$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199573.roa File: AS199573.roa (raw, json) Hash identifier: efF6c90yZGHA+EH5NsiW0XM2Kep/4OEPuIvRnT3F2hg= Subject key identifier: F5:1C:38:B2:AF:2D:1C:CF:86:F2:09:59:A9:D7:AD:23:92:DD:7F:C1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7193F105B1934F6FC2C7BA10E3EF800207330A37 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199573.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 199573 IP address blocks: 2a07:54c1:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:93:f1:05:b1:93:4f:6f:c2:c7:ba:10:e3:ef:80:02:07:33:0a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=F51C38B2AF2D1CCF86F20959A9D7AD2392DD7FC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0a:c3:14:2f:fe:cc:f3:d3:67:0f:d5:95:dd: 14:fb:5f:fc:eb:42:10:c3:79:95:7a:a1:a6:2d:d2: cd:0c:9d:f1:22:b0:1e:96:c9:2b:7a:45:8a:fe:e6: 5d:67:4a:57:4c:c5:b2:f6:2f:da:97:b6:d4:15:e5: 48:fe:67:0e:bf:a5:02:55:0f:b1:51:90:72:3a:14: d9:ca:f6:b0:62:08:c2:2d:2e:32:60:e7:3e:73:e9: ed:c4:ac:77:e4:bf:f5:ac:9e:6d:a7:fa:c3:c9:bb: 02:db:9a:ff:bc:01:92:b2:a8:0e:c7:76:46:f1:c4: 55:12:fd:1f:a5:f4:7d:d5:9a:a0:af:97:d0:fd:a4: c3:97:ad:64:63:02:64:18:05:19:01:bb:a9:91:5e: 96:c6:47:e6:8d:23:07:18:3a:12:8d:5d:43:35:e1: ac:62:88:4b:e6:21:bc:1f:46:ef:c7:38:46:7c:16: 4f:83:69:05:ce:7c:2a:df:9b:c7:bb:c0:c1:b1:f2: 87:11:5b:74:38:0f:8a:73:c2:26:f8:af:b8:17:66: 78:0a:3a:25:4d:f6:7a:90:f9:a5:0c:d2:82:3b:cf: 81:29:ac:ba:2a:78:f3:0e:d4:91:b3:71:43:c0:67: 55:cf:bc:ef:b5:01:88:6a:a9:b7:54:66:b0:68:05: c7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1C:38:B2:AF:2D:1C:CF:86:F2:09:59:A9:D7:AD:23:92:DD:7F:C1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199573.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:b000::/40 Signature Algorithm: sha256WithRSAEncryption 0b:03:61:bb:1d:bc:c9:b9:f2:c7:21:93:a2:da:a0:46:cc:57: ab:7a:a5:5d:9c:f2:d0:4f:93:95:6e:04:91:0e:0e:aa:88:6b: fe:e5:e9:a9:a4:31:ea:b9:3d:cd:a7:ce:4c:4e:32:45:18:97: f6:75:f5:be:ae:f1:eb:24:16:69:e9:47:f8:43:c6:f4:8c:78: 4b:4e:61:17:da:8c:41:8c:09:49:11:46:0a:a0:d2:63:9f:d7: dc:db:e8:94:48:9f:da:c6:46:14:c3:80:4d:c5:06:b8:d5:de: b3:75:c7:52:85:96:37:32:6b:31:f7:16:34:a5:bf:3b:fe:f6: 12:c5:e2:6e:45:8f:71:fe:92:f7:7c:78:31:44:a5:27:e3:28: 04:38:e2:ae:bc:a9:95:48:ec:57:59:47:c7:ba:40:05:59:8e: 5a:c3:3a:2b:0d:50:fd:b2:ff:e7:38:15:b7:fd:2f:6b:a1:6e: f0:34:cc:71:09:ef:ff:9d:2c:3a:d0:6a:d7:9d:3e:30:41:11: fc:05:54:71:8e:fa:56:29:4d:9b:68:71:3e:0f:8c:0b:94:c1: ee:1f:7d:d9:7e:db:6b:a6:a4:53:bf:ac:04:fd:49:a9:52:ed: 00:26:8c:50:e3:59:68:93:49:be:c1:61:ce:81:17:66:b3:5d: 97:1c:69:34 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcZPxBbGTT2/Cx7oQ4++AAgczCjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEY1MUMzOEIyQUYyRDFDQ0Y4NkYyMDk1OUE5RDdBRDIzOTJERDdGQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqCsMUL/7M89NnD9WV3RT7X/zr QhDDeZV6oaYt0s0MnfEisB6WySt6RYr+5l1nSldMxbL2L9qXttQV5Uj+Zw6/pQJV D7FRkHI6FNnK9rBiCMItLjJg5z5z6e3ErHfkv/Wsnm2n+sPJuwLbmv+8AZKyqA7H dkbxxFUS/R+l9H3VmqCvl9D9pMOXrWRjAmQYBRkBu6mRXpbGR+aNIwcYOhKNXUM1 4axiiEvmIbwfRu/HOEZ8Fk+DaQXOfCrfm8e7wMGx8ocRW3Q4D4pzwib4r7gXZngK OiVN9nqQ+aUM0oI7z4EprLoqePMO1JGzcUPAZ1XPvO+1AYhqqbdUZrBoBcfvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9Rw4sq8tHM+G8glZqdetI5Ldf8EwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NTczLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wbAwDQYJKoZIhvcNAQELBQADggEBAAsDYbsdvMm58schk6LaoEbMV6t6pV2c8tBP k5VuBJEODqqIa/7l6amkMeq5Pc2nzkxOMkUYl/Z19b6u8eskFmnpR/hDxvSMeEtO YRfajEGMCUkRRgqg0mOf19zb6JRIn9rGRhTDgE3FBrjV3rN1x1KFljcyazH3FjSl vzv+9hLF4m5Fj3H+kvd8eDFEpSfjKAQ44q68qZVI7FdZR8e6QAVZjlrDOisNUP2y /+c4Fbf9L2uhbvA0zHEJ7/+dLDrQatedPjBBEfwFVHGO+lYpTZtocT4PjAuUwe4f fdl+22umpFO/rAT9SalS7QAmjFDjWWiTSb7BYc6BF2azXZccaTQ= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org