$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa File: AS198959.roa (raw, json) Hash identifier: EE97O1yJqzNdRzQryr6dOGiQutcBBtlTMw+o97gDdtA= Subject key identifier: 40:D9:FE:7A:AA:75:5E:CD:80:B8:9D:06:B0:33:B3:81:B0:FC:0F:24 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 6A9BC8D2368652889EB805EC1274771B2A1927C6 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa Signing time: Thu 29 Aug 2024 03:41:18 +0000 ROA not before: Thu 29 Aug 2024 03:36:18 +0000 ROA not after: Thu 28 Aug 2025 03:41:18 +0000 asID: 198959 IP address blocks: 2a0a:6044:b200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9b:c8:d2:36:86:52:88:9e:b8:05:ec:12:74:77:1b:2a:19:27:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:18 2024 GMT Not After : Aug 28 03:41:18 2025 GMT Subject: CN=40D9FE7AAA755ECD80B89D06B033B381B0FC0F24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ca:31:bc:90:c2:b6:6b:21:56:3b:ef:4f:09: 2c:a4:78:88:00:8e:08:63:44:3c:cd:4c:1e:44:5a: 33:1f:2d:3e:c3:2f:6e:5c:0d:14:49:d9:85:9e:40: 6c:58:11:e3:39:13:c4:05:65:84:87:6a:ff:ab:21: 27:ee:03:15:18:2e:d8:fa:34:cd:ce:df:7e:1d:0f: be:31:18:22:04:bf:90:68:35:19:a3:49:3a:1d:f4: 30:f7:49:35:43:90:4b:11:01:70:0f:fe:a3:bf:73: 2d:e3:db:9e:b9:88:37:26:22:6d:00:0b:20:88:17: 3b:4b:05:61:4d:a0:ea:a3:98:21:36:b6:f4:48:13: 04:ff:5f:bc:1b:fe:04:fa:e6:70:8e:e6:92:b2:b5: 8a:af:8d:7a:2b:bc:07:d2:2c:d6:17:0c:56:24:7b: de:02:b6:bf:a1:56:c9:89:56:74:08:84:c5:e3:a7: 7a:5b:d1:0f:88:a4:70:29:96:62:c7:9f:8c:d0:96: ab:c3:51:9a:b4:4b:7d:56:cc:29:60:27:9b:20:44: 0a:74:4e:df:24:bd:0e:29:9f:12:db:d9:4a:fa:8f: a3:7b:86:a5:c3:7b:38:7a:46:56:0d:b7:e9:f6:4c: e2:1e:6f:59:92:3e:49:79:3e:52:77:24:e2:4b:36: 82:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D9:FE:7A:AA:75:5E:CD:80:B8:9D:06:B0:33:B3:81:B0:FC:0F:24 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS198959.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b200::/40 Signature Algorithm: sha256WithRSAEncryption 20:5b:06:03:6a:5e:72:1d:fe:b4:48:66:1f:74:cd:56:a9:94: 7a:85:d9:39:e9:c1:f9:51:38:3d:39:5f:c3:98:29:5f:6f:ab: 0e:e1:2f:18:97:88:c7:c1:cb:e5:a5:24:db:ee:f6:bc:33:53: b7:94:d5:c8:8d:ee:31:1c:ca:3d:3f:de:a3:9a:2e:e7:23:16: 1e:3a:72:cc:2d:51:b3:92:f1:73:46:da:0a:45:b5:a5:83:b8: fb:49:18:b4:e3:95:91:b9:23:4f:28:a4:e7:55:25:02:ff:0c: 36:77:b1:b6:16:a5:a0:1b:df:ed:a6:57:7f:3b:56:77:0a:5f: f2:22:dc:13:22:90:63:80:33:3b:a8:fb:d2:7d:17:56:13:b4: 77:92:9b:d3:74:3a:24:22:26:0b:f3:aa:f4:bb:20:b3:e2:f6: 67:32:e3:e4:6c:ec:c9:00:a7:26:08:87:00:7c:09:de:1a:57: 85:4b:a3:ba:e6:e6:e5:52:2b:f6:cf:76:3f:78:2a:87:de:d1: f7:24:68:e2:8b:df:ce:1c:7e:82:8f:d8:45:40:c8:79:0c:8e: db:ca:31:6f:74:30:16:d6:7b:76:5d:df:5d:e2:56:bc:6e:e7: 2f:27:2c:bd:be:a1:5f:64:47:23:6f:77:41:f9:86:33:d5:89: d3:8f:c8:38 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUapvI0jaGUoieuAXsEnR3GyoZJ8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MThaFw0yNTA4MjgwMzQxMThaMDMxMTAvBgNV BAMTKDQwRDlGRTdBQUE3NTVFQ0Q4MEI4OUQwNkIwMzNCMzgxQjBGQzBGMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6yjG8kMK2ayFWO+9PCSykeIgA jghjRDzNTB5EWjMfLT7DL25cDRRJ2YWeQGxYEeM5E8QFZYSHav+rISfuAxUYLtj6 NM3O334dD74xGCIEv5BoNRmjSTod9DD3STVDkEsRAXAP/qO/cy3j2565iDcmIm0A CyCIFztLBWFNoOqjmCE2tvRIEwT/X7wb/gT65nCO5pKytYqvjXorvAfSLNYXDFYk e94Ctr+hVsmJVnQIhMXjp3pb0Q+IpHAplmLHn4zQlqvDUZq0S31WzClgJ5sgRAp0 Tt8kvQ4pnxLb2Ur6j6N7hqXDezh6RlYNt+n2TOIeb1mSPkl5PlJ3JOJLNoLVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQNn+eqp1Xs2AuJ0GsDOzgbD8DyQwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMTk4OTU5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RLIwDQYJKoZIhvcNAQELBQADggEBACBbBgNqXnId/rRIZh90zVaplHqF2TnpwflR OD05X8OYKV9vqw7hLxiXiMfBy+WlJNvu9rwzU7eU1ciN7jEcyj0/3qOaLucjFh46 cswtUbOS8XNG2gpFtaWDuPtJGLTjlZG5I08opOdVJQL/DDZ3sbYWpaAb3+2mV387 VncKX/Ii3BMikGOAMzuo+9J9F1YTtHeSm9N0OiQiJgvzqvS7ILPi9mcy4+Rs7MkA pyYIhwB8Cd4aV4VLo7rm5uVSK/bPdj94Kofe0fckaOKL384cfoKP2EVAyHkMjtvK MW90MBbWe3Zd313iVrxu5y8nLL2+oV9kRyNvd0H5hjPVidOPyDg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org