$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS199763.roa File: AS199763.roa (raw, json) Hash identifier: NKG6CWgdVpNjCWbQRDXha6F5H0pHExrqjcdfwcTBTV0= Subject key identifier: 31:F7:D0:80:A5:2E:A8:C0:1D:54:C9:84:BA:49:E8:BF:7D:AA:D2:D1 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 68EE45EDB51B3D2CCCA9BEEB3A4E59585BFFA4E9 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS199763.roa Signing time: Thu 29 Aug 2024 03:41:16 +0000 ROA not before: Thu 29 Aug 2024 03:36:16 +0000 ROA not after: Thu 28 Aug 2025 03:41:16 +0000 asID: 199763 IP address blocks: 2a0a:6044:bc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ee:45:ed:b5:1b:3d:2c:cc:a9:be:eb:3a:4e:59:58:5b:ff:a4:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:16 2024 GMT Not After : Aug 28 03:41:16 2025 GMT Subject: CN=31F7D080A52EA8C01D54C984BA49E8BF7DAAD2D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:b2:d7:41:36:66:d9:1a:b0:a8:03:f0:95: 2d:89:96:74:ae:aa:0c:ce:24:a2:00:56:16:9c:8e: 0b:34:bf:d4:2c:fe:3e:36:00:08:99:62:95:ac:8e: e5:72:20:fa:b4:62:1f:df:be:b3:23:75:ed:b9:25: 6f:00:46:f9:71:a8:9a:9f:9f:91:d7:bd:63:95:e5: 1b:f1:bd:5c:db:d4:b3:ff:38:91:65:d6:b2:c3:c7: 1d:dc:81:b7:08:c6:c2:70:ac:27:fe:ea:8f:e6:33: 17:13:c3:26:72:e4:49:da:b1:ba:23:ed:01:10:07: cf:2b:ca:59:8c:e8:04:b5:69:d0:ca:7e:10:c5:ad: e6:22:5f:c8:da:ad:14:ed:e0:41:14:db:d6:52:78: 12:5d:c4:24:5b:25:48:cb:81:d0:0f:fa:15:82:95: ee:55:21:bc:e9:df:02:0a:df:91:3a:87:46:93:dc: 04:aa:3e:dc:0d:ba:39:f1:86:46:0d:72:3b:2e:3c: eb:65:0a:31:3b:96:f0:b6:57:3e:38:9e:13:f4:28: 6c:1d:07:51:8a:9b:9d:12:95:94:db:55:31:a5:ef: 1a:fa:42:4c:a5:c3:ae:50:50:00:ea:9b:0c:cb:04: 4b:c7:bc:d7:cc:1e:a8:64:04:d7:40:6e:ad:92:2f: a5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F7:D0:80:A5:2E:A8:C0:1D:54:C9:84:BA:49:E8:BF:7D:AA:D2:D1 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS199763.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:bc00::/40 Signature Algorithm: sha256WithRSAEncryption 38:3b:ea:ba:50:60:26:77:0b:da:2a:d7:34:d4:28:1c:07:7d: cd:10:c1:7b:40:3c:87:85:6d:f6:19:fa:1f:f1:03:10:d2:e2: f9:76:34:2a:ce:bf:f9:86:ea:dd:c6:2b:0b:fb:bd:95:c5:af: d8:20:36:fb:ab:7e:52:8f:77:fe:4c:ac:1e:70:39:78:10:dc: 9f:44:2f:34:a5:d7:97:32:fd:bb:37:be:32:70:20:10:f1:63: 5d:e8:39:2d:00:ae:f4:33:0e:49:f0:6b:e6:ae:70:78:cc:dd: 12:67:b2:ca:d6:e8:28:02:11:62:2a:4a:8c:99:42:62:0d:01: 8a:22:69:88:34:ef:96:92:a8:10:ea:cf:8a:22:7d:75:e7:41: e7:14:62:b9:78:55:4c:a4:3a:c7:5a:00:3f:55:33:01:26:fb: dd:7e:aa:e4:3c:27:12:02:ef:25:6e:d7:42:24:58:9e:bd:ea: b9:2f:65:49:b4:ff:48:30:98:c6:8f:0b:93:1e:fb:bf:2e:d1: 1d:bf:23:89:41:e2:a6:8d:36:56:ad:09:49:a2:e8:62:09:d8: 34:1b:d2:6c:0a:64:43:92:9c:99:82:37:42:47:19:98:6b:ec: 3a:da:55:31:4f:f9:6e:b3:84:fd:f4:60:86:9e:32:f8:e6:f4: b1:4c:34:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaO5F7bUbPSzMqb7rOk5ZWFv/pOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTZaFw0yNTA4MjgwMzQxMTZaMDMxMTAvBgNV BAMTKDMxRjdEMDgwQTUyRUE4QzAxRDU0Qzk4NEJBNDlFOEJGN0RBQUQyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ0rLXQTZm2RqwqAPwlS2JlnSu qgzOJKIAVhacjgs0v9Qs/j42AAiZYpWsjuVyIPq0Yh/fvrMjde25JW8ARvlxqJqf n5HXvWOV5RvxvVzb1LP/OJFl1rLDxx3cgbcIxsJwrCf+6o/mMxcTwyZy5Enasboj 7QEQB88rylmM6AS1adDKfhDFreYiX8jarRTt4EEU29ZSeBJdxCRbJUjLgdAP+hWC le5VIbzp3wIK35E6h0aT3ASqPtwNujnxhkYNcjsuPOtlCjE7lvC2Vz44nhP0KGwd B1GKm50SlZTbVTGl7xr6Qkylw65QUADqmwzLBEvHvNfMHqhkBNdAbq2SL6XzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMffQgKUuqMAdVMmEuknov32q0tEwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMTk5NzYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RLwwDQYJKoZIhvcNAQELBQADggEBADg76rpQYCZ3C9oq1zTUKBwHfc0QwXtAPIeF bfYZ+h/xAxDS4vl2NCrOv/mG6t3GKwv7vZXFr9ggNvurflKPd/5MrB5wOXgQ3J9E LzSl15cy/bs3vjJwIBDxY13oOS0ArvQzDknwa+aucHjM3RJnssrW6CgCEWIqSoyZ QmINAYoiaYg075aSqBDqz4oifXXnQecUYrl4VUykOsdaAD9VMwEm+91+quQ8JxIC 7yVu10IkWJ696rkvZUm0/0gwmMaPC5Me+78u0R2/I4lB4qaNNlatCUmi6GIJ2DQb 0mwKZEOSnJmCN0JHGZhr7DraVTFP+W6zhP30YIaeMvjm9LFMNE0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org