$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198057.roa File: AS198057.roa (raw, json) Hash identifier: kPLvpzddq7aeVwNkolDGmcsfysICeQZlw933l/8AYjA= Subject key identifier: 2D:D0:FA:52:FB:42:3A:E5:A6:4D:69:C9:1C:49:A8:23:0D:E4:D7:C4 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 695A0360869F1F0AE620ED2BDEF6F62CF1C2F2AE Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198057.roa Signing time: Wed 31 Jan 2024 17:57:20 +0000 ROA not before: Wed 31 Jan 2024 17:52:20 +0000 ROA not after: Wed 29 Jan 2025 17:57:20 +0000 asID: 198057 IP address blocks: 2a07:54c1:44f0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5a:03:60:86:9f:1f:0a:e6:20:ed:2b:de:f6:f6:2c:f1:c2:f2:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 31 17:52:20 2024 GMT Not After : Jan 29 17:57:20 2025 GMT Subject: CN=2DD0FA52FB423AE5A64D69C91C49A8230DE4D7C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:c8:96:a6:d1:6f:61:d1:cb:f9:f7:03:9a: ec:e3:36:b8:2f:e7:53:2e:48:20:cd:9d:75:29:62: 51:f6:18:4b:c4:30:9e:c9:65:d8:61:43:8f:97:38: f3:69:6f:a9:e0:63:91:59:97:9a:26:62:1b:d0:37: 79:71:e7:f7:44:09:fd:70:ee:1a:91:fe:3f:3b:bf: a2:3e:e2:b6:48:f6:f2:d6:77:ae:59:45:04:ca:34: b5:a7:29:d6:13:e0:d5:19:33:33:ad:68:54:ab:60: ac:37:7a:d1:12:9a:a3:fe:13:55:96:a3:70:c1:b8: 33:02:cc:6b:50:8c:74:6f:80:92:d7:76:72:55:62: b7:39:cd:60:2a:8c:f3:44:8a:36:46:24:14:28:e7: d8:70:65:74:ee:08:90:cc:89:8a:82:16:c3:32:42: 52:5e:2e:71:84:19:d8:80:e7:3a:5c:3b:00:80:16: d4:48:cf:0f:cd:06:86:2c:93:79:31:d2:c2:c4:89: 5b:45:ec:29:04:63:3d:07:e3:7d:8d:c0:09:da:b1: 52:a1:f9:b2:7d:1a:70:30:03:94:22:50:11:ee:1f: 0a:1e:86:52:77:59:3f:f6:dc:5a:01:ba:80:40:09: 7a:ba:4a:12:8d:dd:7f:2d:44:65:40:19:92:36:c5: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D0:FA:52:FB:42:3A:E5:A6:4D:69:C9:1C:49:A8:23:0D:E4:D7:C4 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:44f0::/44 Signature Algorithm: sha256WithRSAEncryption 7f:8c:74:30:4f:58:88:5e:13:78:f1:a9:55:53:0d:9a:18:c6: 4b:7c:cc:35:88:e8:36:bb:46:a4:97:c8:98:dd:ab:09:b0:7a: 80:c2:e8:33:ff:36:51:39:49:17:95:fe:32:16:2e:ee:81:2c: 54:ef:46:f8:7f:3c:6a:8a:9f:9b:e1:dc:7b:a1:75:38:8a:52: 61:8b:62:06:95:f3:87:bf:da:c0:01:15:84:62:67:fc:9c:31: 64:16:9e:63:31:6f:bc:7c:c9:00:ea:39:57:a7:a3:13:c0:c5: 76:4d:07:1a:6d:9b:9a:9a:d3:9c:06:ce:3f:3d:b9:38:2c:ba: be:fe:33:86:20:59:35:e3:19:f3:a0:b9:6d:0b:28:a8:b5:16: 0d:b0:80:20:57:a9:ec:46:8c:fd:45:18:68:d5:9f:2a:07:0a: a6:70:7a:c2:f4:61:20:7d:31:97:ba:bb:29:43:a9:21:68:62: 6a:2e:ff:eb:8d:8f:dc:e0:dd:a4:c6:66:7a:c4:a3:f0:df:a6: b3:7c:a1:6b:2e:36:73:e2:34:7e:e1:e3:1e:de:5c:df:8f:fa: 11:7f:86:0b:c7:e6:02:d4:47:ad:a2:e0:bd:07:90:e9:46:1d: f9:0e:28:78:7f:5a:9b:b0:a9:20:69:60:25:46:2c:ef:0d:03: 22:d6:ec:61 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaVoDYIafHwrmIO0r3vb2LPHC8q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAxMzExNzUyMjBaFw0yNTAxMjkxNzU3MjBaMDMxMTAvBgNV BAMTKDJERDBGQTUyRkI0MjNBRTVBNjRENjlDOTFDNDlBODIzMERFNEQ3QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf0MiWptFvYdHL+fcDmuzjNrgv 51MuSCDNnXUpYlH2GEvEMJ7JZdhhQ4+XOPNpb6ngY5FZl5omYhvQN3lx5/dECf1w 7hqR/j87v6I+4rZI9vLWd65ZRQTKNLWnKdYT4NUZMzOtaFSrYKw3etESmqP+E1WW o3DBuDMCzGtQjHRvgJLXdnJVYrc5zWAqjPNEijZGJBQo59hwZXTuCJDMiYqCFsMy QlJeLnGEGdiA5zpcOwCAFtRIzw/NBoYsk3kx0sLEiVtF7CkEYz0H432NwAnasVKh +bJ9GnAwA5QiUBHuHwoehlJ3WT/23FoBuoBACXq6ShKN3X8tRGVAGZI2xZjPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULdD6UvtCOuWmTWnJHEmoIw3k18QwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk4MDU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU wUTwMA0GCSqGSIb3DQEBCwUAA4IBAQB/jHQwT1iIXhN48alVUw2aGMZLfMw1iOg2 u0akl8iY3asJsHqAwugz/zZROUkXlf4yFi7ugSxU70b4fzxqip+b4dx7oXU4ilJh i2IGlfOHv9rAARWEYmf8nDFkFp5jMW+8fMkA6jlXp6MTwMV2TQcabZuamtOcBs4/ Pbk4LLq+/jOGIFk14xnzoLltCyiotRYNsIAgV6nsRoz9RRho1Z8qBwqmcHrC9GEg fTGXurspQ6khaGJqLv/rjY/c4N2kxmZ6xKPw36azfKFrLjZz4jR+4eMe3lzfj/oR f4YLx+YC1EetouC9B5DpRh35Dih4f1qbsKkgaWAlRizvDQMi1uxh -----END CERTIFICATE-----Generated at Mon May 20 06:23:07 2024 by rpki-client on console-fra.rpki-client.org