$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199428.roa File: AS199428.roa (raw, json) Hash identifier: hJL4OXkQKdI5EOWzuUnbtw2bYtSke0XOAwQXUhJu1oM= Subject key identifier: 34:F5:C6:CB:DE:B9:A5:00:72:47:9A:54:97:50:12:1A:A6:F3:C8:D9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5702DA7FDBF8146764C9279B440FE918CAB05B40 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199428.roa Signing time: Sun 03 Nov 2024 22:33:33 +0000 ROA not before: Sun 03 Nov 2024 22:28:33 +0000 ROA not after: Sun 02 Nov 2025 22:33:33 +0000 asID: 199428 IP address blocks: 2a07:54c1:4300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:02:da:7f:db:f8:14:67:64:c9:27:9b:44:0f:e9:18:ca:b0:5b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Nov 3 22:28:33 2024 GMT Not After : Nov 2 22:33:33 2025 GMT Subject: CN=34F5C6CBDEB9A50072479A549750121AA6F3C8D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:31:bb:cf:da:00:6c:89:63:08:76:3b:ed: 52:52:e3:be:fe:26:40:23:02:83:07:a3:6f:2b:6d: ee:f6:de:11:9c:99:e9:d6:5c:41:0b:c8:c2:e5:bf: 2e:f6:31:9f:49:7f:d0:68:4c:09:39:c9:e8:31:7d: b4:da:82:ee:ea:af:3f:80:42:4c:e6:61:d6:43:ed: b0:71:ef:f7:03:cf:a7:4d:fc:89:82:17:3f:ca:c0: e7:78:90:f1:70:fa:0d:1d:c7:23:b9:fe:f8:07:0d: 44:4c:00:e9:74:d5:31:1e:20:92:00:eb:37:7b:70: e5:5f:01:df:43:ff:7d:8e:d2:b3:ba:4d:f5:7e:27: d1:55:f0:7d:a6:fd:11:f9:44:2f:d8:17:3a:f2:09: 3c:53:42:b8:c8:82:d8:4d:96:28:19:04:b3:3c:a7: 48:04:7e:22:61:04:21:e8:54:0b:63:d0:ad:18:74: b5:4f:2b:6e:5c:01:9d:a2:62:09:db:f0:83:4f:08: e2:cf:45:9a:a7:19:bf:91:84:09:ea:d3:0b:54:98: 12:ce:db:1f:6c:24:c1:d6:20:e9:87:dc:e8:ea:94: 27:1c:91:a1:e7:ba:d2:6a:13:11:29:f6:b8:9c:ce: bf:d3:eb:67:db:77:cb:e2:c5:aa:30:c5:d6:6d:ad: 2e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F5:C6:CB:DE:B9:A5:00:72:47:9A:54:97:50:12:1A:A6:F3:C8:D9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199428.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4300::/40 Signature Algorithm: sha256WithRSAEncryption 64:e4:b6:2b:dc:af:20:84:44:29:86:49:6b:7f:e1:f9:70:25: 5d:f9:52:ec:af:70:22:fc:6f:fa:88:8b:60:68:80:1e:97:81: bd:c7:4b:b2:c8:d0:c7:a6:d4:9b:98:ce:b1:f6:68:02:5a:ee: 85:73:d8:5b:4b:2b:2f:9d:55:ad:d2:a7:25:16:ed:93:eb:97: 22:56:e7:5d:d8:75:fb:f5:5b:92:17:8a:68:58:1d:39:7d:c4: d5:a4:bf:af:09:38:66:51:7d:3f:d5:2e:0a:db:92:25:31:56: 65:11:4e:d8:02:67:f0:f2:60:76:2b:b2:ad:2b:37:4c:42:d8: e6:8c:a8:2e:68:2e:2e:47:25:1b:10:ad:36:44:3e:8c:97:1d: 33:18:73:5f:a4:c0:92:cb:16:1e:82:25:ef:82:46:f7:a7:45: 04:a7:b2:26:3d:04:77:23:e4:ae:5e:fe:dc:d3:30:52:bc:68: 46:79:ce:88:28:83:97:aa:fb:49:c2:a0:14:77:26:04:81:7e: 2b:e2:cb:51:19:73:28:06:06:5b:26:19:b3:c5:70:35:9d:7b: d8:09:0e:f3:e3:44:ba:d3:6d:0e:8c:9f:46:2d:8c:1b:2e:6a: 54:c9:16:19:65:10:e3:ae:7e:18:1a:48:37:34:3d:ed:96:2e: 6b:58:31:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVwLaf9v4FGdkySebRA/pGMqwW0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDExMDMyMjI4MzNaFw0yNTExMDIyMjMzMzNaMDMxMTAvBgNV BAMTKDM0RjVDNkNCREVCOUE1MDA3MjQ3OUE1NDk3NTAxMjFBQTZGM0M4RDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBxDG7z9oAbIljCHY77VJS477+ JkAjAoMHo28rbe723hGcmenWXEELyMLlvy72MZ9Jf9BoTAk5yegxfbTagu7qrz+A QkzmYdZD7bBx7/cDz6dN/ImCFz/KwOd4kPFw+g0dxyO5/vgHDURMAOl01TEeIJIA 6zd7cOVfAd9D/32O0rO6TfV+J9FV8H2m/RH5RC/YFzryCTxTQrjIgthNligZBLM8 p0gEfiJhBCHoVAtj0K0YdLVPK25cAZ2iYgnb8INPCOLPRZqnGb+RhAnq0wtUmBLO 2x9sJMHWIOmH3OjqlCcckaHnutJqExEp9riczr/T62fbd8vixaowxdZtrS7dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNPXGy965pQByR5pUl1ASGqbzyNkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NDI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUMwDQYJKoZIhvcNAQELBQADggEBAGTktivcryCERCmGSWt/4flwJV35UuyvcCL8 b/qIi2BogB6Xgb3HS7LI0Mem1JuYzrH2aAJa7oVz2FtLKy+dVa3SpyUW7ZPrlyJW 513Ydfv1W5IXimhYHTl9xNWkv68JOGZRfT/VLgrbkiUxVmURTtgCZ/DyYHYrsq0r N0xC2OaMqC5oLi5HJRsQrTZEPoyXHTMYc1+kwJLLFh6CJe+CRvenRQSnsiY9BHcj 5K5e/tzTMFK8aEZ5zogog5eq+0nCoBR3JgSBfiviy1EZcygGBlsmGbPFcDWde9gJ DvPjRLrTbQ6Mn0YtjBsualTJFhllEOOufhgaSDc0Pe2WLmtYMVQ= -----END CERTIFICATE-----Generated at Sun Nov 24 10:22:13 2024 by rpki-client on console-fra.rpki-client.org