$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199765.roa File: AS199765.roa (raw, json) Hash identifier: 4rceLnu8CnoPHnZk7wlHge4KQEJ8yyJvhrp4ehlyvOQ= Subject key identifier: CA:87:4C:33:EC:E3:95:21:93:27:D4:AD:07:C9:E6:33:D9:36:73:6A Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 41829D2C9E4669AA935C99E2206EFE4A74B24FB1 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199765.roa Signing time: Sat 14 Dec 2024 16:30:34 +0000 ROA not before: Sat 14 Dec 2024 16:25:34 +0000 ROA not after: Sat 13 Dec 2025 16:30:34 +0000 asID: 199765 IP address blocks: 2a07:54c4:1757::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:82:9d:2c:9e:46:69:aa:93:5c:99:e2:20:6e:fe:4a:74:b2:4f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 14 16:25:34 2024 GMT Not After : Dec 13 16:30:34 2025 GMT Subject: CN=CA874C33ECE395219327D4AD07C9E633D936736A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:90:2b:fc:34:1f:e8:14:f5:d5:cf:ac:f6:67: b7:5b:57:04:16:ad:05:3a:9d:cb:dc:06:53:c8:0e: b8:4f:57:aa:35:64:b6:e0:87:14:fb:ba:d5:4c:52: 34:cb:a3:48:e8:bd:75:2a:a7:39:57:1c:b7:91:9c: c1:6b:9e:23:7f:8b:f6:36:f4:ee:c3:76:31:be:3f: d4:5c:8e:f2:c5:87:05:02:b9:e5:32:89:5a:66:2a: a8:df:dd:d1:57:07:80:38:31:65:a4:88:bf:66:b9: f2:30:2e:6a:e7:bb:84:34:28:13:56:1e:8a:db:5d: 8a:49:c0:66:52:52:ab:0f:c9:e8:60:a7:1f:f1:72: 67:53:40:01:6f:e1:ce:2e:79:c6:1c:75:b5:f0:8a: da:3c:6d:40:0a:c7:eb:4b:cd:78:7f:60:6c:ac:03: 79:8c:bf:e1:57:0f:a1:14:04:6c:29:b7:4b:65:4e: 0c:9d:b6:15:94:96:d1:4a:6f:9d:a6:5d:e7:ff:48: ef:94:e7:7c:a2:2f:6f:08:9d:cd:4f:28:74:0e:bb: 3a:72:0b:9d:1d:0d:de:27:78:f0:a4:5a:cd:e1:eb: 8d:79:06:39:b6:8a:fe:85:64:20:28:3d:71:8f:5d: 91:48:e6:76:4d:c6:02:27:ef:1b:fe:13:5f:72:c4: 2f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:87:4C:33:EC:E3:95:21:93:27:D4:AD:07:C9:E6:33:D9:36:73:6A X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS199765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1757::/48 Signature Algorithm: sha256WithRSAEncryption 0e:97:bc:f5:14:4d:0a:0a:20:1f:1f:23:3f:29:0a:83:04:ea: 7d:4c:21:f9:c3:ee:36:88:28:31:74:46:8e:df:0d:95:00:ef: 23:50:dd:14:c1:b2:57:e6:d4:54:51:af:6d:5a:d2:a2:71:dd: 8f:f9:b1:25:11:09:66:9f:f5:8c:38:37:22:23:c6:79:01:57: c3:90:d6:3c:32:f1:04:7a:a2:b2:c7:c8:9d:cc:16:e6:ff:ed: a0:21:d4:82:9a:5d:22:70:e1:fb:d5:1d:dd:96:bf:d0:c2:d4: a4:70:c8:ea:98:6f:b9:ce:62:65:b9:44:74:cc:40:ed:b3:e3: 7f:ae:ea:84:3f:a3:30:15:76:c5:8d:24:3a:90:22:82:bd:c1: f5:15:c5:46:e4:05:46:0d:a9:70:68:f2:4f:b9:a1:f5:40:d5: f2:9e:06:7b:e3:23:07:06:13:49:b1:3b:61:cf:31:ec:0c:3e: 2a:54:4c:d5:ca:b2:da:ee:d3:7a:49:86:79:77:f1:03:70:0b: f5:4a:f5:8a:40:a8:b8:64:30:54:2b:df:3c:a5:12:9b:23:5d: 8c:65:c4:eb:5f:34:de:ec:b8:87:e3:f6:69:4d:fe:c3:c2:8a: 5f:12:83:3c:f3:5e:96:d9:c2:f6:2b:08:ed:a8:ce:5c:6d:94: 78:43:74:72 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQYKdLJ5GaaqTXJniIG7+SnSyT7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDEyMTQxNjI1MzRaFw0yNTEyMTMxNjMwMzRaMDMxMTAvBgNV BAMTKENBODc0QzMzRUNFMzk1MjE5MzI3RDRBRDA3QzlFNjMzRDkzNjczNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtkCv8NB/oFPXVz6z2Z7dbVwQW rQU6ncvcBlPIDrhPV6o1ZLbghxT7utVMUjTLo0jovXUqpzlXHLeRnMFrniN/i/Y2 9O7DdjG+P9RcjvLFhwUCueUyiVpmKqjf3dFXB4A4MWWkiL9mufIwLmrnu4Q0KBNW HorbXYpJwGZSUqsPyehgpx/xcmdTQAFv4c4uecYcdbXwito8bUAKx+tLzXh/YGys A3mMv+FXD6EUBGwpt0tlTgydthWUltFKb52mXef/SO+U53yiL28Inc1PKHQOuzpy C50dDd4nePCkWs3h6415Bjm2iv6FZCAoPXGPXZFI5nZNxgIn7xv+E19yxC9hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyodMM+zjlSGTJ9StB8nmM9k2c2owHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTk5NzY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdXMA0GCSqGSIb3DQEBCwUAA4IBAQAOl7z1FE0KCiAfHyM/KQqDBOp9TCH5w+42 iCgxdEaO3w2VAO8jUN0UwbJX5tRUUa9tWtKicd2P+bElEQlmn/WMODciI8Z5AVfD kNY8MvEEeqKyx8idzBbm/+2gIdSCml0icOH71R3dlr/QwtSkcMjqmG+5zmJluUR0 zEDts+N/ruqEP6MwFXbFjSQ6kCKCvcH1FcVG5AVGDalwaPJPuaH1QNXyngZ74yMH BhNJsTthzzHsDD4qVEzVyrLa7tN6SYZ5d/EDcAv1SvWKQKi4ZDBUK988pRKbI12M ZcTrXzTe7LiH4/ZpTf7DwopfEoM8816W2cL2KwjtqM5cbZR4Q3Ry -----END CERTIFICATE-----Generated at Fri Apr 4 17:05:56 2025 by rpki-client