$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa File: AS197532.roa (raw, json) Hash identifier: szumrFW9LL23g5AUB4pEAAgo2nEm1PxdXLuJOVuvwQE= Subject key identifier: 94:42:04:B1:C6:BD:F7:71:C2:DA:D0:6A:49:50:FD:4E:A5:F9:10:09 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4E3918CD9EC9734E9B529DC3A534435E59DC6870 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 197532 IP address blocks: 2a07:54c1:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:39:18:cd:9e:c9:73:4e:9b:52:9d:c3:a5:34:43:5e:59:dc:68:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=944204B1C6BDF771C2DAD06A4950FD4EA5F91009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c8:c0:e0:68:dc:05:0e:1b:a4:1b:98:26:58: 4e:f7:33:0d:fd:eb:b8:12:2c:ee:2c:6f:5b:87:5d: 12:b7:de:1a:9f:f5:c9:4f:cb:25:fe:8a:f8:aa:d6: 16:b3:c5:a5:4f:08:eb:82:56:93:5c:17:05:ca:c9: db:45:07:0b:37:40:f6:1f:47:55:92:9a:7f:ce:3e: c9:69:1e:7e:fe:9a:9c:34:a9:6e:e6:18:87:09:6f: 51:50:3b:2e:aa:77:3d:0f:f9:99:0c:01:70:6e:f4: 95:d4:57:73:09:2c:33:1e:9b:8c:20:5f:5e:cc:88: 82:ad:6d:6c:76:fd:85:7e:7f:a2:aa:cd:4a:ac:be: 22:4f:d4:8b:e6:5f:b3:63:0c:f1:9a:c9:3a:b6:a0: e2:af:ec:c0:e4:38:cb:54:84:8a:30:a0:95:b1:3a: 6d:c1:66:f8:14:3d:0e:12:3e:f7:be:4f:75:8d:96: 17:6e:29:99:a5:38:cf:b9:88:ae:1c:7a:0b:53:42: 21:5b:47:34:03:86:b0:93:11:7d:dd:6f:0e:1d:70: df:57:01:44:67:50:b4:44:a7:a3:21:a7:76:a9:73: e8:a9:03:15:e7:70:02:1b:4f:af:c1:ff:52:68:99: 26:32:1d:6c:f8:54:a6:6a:c8:fc:4f:6d:32:fe:38: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:42:04:B1:C6:BD:F7:71:C2:DA:D0:6A:49:50:FD:4E:A5:F9:10:09 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3600::/40 Signature Algorithm: sha256WithRSAEncryption 75:ff:7f:5b:2e:87:13:01:27:5f:ed:37:8b:c2:85:e4:1e:2f: 94:1c:f7:4d:e1:e2:47:f5:a9:af:a7:a7:01:39:6d:b3:f8:08: 96:f5:96:c5:de:f2:2e:4b:72:30:1a:df:4e:03:ea:e6:7f:f1: 7c:55:2a:7d:c1:e4:b7:06:1f:7d:a2:fb:eb:a7:ff:f3:67:86: 32:86:45:72:39:60:6b:9c:79:f5:47:d1:83:39:df:9a:07:b5: f4:6d:8d:68:20:08:ae:02:f7:41:10:52:4e:d2:1d:dd:90:cd: ba:0b:7a:1d:0f:de:cf:63:8f:2c:69:e1:ca:98:81:0e:00:ae: 20:cd:97:fb:34:a1:35:41:75:31:c9:40:fd:10:61:7c:81:ad: 12:87:0d:f1:b5:92:0d:6f:f6:73:86:87:a4:1c:2c:af:69:5f: 4a:fc:c2:17:e4:70:40:b2:09:01:91:a9:d2:e5:25:79:cc:c3: d0:e6:6c:d5:e0:c6:f7:86:6f:f2:be:5f:df:71:0f:5d:c3:76: 17:47:68:cd:b2:28:e1:54:0f:06:4a:aa:9f:80:fb:9a:17:f0: d4:d9:e2:f8:d2:32:6d:4a:d2:fb:5d:f3:fc:e5:8c:01:43:6a: a4:33:ab:5a:62:30:51:5c:60:c6:91:92:ed:33:60:dd:0d:09: 2d:d4:b0:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTjkYzZ7Jc06bUp3DpTRDXlncaHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDk0NDIwNEIxQzZCREY3NzFDMkRBRDA2QTQ5NTBGRDRFQTVGOTEwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDyMDgaNwFDhukG5gmWE73Mw39 67gSLO4sb1uHXRK33hqf9clPyyX+iviq1hazxaVPCOuCVpNcFwXKydtFBws3QPYf R1WSmn/OPslpHn7+mpw0qW7mGIcJb1FQOy6qdz0P+ZkMAXBu9JXUV3MJLDMem4wg X17MiIKtbWx2/YV+f6KqzUqsviJP1IvmX7NjDPGayTq2oOKv7MDkOMtUhIowoJWx Om3BZvgUPQ4SPve+T3WNlhduKZmlOM+5iK4cegtTQiFbRzQDhrCTEX3dbw4dcN9X AURnULREp6Mhp3apc+ipAxXncAIbT6/B/1JomSYyHWz4VKZqyPxPbTL+OA1VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlEIEsca993HC2tBqSVD9TqX5EAkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk3NTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTYwDQYJKoZIhvcNAQELBQADggEBAHX/f1suhxMBJ1/tN4vCheQeL5Qc903h4kf1 qa+npwE5bbP4CJb1lsXe8i5LcjAa304D6uZ/8XxVKn3B5LcGH32i++un//NnhjKG RXI5YGucefVH0YM535oHtfRtjWggCK4C90EQUk7SHd2QzboLeh0P3s9jjyxp4cqY gQ4AriDNl/s0oTVBdTHJQP0QYXyBrRKHDfG1kg1v9nOGh6QcLK9pX0r8whfkcECy CQGRqdLlJXnMw9DmbNXgxveGb/K+X99xD13DdhdHaM2yKOFUDwZKqp+A+5oX8NTZ 4vjSMm1K0vtd8/zljAFDaqQzq1piMFFcYMaRku0zYN0NCS3UsFo= -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org