$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48581.roa File: AS48581.roa (raw, json) Hash identifier: D3DOpSHBXIOiCcSovZfQ5Q5vIROam9po1oy97K6G2Kg= Subject key identifier: 8A:0A:9B:D9:89:34:20:34:F7:CD:55:FB:19:22:C6:65:D6:E3:A6:65 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 149E34F5EACEC4C50309CBB1E98F0618C1477EA7 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48581.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 48581 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:9e:34:f5:ea:ce:c4:c5:03:09:cb:b1:e9:8f:06:18:c1:47:7e:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=8A0A9BD989342034F7CD55FB1922C665D6E3A665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:55:f9:2b:a4:2f:fe:93:0b:00:57:2d:e8:f6: f8:c8:6e:7c:5f:3c:b0:92:98:00:13:b4:17:cb:4f: 79:74:66:0d:e9:bc:e4:4b:75:ec:30:1f:51:30:21: f6:a6:41:60:29:7d:be:0c:bd:c3:db:18:41:81:e0: 15:71:0c:5c:dd:82:68:1f:57:7a:46:47:d4:ed:16: 06:2c:27:74:bd:a0:c1:a8:9a:e8:d9:93:cd:7f:56: 9e:29:14:8b:59:3d:bf:13:09:57:ce:fd:1b:48:57: ab:40:00:85:62:d0:f9:02:9d:7d:fd:99:44:d3:22: 28:3c:36:ed:5f:59:c1:59:00:cd:fc:b9:7f:ad:27: 6e:1f:92:b2:d4:08:34:16:f8:0f:d6:93:02:db:44: 50:c3:02:7d:0f:ed:f2:02:a4:7c:13:15:60:9c:5b: da:45:a3:ce:d1:25:e7:f9:2d:4d:b9:ec:0f:33:c3: 2f:d1:40:6d:7a:d7:b7:67:d2:cb:4a:2b:32:9a:c7: ab:21:9f:fe:8f:9c:78:b1:d7:93:92:2c:e3:9d:b3: 64:ec:8c:22:6c:e9:d2:b9:13:2f:d5:14:8b:57:ce: d5:88:b6:9d:b9:9b:30:d4:3f:73:70:dd:9f:06:e1: 51:75:e9:71:f9:78:fe:91:16:ac:4d:32:54:75:75: fd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0A:9B:D9:89:34:20:34:F7:CD:55:FB:19:22:C6:65:D6:E3:A6:65 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48581.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 4b:dd:aa:ec:54:b0:ba:ac:d5:a7:b9:36:17:36:bf:d5:21:82: 4c:cb:c5:87:fa:85:70:93:35:d7:39:38:73:50:2b:80:c7:74: c1:73:c7:be:80:83:91:c9:30:e3:f5:27:41:90:3d:ea:71:43: 69:e4:ef:eb:42:66:88:b0:78:97:0e:70:aa:bc:bf:a6:6e:55: ab:06:97:54:09:82:37:2d:e9:a6:0c:0d:0b:69:94:f3:19:ce: 6f:11:de:4d:a7:93:50:cd:36:79:5a:69:9a:88:4c:d9:f0:c1: be:ac:b3:e4:f4:f2:a5:c8:7d:d9:72:5c:e4:11:7b:40:31:5c: d0:52:ee:f8:f1:a1:0b:cb:91:3d:cb:4a:92:42:18:27:59:dd: 15:9b:33:8e:30:6b:08:9f:fb:9d:b8:6c:34:48:23:9b:f1:3d: a9:86:21:b4:6d:8a:5c:8d:fb:89:be:17:78:35:39:94:9b:8c: d8:01:00:65:90:49:ad:70:e8:ca:52:96:80:54:66:1b:6e:39: 75:a2:66:2c:8e:09:cb:3c:b4:18:77:63:a5:01:3b:94:42:08: f7:d7:a2:1a:c9:e3:be:fd:41:52:23:f4:29:61:af:cc:3b:90: 81:07:ca:71:19:a0:c6:59:e8:ba:90:c9:2c:92:f4:48:4b:65: 10:30:72:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFJ409erOxMUDCcux6Y8GGMFHfqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKDhBMEE5QkQ5ODkzNDIwMzRGN0NENTVGQjE5MjJDNjY1RDZFM0E2NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzVfkrpC/+kwsAVy3o9vjIbnxf PLCSmAATtBfLT3l0Zg3pvORLdewwH1EwIfamQWApfb4MvcPbGEGB4BVxDFzdgmgf V3pGR9TtFgYsJ3S9oMGomujZk81/Vp4pFItZPb8TCVfO/RtIV6tAAIVi0PkCnX39 mUTTIig8Nu1fWcFZAM38uX+tJ24fkrLUCDQW+A/WkwLbRFDDAn0P7fICpHwTFWCc W9pFo87RJef5LU257A8zwy/RQG1617dn0stKKzKax6shn/6PnHix15OSLOOds2Ts jCJs6dK5Ey/VFItXztWItp25mzDUP3Nw3Z8G4VF16XH5eP6RFqxNMlR1df23AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUigqb2Yk0IDT3zVX7GSLGZdbjpmUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDg1ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAEvdquxUsLqs1ae5Nhc2v9UhgkzLxYf6hXCT Ndc5OHNQK4DHdMFzx76Ag5HJMOP1J0GQPepxQ2nk7+tCZoiweJcOcKq8v6ZuVasG l1QJgjct6aYMDQtplPMZzm8R3k2nk1DNNnlaaZqITNnwwb6ss+T08qXIfdlyXOQR e0AxXNBS7vjxoQvLkT3LSpJCGCdZ3RWbM44wawif+524bDRII5vxPamGIbRtilyN +4m+F3g1OZSbjNgBAGWQSa1w6MpSloBUZhtuOXWiZiyOCcs8tBh3Y6UBO5RCCPfX ohrJ4779QVIj9Clhr8w7kIEHynEZoMZZ6LqQySyS9EhLZRAwcuY= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org