$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa File: AS398057.roa (raw, json) Hash identifier: udyB2o3f/BfKnPqo6traZ+nGo9zT5gdRjchVgV25z08= Subject key identifier: 39:56:09:99:23:FD:99:69:55:16:FB:FE:71:6D:57:3E:17:C0:F5:7A Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1AD4CCAE1091243BF13E3ACE72F75337D0475C04 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa Signing time: Tue 20 Aug 2024 02:31:53 +0000 ROA not before: Tue 20 Aug 2024 02:26:53 +0000 ROA not after: Tue 19 Aug 2025 02:31:53 +0000 asID: 398057 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d4:cc:ae:10:91:24:3b:f1:3e:3a:ce:72:f7:53:37:d0:47:5c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:53 2024 GMT Not After : Aug 19 02:31:53 2025 GMT Subject: CN=3956099923FD99695516FBFE716D573E17C0F57A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0e:40:6c:b1:69:83:1f:4e:f0:b0:63:8e:a2: 05:f6:d7:bd:7a:00:d3:8e:84:31:4b:4d:29:2e:e1: dc:19:40:86:4e:92:17:71:2c:97:2e:2c:ff:4a:b5: 3d:d6:70:c1:16:a5:97:10:e6:e3:57:49:7a:30:8a: 6a:5c:ec:d6:7c:a9:97:06:68:22:7b:f5:ce:e5:bc: 40:28:d1:d3:da:95:f7:11:f1:0e:b4:8b:f2:6e:83: 14:7d:6e:24:5a:af:66:87:78:96:de:c6:a8:97:2e: fa:80:a7:36:5d:78:9a:eb:99:4b:bd:52:2e:09:88: 9d:cb:dc:9c:33:0f:2f:ec:48:e2:a4:58:63:2c:fb: de:8d:f4:38:16:b8:6b:6a:e8:06:d2:94:ef:df:81: 1e:79:4e:b0:02:e0:c8:08:ac:30:e8:09:71:c7:7c: cd:31:f2:67:b9:8f:5b:e3:db:91:40:45:aa:44:25: 78:b9:29:8e:fa:2e:62:a3:3c:55:4e:c2:03:1c:20: 8e:fe:19:12:89:81:3e:69:ba:40:af:05:b1:68:72: 25:84:05:8c:7f:c6:d0:62:45:14:d6:da:75:b3:0a: 97:56:db:94:0a:ee:b5:04:3f:a9:0f:76:da:e5:f1: d1:ad:dc:d6:bc:20:4c:8c:8e:a0:70:a7:30:bd:c9: 14:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:56:09:99:23:FD:99:69:55:16:FB:FE:71:6D:57:3E:17:C0:F5:7A X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a5:c0:13:4a:58:48:c1:6d:37:34:87:29:92:fb:b2:97:3d:09: d1:c5:ea:03:92:38:f3:4b:2a:41:97:9d:3b:3a:d5:50:81:47: 95:8a:3b:05:b0:2f:b1:42:34:5e:d5:ad:d6:9f:ff:39:22:29: 89:4e:46:5e:df:33:54:1f:19:fc:36:be:43:25:8c:83:9b:f2: e7:7f:84:13:17:02:ba:f2:03:d7:1f:d3:d1:99:b4:a4:a2:69: b1:19:67:4e:29:e2:25:ca:de:19:c0:4b:0b:ec:65:4b:4a:5e: 45:f4:e4:cb:cd:bc:0a:2c:c9:e8:14:e7:86:79:5b:8a:db:e4: 8e:bd:ae:72:47:92:23:e3:72:a4:a6:d7:df:f3:33:6d:76:54: 31:1e:b0:d1:ba:7b:88:d8:67:a4:f6:2e:00:12:46:62:23:0e: 8e:6e:54:cd:ae:78:6c:9f:48:60:bf:94:99:44:8f:ce:98:a6: 0f:1d:a1:6c:09:0a:c3:da:80:3a:db:cd:e8:4f:d8:df:e3:eb: 86:a2:2f:56:a2:a1:11:81:d5:ea:ab:e9:db:b1:c6:4b:e6:58: 4d:1e:e3:7d:9f:6d:d9:16:2d:bc:c9:a8:08:7d:9e:23:d0:53: 3a:74:bb:32:5d:4c:73:5c:10:98:fb:5f:4f:bc:cf:5d:ba:79: 42:d0:01:d9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGtTMrhCRJDvxPjrOcvdTN9BHXAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTNaFw0yNTA4MTkwMjMxNTNaMDMxMTAvBgNV BAMTKDM5NTYwOTk5MjNGRDk5Njk1NTE2RkJGRTcxNkQ1NzNFMTdDMEY1N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvDkBssWmDH07wsGOOogX21716 ANOOhDFLTSku4dwZQIZOkhdxLJcuLP9KtT3WcMEWpZcQ5uNXSXowimpc7NZ8qZcG aCJ79c7lvEAo0dPalfcR8Q60i/JugxR9biRar2aHeJbexqiXLvqApzZdeJrrmUu9 Ui4JiJ3L3JwzDy/sSOKkWGMs+96N9DgWuGtq6AbSlO/fgR55TrAC4MgIrDDoCXHH fM0x8me5j1vj25FARapEJXi5KY76LmKjPFVOwgMcII7+GRKJgT5pukCvBbFociWE BYx/xtBiRRTW2nWzCpdW25QK7rUEP6kPdtrl8dGt3Na8IEyMjqBwpzC9yRTBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOVYJmSP9mWlVFvv+cW1XPhfA9XowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMzk4MDU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQClwBNKWEjBbTc0hymS+7KXPQnRxeoDkjjz SypBl507OtVQgUeVijsFsC+xQjRe1a3Wn/85IimJTkZe3zNUHxn8Nr5DJYyDm/Ln f4QTFwK68gPXH9PRmbSkommxGWdOKeIlyt4ZwEsL7GVLSl5F9OTLzbwKLMnoFOeG eVuK2+SOva5yR5Ij43Kkptff8zNtdlQxHrDRunuI2Gek9i4AEkZiIw6OblTNrnhs n0hgv5SZRI/OmKYPHaFsCQrD2oA6283oT9jf4+uGoi9WoqERgdXqq+nbscZL5lhN HuN9n23ZFi28yagIfZ4j0FM6dLsyXUxzXBCY+19PvM9dunlC0AHZ -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org