$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa File: AS52041.roa (raw, json) Hash identifier: ZHEbbmFzcCf+uSavzIfpTgSvBT+Eg0lfRWJt3mgdLFs= Subject key identifier: E6:06:0B:EC:0D:3D:1D:E0:6D:3C:25:7B:E5:BF:40:01:71:1A:9F:D9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 10A26AEAFCE76AA06DF8583B2956B5903F3F24A5 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 52041 IP address blocks: 2a07:54c4:174c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a2:6a:ea:fc:e7:6a:a0:6d:f8:58:3b:29:56:b5:90:3f:3f:24:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=E6060BEC0D3D1DE06D3C257BE5BF4001711A9FD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1d:4f:99:94:a7:10:8b:d8:61:7c:81:ce:c2: 3b:03:6c:c6:29:6a:47:b2:0e:01:d5:c4:30:e8:76: 1c:4c:66:9e:5c:fa:7b:e0:83:54:27:2f:c0:24:d5: 48:ef:54:0a:09:7c:52:20:71:fd:71:ab:5e:6a:ce: eb:cb:64:35:85:c2:f4:ea:b2:b3:dd:ad:24:a4:31: 38:19:bf:3d:be:8f:27:fb:ca:95:28:21:5c:61:b9: b0:b5:b1:22:95:48:59:6c:78:77:65:8a:17:c9:70: 37:b4:cd:96:b6:f5:25:c1:2a:02:28:97:02:77:cd: 01:8f:13:48:c1:bf:43:e6:7b:45:53:44:46:99:cf: 0a:3a:ff:6a:39:c5:9b:b8:43:23:00:e4:15:55:e3: df:34:59:cc:a7:63:98:81:1d:9c:6e:a8:e9:ba:b2: ad:f4:8d:3d:ee:32:b3:c4:3f:63:49:d0:54:18:64: 1a:72:56:6c:9b:28:0d:db:c2:c2:8a:b3:f7:8c:f0: 92:8f:cc:00:a4:73:bd:85:38:7f:39:5d:25:8f:70: d1:cb:81:bf:4f:37:bb:7a:d7:76:a0:23:ae:da:67: cd:29:ad:88:92:00:ba:cd:b3:22:07:2f:9b:ac:02: 1f:88:5b:2b:18:11:d7:ed:46:fc:68:29:fc:93:c7: ce:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:06:0B:EC:0D:3D:1D:E0:6D:3C:25:7B:E5:BF:40:01:71:1A:9F:D9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS52041.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174c::/48 Signature Algorithm: sha256WithRSAEncryption 20:f8:94:ec:7d:c2:78:ea:c0:8c:15:e7:8d:2d:0d:f1:e2:ff: 3d:e8:36:24:f9:3e:e2:07:bb:1c:ed:c8:ab:0e:29:1d:65:f1: 92:6d:b1:4f:85:55:4a:5e:41:56:64:36:bf:59:44:aa:40:e7: 19:ef:5d:66:67:8c:94:d5:d0:00:a2:c1:7d:cd:20:21:5d:82: ce:5d:b9:52:25:fb:d8:ea:bf:cf:57:7a:bd:45:86:42:31:89: 20:57:66:ef:ff:85:9d:de:99:9d:d3:f5:dc:56:32:ff:8e:59: 86:c4:c1:1e:31:a8:6f:67:3c:a1:5f:bd:b9:d5:2b:4d:c1:51: 65:70:39:c7:56:3d:3d:68:b7:be:c7:9c:a0:c7:3f:d7:3a:33: 47:f7:08:fe:51:d4:50:cb:31:c5:85:9c:ab:c4:c7:5f:ea:68: 63:dd:96:f6:0d:1c:90:5f:ca:8e:4e:24:2c:a6:1a:8b:74:32: 67:c8:41:9a:8c:8d:b0:78:99:55:fb:0d:d6:22:31:51:e5:5b: bf:53:e6:a2:30:da:af:07:2e:8f:64:3d:2b:df:d2:83:c5:80: 98:73:80:6c:95:44:90:c4:dd:69:0f:5d:8c:f6:36:bf:87:f3: 23:01:ce:72:20:cf:a6:b4:15:f6:c7:22:55:5b:91:ea:f1:8e: 06:f9:bd:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEKJq6vznaqBt+Fg7KVa1kD8/JKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKEU2MDYwQkVDMEQzRDFERTA2RDNDMjU3QkU1QkY0MDAxNzExQTlGRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPHU+ZlKcQi9hhfIHOwjsDbMYp akeyDgHVxDDodhxMZp5c+nvgg1QnL8Ak1UjvVAoJfFIgcf1xq15qzuvLZDWFwvTq srPdrSSkMTgZvz2+jyf7ypUoIVxhubC1sSKVSFlseHdlihfJcDe0zZa29SXBKgIo lwJ3zQGPE0jBv0Pme0VTREaZzwo6/2o5xZu4QyMA5BVV4980WcynY5iBHZxuqOm6 sq30jT3uMrPEP2NJ0FQYZBpyVmybKA3bwsKKs/eM8JKPzACkc72FOH85XSWPcNHL gb9PN7t613agI67aZ80prYiSALrNsyIHL5usAh+IWysYEdftRvxoKfyTx85hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5gYL7A09HeBtPCV75b9AAXEan9kwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTIwNDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0wwDQYJKoZIhvcNAQELBQADggEBACD4lOx9wnjqwIwV540tDfHi/z3oNiT5PuIH uxztyKsOKR1l8ZJtsU+FVUpeQVZkNr9ZRKpA5xnvXWZnjJTV0ACiwX3NICFdgs5d uVIl+9jqv89Xer1FhkIxiSBXZu//hZ3emZ3T9dxWMv+OWYbEwR4xqG9nPKFfvbnV K03BUWVwOcdWPT1ot77HnKDHP9c6M0f3CP5R1FDLMcWFnKvEx1/qaGPdlvYNHJBf yo5OJCymGot0MmfIQZqMjbB4mVX7DdYiMVHlW79T5qIw2q8HLo9kPSvf0oPFgJhz gGyVRJDE3WkPXYz2Nr+H8yMBznIgz6a0FfbHIlVbkerxjgb5vVU= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org