$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa File: AS52041.roa (raw, json) Hash identifier: Up214h+xkZHd0nUqSpznBADEDvIebb6Olqsi7LyQAgc= Subject key identifier: 1B:08:B9:0B:BC:4D:83:DA:35:21:5A:9D:40:58:2E:E4:20:43:76:77 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4D7D89EACDF275BB36B2F44CC0A5AEC3BEF50F21 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 52041 IP address blocks: 2a07:54c4:174c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7d:89:ea:cd:f2:75:bb:36:b2:f4:4c:c0:a5:ae:c3:be:f5:0f:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=1B08B90BBC4D83DA35215A9D40582EE420437677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:cb:91:cb:d1:e6:5f:48:26:1d:c5:d9:d3: 61:07:49:d4:06:c0:69:79:29:8f:4a:9f:26:7a:31: c7:d8:0b:f9:e7:14:de:12:36:aa:05:06:dc:e2:3e: 07:29:63:7f:27:19:09:ab:fa:05:1a:36:d1:b1:d8: c9:6a:db:76:3f:29:fe:61:a9:47:f6:dc:24:15:aa: 01:97:70:a2:a3:f5:3b:16:68:6e:14:10:9d:ac:3f: 69:54:b8:23:d2:3f:38:af:f3:e6:b5:6a:24:f4:8f: b8:7a:78:d4:9a:05:89:ad:be:f4:62:e2:2c:5f:a1: f2:f0:c0:05:9d:68:18:bf:53:c3:08:41:8e:6e:44: 2a:cf:94:2d:23:72:2f:92:fc:fe:a6:53:48:ec:75: 5c:24:d1:ce:cd:76:d4:3c:5b:09:97:c1:95:4c:a4: f8:94:b5:35:a3:f3:e8:00:18:e8:c0:00:24:36:de: 7c:01:aa:13:b2:42:02:ce:0c:9e:51:aa:8c:17:87: 8a:b6:58:cd:99:3e:54:6d:fb:e0:e1:f5:97:b9:17: e9:d5:d8:fc:e1:64:95:5e:eb:00:37:63:f0:2d:33: 41:be:15:f1:29:0d:08:43:5c:73:06:14:8f:79:ae: db:dc:73:f6:5c:14:d7:46:80:ea:3e:2a:64:ee:79: 8b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:08:B9:0B:BC:4D:83:DA:35:21:5A:9D:40:58:2E:E4:20:43:76:77 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174c::/48 Signature Algorithm: sha256WithRSAEncryption 8f:f1:0a:a6:04:84:cb:2e:ac:e3:35:ac:25:d1:41:6d:65:f1: 54:3a:3c:c6:1d:75:81:29:13:5c:16:96:5a:cb:32:95:21:a9: 72:7a:ec:84:c4:7b:f6:9b:00:ba:be:33:30:73:8a:75:04:46: 80:b5:fa:a1:29:46:9e:d7:89:4b:5b:bf:59:bb:22:be:0b:e9: 88:47:3b:b3:25:20:53:f9:09:48:17:50:60:ae:5a:15:4c:a4: 97:95:93:54:f3:eb:10:27:5e:df:1d:3d:c4:a9:63:cd:0d:65: eb:53:55:80:dd:7f:0b:77:c8:71:20:9a:d1:ce:01:88:1e:cf: 38:6c:8b:25:c1:1a:2c:51:99:17:08:88:d4:47:05:0b:7c:07: 91:c1:8e:70:ef:5d:18:6b:86:b8:0a:06:85:63:c8:6f:23:9d: bc:bf:68:9d:9f:03:61:d8:f9:98:2a:a6:ac:eb:c8:f2:55:a5: 7c:70:3e:96:24:ca:bf:44:26:71:81:41:04:8f:0b:96:0b:41: a9:97:71:08:48:67:2a:f1:a3:f1:34:dd:18:7a:81:80:cc:4a: 95:6f:4d:4b:2e:c0:76:66:07:a7:09:81:20:56:e3:4d:b7:fd: e0:a6:79:d5:d0:24:05:18:b9:7c:54:21:51:ab:2a:2a:98:ec: c5:57:d4:82 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTX2J6s3ydbs2svRMwKWuw771DyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDFCMDhCOTBCQkM0RDgzREEzNTIxNUE5RDQwNTgyRUU0MjA0Mzc2NzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvbMuRy9HmX0gmHcXZ02EHSdQG wGl5KY9KnyZ6McfYC/nnFN4SNqoFBtziPgcpY38nGQmr+gUaNtGx2Mlq23Y/Kf5h qUf23CQVqgGXcKKj9TsWaG4UEJ2sP2lUuCPSPziv8+a1aiT0j7h6eNSaBYmtvvRi 4ixfofLwwAWdaBi/U8MIQY5uRCrPlC0jci+S/P6mU0jsdVwk0c7NdtQ8WwmXwZVM pPiUtTWj8+gAGOjAACQ23nwBqhOyQgLODJ5RqowXh4q2WM2ZPlRt++Dh9Ze5F+nV 2PzhZJVe6wA3Y/AtM0G+FfEpDQhDXHMGFI95rtvcc/ZcFNdGgOo+KmTueYvRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGwi5C7xNg9o1IVqdQFgu5CBDdncwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTIwNDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0wwDQYJKoZIhvcNAQELBQADggEBAI/xCqYEhMsurOM1rCXRQW1l8VQ6PMYddYEp E1wWllrLMpUhqXJ67ITEe/abALq+MzBzinUERoC1+qEpRp7XiUtbv1m7Ir4L6YhH O7MlIFP5CUgXUGCuWhVMpJeVk1Tz6xAnXt8dPcSpY80NZetTVYDdfwt3yHEgmtHO AYgezzhsiyXBGixRmRcIiNRHBQt8B5HBjnDvXRhrhrgKBoVjyG8jnby/aJ2fA2HY +ZgqpqzryPJVpXxwPpYkyr9EJnGBQQSPC5YLQamXcQhIZyrxo/E03Rh6gYDMSpVv TUsuwHZmB6cJgSBW4023/eCmedXQJAUYuXxUIVGrKiqY7MVX1II= -----END CERTIFICATE-----Generated at Mon May 20 06:55:15 2024 by rpki-client on console-ams.rpki-client.org