$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa File: AS198016.roa (raw, json) Hash identifier: zQjXzP5SLCwIFMbcdDDZfHwlpiRFIqRp+NvaYesWGd8= Subject key identifier: E6:42:DB:BE:E9:C0:DA:48:08:DC:C1:19:E1:C0:86:51:D2:F7:AB:58 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 33262B197F40F81E5A713B6F256332B59AE33405 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 198016 IP address blocks: 2a07:54c7:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:26:2b:19:7f:40:f8:1e:5a:71:3b:6f:25:63:32:b5:9a:e3:34:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=E642DBBEE9C0DA4808DCC119E1C08651D2F7AB58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f7:69:eb:4d:3f:30:f7:0c:4e:42:0c:df:33: 8a:4a:a0:f2:c9:ea:95:7a:24:1f:1c:cc:f2:f8:84: 85:ee:99:85:28:e9:80:36:81:f8:9d:20:23:7e:8a: 98:a5:a7:dd:54:ae:c4:f9:d1:eb:23:b4:7e:30:53: 0a:32:84:08:fb:ce:9a:a9:bc:18:fa:d8:e7:8f:f0: df:52:8e:90:79:93:31:ba:da:4c:6d:37:78:51:e9: 81:04:1b:6f:75:80:98:88:38:55:09:10:fe:08:68: 19:93:53:1b:2d:90:c9:98:fc:bd:dc:be:2a:6a:80: f4:5c:b5:3f:c1:27:0b:19:36:b1:3e:91:2d:de:a2: b0:ad:9f:30:12:51:f3:30:41:e1:cf:60:75:d8:45: be:80:fc:45:17:5b:e8:31:ec:bb:af:1a:3f:cf:6a: 0e:21:b2:05:7d:fa:0e:67:02:4f:02:ae:6f:ce:d1: e6:33:1a:a0:1d:47:43:93:f5:2a:0e:a0:5c:52:f7: f2:7c:26:6e:40:34:e0:8e:be:02:85:2e:94:36:b8: e1:b3:3f:29:28:b1:27:68:22:27:0c:5e:d0:04:7e: 4e:a1:06:d4:e1:53:2d:9e:68:34:a9:32:93:74:de: 4a:ea:72:16:16:42:14:22:40:99:0c:2b:68:74:a4: 76:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:42:DB:BE:E9:C0:DA:48:08:DC:C1:19:E1:C0:86:51:D2:F7:AB:58 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:2000::/36 Signature Algorithm: sha256WithRSAEncryption 78:24:3e:8d:ee:0f:77:75:f0:37:d3:55:74:53:a8:1a:a4:08: 2b:e7:77:98:64:0e:20:96:6b:35:02:a9:53:9d:01:c5:01:ab: 2d:3f:d8:be:59:70:60:e7:9a:75:5b:56:ae:2b:a0:45:69:58: 8d:eb:73:0e:12:44:41:d1:88:cc:d9:c3:d8:d4:bb:c9:b8:9b: 9f:1a:42:df:12:3c:e0:c7:1a:df:b5:1c:f2:2c:be:05:f0:dd: 3c:6a:f2:52:05:80:b3:09:bc:5e:d3:f1:53:e6:d2:dc:28:01: 01:3b:93:9a:63:e8:e9:2f:85:e2:81:75:80:92:f9:d2:e6:4e: bb:38:9b:5e:0c:20:15:00:76:cf:23:9e:4e:02:a6:8b:c6:3f: 28:6f:80:20:3f:94:36:0f:4b:c8:6e:03:da:fc:fc:b3:a8:82: f8:b1:78:ce:d4:48:f2:73:3e:b3:4c:c9:07:bf:c0:e6:12:4c: 8a:6e:66:16:8b:98:16:ce:a3:4d:7f:1d:0a:16:2c:79:54:9c: 08:98:70:dd:e6:be:14:09:76:63:2c:09:4e:f3:0f:bc:88:77: dc:86:e3:90:ca:a1:07:c0:2f:36:d9:75:4a:4f:97:c1:d4:6d: 1e:a6:5a:1e:ec:8a:05:31:a7:04:e2:8c:ec:c7:92:a0:ac:67: 57:71:84:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMyYrGX9A+B5acTtvJWMytZrjNAUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKEU2NDJEQkJFRTlDMERBNDgwOERDQzExOUUxQzA4NjUxRDJGN0FCNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr92nrTT8w9wxOQgzfM4pKoPLJ 6pV6JB8czPL4hIXumYUo6YA2gfidICN+ipilp91UrsT50esjtH4wUwoyhAj7zpqp vBj62OeP8N9SjpB5kzG62kxtN3hR6YEEG291gJiIOFUJEP4IaBmTUxstkMmY/L3c vipqgPRctT/BJwsZNrE+kS3eorCtnzASUfMwQeHPYHXYRb6A/EUXW+gx7LuvGj/P ag4hsgV9+g5nAk8Crm/O0eYzGqAdR0OT9SoOoFxS9/J8Jm5ANOCOvgKFLpQ2uOGz PykosSdoIicMXtAEfk6hBtThUy2eaDSpMpN03krqchYWQhQiQJkMK2h0pHaFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5kLbvunA2kgI3MEZ4cCGUdL3q1gwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk4MDE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdU xyAwDQYJKoZIhvcNAQELBQADggEBAHgkPo3uD3d18DfTVXRTqBqkCCvnd5hkDiCW azUCqVOdAcUBqy0/2L5ZcGDnmnVbVq4roEVpWI3rcw4SREHRiMzZw9jUu8m4m58a Qt8SPODHGt+1HPIsvgXw3Txq8lIFgLMJvF7T8VPm0twoAQE7k5pj6OkvheKBdYCS +dLmTrs4m14MIBUAds8jnk4CpovGPyhvgCA/lDYPS8huA9r8/LOogvixeM7USPJz PrNMyQe/wOYSTIpuZhaLmBbOo01/HQoWLHlUnAiYcN3mvhQJdmMsCU7zD7yId9yG 45DKoQfALzbZdUpPl8HUbR6mWh7sigUxpwTijOzHkqCsZ1dxhK0= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org