$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199582.roa File: AS199582.roa (raw, json) Hash identifier: dRQ4i27bDVPsgzWPjqp7pdzvsN1Mc3wf7C4s9RVSy2g= Subject key identifier: 79:80:BD:8A:9D:E2:1B:77:02:A6:13:7B:76:D9:FD:D6:B5:C6:2A:8E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 79C977BE85CBECB7BB222113ABBDFFB568DC046A Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199582.roa Signing time: Mon 08 Apr 2024 15:43:35 +0000 ROA not before: Mon 08 Apr 2024 15:38:35 +0000 ROA not after: Mon 07 Apr 2025 15:43:35 +0000 asID: 199582 IP address blocks: 2a07:54c1:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c9:77:be:85:cb:ec:b7:bb:22:21:13:ab:bd:ff:b5:68:dc:04:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Apr 8 15:38:35 2024 GMT Not After : Apr 7 15:43:35 2025 GMT Subject: CN=7980BD8A9DE21B7702A6137B76D9FDD6B5C62A8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:06:00:d9:0a:b5:de:f7:6a:fd:19:cb:7a:a1: 19:ac:c1:53:8b:1d:fa:09:a4:da:e7:b8:d0:02:88: 6f:24:44:27:57:b2:de:95:e1:07:ed:90:d7:61:0f: f8:c8:f2:f7:8e:70:a0:cb:4e:ec:bc:4d:89:5d:a4: a6:fd:6d:73:42:86:45:a3:e5:40:71:35:8d:ee:31: 31:1e:dd:08:7d:3d:01:85:28:53:72:b8:c7:65:18: d6:77:06:9b:08:d0:ea:39:1c:8c:6e:5e:21:81:88: b6:19:1a:44:8a:9e:91:3c:2c:09:d9:8b:8c:65:ac: f8:95:b7:23:85:af:db:33:c7:a6:c0:77:b3:a2:cf: ef:0e:a2:21:cf:53:41:38:62:90:a1:a0:52:19:5c: 0b:ef:52:08:d7:fb:94:4c:19:c3:1a:f8:78:63:61: 11:10:72:42:59:eb:76:99:07:98:24:6a:ce:c5:c9: fc:89:d3:ba:46:d6:82:5a:0d:cf:6d:41:ab:f2:b9: b9:8d:37:f8:da:8d:98:87:93:e0:54:4b:18:b7:09: 86:cb:35:cc:c6:0f:fc:f1:28:7a:76:2c:ef:c5:40: aa:7d:28:71:aa:f7:1a:05:10:38:4a:ac:1e:1b:21: 08:c2:e7:cb:f8:5e:78:9c:af:24:e4:4c:33:86:fb: d3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:80:BD:8A:9D:E2:1B:77:02:A6:13:7B:76:D9:FD:D6:B5:C6:2A:8E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199582.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c000::/40 Signature Algorithm: sha256WithRSAEncryption 8f:76:1c:8b:be:f0:0c:74:21:91:54:ee:4e:d0:e4:4f:c4:6d: 08:0c:37:13:61:59:59:a8:5f:2a:6d:42:d1:8d:71:db:a7:8f: 28:e3:06:c4:6f:b6:db:6b:7d:e7:30:c0:f0:2a:be:b3:c2:86: 0d:a4:22:fc:35:00:82:e1:df:d3:77:58:4c:19:4c:41:3b:d1: 39:0f:31:f7:39:0e:46:01:e0:9b:51:ae:04:8a:91:89:33:5b: ef:e0:38:dc:ae:58:e6:bb:61:42:ef:a1:7a:8c:73:ca:39:4d: d1:39:5b:94:57:01:60:70:15:79:83:09:15:e6:5f:f9:19:d7: 0b:ac:2f:7a:f6:fd:6c:27:49:f3:81:23:1f:32:a6:c8:47:ed: 89:d6:36:56:53:6b:bd:62:ca:11:04:37:64:f4:2f:59:b9:3d: 22:71:98:9d:49:1c:d6:46:d5:03:d7:ec:e0:05:05:a2:e5:e9: 94:03:6f:0b:04:92:01:d0:a1:87:7c:c3:06:bd:31:54:86:4b: 15:69:24:c2:6a:63:4a:2c:5a:9c:fb:0b:32:bc:5f:a8:de:d4: cd:ed:4e:e1:c0:2e:f0:64:35:af:d2:36:f8:81:1e:22:f9:96: f0:ff:2c:12:23:fc:94:1a:6c:50:1a:47:2a:8a:8f:52:43:0d: e2:05:07:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUecl3voXL7Le7IiETq73/tWjcBGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA0MDgxNTM4MzVaFw0yNTA0MDcxNTQzMzVaMDMxMTAvBgNV BAMTKDc5ODBCRDhBOURFMjFCNzcwMkE2MTM3Qjc2RDlGREQ2QjVDNjJBOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvBgDZCrXe92r9Gct6oRmswVOL HfoJpNrnuNACiG8kRCdXst6V4QftkNdhD/jI8veOcKDLTuy8TYldpKb9bXNChkWj 5UBxNY3uMTEe3Qh9PQGFKFNyuMdlGNZ3BpsI0Oo5HIxuXiGBiLYZGkSKnpE8LAnZ i4xlrPiVtyOFr9szx6bAd7Oiz+8OoiHPU0E4YpChoFIZXAvvUgjX+5RMGcMa+Hhj YREQckJZ63aZB5gkas7FyfyJ07pG1oJaDc9tQavyubmNN/jajZiHk+BUSxi3CYbL NczGD/zxKHp2LO/FQKp9KHGq9xoFEDhKrB4bIQjC58v4XnicryTkTDOG+9OrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeYC9ip3iG3cCphN7dtn91rXGKo4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NTgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wcAwDQYJKoZIhvcNAQELBQADggEBAI92HIu+8Ax0IZFU7k7Q5E/EbQgMNxNhWVmo XyptQtGNcdunjyjjBsRvtttrfecwwPAqvrPChg2kIvw1AILh39N3WEwZTEE70TkP Mfc5DkYB4JtRrgSKkYkzW+/gONyuWOa7YULvoXqMc8o5TdE5W5RXAWBwFXmDCRXm X/kZ1wusL3r2/WwnSfOBIx8ypshH7YnWNlZTa71iyhEEN2T0L1m5PSJxmJ1JHNZG 1QPX7OAFBaLl6ZQDbwsEkgHQoYd8wwa9MVSGSxVpJMJqY0osWpz7CzK8X6je1M3t TuHALvBkNa/SNviBHiL5lvD/LBIj/JQabFAaRyqKj1JDDeIFByw= -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org