$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: 557y8DLUf1yAvhx04VLxZ+vy2uzLUxyciO1chJSp8FQ= Subject key identifier: 23:02:59:15:BC:6B:AC:2F:55:AB:EE:99:06:40:AD:16:A9:B3:EF:6F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 758403B0CB3592AF5B3600E78FD8A8A6E8BC3219 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa Signing time: Tue 19 Sep 2023 02:14:54 +0000 ROA not before: Tue 19 Sep 2023 02:09:54 +0000 ROA not after: Tue 17 Sep 2024 02:14:54 +0000 asID: 199680 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:84:03:b0:cb:35:92:af:5b:36:00:e7:8f:d8:a8:a6:e8:bc:32:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:54 2023 GMT Not After : Sep 17 02:14:54 2024 GMT Subject: CN=23025915BC6BAC2F55ABEE990640AD16A9B3EF6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:cb:3c:13:a1:78:e8:b2:51:56:6c:79:98: d1:ee:ec:b8:5e:03:bc:da:33:90:67:37:a4:20:f0: ff:05:8f:0a:46:18:b1:1f:26:e5:b3:2c:83:0b:cd: 91:1a:9b:31:7f:1c:bf:8e:4c:00:be:c8:e2:34:f0: 2c:74:1c:01:eb:bc:dc:d9:5c:b9:77:b7:99:74:f9: 3c:cb:98:49:30:c9:01:e6:d3:6b:bf:e9:fc:0d:94: 67:b2:e9:2d:b0:7c:6a:14:7e:e9:40:62:53:c7:61: e6:ff:b3:07:de:cb:df:27:e9:56:3a:0c:bb:6f:3d: 88:bf:ff:0c:53:04:e8:5b:76:05:48:a5:9b:18:86: b1:56:c4:63:f2:ba:10:7d:a1:1a:17:e2:58:0b:0c: c7:a1:73:16:0f:d7:ca:80:65:58:7e:cb:01:9c:6b: 02:e6:89:7f:72:5c:22:3d:fd:17:66:39:ce:68:b1: 23:f7:1f:3c:32:e7:2f:04:37:59:c0:fe:2e:92:bb: 56:4f:42:e2:98:78:99:a1:05:c2:02:60:f5:c2:48: 99:90:d2:b7:a7:d0:f5:2a:07:d9:4d:0f:94:40:cc: e2:05:fc:af:9d:e7:7e:cf:99:0b:32:2d:e3:a9:cf: 76:75:5f:78:1d:f0:76:aa:65:98:b9:b9:84:22:17: 37:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:02:59:15:BC:6B:AC:2F:55:AB:EE:99:06:40:AD:16:A9:B3:EF:6F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 4b:ff:b8:bd:07:2f:dd:dc:5c:8e:a2:2b:bf:51:90:b6:3f:2f: de:a5:aa:19:5d:df:84:77:64:4a:8e:4e:01:f0:6d:4f:60:1e: 0d:ca:5f:f1:42:49:0a:db:dc:8b:1d:ca:07:d6:ac:78:00:96: 3f:e8:90:f4:27:f8:af:26:f5:d6:32:ed:eb:3b:85:1a:95:94: 32:09:f0:61:65:f7:ff:a2:46:7b:ce:f4:a2:81:9c:f5:8b:71: f8:fc:cf:30:e4:6a:dc:ff:d8:2f:13:14:e3:c9:b3:b2:57:2c: 47:68:6c:34:02:84:6e:10:cd:04:e5:ef:05:d9:04:69:6b:87: 49:cb:55:c5:8d:e7:b2:60:40:36:59:ea:6d:09:3e:3b:79:90: 57:5f:4f:5f:e5:13:c0:73:61:3d:87:82:f9:18:6a:b1:b7:e6: d1:0d:67:91:bd:6d:5c:ba:05:cc:1c:46:6a:b6:62:7a:c5:0d: a5:e6:dd:56:1a:63:40:f6:a1:78:c0:81:d7:65:c6:84:61:73: 3c:08:70:02:0d:f5:7a:86:33:2e:97:a7:46:2f:91:13:32:e4: 7e:73:73:e6:5b:55:0e:39:9f:89:f0:24:f3:d7:0c:b4:d5:a6: ee:c2:08:eb:56:ba:ed:45:ee:fe:34:cd:a9:07:71:be:8a:27: be:74:2c:2b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdYQDsMs1kq9bNgDnj9iopui8MhkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTRaFw0yNDA5MTcwMjE0NTRaMDMxMTAvBgNV BAMTKDIzMDI1OTE1QkM2QkFDMkY1NUFCRUU5OTA2NDBBRDE2QTlCM0VGNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/Ms8E6F46LJRVmx5mNHu7Lhe A7zaM5BnN6Qg8P8FjwpGGLEfJuWzLIMLzZEamzF/HL+OTAC+yOI08Cx0HAHrvNzZ XLl3t5l0+TzLmEkwyQHm02u/6fwNlGey6S2wfGoUfulAYlPHYeb/swfey98n6VY6 DLtvPYi//wxTBOhbdgVIpZsYhrFWxGPyuhB9oRoX4lgLDMehcxYP18qAZVh+ywGc awLmiX9yXCI9/RdmOc5osSP3Hzwy5y8EN1nA/i6Su1ZPQuKYeJmhBcICYPXCSJmQ 0ren0PUqB9lND5RAzOIF/K+d537PmQsyLeOpz3Z1X3gd8HaqZZi5uYQiFzdDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUIwJZFbxrrC9Vq+6ZBkCtFqmz728wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NjgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBL/7i9By/d3FyOoiu/UZC2Py/epaoZXd+E d2RKjk4B8G1PYB4Nyl/xQkkK29yLHcoH1qx4AJY/6JD0J/ivJvXWMu3rO4UalZQy CfBhZff/okZ7zvSigZz1i3H4/M8w5Grc/9gvExTjybOyVyxHaGw0AoRuEM0E5e8F 2QRpa4dJy1XFjeeyYEA2WeptCT47eZBXX09f5RPAc2E9h4L5GGqxt+bRDWeRvW1c ugXMHEZqtmJ6xQ2l5t1WGmNA9qF4wIHXZcaEYXM8CHACDfV6hjMul6dGL5ETMuR+ c3PmW1UOOZ+J8CTz1wy01abuwgjrVrrtRe7+NM2pB3G+iie+dCwr -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:25 2024 by rpki-client on console-fra.rpki-client.org