$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS56762.roa File: AS56762.roa (raw, json) Hash identifier: eTv5sNJKLj+z5BKqdF3w+EwR6N0hNrmwGaE+RjozXPQ= Subject key identifier: 1C:00:9E:B1:5C:0C:56:07:2F:11:4D:AD:80:5C:AC:49:3D:BA:1D:E3 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0742590FBF55BE32C176C1ACF61CF5FFCBB84D4B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS56762.roa Signing time: Mon 30 Sep 2024 21:32:56 +0000 ROA not before: Mon 30 Sep 2024 21:27:56 +0000 ROA not after: Mon 29 Sep 2025 21:32:56 +0000 asID: 56762 IP address blocks: 2a07:54c1:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 17:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:42:59:0f:bf:55:be:32:c1:76:c1:ac:f6:1c:f5:ff:cb:b8:4d:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 30 21:27:56 2024 GMT Not After : Sep 29 21:32:56 2025 GMT Subject: CN=1C009EB15C0C56072F114DAD805CAC493DBA1DE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:45:f7:2b:0e:26:5d:52:86:4c:51:b6:b5:ca: b6:6c:63:cc:9c:f4:ca:85:c3:3d:07:7f:ac:ef:16: 8e:60:0b:aa:bc:14:c2:7a:8b:f6:59:19:cf:9a:10: ef:31:cf:62:a4:ac:7b:08:ea:43:7f:e4:d2:62:b8: 30:12:aa:d6:74:ec:d8:01:df:f6:55:0e:84:d0:df: c9:27:05:e8:65:e4:7a:0d:c5:88:e0:fc:81:53:c7: 55:6c:00:44:08:26:34:ad:61:52:17:33:a2:97:9c: 45:25:ea:3b:e1:ee:02:4b:09:d7:5b:85:3d:17:6f: f5:2c:ad:52:25:d0:df:18:e9:fc:77:0e:43:a0:ac: f0:42:5f:27:5b:9c:a0:e1:42:91:95:1d:50:07:52: aa:f1:82:97:f8:e5:19:bd:6a:86:05:e7:46:64:4c: 0d:8b:fd:02:aa:ec:c2:1d:6d:7d:d4:a3:a7:30:e7: 76:10:5b:9b:f2:4d:f3:e6:3a:68:41:6b:16:40:ca: d4:b3:07:cf:b3:77:13:9e:a4:0b:47:72:d7:4d:51: f7:60:96:25:c4:2f:4a:d3:75:83:34:6d:6e:e8:a2: 37:1f:28:67:f5:f3:8a:86:8d:12:13:aa:62:30:08: 71:84:ad:cc:a8:bb:b6:dc:80:1e:a1:ca:79:94:21: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:00:9E:B1:5C:0C:56:07:2F:11:4D:AD:80:5C:AC:49:3D:BA:1D:E3 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS56762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4100::/40 Signature Algorithm: sha256WithRSAEncryption a3:5f:45:c0:55:36:ce:55:2a:34:46:70:eb:97:c1:8c:7b:ec: be:57:35:1b:65:e6:2a:b9:02:44:e6:16:b6:8c:66:fb:3c:b5: 2a:19:48:f5:96:69:46:98:d8:fb:0d:cb:ef:e6:16:f8:ad:b6: 92:3e:a1:a3:8a:b6:4e:5a:00:0a:10:dc:d7:1d:90:c5:96:1f: 2e:09:87:f1:51:22:6d:5e:98:5e:3f:1e:51:47:a7:d2:8d:73: b3:18:d6:95:29:a8:91:2d:10:87:de:21:39:72:30:73:77:34: a3:0d:ad:8d:78:8a:bd:9b:2e:d7:0f:78:c8:f4:19:d9:68:e5: 07:dd:a4:f2:01:f7:29:59:6e:b5:b7:74:6a:c3:0d:aa:92:9e: 86:5a:e1:e3:8f:10:b2:b9:cb:8e:05:f2:fe:82:61:fb:88:95: 82:bf:af:74:98:89:8b:b2:1f:00:5b:8b:91:6f:de:c8:1a:27: bc:8a:6d:b8:43:f1:b9:8d:6b:be:2d:37:3e:47:6c:49:a9:b6: c3:c1:9b:b1:ea:a7:d6:ff:71:68:6f:06:46:25:c2:ab:93:c0: a4:6e:64:bd:6a:4d:ad:ba:5e:85:d7:cf:27:ff:54:6f:b2:b4: 0c:80:a7:89:87:d5:e3:f9:d2:90:a5:bd:6e:88:93:a8:76:c4: 52:e0:ee:67 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUB0JZD79VvjLBdsGs9hz1/8u4TUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA5MzAyMTI3NTZaFw0yNTA5MjkyMTMyNTZaMDMxMTAvBgNV BAMTKDFDMDA5RUIxNUMwQzU2MDcyRjExNERBRDgwNUNBQzQ5M0RCQTFERTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkRfcrDiZdUoZMUba1yrZsY8yc 9MqFwz0Hf6zvFo5gC6q8FMJ6i/ZZGc+aEO8xz2KkrHsI6kN/5NJiuDASqtZ07NgB 3/ZVDoTQ38knBehl5HoNxYjg/IFTx1VsAEQIJjStYVIXM6KXnEUl6jvh7gJLCddb hT0Xb/UsrVIl0N8Y6fx3DkOgrPBCXydbnKDhQpGVHVAHUqrxgpf45Rm9aoYF50Zk TA2L/QKq7MIdbX3Uo6cw53YQW5vyTfPmOmhBaxZAytSzB8+zdxOepAtHctdNUfdg liXEL0rTdYM0bW7oojcfKGf184qGjRITqmIwCHGErcyou7bcgB6hynmUIYMDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHACesVwMVgcvEU2tgFysST26HeMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTY3NjIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TB QTANBgkqhkiG9w0BAQsFAAOCAQEAo19FwFU2zlUqNEZw65fBjHvsvlc1G2XmKrkC ROYWtoxm+zy1KhlI9ZZpRpjY+w3L7+YW+K22kj6ho4q2TloAChDc1x2QxZYfLgmH 8VEibV6YXj8eUUen0o1zsxjWlSmokS0Qh94hOXIwc3c0ow2tjXiKvZsu1w94yPQZ 2WjlB92k8gH3KVlutbd0asMNqpKehlrh448QsrnLjgXy/oJh+4iVgr+vdJiJi7If AFuLkW/eyBonvIptuEPxuY1rvi03PkdsSam2w8Gbseqn1v9xaG8GRiXCq5PApG5k vWpNrbpehdfPJ/9Ub7K0DICniYfV4/nSkKW9boiTqHbEUuDuZw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:13:12 2024 by rpki-client on console-ams.rpki-client.org