$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa File: AS133098.roa (raw, json) Hash identifier: UMbP3MGSLOrGCQ6/oApr5fYkAiJcnZZXvHzqrSNJy4I= Subject key identifier: 58:52:0F:07:46:B3:5F:C6:BF:87:81:77:B9:68:9A:9E:AF:29:56:ED Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1C4AD76CF1F07393BE51C54C5C8B0BAE93D76E9B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 133098 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4a:d7:6c:f1:f0:73:93:be:51:c5:4c:5c:8b:0b:ae:93:d7:6e:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=58520F0746B35FC6BF878177B9689A9EAF2956ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:3b:c1:df:da:1d:34:30:85:0b:8c:d9:23: c2:87:1f:1d:7e:37:d7:d9:1f:bc:ad:66:48:76:04: bc:27:d3:62:c1:64:00:df:c4:40:7c:13:08:3f:b2: c1:13:7a:3f:17:64:0d:0c:4d:9e:c3:b1:b8:ab:53: 68:ae:90:c1:38:0e:df:3f:b2:65:2d:83:30:af:72: 01:fa:89:2e:8c:6c:6a:cc:32:72:be:3a:3d:8b:fd: 2b:ca:c1:67:25:09:ec:6b:0c:4c:fc:37:e1:43:e4: 8c:c5:39:86:30:7e:c4:45:27:d2:70:c1:82:b1:d6: 60:60:24:e9:b4:c3:7c:a5:2b:f3:bd:7b:c0:58:5c: 59:48:9e:97:fd:51:04:64:45:d4:0f:e2:c1:66:da: 6f:17:1a:13:73:c5:e2:a3:98:92:f9:2c:b7:e1:2f: 18:eb:8f:24:2b:25:76:36:68:76:b5:09:82:60:fa: 4c:f0:34:f3:22:48:91:59:0c:0b:ad:c2:ff:eb:a3: 94:f0:07:8b:58:e6:23:53:91:d0:71:45:f8:05:7e: 85:ef:53:9b:bc:39:f8:b0:09:67:bc:ff:1b:62:7b: 6c:e4:51:65:2c:d2:81:34:eb:fa:c6:81:ab:b3:59: b7:b9:ff:b8:64:75:b5:5d:84:0c:3a:72:30:91:41: 3d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:52:0F:07:46:B3:5F:C6:BF:87:81:77:B9:68:9A:9E:AF:29:56:ED X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS133098.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 26:34:44:16:ff:b8:54:7c:f9:13:4e:54:fc:6e:fc:be:19:e3: 0f:4a:e4:ce:d3:0d:5d:d5:dc:60:cc:1f:a2:cb:0f:15:47:9e: 7c:67:56:09:9b:54:1b:af:27:a2:8f:23:ac:cb:61:57:30:34: 03:8d:4b:2a:e7:1f:72:f9:97:fc:6d:86:be:0b:e8:80:ef:0f: 83:53:9b:fb:cf:24:71:29:6b:c6:df:19:33:b0:ab:bc:9e:3f: bf:6b:04:51:a0:ea:6f:61:8c:a0:b1:11:d3:01:9e:92:ff:9c: cc:dd:3c:6a:58:48:71:e8:2b:2a:b5:13:f5:14:45:b9:86:ff: ba:6d:66:b8:48:88:65:89:db:3f:d1:1a:c5:30:ea:60:f6:4d: 45:a9:2d:be:10:91:de:e9:30:bf:7e:ae:bb:db:8a:db:23:2a: ad:b4:ff:5a:ce:f7:aa:15:a1:d3:ab:61:3f:cc:a6:25:f5:b5: 87:82:da:aa:f4:ae:df:ee:dd:98:af:5c:b9:a4:01:45:3b:7a: e1:93:bb:e9:17:97:cd:cd:6a:70:96:e1:59:00:61:a1:19:6f: 7b:84:77:18:7c:3e:8d:a6:70:0f:e1:2e:eb:84:31:01:42:9c: dd:96:0c:5f:84:30:74:d7:8a:c9:c3:10:b8:62:ab:d6:b1:2a: 4a:47:19:0b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHErXbPHwc5O+UcVMXIsLrpPXbpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDU4NTIwRjA3NDZCMzVGQzZCRjg3ODE3N0I5Njg5QTlFQUYyOTU2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMYDvB39odNDCFC4zZI8KHHx1+ N9fZH7ytZkh2BLwn02LBZADfxEB8Ewg/ssETej8XZA0MTZ7DsbirU2iukME4Dt8/ smUtgzCvcgH6iS6MbGrMMnK+Oj2L/SvKwWclCexrDEz8N+FD5IzFOYYwfsRFJ9Jw wYKx1mBgJOm0w3ylK/O9e8BYXFlInpf9UQRkRdQP4sFm2m8XGhNzxeKjmJL5LLfh LxjrjyQrJXY2aHa1CYJg+kzwNPMiSJFZDAutwv/ro5TwB4tY5iNTkdBxRfgFfoXv U5u8OfiwCWe8/xtie2zkUWUs0oE06/rGgauzWbe5/7hkdbVdhAw6cjCRQT1VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWFIPB0azX8a/h4F3uWianq8pVu0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTMzMDk4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAmNEQW/7hUfPkTTlT8bvy+GeMPSuTO0w1d 1dxgzB+iyw8VR558Z1YJm1QbryeijyOsy2FXMDQDjUsq5x9y+Zf8bYa+C+iA7w+D U5v7zyRxKWvG3xkzsKu8nj+/awRRoOpvYYygsRHTAZ6S/5zM3TxqWEhx6CsqtRP1 FEW5hv+6bWa4SIhlids/0RrFMOpg9k1FqS2+EJHe6TC/fq6724rbIyqttP9azveq FaHTq2E/zKYl9bWHgtqq9K7f7t2Yr1y5pAFFO3rhk7vpF5fNzWpwluFZAGGhGW97 hHcYfD6NpnAP4S7rhDEBQpzdlgxfhDB014rJwxC4YqvWsSpKRxkL -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:25 2024 by rpki-client on console-fra.rpki-client.org