$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: dEgXbucgwrmkzytO3EuPB8qkhH3xr75cVqtvzw3m/bE= Subject key identifier: 64:F3:51:D4:A6:34:BC:5E:96:40:02:46:01:76:3C:66:DA:16:F2:84 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 452AFED012C63C42857EE19E6670B3288555F25C Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 199680 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2a:fe:d0:12:c6:3c:42:85:7e:e1:9e:66:70:b3:28:85:55:f2:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=64F351D4A634BC5E9640024601763C66DA16F284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2a:f8:cd:22:2b:64:8a:7d:6c:ec:03:e2:cd: c0:52:33:54:90:6e:bc:54:47:96:c5:77:3f:b9:29: a8:7e:fe:2f:c1:37:02:ca:85:00:13:1e:f2:d9:85: 15:66:58:49:24:8d:9e:01:c8:19:dc:b2:a3:1e:6e: a3:3c:01:66:f8:ae:8d:79:d3:5e:95:93:98:52:b8: 5f:c1:bb:ce:dd:13:db:83:14:ee:32:d8:b8:a9:15: a7:a2:02:7a:94:b1:8f:99:8e:26:10:f2:5c:f0:aa: 15:14:71:27:c3:3f:88:ec:d5:0d:2a:e4:55:e6:d0: c9:58:df:c8:fc:d5:a8:58:9d:35:27:3c:3b:03:20: 31:dd:98:17:07:d6:5d:73:22:66:d7:ec:75:79:05: e4:21:9f:43:ce:8b:80:b7:45:8f:59:5e:7d:04:a9: 27:27:57:68:15:e4:65:32:a1:c3:68:5c:e2:65:1a: a0:6f:1c:83:ea:24:c2:50:49:dc:31:e7:c5:fc:79: ac:95:6e:74:ee:15:e1:03:21:b8:71:75:81:37:00: ec:d9:33:a1:80:d6:64:f8:8b:ec:98:09:c1:42:db: f2:fc:95:d0:67:58:c2:2f:d3:48:06:ec:e5:63:42: 37:b8:85:ea:5a:01:06:cb:97:99:c0:cf:af:35:f3: 12:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F3:51:D4:A6:34:BC:5E:96:40:02:46:01:76:3C:66:DA:16:F2:84 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 99:86:d4:e2:27:f3:35:83:f9:1d:72:ae:65:97:c9:bf:c4:a0: e2:f5:d9:5d:cf:2f:51:00:ae:9c:32:86:05:90:6a:62:f4:f3: ae:56:b6:8a:db:23:c8:41:df:34:8d:de:80:08:1a:56:38:1e: b9:34:9e:02:8c:83:b6:14:9e:9f:ea:2b:15:9d:14:66:9e:ae: b8:3d:21:3a:d7:cd:54:24:5e:c1:e7:ae:b1:78:c7:80:00:db: 0f:cb:58:fd:ab:1f:79:5e:f3:2b:a8:5b:da:9f:5d:e0:c4:ee: 66:c1:9a:53:1d:c5:48:22:ad:73:5b:4f:36:c8:8f:be:6f:c1: e0:6a:87:83:e9:28:8c:1b:bc:b3:70:af:10:ca:14:dd:cb:b0: db:41:c5:3b:14:b8:53:cf:1d:46:57:36:92:6f:c0:d6:73:47: 5a:b0:1c:5a:16:07:60:35:66:5d:59:bc:56:e7:75:65:13:0d: b6:22:67:0a:5c:92:31:b9:eb:91:08:13:15:04:f4:c4:87:45: 1b:c0:34:56:f3:fa:fd:c1:38:78:01:e0:77:e9:73:2e:9f:af: 99:1b:81:69:5e:24:f3:eb:e5:44:63:18:99:d0:27:a2:b7:cd: 94:5c:c5:66:39:21:a3:a3:c7:f6:e1:58:53:ae:e6:58:5f:2c: 8f:be:f6:a3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURSr+0BLGPEKFfuGeZnCzKIVV8lwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTVaFw0yNTA4MTkwMjMxNTVaMDMxMTAvBgNV BAMTKDY0RjM1MUQ0QTYzNEJDNUU5NjQwMDI0NjAxNzYzQzY2REExNkYyODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeKvjNIitkin1s7APizcBSM1SQ brxUR5bFdz+5Kah+/i/BNwLKhQATHvLZhRVmWEkkjZ4ByBncsqMebqM8AWb4ro15 016Vk5hSuF/Bu87dE9uDFO4y2LipFaeiAnqUsY+ZjiYQ8lzwqhUUcSfDP4js1Q0q 5FXm0MlY38j81ahYnTUnPDsDIDHdmBcH1l1zImbX7HV5BeQhn0POi4C3RY9ZXn0E qScnV2gV5GUyocNoXOJlGqBvHIPqJMJQSdwx58X8eayVbnTuFeEDIbhxdYE3AOzZ M6GA1mT4i+yYCcFC2/L8ldBnWMIv00gG7OVjQje4hepaAQbLl5nAz6818xIxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZPNR1KY0vF6WQAJGAXY8ZtoW8oQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NjgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCZhtTiJ/M1g/kdcq5ll8m/xKDi9dldzy9R AK6cMoYFkGpi9POuVraK2yPIQd80jd6ACBpWOB65NJ4CjIO2FJ6f6isVnRRmnq64 PSE6181UJF7B566xeMeAANsPy1j9qx95XvMrqFvan13gxO5mwZpTHcVIIq1zW082 yI++b8HgaoeD6SiMG7yzcK8QyhTdy7DbQcU7FLhTzx1GVzaSb8DWc0dasBxaFgdg NWZdWbxW53VlEw22ImcKXJIxueuRCBMVBPTEh0UbwDRW8/r9wTh4AeB36XMun6+Z G4FpXiTz6+VEYxiZ0Ceit82UXMVmOSGjo8f24VhTruZYXyyPvvaj -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org