$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa File: AS198016.roa (raw, json) Hash identifier: IZQz3Z468PB+BtO8VLHm7XclmulxrhQRJ/uE/ncEM/E= Subject key identifier: DE:38:7B:24:5A:F3:A0:F1:65:7A:1E:80:78:A0:06:89:76:2A:47:8F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 153EFA1667C7278E167C7A4B86AA6BD86A12F584 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 198016 IP address blocks: 2a07:54c7:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:3e:fa:16:67:c7:27:8e:16:7c:7a:4b:86:aa:6b:d8:6a:12:f5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=DE387B245AF3A0F1657A1E8078A00689762A478F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:22:75:14:5e:84:1f:58:d5:04:3c:53:23:67: d0:64:df:d5:84:b0:40:be:f2:d2:1a:63:65:57:ef: 56:1b:3e:d2:b4:f5:11:c4:4e:e0:8c:c7:a9:64:60: 4e:23:57:45:c4:7f:a6:70:22:00:f6:14:f1:f9:5e: b4:f9:6f:42:f5:6c:b0:8b:aa:76:ec:e3:cd:05:ac: 53:50:b8:56:fc:e2:a9:3a:72:31:8d:77:91:44:10: e6:aa:67:78:2c:20:5a:dc:c4:8a:08:6c:e7:5a:d2: b7:70:80:25:5b:b8:64:1b:eb:f1:1c:8b:49:84:5c: 9e:e8:3b:84:a9:a5:81:a4:6f:f9:2e:9a:b7:b8:12: 20:0f:4d:bf:40:97:9c:e5:98:f4:e5:58:22:ee:6f: e4:aa:7d:45:ee:cd:df:d1:81:2c:8f:dd:a3:ac:09: bb:32:8c:55:53:b9:3d:4b:42:92:ba:53:c8:f6:91: 09:d7:0e:b3:9f:91:be:78:59:11:11:4a:94:53:59: 54:87:fa:a0:d6:71:81:19:00:7e:97:dd:42:56:30: a5:f0:c1:4b:78:82:1d:ef:fb:26:9b:9d:40:94:e4: a7:da:26:b6:a3:58:20:69:bc:b1:72:5d:52:6e:68: 99:68:23:c6:34:50:a6:16:e3:69:6a:57:30:7b:c6: 37:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:38:7B:24:5A:F3:A0:F1:65:7A:1E:80:78:A0:06:89:76:2A:47:8F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:2000::/36 Signature Algorithm: sha256WithRSAEncryption 3c:0e:ca:02:5e:fa:f1:cf:94:8f:8d:94:12:f8:86:bd:bd:fa: 7d:2f:b6:41:a8:28:ec:f5:ff:15:3f:ae:2b:0b:37:6a:39:a6: 96:26:94:78:a3:cb:8e:bd:c1:d3:a2:30:f0:06:d7:66:cb:bf: f7:82:09:7f:38:07:06:5a:b1:74:1f:f0:88:9a:e4:6b:57:77: 35:2a:0e:87:9d:fc:a4:1c:66:de:e7:74:cf:3d:42:44:91:e2: 92:c4:9b:5c:9c:cc:82:c7:e1:1b:54:7f:11:a8:8d:72:eb:e1: ba:1f:0b:37:da:6a:84:db:4e:c1:ed:df:cd:6a:97:e6:b9:e3: fc:ae:7d:2e:13:79:47:1e:fa:02:fe:58:f2:6f:97:ef:17:2a: da:8a:13:3a:44:f5:38:f9:d2:c2:e6:7e:2d:6d:a0:7d:1c:f0: 88:f8:b4:d7:ab:5e:2b:3a:35:22:c3:c3:c6:74:bf:c9:30:3e: 1d:a2:ba:42:bf:5f:cb:5b:fc:cf:28:2b:59:e3:cc:77:a8:94: 3b:16:49:05:c1:31:8a:b5:16:5f:44:91:4c:f9:97:7d:b6:fc: 98:e3:22:15:3f:1b:94:6b:b2:dd:bb:2b:6f:db:71:d6:84:01: 10:14:67:1e:72:d1:d2:a6:a3:b4:c9:30:d1:c2:5a:cd:0e:4f: b8:c3:c8:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFT76FmfHJ44WfHpLhqpr2GoS9YQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKERFMzg3QjI0NUFGM0EwRjE2NTdBMUU4MDc4QTAwNjg5NzYyQTQ3OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOInUUXoQfWNUEPFMjZ9Bk39WE sEC+8tIaY2VX71YbPtK09RHETuCMx6lkYE4jV0XEf6ZwIgD2FPH5XrT5b0L1bLCL qnbs480FrFNQuFb84qk6cjGNd5FEEOaqZ3gsIFrcxIoIbOda0rdwgCVbuGQb6/Ec i0mEXJ7oO4SppYGkb/kumre4EiAPTb9Al5zlmPTlWCLub+SqfUXuzd/RgSyP3aOs CbsyjFVTuT1LQpK6U8j2kQnXDrOfkb54WRERSpRTWVSH+qDWcYEZAH6X3UJWMKXw wUt4gh3v+yabnUCU5KfaJrajWCBpvLFyXVJuaJloI8Y0UKYW42lqVzB7xjeNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3jh7JFrzoPFleh6AeKAGiXYqR48wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk4MDE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdU xyAwDQYJKoZIhvcNAQELBQADggEBADwOygJe+vHPlI+NlBL4hr29+n0vtkGoKOz1 /xU/risLN2o5ppYmlHijy469wdOiMPAG12bLv/eCCX84BwZasXQf8Iia5GtXdzUq Doed/KQcZt7ndM89QkSR4pLEm1yczILH4RtUfxGojXLr4bofCzfaaoTbTsHt381q l+a54/yufS4TeUce+gL+WPJvl+8XKtqKEzpE9Tj50sLmfi1toH0c8Ij4tNerXis6 NSLDw8Z0v8kwPh2iukK/X8tb/M8oK1njzHeolDsWSQXBMYq1Fl9EkUz5l322/Jjj IhU/G5Rrst27K2/bcdaEARAUZx5y0dKmo7TJMNHCWs0OT7jDyOc= -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org