$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS139882.roa File: AS139882.roa (raw, json) Hash identifier: +1yJ01MXCHkhKATZ/8ZCL1lkpyAE65OqGIYEK7hfaBc= Subject key identifier: 4A:3D:8D:45:E3:8A:25:56:34:14:3C:39:87:E6:50:81:F6:ED:CB:49 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4A93D7B983EF5576F5FB95534E354CC6DD81AC1B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS139882.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 139882 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:93:d7:b9:83:ef:55:76:f5:fb:95:53:4e:35:4c:c6:dd:81:ac:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=4A3D8D45E38A255634143C3987E65081F6EDCB49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:29:a1:40:dd:28:5f:d7:7b:5c:df:eb:39: ad:33:1f:a9:4f:76:80:ba:bb:f8:4e:26:3c:eb:16: 24:82:66:0f:12:b8:52:ce:a2:23:4f:1f:04:f2:d1: 5e:a3:17:0e:3b:fd:f9:c1:8d:e3:8e:2b:94:c4:fa: 2b:51:99:dc:13:4a:97:28:04:24:f3:8b:75:fd:34: 59:fa:44:ea:d8:1e:d0:5e:37:4a:0b:c2:f9:07:b1: b1:2b:11:18:a5:8c:ca:06:79:1e:55:a5:aa:87:ba: a7:cf:6d:13:b3:70:95:a9:ca:f8:5c:3b:57:1c:0b: bc:ba:60:8d:1c:49:ca:d6:10:ba:d1:1a:8b:8a:e9: ae:c1:e0:83:44:59:43:f7:5e:f3:df:ec:34:f6:78: fc:41:ca:11:d6:65:f4:cb:16:31:fd:6d:6b:1e:2f: 76:9e:37:0b:17:47:57:75:fc:ef:99:e2:a5:f3:2d: 19:12:f3:96:09:be:d0:92:93:df:df:9c:51:0d:2a: 95:68:6f:57:07:00:f8:cf:ac:47:eb:05:18:e3:8e: 64:09:7b:a7:52:b5:4d:e3:7f:86:89:80:1e:d0:e2: 72:0e:ae:76:e7:7a:af:87:e9:dd:46:e6:6a:fe:cb: d2:70:f0:90:16:4b:0f:9d:e2:ae:42:c3:d8:31:8e: 44:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3D:8D:45:E3:8A:25:56:34:14:3C:39:87:E6:50:81:F6:ED:CB:49 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS139882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 07:6c:ea:d0:42:43:6f:45:cc:d7:67:e4:de:35:1c:54:41:7b: b4:0d:86:57:62:fa:75:a7:6c:45:bb:33:80:6d:8c:76:47:0f: 47:d0:12:55:96:cc:2d:72:b8:88:e8:94:b8:bc:46:42:19:11: a2:86:6f:e8:33:06:89:85:f7:51:df:c8:9e:d9:7c:97:63:4a: 44:8d:d9:ce:db:dd:12:74:e9:32:15:10:15:2f:54:c3:63:71: 50:eb:ec:20:5b:43:f1:e2:be:69:4d:f6:a3:46:b7:c2:49:53: 06:bb:a0:da:f4:02:3d:28:74:7e:79:56:e5:48:e9:93:f4:8e: 02:8f:3a:8f:67:8b:15:fb:47:a1:44:16:bd:7e:2e:47:65:15: 97:39:21:23:37:a1:48:95:54:35:71:54:4f:94:b9:8d:cc:35: 9a:6a:26:74:0b:00:0a:1e:5c:ac:91:dd:82:bd:a0:f5:b5:49: 78:2b:79:90:9f:2e:52:7c:b8:03:36:ac:57:ae:3d:71:9d:de: e3:8a:02:d5:b9:fa:ad:6c:88:5f:35:d2:28:a9:01:df:1a:25: 2b:99:1a:cc:0a:e4:30:04:2e:4b:44:6a:44:48:19:96:99:ea: 45:43:e1:72:5f:57:c3:b5:89:7c:00:53:f2:6f:78:50:5b:c8: 6e:a9:45:9d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSpPXuYPvVXb1+5VTTjVMxt2BrBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKDRBM0Q4RDQ1RTM4QTI1NTYzNDE0M0MzOTg3RTY1MDgxRjZFRENCNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/AimhQN0oX9d7XN/rOa0zH6lP doC6u/hOJjzrFiSCZg8SuFLOoiNPHwTy0V6jFw47/fnBjeOOK5TE+itRmdwTSpco BCTzi3X9NFn6ROrYHtBeN0oLwvkHsbErERiljMoGeR5VpaqHuqfPbROzcJWpyvhc O1ccC7y6YI0cScrWELrRGouK6a7B4INEWUP3XvPf7DT2ePxByhHWZfTLFjH9bWse L3aeNwsXR1d1/O+Z4qXzLRkS85YJvtCSk9/fnFENKpVob1cHAPjPrEfrBRjjjmQJ e6dStU3jf4aJgB7Q4nIOrnbneq+H6d1G5mr+y9Jw8JAWSw+d4q5Cw9gxjkTLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUSj2NReOKJVY0FDw5h+ZQgfbty0kwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTM5ODgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAHbOrQQkNvRczXZ+TeNRxUQXu0DYZXYvp1 p2xFuzOAbYx2Rw9H0BJVlswtcriI6JS4vEZCGRGihm/oMwaJhfdR38ie2XyXY0pE jdnO290SdOkyFRAVL1TDY3FQ6+wgW0Px4r5pTfajRrfCSVMGu6Da9AI9KHR+eVbl SOmT9I4CjzqPZ4sV+0ehRBa9fi5HZRWXOSEjN6FIlVQ1cVRPlLmNzDWaaiZ0CwAK Hlyskd2CvaD1tUl4K3mQny5SfLgDNqxXrj1xnd7jigLVufqtbIhfNdIoqQHfGiUr mRrMCuQwBC5LRGpESBmWmepFQ+FyX1fDtYl8AFPyb3hQW8huqUWd -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org