$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa File: AS400542.roa (raw, json) Hash identifier: iyXEu2qAR5gSr4Vd8luf/73DYTFqoIwDoC59sdFpyzg= Subject key identifier: 3D:82:25:08:71:5F:4D:FA:62:35:91:79:45:5E:D0:B3:78:B0:D1:81 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 08EAB77760627ABF29C10E2913D7943FBE946A2E Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 400542 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:ea:b7:77:60:62:7a:bf:29:c1:0e:29:13:d7:94:3f:be:94:6a:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=3D822508715F4DFA62359179455ED0B378B0D181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:8c:4b:64:a2:35:64:2e:83:c0:dc:a2:38: 29:9b:0e:10:6d:78:3b:b1:4b:82:84:3f:aa:61:59: 79:1e:1c:1f:83:26:52:82:2f:41:d1:53:c1:df:e6: 76:6b:4c:10:5d:27:90:2b:6b:51:7c:fe:dd:1e:9c: b6:97:ce:0e:60:9f:3e:cc:30:5f:f7:26:43:d8:32: 02:ab:e1:62:dc:05:cc:ac:c6:2e:ce:ba:af:04:be: 25:e4:ab:eb:97:5e:3b:bc:19:3f:f9:09:39:a0:da: de:2a:60:a6:48:f7:6e:24:93:c8:c0:e1:4e:64:37: 59:0d:ca:ec:2a:47:32:a8:09:f0:c3:e3:84:d2:4e: 6f:88:84:41:65:a0:9e:be:fd:20:ce:dd:4f:ca:18: 30:61:fc:71:4d:51:2a:9f:0f:2b:7d:aa:b4:6d:90: f6:a1:48:23:87:78:40:b7:58:81:aa:ad:b4:38:2c: f6:66:a6:2c:ef:12:9d:59:85:38:dd:1b:f9:95:ce: 28:af:aa:20:c8:19:fc:fe:83:75:f1:2e:a4:fc:1c: 4f:57:5c:57:45:2b:39:da:e9:83:c1:b9:e4:af:8c: a4:04:ab:e5:d2:b7:fb:ee:a2:eb:0e:cb:5c:5b:d6: f2:d6:dd:95:f4:fc:86:c5:7a:e3:9a:7f:27:3e:b7: 78:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:82:25:08:71:5F:4D:FA:62:35:91:79:45:5E:D0:B3:78:B0:D1:81 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 26:7b:96:dd:64:cc:7d:21:d1:90:d5:56:bf:2a:23:70:05:76: aa:1a:fc:bb:76:bb:41:87:c7:ad:8b:ed:b5:a4:55:6e:ad:b9: ab:4e:69:e9:36:f5:6d:bc:82:16:2e:b1:c9:6b:24:49:aa:dd: cf:fb:91:6b:8e:69:06:50:ac:d2:3d:d0:f4:6d:1a:50:50:83: e8:66:d0:12:8e:8b:14:f8:4f:5f:52:9b:e0:3b:fc:9c:be:87: db:56:fc:64:7f:c8:cc:7a:b2:db:85:53:03:23:8b:90:02:9c: be:f4:7d:ed:15:12:1c:58:08:c0:21:e2:fd:74:e8:9e:54:a8: 23:7b:12:a8:2e:26:19:32:53:31:60:1c:cf:a9:4b:b1:ca:1a: 78:3d:56:bc:fd:dd:70:78:37:9c:97:d2:c4:f6:66:c0:af:c7: 68:c7:32:c8:8e:eb:9d:ca:93:15:0b:7f:a7:30:81:bf:f7:e8: b7:f6:69:d0:36:69:55:2f:01:86:f0:53:1b:ed:9a:8d:9d:0f: a1:0e:02:fe:88:84:a3:98:21:a1:bb:53:ff:48:42:ce:94:29: bb:16:0b:e2:ce:e1:f6:c2:8a:0b:ec:31:d2:a6:a1:03:5d:1f: ca:5e:c8:e1:5a:b4:f0:4a:f2:10:1e:cc:57:fb:ac:6c:ba:2b: 00:98:28:2f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCOq3d2Bier8pwQ4pE9eUP76Uai4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDNEODIyNTA4NzE1RjRERkE2MjM1OTE3OTQ1NUVEMEIzNzhCMEQxODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+DYxLZKI1ZC6DwNyiOCmbDhBt eDuxS4KEP6phWXkeHB+DJlKCL0HRU8Hf5nZrTBBdJ5Ara1F8/t0enLaXzg5gnz7M MF/3JkPYMgKr4WLcBcysxi7Ouq8EviXkq+uXXju8GT/5CTmg2t4qYKZI924kk8jA 4U5kN1kNyuwqRzKoCfDD44TSTm+IhEFloJ6+/SDO3U/KGDBh/HFNUSqfDyt9qrRt kPahSCOHeEC3WIGqrbQ4LPZmpizvEp1ZhTjdG/mVziivqiDIGfz+g3XxLqT8HE9X XFdFKzna6YPBueSvjKQEq+XSt/vuousOy1xb1vLW3ZX0/IbFeuOafyc+t3jDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPYIlCHFfTfpiNZF5RV7Qs3iw0YEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDAwNTQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAme5bdZMx9IdGQ1Va/KiNwBXaqGvy7drtB h8eti+21pFVurbmrTmnpNvVtvIIWLrHJayRJqt3P+5FrjmkGUKzSPdD0bRpQUIPo ZtASjosU+E9fUpvgO/ycvofbVvxkf8jMerLbhVMDI4uQApy+9H3tFRIcWAjAIeL9 dOieVKgjexKoLiYZMlMxYBzPqUuxyhp4PVa8/d1weDecl9LE9mbAr8doxzLIjuud ypMVC3+nMIG/9+i39mnQNmlVLwGG8FMb7ZqNnQ+hDgL+iISjmCGhu1P/SELOlCm7 FgvizuH2wooL7DHSpqEDXR/KXsjhWrTwSvIQHsxX+6xsuisAmCgv -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org