$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197919.roa File: AS197919.roa (raw, json) Hash identifier: 1J+6PRpBADT8L3bbNUhNSi5w83+lJyejEQXByhgHbwc= Subject key identifier: D8:50:09:3C:42:20:F1:10:EF:18:0D:9D:1A:95:E3:16:95:89:4E:E2 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 631A3BFD2B10A52985A1059BF4B534FDF640D7EF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197919.roa Signing time: Sat 10 Feb 2024 21:05:03 +0000 ROA not before: Sat 10 Feb 2024 21:00:03 +0000 ROA not after: Sat 08 Feb 2025 21:05:03 +0000 asID: 197919 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1a:3b:fd:2b:10:a5:29:85:a1:05:9b:f4:b5:34:fd:f6:40:d7:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 10 21:00:03 2024 GMT Not After : Feb 8 21:05:03 2025 GMT Subject: CN=D850093C4220F110EF180D9D1A95E31695894EE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:c1:e1:ff:70:a9:f8:e2:51:f5:f0:69:56: 9e:aa:d7:fb:a4:80:bc:7e:84:7d:56:ee:2e:ac:f0: b1:46:1e:6e:5d:04:7b:58:4e:19:78:15:9c:46:2c: 11:91:cb:e5:bc:d8:da:85:f6:f0:7b:1c:15:2c:18: 6f:c4:38:50:60:49:18:46:c0:c8:0d:8c:04:9e:52: 7f:47:8c:90:a1:1e:96:f1:1f:31:be:d5:50:98:93: f2:97:4c:d5:c2:ad:8c:e3:d6:66:dd:59:81:bf:da: 0b:98:c3:fb:15:2e:6e:e8:42:b5:30:f4:05:5f:6e: 21:ca:d7:a2:e7:ba:7d:84:14:97:a2:b8:f8:ea:4c: 24:28:f9:35:a3:e9:52:3c:70:16:28:af:a1:41:9a: 2e:a5:40:40:00:5a:b1:ed:f8:d2:2a:9b:ee:0b:49: cb:64:5d:1e:e0:cc:f4:a8:5a:73:fe:17:14:4a:6d: 43:8b:97:d6:c3:7b:33:ee:ca:8b:1e:74:9b:bc:6e: cd:cc:d3:d0:f6:c1:84:39:0d:e3:a0:0f:4e:9c:18: 83:2b:21:d7:b6:1d:c6:2c:1a:a2:5e:1d:d5:a0:7b: e2:eb:c5:3c:03:2a:fb:e3:35:dd:31:c0:1c:23:85: b1:b9:bc:a3:0e:68:e7:f5:98:e5:b0:d2:6c:16:01: bc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:50:09:3C:42:20:F1:10:EF:18:0D:9D:1A:95:E3:16:95:89:4E:E2 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS197919.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 9d:a1:16:ca:12:aa:e2:c9:95:79:67:b2:bd:0d:2f:6b:1d:21: 11:4e:41:b9:b8:ff:49:aa:fa:6a:7c:b4:c1:a4:b8:72:04:b5: 32:77:51:45:eb:55:88:49:36:dc:c6:60:7b:a3:ed:73:59:c6: bd:cd:44:ee:0d:2a:45:87:74:a3:24:dc:9d:90:3b:bf:cc:15: 1d:a4:96:e1:d7:50:db:6a:60:0c:77:c3:f6:e0:94:8b:fb:4f: 7e:2e:fe:dc:20:44:8e:8c:07:de:01:91:22:1d:8c:30:46:16: 5c:95:54:09:9d:31:a7:79:87:b4:78:01:15:af:3a:3f:c8:30: cd:1b:1f:04:bb:32:f5:eb:9a:a6:e5:07:1c:bc:5c:df:8a:53: b4:0d:cd:a5:e3:f8:eb:45:68:cb:00:f5:82:65:b6:50:58:8a: 23:da:e8:a4:d1:f0:50:58:66:2f:54:bd:49:a2:4d:8a:14:d7: d1:4e:36:3e:8d:90:b2:3d:ad:a4:a5:2a:e9:02:51:30:a8:4d: fd:bd:d0:3a:fe:a1:0c:4a:dc:36:d7:6b:af:34:93:82:0b:a0: c3:e1:03:5a:ab:ad:6a:23:92:29:64:ba:b3:04:65:c9:60:3a: b8:64:4c:88:a2:56:6b:c7:88:2a:31:79:98:15:25:8d:77:9d: 60:eb:78:c6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYxo7/SsQpSmFoQWb9LU0/fZA1+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMTAyMTAwMDNaFw0yNTAyMDgyMTA1MDNaMDMxMTAvBgNV BAMTKEQ4NTAwOTNDNDIyMEYxMTBFRjE4MEQ5RDFBOTVFMzE2OTU4OTRFRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuv8Hh/3Cp+OJR9fBpVp6q1/uk gLx+hH1W7i6s8LFGHm5dBHtYThl4FZxGLBGRy+W82NqF9vB7HBUsGG/EOFBgSRhG wMgNjASeUn9HjJChHpbxHzG+1VCYk/KXTNXCrYzj1mbdWYG/2guYw/sVLm7oQrUw 9AVfbiHK16Lnun2EFJeiuPjqTCQo+TWj6VI8cBYor6FBmi6lQEAAWrHt+NIqm+4L SctkXR7gzPSoWnP+FxRKbUOLl9bDezPuyosedJu8bs3M09D2wYQ5DeOgD06cGIMr Ide2HcYsGqJeHdWge+LrxTwDKvvjNd0xwBwjhbG5vKMOaOf1mOWw0mwWAbzNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2FAJPEIg8RDvGA2dGpXjFpWJTuIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk3OTE5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCdoRbKEqriyZV5Z7K9DS9rHSERTkG5uP9J qvpqfLTBpLhyBLUyd1FF61WISTbcxmB7o+1zWca9zUTuDSpFh3SjJNydkDu/zBUd pJbh11DbamAMd8P24JSL+09+Lv7cIESOjAfeAZEiHYwwRhZclVQJnTGneYe0eAEV rzo/yDDNGx8EuzL165qm5QccvFzfilO0Dc2l4/jrRWjLAPWCZbZQWIoj2uik0fBQ WGYvVL1Jok2KFNfRTjY+jZCyPa2kpSrpAlEwqE39vdA6/qEMStw212uvNJOCC6DD 4QNaq61qI5IpZLqzBGXJYDq4ZEyIolZrx4gqMXmYFSWNd51g63jG -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org