$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54681.roa File: AS54681.roa (raw, json) Hash identifier: ypVkhw0umyzs1BxPJzNdBig4jNmre8DfGf5AT68Ci8I= Subject key identifier: 34:56:56:96:E9:FB:EB:BB:5C:25:DA:06:B7:C7:D3:C5:66:65:62:D5 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0A5A5BFB81503751D64D550A62026D468FBBA1B0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54681.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 54681 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:5a:5b:fb:81:50:37:51:d6:4d:55:0a:62:02:6d:46:8f:bb:a1:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=34565696E9FBEBBB5C25DA06B7C7D3C5666562D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:67:34:98:60:20:25:27:2d:c9:63:1d:31:dd: d9:92:42:d3:06:07:f2:76:c0:9a:3c:58:34:df:38: cb:a8:fa:f2:04:1c:e6:52:9c:57:e4:15:71:24:f9: 9e:17:71:c7:dc:09:98:69:b8:3e:99:68:31:88:47: ad:8b:d5:0f:65:12:b0:4d:e9:1f:e8:af:3c:b5:0c: 78:d8:8e:8c:58:a7:2d:03:b3:51:74:80:e3:a2:f9: 54:1c:5e:23:35:36:7f:9b:ee:86:17:ea:0b:06:7d: f4:53:ba:0f:75:67:ce:f6:69:17:52:c3:31:f2:12: 31:33:5b:3b:2b:36:12:2e:6c:04:17:b1:56:fb:57: 48:fd:9a:61:f9:a0:5b:c5:82:f8:7b:83:8e:8d:74: 06:80:8b:5a:08:22:ee:eb:a7:41:99:d6:a5:ad:21: 7e:ca:ed:fa:0f:37:a1:c7:09:c7:64:80:0d:c8:67: 4a:cb:93:94:3d:39:13:27:e6:0d:54:40:b5:46:c0: 7c:58:4b:83:6d:59:19:0b:f5:38:d5:8c:e0:65:de: 89:f8:49:d9:f8:5f:47:7b:d2:c3:81:2e:6f:f9:70: a0:26:f3:38:97:d1:5c:c7:e3:58:d8:31:a2:ed:0b: b4:ed:fb:c5:ee:d2:18:b6:a9:8f:be:6e:09:e0:5b: 32:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:56:56:96:E9:FB:EB:BB:5C:25:DA:06:B7:C7:D3:C5:66:65:62:D5 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:f000::/36 Signature Algorithm: sha256WithRSAEncryption 47:05:62:00:ec:58:2b:f5:ba:5f:19:69:da:ae:9c:52:55:36: 36:8f:57:13:ef:07:de:a6:a1:2a:42:ad:d6:15:fa:68:b6:2c: cb:ef:bf:00:51:a1:2a:3f:c8:3c:d1:0e:6e:4c:a2:08:61:bb: fd:a6:59:2d:e2:07:f5:34:22:54:df:6e:d1:c9:63:7b:60:17: f6:d3:e8:77:80:b2:f2:85:2f:fd:52:e2:2d:84:5f:7f:1e:14: 4a:0d:cd:b3:4f:c7:47:cb:a5:13:0b:fe:b2:87:cf:3e:25:56: 78:71:26:c1:1a:26:b6:f9:85:e1:ac:58:a4:01:b5:11:43:70: 63:f4:45:f9:a9:7c:c9:27:ca:2a:62:db:2b:2a:d6:df:dc:5a: 96:b2:1d:bb:b9:51:12:cd:e7:a1:00:39:38:14:4b:e7:15:eb: e2:15:da:6b:ad:ab:12:fd:22:d4:1d:e8:2c:e7:63:fb:7e:b4: d2:c5:5c:c1:54:07:94:25:31:86:df:19:91:48:9f:b8:fb:14: 24:b0:75:11:79:6f:9d:c2:1f:b0:e6:0a:b0:5b:d8:7d:cd:4a: 92:97:75:30:88:f8:de:96:b3:96:d1:e2:e5:d3:b6:af:14:87: 90:fa:b7:b8:8b:b8:fc:f9:26:0b:89:a4:eb:9d:f2:d3:7b:20: a1:3a:ba:ea -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUClpb+4FQN1HWTVUKYgJtRo+7obAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDM0NTY1Njk2RTlGQkVCQkI1QzI1REEwNkI3QzdEM0M1NjY2NTYyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeZzSYYCAlJy3JYx0x3dmSQtMG B/J2wJo8WDTfOMuo+vIEHOZSnFfkFXEk+Z4XccfcCZhpuD6ZaDGIR62L1Q9lErBN 6R/orzy1DHjYjoxYpy0Ds1F0gOOi+VQcXiM1Nn+b7oYX6gsGffRTug91Z872aRdS wzHyEjEzWzsrNhIubAQXsVb7V0j9mmH5oFvFgvh7g46NdAaAi1oIIu7rp0GZ1qWt IX7K7foPN6HHCcdkgA3IZ0rLk5Q9ORMn5g1UQLVGwHxYS4NtWRkL9TjVjOBl3on4 Sdn4X0d70sOBLm/5cKAm8ziX0VzH41jYMaLtC7Tt+8Xu0hi2qY++bgngWzJZAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUNFZWlun767tcJdoGt8fTxWZlYtUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTQ2ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwAqB1TC sAsDBgQqB1TE8DANBgkqhkiG9w0BAQsFAAOCAQEARwViAOxYK/W6Xxlp2q6cUlU2 No9XE+8H3qahKkKt1hX6aLYsy++/AFGhKj/IPNEObkyiCGG7/aZZLeIH9TQiVN9u 0clje2AX9tPod4Cy8oUv/VLiLYRffx4USg3Ns0/HR8ulEwv+sofPPiVWeHEmwRom tvmF4axYpAG1EUNwY/RF+al8ySfKKmLbKyrW39xalrIdu7lREs3noQA5OBRL5xXr 4hXaa62rEv0i1B3oLOdj+3600sVcwVQHlCUxht8ZkUifuPsUJLB1EXlvncIfsOYK sFvYfc1Kkpd1MIj43pazltHi5dO2rxSHkPq3uIu4/PkmC4mk653y03sgoTq66g== -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org