 ROA not after: Thu 28 Aug 2025 03:41:17 +0000 asID: 197963 IP address blocks: 2a0a:6044:a400::/40 maxlen: 40 2a0a:6044:aa00::/48 maxlen: 48 2a0a:6044:aa01::/48 maxlen: 48 2a0a:6044:aa02::/48 maxlen: 48 2a0a:6044:aa03::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:63:05:53:5d:db:06:48:71:f5:f3:7b:a5:0b:d6:2a:5e:a3:33:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:17 2024 GMT Not After : Aug 28 03:41:17 2025 GMT Subject: CN=8489AE6FEFFF78FA5FDFAA7FA43B803A707EAADB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:7a:fd:24:c9:48:a2:6f:b3:54:70:a5:7e: aa:84:d1:5c:13:a6:0d:1c:45:bc:37:b1:d4:c6:73: e3:1e:76:9c:6f:b5:0f:0a:d1:53:9f:6a:9b:64:a0: b1:be:f2:cc:7a:22:e8:66:21:ae:01:6e:7f:a7:7a: 76:16:2b:41:df:0b:f3:8d:12:0e:2f:a5:a4:3b:d8: 57:62:80:18:15:d7:29:06:23:b0:01:7c:ac:3e:32: d6:03:58:21:84:0e:de:33:c9:58:d1:88:c6:45:bb: 62:49:2a:d5:5e:43:b4:83:74:17:b6:27:4d:5e:f8: ab:f3:f1:02:35:fa:05:0b:3c:01:a9:3d:e1:ed:ab: f3:b9:25:2a:b6:2a:ad:88:11:72:a5:3f:ac:57:06: 0a:ad:01:62:b8:b4:35:9f:c7:9c:92:b5:aa:62:dd: 61:f8:36:55:5e:84:7a:45:2b:5e:10:61:b4:53:02: 60:00:0a:21:d8:11:8c:d7:5e:c0:62:72:36:4f:28: 88:cc:f6:97:ea:6c:57:ca:68:59:ea:aa:c9:9a:cc: 31:3e:1b:2d:d4:4e:07:49:33:23:b4:e9:2c:76:a7: 37:7a:3f:7b:3b:a1:dc:88:3b:8c:87:94:4e:dc:c2: 17:c2:9f:82:7f:10:6b:6a:7b:3b:cd:e7:72:2e:69: e5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:89:AE:6F:EF:FF:78:FA:5F:DF:AA:7F:A4:3B:80:3A:70:7E:AA:DB X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS197963.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:a400::/40 2a0a:6044:aa00::/46 Signature Algorithm: sha256WithRSAEncryption 90:52:c3:e8:75:25:23:0a:a6:c2:6c:43:1a:97:a7:4c:e6:8a: 74:71:67:3b:d1:cc:cb:01:14:49:f0:cd:2c:23:82:15:40:48: 30:0c:24:0f:99:29:6b:84:5b:d0:39:72:20:8e:db:07:7e:51: 47:94:50:3e:c2:21:f4:26:70:ea:ac:4d:2c:34:2f:b2:4e:cd: 78:3a:1e:09:a0:61:b4:f4:b2:ad:30:0f:ee:bf:f6:ed:09:58: e5:bf:6e:cf:a5:a7:03:d7:8c:c2:be:0d:b0:dc:f7:29:19:8e: 98:e7:f3:a8:bc:0d:c3:c9:e8:66:89:d4:d1:a3:33:de:23:4f: 8a:76:d9:43:42:81:cc:a5:86:8c:17:ce:11:cd:31:32:e4:f9: ff:0d:c6:10:46:09:c2:4a:6d:00:e9:86:3e:c2:08:ea:73:41: 5c:8f:0f:5f:d4:5b:19:34:52:de:57:68:5a:2f:74:14:3c:a2: b4:fb:53:46:95:4a:28:7e:0c:cc:a4:22:ea:dc:22:ec:bd:9d: fe:0f:49:75:ed:3f:7b:9c:ec:9b:80:72:c3:ef:70:32:08:fd: 2e:dd:7b:33:1f:97:18:88:33:dc:ab:5d:04:46:18:13:dd:5c: c1:48:ae:ce:e5:a3:dc:74:0c:72:ef:70:b1:e2:d2:f5:21:13: c8:38:c7:a9 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUH2MFU13bBkhx9fN7pQvWKl6jM0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTdaFw0yNTA4MjgwMzQxMTdaMDMxMTAvBgNV BAMTKDg0ODlBRTZGRUZGRjc4RkE1RkRGQUE3RkE0M0I4MDNBNzA3RUFBREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImnr9JMlIom+zVHClfqqE0VwT pg0cRbw3sdTGc+MedpxvtQ8K0VOfaptkoLG+8sx6IuhmIa4Bbn+nenYWK0HfC/ON Eg4vpaQ72FdigBgV1ykGI7ABfKw+MtYDWCGEDt4zyVjRiMZFu2JJKtVeQ7SDdBe2 J01e+Kvz8QI1+gULPAGpPeHtq/O5JSq2Kq2IEXKlP6xXBgqtAWK4tDWfx5yStapi 3WH4NlVehHpFK14QYbRTAmAACiHYEYzXXsBicjZPKIjM9pfqbFfKaFnqqsmazDE+ Gy3UTgdJMyO06Sx2pzd6P3s7odyIO4yHlE7cwhfCn4J/EGtqezvN53IuaeXHAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUhImub+//ePpf36p/pDuAOnB+qtswHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMTk3OTYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKgpg RKQDBwIqCmBEqgAwDQYJKoZIhvcNAQELBQADggEBAJBSw+h1JSMKpsJsQxqXp0zm inRxZzvRzMsBFEnwzSwjghVASDAMJA+ZKWuEW9A5ciCO2wd+UUeUUD7CIfQmcOqs TSw0L7JOzXg6HgmgYbT0sq0wD+6/9u0JWOW/bs+lpwPXjMK+DbDc9ykZjpjn86i8 DcPJ6GaJ1NGjM94jT4p22UNCgcylhowXzhHNMTLk+f8NxhBGCcJKbQDphj7CCOpz QVyPD1/UWxk0Ut5XaFovdBQ8orT7U0aVSih+DMykIurcIuy9nf4PSXXtP3uc7JuA csPvcDII/S7dezMflxiIM9yrXQRGGBPdXMFIrs7lo9x0DHLvcLHi0vUhE8g4x6k= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org