$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: 4hnRFOQrmcLdOUR01UULVQ5EoBwRxAJqauHbyWLBpHY= Subject key identifier: A7:13:4B:D2:C5:1A:D0:DF:FC:F6:B4:D9:12:A9:AA:7B:C9:DA:B4:1F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 20931442F30612D7FBA727F93538BE71DC0AD13F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS16509.roa Signing time: Sat 22 Jun 2024 00:19:42 +0000 ROA not before: Sat 22 Jun 2024 00:14:42 +0000 ROA not after: Sat 21 Jun 2025 00:19:42 +0000 asID: 16509 IP address blocks: 2a07:54c4:175c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:93:14:42:f3:06:12:d7:fb:a7:27:f9:35:38:be:71:dc:0a:d1:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jun 22 00:14:42 2024 GMT Not After : Jun 21 00:19:42 2025 GMT Subject: CN=A7134BD2C51AD0DFFCF6B4D912A9AA7BC9DAB41F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6b:29:64:ee:ba:e1:39:53:11:bc:5d:21:53: 36:e0:f5:1c:d4:56:ee:89:4d:f7:15:c0:b1:f0:5e: c0:27:15:58:7b:79:21:55:ef:bc:d2:0c:89:d2:7f: ab:cf:a5:2f:8c:1f:73:53:c5:91:83:03:36:96:7b: 74:9a:fc:4b:4a:81:5e:c4:3f:b3:d8:bb:93:a9:e4: 42:af:a2:54:09:04:54:e2:b4:ba:f7:46:01:35:83: 20:91:e4:63:be:8a:4c:ff:46:aa:aa:98:10:33:52: 7b:b7:1a:25:38:a9:25:58:ec:79:f6:38:8c:d8:c3: 9c:93:7d:10:a0:ba:ac:3d:d5:05:1b:6a:98:01:d5: 3a:76:82:93:b1:ca:86:0f:04:0b:ee:f8:a4:0f:e3: 73:bd:ed:48:1f:63:fb:97:6c:3f:31:f5:28:ff:35: 61:20:45:4e:95:05:e5:55:d8:13:f1:71:f3:bc:16: 62:c6:7e:72:f6:ef:75:ec:4f:ac:8e:65:0e:28:37: 63:bb:25:73:93:b8:e0:c4:c7:fa:1d:f7:f4:c7:43: 37:ff:04:a9:4d:99:f6:dc:ff:d1:2c:b5:88:b6:a9: 6b:47:ff:93:4b:02:72:ed:a7:71:f9:8f:5e:fd:e2: a7:98:0b:bf:3c:08:eb:5c:42:8e:a3:c7:ca:fc:38: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:13:4B:D2:C5:1A:D0:DF:FC:F6:B4:D9:12:A9:AA:7B:C9:DA:B4:1F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175c::/48 Signature Algorithm: sha256WithRSAEncryption 16:3f:76:ac:47:2f:15:af:e1:e4:6f:90:9c:4c:d4:06:96:f6: 96:76:54:83:3a:c1:e3:62:31:0d:3f:12:10:45:0b:d2:dc:5a: 8d:da:0c:2a:cc:11:99:ee:e5:0f:a7:e4:83:98:1e:3c:49:01: e9:3e:fe:05:d9:69:4a:ae:4a:ee:54:55:66:49:0b:51:2d:8f: 69:a1:91:f6:5a:a7:ca:c6:a4:38:ee:03:e2:bf:94:39:b6:76: b6:49:1a:b1:d3:81:55:a2:c7:d1:f5:b4:75:db:52:45:d4:d3: b4:82:15:6d:6e:bb:ee:8d:46:47:40:b1:6d:5a:07:cf:66:10: 6a:79:b5:a1:de:91:98:4f:94:c3:ec:42:ef:b0:1b:cc:b8:73: c6:f9:9a:88:8e:ec:2e:bb:56:5e:2d:ce:cf:8f:7b:6a:58:86: 45:bb:3b:b1:e7:a5:51:46:31:9e:22:18:8c:e0:9f:2c:51:c8: ea:59:ef:28:5a:a6:3a:2c:4c:9a:00:d1:1c:ab:b4:c4:dc:23: 29:2d:cd:f9:36:0c:24:f4:8d:09:08:d1:72:23:c0:7d:b0:e4: b1:e8:cc:ff:df:de:a2:f8:0c:ce:bd:ac:1b:88:c5:25:43:28: 09:4d:cc:bf:91:1a:7a:d6:62:3f:0e:25:cd:46:6b:65:6a:fc: 39:39:91:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIJMUQvMGEtf7pyf5NTi+cdwK0T8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA2MjIwMDE0NDJaFw0yNTA2MjEwMDE5NDJaMDMxMTAvBgNV BAMTKEE3MTM0QkQyQzUxQUQwREZGQ0Y2QjREOTEyQTlBQTdCQzlEQUI0MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEaylk7rrhOVMRvF0hUzbg9RzU Vu6JTfcVwLHwXsAnFVh7eSFV77zSDInSf6vPpS+MH3NTxZGDAzaWe3Sa/EtKgV7E P7PYu5Op5EKvolQJBFTitLr3RgE1gyCR5GO+ikz/RqqqmBAzUnu3GiU4qSVY7Hn2 OIzYw5yTfRCguqw91QUbapgB1Tp2gpOxyoYPBAvu+KQP43O97UgfY/uXbD8x9Sj/ NWEgRU6VBeVV2BPxcfO8FmLGfnL273XsT6yOZQ4oN2O7JXOTuODEx/od9/THQzf/ BKlNmfbc/9EstYi2qWtH/5NLAnLtp3H5j1794qeYC788COtcQo6jx8r8OPLpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpxNL0sUa0N/89rTZEqmqe8natB8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTY1MDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F1wwDQYJKoZIhvcNAQELBQADggEBABY/dqxHLxWv4eRvkJxM1AaW9pZ2VIM6weNi MQ0/EhBFC9LcWo3aDCrMEZnu5Q+n5IOYHjxJAek+/gXZaUquSu5UVWZJC1Etj2mh kfZap8rGpDjuA+K/lDm2drZJGrHTgVWix9H1tHXbUkXU07SCFW1uu+6NRkdAsW1a B89mEGp5taHekZhPlMPsQu+wG8y4c8b5moiO7C67Vl4tzs+Pe2pYhkW7O7HnpVFG MZ4iGIzgnyxRyOpZ7yhapjosTJoA0RyrtMTcIyktzfk2DCT0jQkI0XIjwH2w5LHo zP/f3qL4DM69rBuIxSVDKAlNzL+RGnrWYj8OJc1Ga2Vq/Dk5kcw= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org