$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa File: AS197532.roa (raw, json) Hash identifier: t+e00EM4B3Fo3W5dnLrM7uQm0j/JMfaCnLgOlvbaS/s= Subject key identifier: 73:BF:FA:BF:AE:02:A7:B8:68:EC:AA:7D:1F:9B:BF:1B:E8:1E:4E:91 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 592D48487905C9BA0947EAF363BD4D3A90BC7F37 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 197532 IP address blocks: 2a07:54c1:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:2d:48:48:79:05:c9:ba:09:47:ea:f3:63:bd:4d:3a:90:bc:7f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=73BFFABFAE02A7B868ECAA7D1F9BBF1BE81E4E91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fb:3a:60:ad:e2:9c:09:67:c3:1b:d9:5a:70: a9:0e:bd:b8:42:7e:6c:e7:87:9b:37:b1:59:be:88: 19:4f:b6:c1:34:15:cc:6b:14:7c:b6:8a:f5:68:7b: a2:49:fe:1b:c3:0b:d7:b3:b5:a7:d4:3c:25:6a:71: cf:73:06:28:59:9c:72:bf:99:68:02:39:e5:91:5f: 6c:0e:b4:d0:6c:3e:d7:45:d7:be:d2:e5:4b:54:a2: 45:3e:9d:6b:0c:6e:91:10:be:2f:f4:e2:28:6c:e2: 97:77:4a:e4:e8:36:65:88:f4:bd:96:a0:ce:25:bc: 18:b6:48:36:85:d4:f9:b4:83:bc:26:73:fe:95:03: 7b:57:01:1a:5b:c3:4e:65:c8:b6:fb:35:af:0e:ec: 92:bf:df:9f:40:1e:8d:97:1a:f0:95:e8:b6:7d:f1: 3a:62:94:e7:93:c7:6b:12:f5:27:27:9f:a5:1d:47: 0d:e5:49:87:de:54:c7:46:89:c9:87:d7:1f:55:0c: bc:9a:5f:5c:3d:78:88:ee:0c:81:11:43:aa:42:99: 92:4b:28:b7:6f:d6:4e:2e:b1:94:56:7e:14:f8:08: 0b:2a:0f:05:fa:d6:fe:eb:ce:99:e4:b5:1c:6a:b0: 93:c1:c5:49:96:17:ab:98:c8:16:ce:b2:d2:37:ec: 7e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BF:FA:BF:AE:02:A7:B8:68:EC:AA:7D:1F:9B:BF:1B:E8:1E:4E:91 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3600::/40 Signature Algorithm: sha256WithRSAEncryption 6b:e2:1b:d3:82:49:6f:49:c3:c7:b4:06:71:7c:b3:c6:8d:76: e9:89:37:94:d5:ef:63:52:52:c6:87:04:c5:f2:97:a8:35:0b: 25:cf:b6:6a:21:36:a7:2a:a3:4f:46:85:0b:3a:5d:e2:02:81: 66:99:26:50:69:3d:0f:47:eb:20:b3:6f:10:dc:f8:f3:17:82: 58:a6:d8:a1:04:64:f5:dc:70:4b:04:67:f8:5e:1c:e0:37:cd: d1:7b:25:2c:de:77:5c:87:09:72:e1:ed:07:35:2f:26:48:2a: 18:b2:2c:70:d2:92:19:85:b6:7d:89:1a:65:f1:2c:39:68:1b: 61:51:26:f3:bc:a2:33:d8:a8:b6:04:b9:a3:9d:63:ae:fb:91: e1:9b:66:3e:f7:0b:0f:e3:b4:88:4d:69:7c:d9:44:d1:53:dd: 3c:fe:cf:e5:b7:be:63:fe:91:67:96:20:4e:e8:a1:60:86:c5: 0c:3c:72:c9:34:bb:e9:bc:f8:b3:a0:4c:92:cb:fb:aa:6c:ed: 93:9b:68:99:82:c6:6e:e1:d3:fd:4c:e9:cc:73:8d:84:13:5b: 54:28:08:15:2b:c2:27:b2:6c:b7:1b:a4:69:28:3b:f3:20:d4: 7c:de:f3:f5:c9:37:5f:7d:75:8f:d1:14:cf:3d:0c:48:df:3a: eb:cb:5a:3d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWS1ISHkFyboJR+rzY71NOpC8fzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDczQkZGQUJGQUUwMkE3Qjg2OEVDQUE3RDFGOUJCRjFCRTgxRTRFOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+zpgreKcCWfDG9lacKkOvbhC fmznh5s3sVm+iBlPtsE0FcxrFHy2ivVoe6JJ/hvDC9eztafUPCVqcc9zBihZnHK/ mWgCOeWRX2wOtNBsPtdF177S5UtUokU+nWsMbpEQvi/04ihs4pd3SuToNmWI9L2W oM4lvBi2SDaF1Pm0g7wmc/6VA3tXARpbw05lyLb7Na8O7JK/359AHo2XGvCV6LZ9 8TpilOeTx2sS9Scnn6UdRw3lSYfeVMdGicmH1x9VDLyaX1w9eIjuDIERQ6pCmZJL KLdv1k4usZRWfhT4CAsqDwX61v7rzpnktRxqsJPBxUmWF6uYyBbOstI37H5ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUc7/6v64Cp7ho7Kp9H5u/G+geTpEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk3NTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTYwDQYJKoZIhvcNAQELBQADggEBAGviG9OCSW9Jw8e0BnF8s8aNdumJN5TV72NS UsaHBMXyl6g1CyXPtmohNqcqo09GhQs6XeICgWaZJlBpPQ9H6yCzbxDc+PMXglim 2KEEZPXccEsEZ/heHOA3zdF7JSzed1yHCXLh7Qc1LyZIKhiyLHDSkhmFtn2JGmXx LDloG2FRJvO8ojPYqLYEuaOdY677keGbZj73Cw/jtIhNaXzZRNFT3Tz+z+W3vmP+ kWeWIE7ooWCGxQw8csk0u+m8+LOgTJLL+6ps7ZObaJmCxm7h0/1M6cxzjYQTW1Qo CBUrwieybLcbpGkoO/Mg1Hze8/XJN199dY/RFM89DEjfOuvLWj0= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org