$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: hKyCU3sfFEZBLSyihWbRd264UL6hQUTtNvCDIII07Tk= Subject key identifier: 2F:72:B5:97:C1:0E:1B:AA:E5:CA:98:80:4F:1C:36:BB:AC:F8:20:F1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 61468FD1D3BCEB0D9718E976CEAABCA1969A0FF6 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS14618.roa Signing time: Sat 22 Jun 2024 00:19:18 +0000 ROA not before: Sat 22 Jun 2024 00:14:18 +0000 ROA not after: Sat 21 Jun 2025 00:19:18 +0000 asID: 14618 IP address blocks: 2a07:54c4:175c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:46:8f:d1:d3:bc:eb:0d:97:18:e9:76:ce:aa:bc:a1:96:9a:0f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jun 22 00:14:18 2024 GMT Not After : Jun 21 00:19:18 2025 GMT Subject: CN=2F72B597C10E1BAAE5CA98804F1C36BBACF820F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:97:73:32:46:3f:5b:b3:b9:f3:57:ec:7f:8b: 67:2e:36:22:e0:95:27:22:8b:99:36:d4:c3:65:3f: 4c:75:15:0a:69:18:88:ea:40:78:9f:22:fa:27:30: 9b:89:76:58:1d:1e:35:f9:58:0c:9b:80:44:1f:c2: 48:86:61:cf:35:02:92:b8:0d:74:44:66:59:ff:f4: 45:39:aa:27:c2:ed:5a:bd:d1:00:95:0d:a0:44:ce: b0:a0:1e:83:81:ec:96:8a:a8:14:ff:2b:98:35:3a: a0:bb:63:ab:3a:10:41:0f:08:0c:ea:30:a6:ea:85: c7:83:7f:65:e3:81:15:20:e2:59:df:52:4b:1e:6f: 03:ca:3f:85:f8:60:d8:b9:fa:e3:de:30:c7:d8:d9: c7:36:c0:46:5e:2e:ee:45:86:88:ba:e4:6f:d5:ce: fc:5e:64:c0:a0:eb:32:5a:9c:57:98:c9:8c:c9:1e: 3f:0c:87:a5:df:c8:11:50:0f:a2:40:ed:4c:00:c2: e8:ae:5e:04:c9:76:3f:5e:f9:63:f8:7b:d6:60:e1: 25:23:aa:b8:ce:11:6e:00:63:d0:66:dc:b3:71:86: 32:e1:0f:1f:e8:7a:7c:3d:dc:5a:9e:40:ce:c3:95: 2a:77:c1:e8:3f:0d:8d:55:77:34:ad:e1:dd:47:58: 6d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:72:B5:97:C1:0E:1B:AA:E5:CA:98:80:4F:1C:36:BB:AC:F8:20:F1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175c::/48 Signature Algorithm: sha256WithRSAEncryption 8e:1a:3c:48:1c:b0:41:e1:d8:ba:3f:bd:38:df:be:47:f4:8f: 1f:e2:a5:80:f3:ef:60:7f:c0:dd:00:4b:19:4e:e4:7e:06:6f: cb:48:99:dd:8b:3f:8b:93:4c:23:3f:3a:6f:8f:d3:da:65:a5: 5f:69:35:d9:9f:7d:a8:e7:72:b4:30:28:02:5c:0d:98:77:ad: 74:9a:3e:59:df:4b:e2:07:29:9c:5c:ca:e1:14:56:9e:15:c0: 43:56:80:b0:e8:6b:c5:b0:5f:e1:c9:c3:bb:ec:96:c7:9c:c3: ec:93:1b:c9:6e:c6:6f:fe:20:04:a4:58:5a:70:9a:75:86:f6: 8d:b4:35:7f:a2:30:c1:f1:22:8a:95:3b:b9:f8:9e:10:6a:c4: 48:07:d5:b6:a9:8f:91:84:9a:7d:09:06:fa:16:a1:bd:55:a1: 32:0a:d8:1a:b6:04:16:54:a2:21:e9:4d:a3:ce:9d:96:79:0a: 84:75:f4:0b:7b:5f:bb:12:ba:24:73:b8:76:c1:b3:2b:86:90: 44:18:52:4a:4f:1f:ac:8d:78:72:d3:df:ad:98:39:58:8f:ee: 5f:c3:9c:2f:8d:58:93:0f:e2:5e:4f:0a:5e:5e:0b:a1:3c:a7: ee:43:5b:66:3b:79:bc:e4:32:6c:9d:25:a3:7f:7d:33:ac:1c: ea:99:ab:3a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYUaP0dO86w2XGOl2zqq8oZaaD/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA2MjIwMDE0MThaFw0yNTA2MjEwMDE5MThaMDMxMTAvBgNV BAMTKDJGNzJCNTk3QzEwRTFCQUFFNUNBOTg4MDRGMUMzNkJCQUNGODIwRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnl3MyRj9bs7nzV+x/i2cuNiLg lScii5k21MNlP0x1FQppGIjqQHifIvonMJuJdlgdHjX5WAybgEQfwkiGYc81ApK4 DXREZln/9EU5qifC7Vq90QCVDaBEzrCgHoOB7JaKqBT/K5g1OqC7Y6s6EEEPCAzq MKbqhceDf2XjgRUg4lnfUksebwPKP4X4YNi5+uPeMMfY2cc2wEZeLu5Fhoi65G/V zvxeZMCg6zJanFeYyYzJHj8Mh6XfyBFQD6JA7UwAwuiuXgTJdj9e+WP4e9Zg4SUj qrjOEW4AY9Bm3LNxhjLhDx/oenw93FqeQM7DlSp3weg/DY1VdzSt4d1HWG23AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL3K1l8EOG6rlypiATxw2u6z4IPEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F1wwDQYJKoZIhvcNAQELBQADggEBAI4aPEgcsEHh2Lo/vTjfvkf0jx/ipYDz72B/ wN0ASxlO5H4Gb8tImd2LP4uTTCM/Om+P09plpV9pNdmffajncrQwKAJcDZh3rXSa PlnfS+IHKZxcyuEUVp4VwENWgLDoa8WwX+HJw7vslsecw+yTG8luxm/+IASkWFpw mnWG9o20NX+iMMHxIoqVO7n4nhBqxEgH1bapj5GEmn0JBvoWob1VoTIK2Bq2BBZU oiHpTaPOnZZ5CoR19At7X7sSuiRzuHbBsyuGkEQYUkpPH6yNeHLT362YOViP7l/D nC+NWJMP4l5PCl5eC6E8p+5DW2Y7ebzkMmydJaN/fTOsHOqZqzo= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org