$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa File: AS400542.roa (raw, json) Hash identifier: 5HYIFfXA3YlvfTHhd3XfZGYuTJx3nXwjze1S+PBwDXY= Subject key identifier: 2B:D6:EE:5B:54:87:0F:2E:D7:85:FA:11:43:0F:D1:19:41:C4:63:B1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 09EE5715934713EBAB7F956A8AEEE838094B0674 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 400542 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 05 May 2024 08:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ee:57:15:93:47:13:eb:ab:7f:95:6a:8a:ee:e8:38:09:4b:06:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=2BD6EE5B54870F2ED785FA11430FD11941C463B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:7b:19:fe:97:ae:46:ad:ef:81:d8:81:1d: 6b:7a:01:f0:6b:c3:e8:72:95:94:61:79:fa:22:45: 5d:2b:a5:c9:73:ca:86:2e:f3:68:61:d1:3b:ea:0a: af:59:c8:a1:e5:ff:b4:22:b0:da:18:2c:1f:29:78: 72:52:47:3b:37:4e:f5:29:1c:23:94:42:a6:75:56: 9a:c9:de:7f:19:2c:5b:39:2d:6c:aa:32:30:84:93: 0d:a3:b9:8e:87:64:a0:24:1f:34:d4:c9:86:72:2a: 6a:34:83:1a:d2:0d:3b:31:aa:9a:e2:81:f2:57:86: 90:c2:7a:21:50:94:7b:7f:8f:65:10:06:3a:65:fe: d7:3c:e4:56:43:fc:ff:9f:71:1f:03:04:44:61:03: 6f:94:54:17:7e:7c:f6:1f:52:3a:98:74:72:78:ae: c4:b1:da:f8:09:4f:0b:a3:88:b0:87:e1:2d:f0:2c: 3d:e3:c5:09:7c:a0:3a:40:c4:11:c3:76:d5:36:03: bb:7c:58:e5:08:9e:b5:5c:b2:cd:92:1b:c9:98:67: 6f:98:c8:e6:24:12:e6:89:4f:55:bb:1b:82:f9:c5: 6f:ad:71:85:29:0b:f0:97:d2:d8:49:77:a4:ff:ea: f4:b1:07:95:57:2f:1d:cd:2e:4a:95:2b:79:8b:1f: eb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D6:EE:5B:54:87:0F:2E:D7:85:FA:11:43:0F:D1:19:41:C4:63:B1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS400542.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 71:21:ff:03:fb:d7:c7:39:21:58:ab:17:06:8e:3d:13:01:be: 40:3d:c1:bf:7b:61:55:c0:2d:23:aa:ca:df:06:bc:12:4f:5e: e2:61:6e:4c:da:1a:03:60:24:de:45:15:76:f5:dd:d0:31:29: 33:5d:6d:1b:1b:dc:58:38:01:26:d9:9e:d7:0c:da:9a:a6:0c: 1e:85:0f:4a:c8:b0:eb:35:d4:3e:b6:a2:8a:ca:45:5b:45:e0: 7f:64:df:c0:e6:1c:c2:8b:a7:46:f1:3e:9a:f4:ca:a2:b6:d9: 5a:54:53:64:8d:d3:c9:63:b6:5e:f1:b3:5b:51:7b:aa:58:65: cc:ae:d6:50:e3:e8:dc:9e:3e:2f:7e:01:2c:8b:04:b3:0d:6f: 7c:93:5d:24:d6:27:88:db:53:4f:15:1e:27:59:23:ba:6d:e9: 66:bd:48:94:3d:cf:92:08:74:97:a2:a1:bc:c6:2d:11:4d:14: 0d:91:ee:e9:1e:d0:df:64:29:67:54:88:57:4d:19:c4:a7:58: 8a:04:e6:f3:33:b1:a6:08:e9:8e:13:d1:df:25:dc:66:8a:e2: 9f:f8:e7:a0:4c:1a:ae:fa:3f:e7:ae:46:bf:5e:1e:d0:f6:5d: 59:dd:ce:c4:b4:af:79:61:7f:9d:7a:01:78:5f:99:39:83:6d: 56:f2:46:2d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCe5XFZNHE+urf5Vqiu7oOAlLBnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDJCRDZFRTVCNTQ4NzBGMkVENzg1RkExMTQzMEZEMTE5NDFDNDYzQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPdXsZ/peuRq3vgdiBHWt6AfBr w+hylZRhefoiRV0rpclzyoYu82hh0TvqCq9ZyKHl/7QisNoYLB8peHJSRzs3TvUp HCOUQqZ1VprJ3n8ZLFs5LWyqMjCEkw2juY6HZKAkHzTUyYZyKmo0gxrSDTsxqpri gfJXhpDCeiFQlHt/j2UQBjpl/tc85FZD/P+fcR8DBERhA2+UVBd+fPYfUjqYdHJ4 rsSx2vgJTwujiLCH4S3wLD3jxQl8oDpAxBHDdtU2A7t8WOUInrVcss2SG8mYZ2+Y yOYkEuaJT1W7G4L5xW+tcYUpC/CX0thJd6T/6vSxB5VXLx3NLkqVK3mLH+u7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUK9buW1SHDy7XhfoRQw/RGUHEY7EwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDAwNTQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBxIf8D+9fHOSFYqxcGjj0TAb5APcG/e2FV wC0jqsrfBrwST17iYW5M2hoDYCTeRRV29d3QMSkzXW0bG9xYOAEm2Z7XDNqapgwe hQ9KyLDrNdQ+tqKKykVbReB/ZN/A5hzCi6dG8T6a9MqittlaVFNkjdPJY7Ze8bNb UXuqWGXMrtZQ4+jcnj4vfgEsiwSzDW98k10k1ieI21NPFR4nWSO6belmvUiUPc+S CHSXoqG8xi0RTRQNke7pHtDfZClnVIhXTRnEp1iKBObzM7GmCOmOE9HfJdxmiuKf +OegTBqu+j/nrka/Xh7Q9l1Z3c7EtK95YX+degF4X5k5g21W8kYt -----END CERTIFICATE-----Generated at Sat May 4 15:08:03 2024 by rpki-client on console-ams.rpki-client.org