$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa File: AS133098.roa (raw, json) Hash identifier: sLxn4UbJQJNlDHKURW2bEyjAMQ46tuteOS5t6ReyY5U= Subject key identifier: DB:00:C6:8A:E9:FB:4A:D0:77:10:83:72:FC:BD:1F:60:B7:1B:C6:6B Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 539839D3A1C2659CE4205C5DC4EDEE0C08F35AA3 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 133098 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:98:39:d3:a1:c2:65:9c:e4:20:5c:5d:c4:ed:ee:0c:08:f3:5a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=DB00C68AE9FB4AD077108372FCBD1F60B71BC66B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:05:7d:7a:15:f8:7c:e7:59:0e:de:ac:6f:7f: 3b:e6:3a:3c:f6:4f:4d:f2:2c:c6:a3:ea:1b:d2:af: 0d:67:a9:80:e6:9f:fb:7b:9d:37:02:5c:0d:07:1c: 4f:28:16:0f:13:ab:ea:69:85:85:8c:6a:3d:07:d1: 61:6b:02:c5:0b:82:d1:0f:e0:7f:70:6f:17:c4:c0: 1e:a8:8c:23:bd:0c:84:2a:88:8f:95:d4:1c:63:be: 92:7a:85:94:4e:fb:a2:34:56:e1:13:bf:0e:d6:85: 8e:67:84:ae:2b:8e:7e:0a:29:6a:09:9f:e1:73:89: e5:be:e6:6c:0d:4a:ad:4f:7c:b7:5f:0f:c0:14:aa: 49:ca:74:df:ac:17:75:17:b2:d1:68:3e:7b:1e:b5: 1a:10:a6:55:1a:4d:94:8c:49:a1:4f:ee:c5:f6:1b: 38:c1:d9:a6:a9:39:62:48:54:ed:39:7c:8d:7b:34: bf:27:89:99:b2:2a:43:40:45:e5:05:53:7d:51:29: 66:80:f4:58:10:2b:6c:5d:6d:fc:1f:84:3d:0a:60: 48:67:7c:62:ad:91:11:7a:df:dc:4d:13:34:03:3d: fb:8e:92:9f:be:9e:a3:3c:80:86:d0:f2:b7:94:32: ff:4e:4b:96:85:41:93:fa:6b:b2:1d:36:b3:63:bb: 57:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:00:C6:8A:E9:FB:4A:D0:77:10:83:72:FC:BD:1F:60:B7:1B:C6:6B X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 53:2d:14:c5:88:9c:25:2b:dd:37:3d:b2:b9:5a:c1:07:b8:31: 7d:7d:d8:cb:92:08:60:c6:60:8d:c8:5a:9f:11:43:d2:93:e7: 34:7e:5c:86:b5:c2:8e:d0:d4:f2:c7:49:5d:24:55:f4:09:e8: 02:3d:74:de:4b:86:0c:bb:67:69:64:63:38:36:4a:dd:50:93: c0:e7:09:49:ee:8e:21:3b:53:6f:5a:bd:df:74:78:85:9f:1f: 16:24:cc:97:61:02:11:ef:61:8b:dc:ad:31:4d:c9:4f:52:a7: 8a:d9:e0:a3:1f:a9:49:53:23:bb:88:6a:d1:a9:d0:1a:50:e6: 0d:20:ab:79:a8:34:32:8a:06:47:fa:78:0a:cd:0f:d4:36:34: d5:78:20:ae:68:6d:cf:e7:4b:11:2b:21:fa:92:a4:79:e7:19: b9:f5:f1:40:cc:6f:56:c9:b6:65:c9:d8:76:de:14:b5:24:0c: ce:f2:57:3c:ff:f3:42:b6:d2:f5:06:da:f1:c4:37:8f:1a:1b: 59:4b:2b:b7:de:51:95:a3:b5:d4:9f:91:7d:74:9f:03:7c:ea: 0b:f9:05:b0:5f:9c:be:90:ec:f0:19:ef:26:51:ed:0c:3a:2b: de:9f:0f:72:93:9f:18:ee:93:4d:f9:bc:7d:ad:92:2e:0d:9d: 90:e7:38:d4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUU5g506HCZZzkIFxdxO3uDAjzWqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKERCMDBDNjhBRTlGQjRBRDA3NzEwODM3MkZDQkQxRjYwQjcxQkM2NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoBX16Ffh851kO3qxvfzvmOjz2 T03yLMaj6hvSrw1nqYDmn/t7nTcCXA0HHE8oFg8Tq+pphYWMaj0H0WFrAsULgtEP 4H9wbxfEwB6ojCO9DIQqiI+V1BxjvpJ6hZRO+6I0VuETvw7WhY5nhK4rjn4KKWoJ n+FzieW+5mwNSq1PfLdfD8AUqknKdN+sF3UXstFoPnsetRoQplUaTZSMSaFP7sX2 GzjB2aapOWJIVO05fI17NL8niZmyKkNAReUFU31RKWaA9FgQK2xdbfwfhD0KYEhn fGKtkRF639xNEzQDPfuOkp++nqM8gIbQ8reUMv9OS5aFQZP6a7IdNrNju1evAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2wDGiun7StB3EINy/L0fYLcbxmswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTMzMDk4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBTLRTFiJwlK903PbK5WsEHuDF9fdjLkghg xmCNyFqfEUPSk+c0flyGtcKO0NTyx0ldJFX0CegCPXTeS4YMu2dpZGM4NkrdUJPA 5wlJ7o4hO1NvWr3fdHiFnx8WJMyXYQIR72GL3K0xTclPUqeK2eCjH6lJUyO7iGrR qdAaUOYNIKt5qDQyigZH+ngKzQ/UNjTVeCCuaG3P50sRKyH6kqR55xm59fFAzG9W ybZlydh23hS1JAzO8lc8//NCttL1BtrxxDePGhtZSyu33lGVo7XUn5F9dJ8DfOoL +QWwX5y+kOzwGe8mUe0MOivenw9yk58Y7pNN+bx9rZIuDZ2Q5zjU -----END CERTIFICATE-----Generated at Sun Nov 24 10:00:15 2024 by rpki-client on console-ams.rpki-client.org