$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS142598.roa File: AS142598.roa (raw, json) Hash identifier: kUJ+FHAXfJwfNzTbhW2sdFp7dxuGiZScp/+ncqfP7ys= Subject key identifier: F7:6F:E5:5A:36:1A:80:6E:58:5F:41:BF:9E:42:93:B8:45:18:5C:0B Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 13C331ED3401505AA1B87EFC1304AC38628B4F81 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS142598.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 142598 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:c3:31:ed:34:01:50:5a:a1:b8:7e:fc:13:04:ac:38:62:8b:4f:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=F76FE55A361A806E585F41BF9E4293B845185C0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c8:09:6f:c4:20:98:3f:7f:fb:97:ad:e8:a3: 68:02:f4:76:87:35:5d:e6:9f:0c:4e:0e:c7:e6:7a: 80:0d:0e:e8:be:cf:88:82:f1:d5:52:60:40:e7:1b: 44:aa:93:4f:36:b6:25:29:88:49:98:1f:5c:96:05: 2b:35:21:89:30:22:86:ae:ab:27:ad:c2:bb:9a:fd: cc:c0:40:4d:5a:0e:66:e5:76:0b:16:ac:a4:f2:23: 4b:8c:75:05:e2:6f:b8:b0:03:b6:94:07:05:70:2b: c2:8c:32:56:ad:db:6b:4f:61:0c:25:ef:2e:96:05: 4f:85:ae:6a:b0:1e:14:90:d7:a2:61:0a:82:db:39: b7:d1:3d:50:67:3d:6a:0e:26:ed:d1:51:4c:47:95: f1:d6:31:53:ec:f1:cd:1e:35:71:f5:2f:1e:00:7f: af:4d:0f:b1:e9:88:81:76:81:7b:ab:b3:db:fd:90: 27:01:c0:ba:b0:75:7b:1a:82:65:2c:6d:4f:fb:69: 86:2e:f2:1e:7e:28:91:af:14:ff:83:40:49:3b:9c: 38:f9:82:94:2c:7e:8d:2a:f0:12:8c:63:f2:37:d5: 07:dd:9b:e3:de:52:be:1c:aa:04:a8:82:c3:be:58: 42:0c:93:de:20:6d:af:4a:0b:a0:f3:71:1c:16:23: 56:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6F:E5:5A:36:1A:80:6E:58:5F:41:BF:9E:42:93:B8:45:18:5C:0B X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS142598.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 47:2b:5a:3f:b1:45:9b:db:ba:19:c5:ca:7d:d8:49:b7:2e:ac: 8d:e7:d3:5b:2c:ba:3f:b9:14:bf:88:b5:a3:c9:65:e7:76:0b: 33:7e:00:2b:b1:32:dc:44:a7:fd:f4:7a:70:8a:4e:79:bf:08: 08:f3:87:26:f4:9b:be:df:5f:0d:65:f3:00:6a:5f:37:b4:46: e9:dc:4a:c3:d2:03:17:83:76:49:6a:f9:25:5b:ee:17:d2:bf: bb:c0:4e:42:48:a0:45:58:91:9d:81:08:66:52:68:de:3a:fc: e7:4f:37:19:0b:53:87:2f:ab:6a:e0:d3:be:c7:a9:c6:a8:7f: 3c:41:f8:9c:ad:a9:b5:9e:d9:40:b6:b5:ea:cb:34:95:52:d2: a4:35:82:fa:fa:51:a8:e6:c5:3f:2d:6a:1e:af:83:74:cb:4c: 25:c4:79:91:e4:40:4b:59:cb:47:f9:92:71:20:49:12:af:3c: 6b:cf:4d:f4:26:b2:67:c6:de:10:5c:8f:82:ea:6e:fd:46:c4: a3:f2:05:cc:fd:86:7e:5e:26:4d:8d:2d:de:aa:27:81:d8:a6: 64:dd:b4:92:8c:7a:8c:be:16:27:25:89:06:1b:f0:83:45:b9: ca:79:d6:33:a8:ef:28:16:4e:5a:2f:33:bc:cc:e3:1b:21:17: 90:21:3c:e2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE8Mx7TQBUFqhuH78EwSsOGKLT4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEY3NkZFNTVBMzYxQTgwNkU1ODVGNDFCRjlFNDI5M0I4NDUxODVDMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXyAlvxCCYP3/7l63oo2gC9HaH NV3mnwxODsfmeoANDui+z4iC8dVSYEDnG0Sqk082tiUpiEmYH1yWBSs1IYkwIoau qyetwrua/czAQE1aDmbldgsWrKTyI0uMdQXib7iwA7aUBwVwK8KMMlat22tPYQwl 7y6WBU+FrmqwHhSQ16JhCoLbObfRPVBnPWoOJu3RUUxHlfHWMVPs8c0eNXH1Lx4A f69ND7HpiIF2gXurs9v9kCcBwLqwdXsagmUsbU/7aYYu8h5+KJGvFP+DQEk7nDj5 gpQsfo0q8BKMY/I31Qfdm+PeUr4cqgSogsO+WEIMk94gba9KC6DzcRwWI1Y/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU92/lWjYagG5YX0G/nkKTuEUYXAswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTQyNTk4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBHK1o/sUWb27oZxcp92Em3LqyN59NbLLo/ uRS/iLWjyWXndgszfgArsTLcRKf99Hpwik55vwgI84cm9Ju+318NZfMAal83tEbp 3ErD0gMXg3ZJavklW+4X0r+7wE5CSKBFWJGdgQhmUmjeOvznTzcZC1OHL6tq4NO+ x6nGqH88Qficram1ntlAtrXqyzSVUtKkNYL6+lGo5sU/LWoer4N0y0wlxHmR5EBL WctH+ZJxIEkSrzxrz030JrJnxt4QXI+C6m79RsSj8gXM/YZ+XiZNjS3eqieB2KZk 3bSSjHqMvhYnJYkGG/CDRbnKedYzqO8oFk5aLzO8zOMbIReQITzi -----END CERTIFICATE-----Generated at Mon May 20 06:23:07 2024 by rpki-client on console-fra.rpki-client.org