$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198590.roa File: AS198590.roa (raw, json) Hash identifier: 8Y7VVYWgW/FW2cHBeNCUucY6dbGgS8MdWZqcM3EmTkg= Subject key identifier: E5:4C:E4:54:4B:26:1E:3E:FA:4C:B7:90:21:8B:97:BD:9A:C5:F8:BE Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 75D3A7F88F30BE5C97580E9B8D44F9F2F9D2DB28 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198590.roa Signing time: Fri 23 Feb 2024 23:56:47 +0000 ROA not before: Fri 23 Feb 2024 23:51:47 +0000 ROA not after: Fri 21 Feb 2025 23:56:47 +0000 asID: 198590 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d3:a7:f8:8f:30:be:5c:97:58:0e:9b:8d:44:f9:f2:f9:d2:db:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 23 23:51:47 2024 GMT Not After : Feb 21 23:56:47 2025 GMT Subject: CN=E54CE4544B261E3EFA4CB790218B97BD9AC5F8BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:1e:ba:23:e5:af:13:c9:e8:11:ad:54:a9: 31:10:f8:94:36:94:c9:1f:72:67:bb:5f:3e:66:65: 6e:0c:96:a4:ca:8e:f6:db:48:0e:10:84:68:b1:47: a3:11:c0:9f:fe:8d:c8:df:22:8c:c0:98:2d:6f:6b: 0b:d7:c3:98:96:8c:bc:da:e3:2d:c2:81:94:b1:5d: 0e:5b:f5:00:41:ef:d6:e6:5d:ce:85:06:b8:6d:a5: f0:bf:7f:0c:56:9a:cb:db:28:fa:ba:f0:04:13:84: ed:ff:aa:37:1d:3b:91:c2:98:ed:98:1e:69:d2:95: fb:16:13:65:ca:23:cc:d3:08:f4:9b:a5:c5:6b:11: 51:1a:4f:1d:9a:d7:5b:e7:de:d4:b6:3b:11:52:0d: 09:0d:08:21:86:35:b9:2a:e3:da:0b:96:06:6c:31: d0:e5:7a:16:78:b6:1c:cf:20:50:de:4f:1d:b3:1e: 1a:06:45:10:36:c2:a2:35:cb:ec:d9:4d:1f:16:d7: 53:bb:f4:18:01:7a:3c:62:15:e0:4b:ce:5b:2f:ac: 7c:e8:29:96:c6:dc:e3:2e:c1:fb:01:96:bb:62:8c: ed:f3:2c:a0:16:78:8a:af:54:ed:84:b6:92:4c:f9: b7:0d:20:f5:a9:a8:67:b6:e5:3a:82:42:69:06:60: ba:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4C:E4:54:4B:26:1E:3E:FA:4C:B7:90:21:8B:97:BD:9A:C5:F8:BE X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS198590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 42:7b:dd:71:1c:62:d5:1d:e8:c3:7d:51:fc:be:ed:08:e7:80: 19:42:11:b7:37:df:ad:41:be:49:28:53:67:c4:c6:b4:a8:56: 12:46:f2:f4:5f:35:29:ab:c0:11:2b:79:fd:ec:52:37:cb:22: 8a:5f:92:85:b9:a9:3e:67:cb:99:73:db:ba:db:f0:ef:bb:89: b6:3e:b1:40:fa:2e:2e:be:39:69:8f:4a:37:8f:75:5f:2d:3f: a3:86:6d:14:c4:5d:79:40:df:0f:57:8f:90:29:83:ee:e8:50: ac:17:b6:32:cd:4d:35:2f:ef:56:dd:66:d0:57:83:12:32:28: 06:31:ff:3c:2d:ab:4f:06:ff:86:8b:c7:18:e3:e9:50:08:08: bc:2e:ad:e4:dd:c6:68:7b:e5:81:f2:1d:3d:1d:c2:9e:5f:a7: 51:49:ce:b0:08:53:8d:14:b2:4a:21:b8:81:75:ec:1b:97:ca: 87:f4:d7:85:aa:73:1f:f0:59:e9:a9:7c:ea:be:d5:1c:db:f6: b1:2f:ab:81:b3:0c:53:8a:78:62:97:f2:2d:24:98:8a:1d:05: b3:dc:97:dc:0c:6d:bb:85:82:f5:92:c6:58:01:89:06:01:39: d2:67:e3:c5:b4:c2:c7:e0:88:f1:67:12:79:25:1a:b3:20:fb: b5:58:8f:ba -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUddOn+I8wvlyXWA6bjUT58vnS2ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMjMyMzUxNDdaFw0yNTAyMjEyMzU2NDdaMDMxMTAvBgNV BAMTKEU1NENFNDU0NEIyNjFFM0VGQTRDQjc5MDIxOEI5N0JEOUFDNUY4QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDwR66I+WvE8noEa1UqTEQ+JQ2 lMkfcme7Xz5mZW4MlqTKjvbbSA4QhGixR6MRwJ/+jcjfIozAmC1vawvXw5iWjLza 4y3CgZSxXQ5b9QBB79bmXc6FBrhtpfC/fwxWmsvbKPq68AQThO3/qjcdO5HCmO2Y HmnSlfsWE2XKI8zTCPSbpcVrEVEaTx2a11vn3tS2OxFSDQkNCCGGNbkq49oLlgZs MdDlehZ4thzPIFDeTx2zHhoGRRA2wqI1y+zZTR8W11O79BgBejxiFeBLzlsvrHzo KZbG3OMuwfsBlrtijO3zLKAWeIqvVO2EtpJM+bcNIPWpqGe25TqCQmkGYLoRAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU5UzkVEsmHj76TLeQIYuXvZrF+L4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk4NTkwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxLALMA0GCSqGSIb3DQEBCwUAA4IBAQBCe91xHGLVHejDfVH8vu0I 54AZQhG3N9+tQb5JKFNnxMa0qFYSRvL0XzUpq8ARK3n97FI3yyKKX5KFuak+Z8uZ c9u62/Dvu4m2PrFA+i4uvjlpj0o3j3VfLT+jhm0UxF15QN8PV4+QKYPu6FCsF7Yy zU01L+9W3WbQV4MSMigGMf88LatPBv+Gi8cY4+lQCAi8Lq3k3cZoe+WB8h09HcKe X6dRSc6wCFONFLJKIbiBdewbl8qH9NeFqnMf8FnpqXzqvtUc2/axL6uBswxTinhi l/ItJJiKHQWz3JfcDG27hYL1ksZYAYkGATnSZ+PFtMLH4IjxZxJ5JRqzIPu1WI+6 -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org