$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa File: AS50224.roa (raw, json) Hash identifier: aYtN06I2sXwamhoCBKsNtrBzhPxmX7JSATMvqHna7tU= Subject key identifier: 1A:1F:ED:6B:EC:E5:1A:43:5A:08:47:C9:28:63:08:65:CA:22:C0:9D Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 289F1E3F06BCE7E78191DE4BCE9CA0484757DA19 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 50224 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:9f:1e:3f:06:bc:e7:e7:81:91:de:4b:ce:9c:a0:48:47:57:da:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=1A1FED6BECE51A435A0847C928630865CA22C09D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:35:68:de:15:a8:31:a2:31:52:ca:93:5c:72: b9:da:b4:aa:ef:39:c8:7c:3b:e1:50:70:d9:29:c6: 69:9e:0d:75:2d:68:96:1b:5d:5c:c8:eb:e0:dd:60: af:5e:3e:e0:0e:ca:8e:17:2b:fb:bd:bf:c0:c0:6c: 87:cf:17:e5:ec:c4:26:0e:d9:aa:35:e6:79:19:dd: 3f:84:46:ef:f8:74:5e:f1:61:e7:16:8d:58:d2:c0: d9:22:6e:f0:14:f4:f5:19:6e:74:fb:c9:09:e0:7c: f1:14:99:13:f8:f9:ca:0e:cc:b2:76:52:74:84:8e: 69:f2:24:ad:63:94:39:f5:12:e3:85:8d:21:6c:4c: 23:44:cb:c4:2d:ec:07:d4:15:67:64:f5:e7:f6:e5: 70:0a:47:7d:1e:26:ad:a0:cb:74:ff:ef:dd:51:90: 0a:e5:9a:ca:45:93:e1:a5:23:36:79:9b:cd:1f:c7: 1d:1b:d0:e9:fa:85:59:c5:03:31:2f:d2:9e:fa:c4: 26:d6:48:c4:4b:cc:eb:f4:ae:61:8b:74:3d:f7:e8: 31:07:be:4c:e5:30:7e:b6:86:41:f0:7a:8c:c0:32: af:91:b8:bf:51:a6:9d:a6:30:46:a4:97:01:4e:1f: e9:59:8b:b4:1a:d4:cb:11:46:6d:46:6c:43:1e:93: a8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1F:ED:6B:EC:E5:1A:43:5A:08:47:C9:28:63:08:65:CA:22:C0:9D X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 57:d2:f7:89:cd:93:ea:89:51:43:18:75:0c:19:8c:53:db:32: a1:89:f9:35:e9:16:0a:1b:01:d8:35:c6:39:82:3c:0a:f2:e5: 8d:9c:8d:b9:ee:ac:fa:e5:67:02:7b:cd:ef:1c:a7:d4:06:dd: 80:db:d9:85:c6:eb:d4:c6:eb:7e:d2:7b:d8:f7:d4:b4:a3:68: 0f:af:13:96:85:ef:62:8f:0b:42:35:c8:7b:aa:28:b7:6a:63: b4:9a:44:b2:d9:4b:5c:12:5d:22:15:96:76:91:18:ab:82:1e: 75:53:ea:99:d5:cc:5d:5d:7c:9d:bb:fa:48:0f:98:05:f6:d8: 4b:42:05:ce:9f:7e:ab:fc:94:49:30:b6:7e:10:56:46:f7:93: 3d:89:b4:33:7f:0c:a3:bf:61:0e:09:95:c4:b9:9b:1a:1e:64: 1c:ef:b7:17:29:c4:ec:3f:c8:38:6b:aa:36:6a:71:23:fd:2d: cb:a5:19:0b:af:24:a7:a2:39:1d:ef:a0:d2:9c:93:7e:15:76: e7:bc:08:f2:30:e8:8b:8e:3a:70:78:5e:b0:b2:8d:cc:4d:95: c9:16:83:75:7b:1e:53:63:1f:bc:75:68:a1:13:19:0b:ee:e5: b9:9d:24:2b:22:a2:ba:20:18:74:a9:87:57:44:3e:bb:55:d1: d6:ba:79:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKJ8ePwa85+eBkd5LzpygSEdX2hkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKDFBMUZFRDZCRUNFNTFBNDM1QTA4NDdDOTI4NjMwODY1Q0EyMkMwOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPNWjeFagxojFSypNccrnatKrv Och8O+FQcNkpxmmeDXUtaJYbXVzI6+DdYK9ePuAOyo4XK/u9v8DAbIfPF+XsxCYO 2ao15nkZ3T+ERu/4dF7xYecWjVjSwNkibvAU9PUZbnT7yQngfPEUmRP4+coOzLJ2 UnSEjmnyJK1jlDn1EuOFjSFsTCNEy8Qt7AfUFWdk9ef25XAKR30eJq2gy3T/791R kArlmspFk+GlIzZ5m80fxx0b0On6hVnFAzEv0p76xCbWSMRLzOv0rmGLdD336DEH vkzlMH62hkHweozAMq+RuL9Rpp2mMEaklwFOH+lZi7Qa1MsRRm1GbEMek6ixAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGh/ta+zlGkNaCEfJKGMIZcoiwJ0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTAyMjQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAFfS94nNk+qJUUMYdQwZjFPbMqGJ+TXpFgob Adg1xjmCPAry5Y2cjbnurPrlZwJ7ze8cp9QG3YDb2YXG69TG637Se9j31LSjaA+v E5aF72KPC0I1yHuqKLdqY7SaRLLZS1wSXSIVlnaRGKuCHnVT6pnVzF1dfJ27+kgP mAX22EtCBc6ffqv8lEkwtn4QVkb3kz2JtDN/DKO/YQ4JlcS5mxoeZBzvtxcpxOw/ yDhrqjZqcSP9LculGQuvJKeiOR3voNKck34Vdue8CPIw6IuOOnB4XrCyjcxNlckW g3V7HlNjH7x1aKETGQvu5bmdJCsiorogGHSph1dEPrtV0da6eTU= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org