$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa File: AS51019.roa (raw, json) Hash identifier: 9X9IZcWGaECRsk6SDfVKuvkyn9Kdbps1lNlMmwzsae8= Subject key identifier: 22:27:6C:DC:A4:BB:0A:75:DC:0D:A2:3A:CC:06:DF:B4:B3:40:F9:81 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3E9EEE3166DBBB4B01412780F2A50F95E1A19B30 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa Signing time: Thu 03 Oct 2024 03:00:03 +0000 ROA not before: Thu 03 Oct 2024 02:55:03 +0000 ROA not after: Thu 02 Oct 2025 03:00:03 +0000 asID: 51019 IP address blocks: 160.202.134.0/24 maxlen: 24 2a07:54c4:121a::/48 maxlen: 48 2a07:54c4:175c::/48 maxlen: 48 2a07:54c4:175d::/48 maxlen: 48 2a07:54c4:175e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 17:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:9e:ee:31:66:db:bb:4b:01:41:27:80:f2:a5:0f:95:e1:a1:9b:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Oct 3 02:55:03 2024 GMT Not After : Oct 2 03:00:03 2025 GMT Subject: CN=22276CDCA4BB0A75DC0DA23ACC06DFB4B340F981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:13:f8:82:fd:48:a1:cc:9d:ec:a4:49:d9: f9:b6:ed:70:5b:e3:1d:89:64:6b:5e:ba:eb:87:80: ad:41:70:de:6f:f4:e4:0a:f0:c2:7b:20:1d:0c:5b: ec:f6:f0:68:bd:78:53:a7:46:d2:c1:79:63:30:42: cf:3c:fe:ff:26:1d:bf:9e:14:a7:44:f1:d6:da:57: af:26:64:79:88:da:9e:c3:1b:3e:4c:60:b3:37:81: f6:25:22:7b:2d:72:18:95:fc:f3:2b:6a:1a:81:bd: ce:d3:f4:6e:0e:a0:2e:b1:29:a0:c2:69:7c:d5:f2: 71:06:5b:b0:ed:4c:ca:1a:a3:71:c6:6a:4f:4f:6f: f4:55:56:df:48:86:a8:f1:83:b9:b0:fa:68:55:16: 1b:46:36:14:ab:aa:32:61:fd:84:33:33:d0:e3:bd: 89:64:62:41:5b:28:06:1e:49:26:31:1a:13:b4:00: 85:7e:f8:91:68:6a:00:b2:6e:71:1a:66:37:18:d4: 3b:a9:ff:34:c3:c8:88:d4:c7:88:d1:a4:bc:67:72: 01:74:dd:b9:0d:da:33:98:78:d6:2c:f2:f6:67:17: 9b:5d:26:6d:b9:d2:63:77:d9:e0:e8:4d:eb:82:09: b8:6c:23:7a:1c:97:4e:4b:ef:54:3e:ba:b2:6e:5f: 36:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:27:6C:DC:A4:BB:0A:75:DC:0D:A2:3A:CC:06:DF:B4:B3:40:F9:81 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS51019.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.202.134.0/24 IPv6: 2a07:54c4:121a::/48 2a07:54c4:175c::-2a07:54c4:175e:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1f:c8:82:24:fb:79:16:17:b1:26:7f:0d:b1:5a:de:38:ae:2f: 39:dc:1d:dc:ec:b3:bf:0c:b2:2e:75:42:51:d9:62:26:86:72: 75:65:5a:79:99:98:ce:a6:e2:c5:0e:ff:4d:bc:a0:2d:83:2e: bc:22:52:7e:4f:3c:e0:f5:be:b1:26:41:01:8c:90:99:82:5d: b3:4d:81:69:72:49:b4:12:ca:d1:2a:3d:a3:dd:bb:7a:c4:b3: 71:70:85:d8:89:e7:58:c1:bb:ed:1c:2a:00:29:47:62:ef:19: a3:85:33:c6:31:6e:d0:2e:bc:64:46:7a:e3:5a:dd:7a:68:c0: c7:6d:fc:2c:54:87:d6:04:3e:67:7a:62:1e:ad:4b:24:5b:61: d6:f0:ea:04:4f:c4:52:1e:84:4f:86:f9:9a:c0:a1:6f:40:9c: 05:88:16:8b:80:1b:4d:57:d2:6b:6b:3b:27:24:35:1a:e8:77: 54:64:14:14:95:ff:9b:bf:0b:3e:29:2f:de:67:73:78:14:5f: b9:75:e3:a5:c8:b5:75:08:68:1a:ee:30:9a:c8:b4:48:af:ea: 72:c2:81:51:0c:80:76:e8:4f:a2:eb:23:e8:b7:07:5c:f0:af: dc:93:4b:f2:e3:47:75:8b:cc:35:0e:51:cd:d0:00:a4:24:51: 13:86:3d:ec -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUPp7uMWbbu0sBQSeA8qUPleGhmzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDEwMDMwMjU1MDNaFw0yNTEwMDIwMzAwMDNaMDMxMTAvBgNV BAMTKDIyMjc2Q0RDQTRCQjBBNzVEQzBEQTIzQUNDMDZERkI0QjM0MEY5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC50BP4gv1Iocyd7KRJ2fm27XBb 4x2JZGteuuuHgK1BcN5v9OQK8MJ7IB0MW+z28Gi9eFOnRtLBeWMwQs88/v8mHb+e FKdE8dbaV68mZHmI2p7DGz5MYLM3gfYlInstchiV/PMrahqBvc7T9G4OoC6xKaDC aXzV8nEGW7DtTMoao3HGak9Pb/RVVt9Ihqjxg7mw+mhVFhtGNhSrqjJh/YQzM9Dj vYlkYkFbKAYeSSYxGhO0AIV++JFoagCybnEaZjcY1Dup/zTDyIjUx4jRpLxncgF0 3bkN2jOYeNYs8vZnF5tdJm250mN32eDoTeuCCbhsI3ocl05L71Q+urJuXzbJAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUIids3KS7CnXcDaI6zAbftLNA+YEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTEwMTkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwRAYIKwYBBQUHAQcBAf8ENTAzMAwEAgABMAYDBACgyoYw IwQCAAIwHQMHACoHVMQSGjASAwcCKgdUxBdcAwcAKgdUxBdeMA0GCSqGSIb3DQEB CwUAA4IBAQAfyIIk+3kWF7Emfw2xWt44ri853B3c7LO/DLIudUJR2WImhnJ1ZVp5 mZjOpuLFDv9NvKAtgy68IlJ+Tzzg9b6xJkEBjJCZgl2zTYFpckm0EsrRKj2j3bt6 xLNxcIXYiedYwbvtHCoAKUdi7xmjhTPGMW7QLrxkRnrjWt16aMDHbfwsVIfWBD5n emIerUskW2HW8OoET8RSHoRPhvmawKFvQJwFiBaLgBtNV9JrazsnJDUa6HdUZBQU lf+bvws+KS/eZ3N4FF+5deOlyLV1CGga7jCayLRIr+pywoFRDIB26E+i6yPotwdc 8K/ck0vy40d1i8w1DlHN0ACkJFEThj3s -----END CERTIFICATE-----Generated at Fri Nov 22 23:43:15 2024 by rpki-client on console-fra.rpki-client.org