$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa File: AS398057.roa (raw, json) Hash identifier: 5qpeEXw8xUET/Y5xUhre5/IBPACfwA9HclBYEsk421c= Subject key identifier: 81:83:1F:7F:13:5E:87:B7:BD:5C:25:0F:0E:19:AD:F2:27:51:E8:CD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4AA9B366FED78C9585BD3F9203B6B5F6C05F5CD5 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 398057 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 07 May 2024 11:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a9:b3:66:fe:d7:8c:95:85:bd:3f:92:03:b6:b5:f6:c0:5f:5c:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=81831F7F135E87B7BD5C250F0E19ADF22751E8CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:76:b7:5f:93:d3:f6:18:6c:b3:cc:99:b9:58: cc:11:a3:97:a3:7e:a5:b7:47:d2:6f:47:d5:e2:51: ac:56:7c:48:e6:0c:8f:05:9e:65:05:0d:6a:57:5e: 75:39:a2:dc:18:e5:9e:75:81:3d:04:8a:50:51:dd: d0:42:89:94:49:92:52:a5:c5:2d:15:6a:84:27:91: 02:b0:34:a0:81:e6:64:f7:72:58:fb:11:bf:1f:2f: f1:c0:52:a5:e6:8a:5f:b5:ab:7f:68:16:f0:36:66: ff:02:8c:bb:9d:2c:f3:7a:08:1d:89:ff:94:6b:6e: ba:08:f9:d4:bb:c5:10:4b:2e:05:82:a6:fe:61:45: 16:5c:52:9f:20:70:b0:2e:f0:9f:78:9a:a1:e2:af: 9e:4c:ea:90:49:9c:1f:eb:06:11:25:9a:68:5e:b2: 9f:12:0d:84:b0:61:f5:c8:e2:76:f8:2b:41:06:05: b8:44:36:f2:7c:38:3c:6d:b6:62:f7:e7:46:65:d3: 26:6b:c6:2c:74:17:60:eb:38:4a:a1:36:7f:15:cb: 94:eb:db:7b:a6:71:25:2e:af:57:4e:46:35:83:f9: 6d:8c:20:65:f3:a8:d4:cd:1f:93:ef:6e:37:a5:26: 89:20:f6:02:fa:28:3e:7e:54:2f:47:6b:c5:80:3a: 92:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:83:1F:7F:13:5E:87:B7:BD:5C:25:0F:0E:19:AD:F2:27:51:E8:CD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS398057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 07:ce:91:72:94:af:db:59:c8:d0:27:aa:1e:a7:fe:35:00:95: d3:80:31:75:4a:74:ab:c2:be:0f:77:1f:0a:5d:88:51:d7:c4: 5b:c6:57:7b:7f:7f:42:9f:e4:3f:51:9c:ae:af:3c:fb:c3:1f: 7f:5b:78:14:54:13:c1:dc:93:a6:3f:34:48:92:53:6a:30:3f: 10:81:73:59:ed:f1:4b:bc:f0:1a:1a:5d:32:3f:a1:a4:d6:85: e5:19:2b:14:5e:84:a8:55:7c:11:f8:04:aa:30:48:ae:e5:b1: b0:7e:91:25:97:c1:16:09:b0:3c:2d:56:11:5c:bf:11:5d:af: 0a:fc:ba:cf:ae:46:24:2a:eb:5a:5f:a6:f1:79:bd:b8:43:94: 19:35:55:74:76:d8:9a:ec:b5:ea:ed:86:2d:d9:b7:10:1d:9f: 35:77:80:5a:b5:77:b4:f4:6e:a3:fe:b8:f3:d8:27:11:10:49: 7d:08:57:f8:bc:1e:97:7f:a9:d5:a6:58:01:f4:73:a7:8e:34: db:9f:57:61:29:71:2a:43:00:3a:15:0c:42:b4:ba:b9:ac:43: c3:ae:54:8f:21:c0:22:4d:ba:dd:5d:6b:88:b5:a3:19:8d:24: ff:03:2d:23:68:ee:a2:95:54:33:fb:f7:80:cc:d1:5d:ee:08: ff:d8:68:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSqmzZv7XjJWFvT+SA7a19sBfXNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKDgxODMxRjdGMTM1RTg3QjdCRDVDMjUwRjBFMTlBREYyMjc1MUU4Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+drdfk9P2GGyzzJm5WMwRo5ej fqW3R9JvR9XiUaxWfEjmDI8FnmUFDWpXXnU5otwY5Z51gT0EilBR3dBCiZRJklKl xS0VaoQnkQKwNKCB5mT3clj7Eb8fL/HAUqXmil+1q39oFvA2Zv8CjLudLPN6CB2J /5RrbroI+dS7xRBLLgWCpv5hRRZcUp8gcLAu8J94mqHir55M6pBJnB/rBhElmmhe sp8SDYSwYfXI4nb4K0EGBbhENvJ8ODxttmL350Zl0yZrxix0F2DrOEqhNn8Vy5Tr 23umcSUur1dORjWD+W2MIGXzqNTNH5PvbjelJokg9gL6KD5+VC9Ha8WAOpKBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgYMffxNeh7e9XCUPDhmt8idR6M0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMzk4MDU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAHzpFylK/bWcjQJ6oep/41AJXTgDF1SnSr wr4Pdx8KXYhR18Rbxld7f39Cn+Q/UZyurzz7wx9/W3gUVBPB3JOmPzRIklNqMD8Q gXNZ7fFLvPAaGl0yP6Gk1oXlGSsUXoSoVXwR+ASqMEiu5bGwfpEll8EWCbA8LVYR XL8RXa8K/LrPrkYkKutaX6bxeb24Q5QZNVV0dtia7LXq7YYt2bcQHZ81d4BatXe0 9G6j/rjz2CcREEl9CFf4vB6Xf6nVplgB9HOnjjTbn1dhKXEqQwA6FQxCtLq5rEPD rlSPIcAiTbrdXWuItaMZjST/Ay0jaO6ilVQz+/eAzNFd7gj/2GhM -----END CERTIFICATE-----Generated at Mon May 6 16:42:24 2024 by rpki-client on console-ams.rpki-client.org