$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS400175.roa File: AS400175.roa (raw, json) Hash identifier: eN4hxseO8ClNnZP9QcALVLs9CtsE4tfpfKCZ7aVAXcs= Subject key identifier: 1F:5B:42:ED:D1:A3:89:CB:CE:19:DE:3E:74:81:4B:DD:FB:AA:7E:7D Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 49CC3D678EC2DB206EAA589005AD33C3930DB53A Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS400175.roa Signing time: Thu 29 Aug 2024 03:41:13 +0000 ROA not before: Thu 29 Aug 2024 03:36:13 +0000 ROA not after: Thu 28 Aug 2025 03:41:13 +0000 asID: 400175 IP address blocks: 2a0a:6044:ac10::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:cc:3d:67:8e:c2:db:20:6e:aa:58:90:05:ad:33:c3:93:0d:b5:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:13 2024 GMT Not After : Aug 28 03:41:13 2025 GMT Subject: CN=1F5B42EDD1A389CBCE19DE3E74814BDDFBAA7E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:65:b6:7f:c0:9e:b0:82:16:6e:27:cb:0c:02: 90:a5:60:5a:79:b4:ab:fa:bd:4b:64:6c:59:2f:a8: cb:62:05:df:c5:bc:31:ad:36:f8:75:3b:56:9f:ba: 39:aa:ec:55:ee:ba:2a:00:b6:23:64:a5:f1:88:99: 68:80:07:38:e7:c1:2a:3f:c0:67:4b:80:5a:ba:fa: 68:9a:df:a6:fb:2a:6c:66:1a:52:0a:4c:e9:f7:63: c1:17:99:b6:06:a1:ea:46:4d:a9:f1:dc:86:da:cf: 90:70:e8:d9:b6:c6:5e:8c:89:9b:bb:5a:e7:98:1d: 2d:ae:d0:47:34:b7:e4:41:6a:fa:3b:53:bc:91:90: e6:34:94:1d:6e:58:a5:cc:7f:6e:e3:79:4b:92:ac: 9a:2e:b9:84:0b:4d:8c:2a:56:7c:dc:a4:f0:27:ff: e7:e5:2e:18:24:92:46:78:0c:da:74:99:02:a7:43: 16:84:c6:1a:f3:cd:49:0b:c9:ba:7f:57:4d:99:9d: 4e:79:3a:2d:23:63:6a:4f:82:1d:61:b2:1e:25:60: fa:a7:38:1b:3a:4d:0c:1b:9f:c6:03:bc:d1:31:b3: 0e:00:c7:1f:23:f5:cf:7a:92:74:88:0c:14:fa:82: eb:cf:86:dd:c9:95:9f:41:e7:62:b1:75:d3:5b:09: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5B:42:ED:D1:A3:89:CB:CE:19:DE:3E:74:81:4B:DD:FB:AA:7E:7D X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS400175.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac10::/44 Signature Algorithm: sha256WithRSAEncryption 68:cc:d7:31:c2:0d:6a:5d:c6:26:7b:a7:ac:39:74:1a:4a:3a: 0f:58:c5:43:50:9e:10:71:91:e0:d1:3c:bb:27:5f:25:92:ad: 9f:5c:1f:1e:bd:37:25:26:9c:99:8b:ce:0b:94:82:c6:28:ab: 5d:1c:75:30:94:36:8e:3d:9b:f3:4d:15:da:2a:8e:5f:bb:db: a4:be:99:cf:3f:5a:0e:8c:fc:76:b4:ff:77:3b:ad:be:45:18: f1:b8:7a:24:86:e9:66:48:83:d3:84:42:35:43:ed:fe:37:5a: 3e:5f:0d:fb:9b:00:18:7d:60:c5:8a:46:4e:fb:2b:09:0e:33: 1d:4d:54:cd:df:53:2e:81:84:96:70:91:61:98:85:7a:96:52: 88:97:a1:4d:12:1b:d2:d0:3f:e3:1c:b7:fa:0a:1b:b9:fc:5c: ba:74:3e:ff:05:17:b8:20:c3:8c:ad:8d:4c:36:3b:97:c1:30: 59:9c:af:38:a8:94:7b:24:4a:16:6a:4e:19:4d:80:28:0c:1d: b9:fb:d2:92:e7:82:7f:74:ec:10:66:c0:0b:6b:d9:d9:97:57: e9:e6:d8:43:98:9d:47:16:66:53:d7:6e:dc:d9:92:5a:50:5b: 97:51:10:8d:3b:d2:3b:93:d0:a9:72:eb:26:da:69:f7:16:30: 42:9f:80:90 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUScw9Z47C2yBuqliQBa0zw5MNtTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTNaFw0yNTA4MjgwMzQxMTNaMDMxMTAvBgNV BAMTKDFGNUI0MkVERDFBMzg5Q0JDRTE5REUzRTc0ODE0QkRERkJBQTdFN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoZbZ/wJ6wghZuJ8sMApClYFp5 tKv6vUtkbFkvqMtiBd/FvDGtNvh1O1afujmq7FXuuioAtiNkpfGImWiABzjnwSo/ wGdLgFq6+mia36b7KmxmGlIKTOn3Y8EXmbYGoepGTanx3Ibaz5Bw6Nm2xl6MiZu7 WueYHS2u0Ec0t+RBavo7U7yRkOY0lB1uWKXMf27jeUuSrJouuYQLTYwqVnzcpPAn /+flLhgkkkZ4DNp0mQKnQxaExhrzzUkLybp/V02ZnU55Oi0jY2pPgh1hsh4lYPqn OBs6TQwbn8YDvNExsw4Axx8j9c96knSIDBT6guvPht3JlZ9B52KxddNbCfbTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH1tC7dGjicvOGd4+dIFL3fuqfn0wHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTNDAwMTc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgpg RKwQMA0GCSqGSIb3DQEBCwUAA4IBAQBozNcxwg1qXcYme6esOXQaSjoPWMVDUJ4Q cZHg0Ty7J18lkq2fXB8evTclJpyZi84LlILGKKtdHHUwlDaOPZvzTRXaKo5fu9uk vpnPP1oOjPx2tP93O62+RRjxuHokhulmSIPThEI1Q+3+N1o+Xw37mwAYfWDFikZO +ysJDjMdTVTN31MugYSWcJFhmIV6llKIl6FNEhvS0D/jHLf6Chu5/Fy6dD7/BRe4 IMOMrY1MNjuXwTBZnK84qJR7JEoWak4ZTYAoDB25+9KS54J/dOwQZsALa9nZl1fp 5thDmJ1HFmZT127c2ZJaUFuXURCNO9I7k9Cpcusm2mn3FjBCn4CQ -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:01 2024 by rpki-client on console-fra.rpki-client.org