$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59678.roa File: AS59678.roa (raw, json) Hash identifier: XdqLr0CbV6TihcnGWJEHPJDuaDz7mIMMqa99yVze3kE= Subject key identifier: 39:4B:05:56:4E:08:3B:45:28:A0:B7:84:64:FE:FD:44:87:C3:5A:5D Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 62925BF1AF257894BACF89C3B818917685D8BB70 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59678.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 59678 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:92:5b:f1:af:25:78:94:ba:cf:89:c3:b8:18:91:76:85:d8:bb:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=394B05564E083B4528A0B78464FEFD4487C35A5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:33:ed:1a:08:fa:b3:68:8f:8b:48:73:0b:c0: 96:64:ab:78:00:4a:e5:6a:bc:1d:8f:3f:52:c8:58: 6f:a7:05:5c:07:3a:7b:fa:5d:53:cd:5e:71:d0:c3: 6c:65:14:48:6c:c4:fe:7e:e4:55:7c:6a:ba:69:e0: 00:9f:81:9c:80:a9:8d:e7:ea:44:f6:e5:0b:8a:5e: 1c:c1:a3:8d:7b:8a:67:e8:5d:a1:02:1c:7b:db:52: 2b:60:ff:7e:15:26:48:45:1d:41:06:4b:c1:0e:e1: 51:3b:c9:69:67:b7:f9:cb:5c:a7:38:3c:2f:0b:0a: b0:5c:85:50:b6:97:39:38:cf:c1:c6:84:cd:68:0b: 12:52:ba:b6:18:32:b6:4b:5e:7e:e5:e4:56:cc:a6: 93:4b:61:3b:13:68:a5:3a:b8:ab:6b:d2:a3:05:77: f5:5d:32:8a:96:a6:89:6b:19:b1:35:8e:e3:15:70: fb:3b:bc:05:2d:17:6e:e2:e7:d1:0c:42:0a:50:9b: e4:44:7c:b7:95:c5:72:cb:06:e7:4b:06:aa:ac:81: dd:ac:ae:74:84:a8:f0:a3:51:de:79:31:74:63:3a: 55:3c:48:6c:2c:86:26:ba:c5:50:37:6f:ad:4e:6b: 7c:63:9a:82:63:28:0f:00:ae:0b:14:47:fa:24:23: 00:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4B:05:56:4E:08:3B:45:28:A0:B7:84:64:FE:FD:44:87:C3:5A:5D X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 70:7e:db:61:e5:f2:f8:74:78:a7:de:82:f5:a9:44:90:ad:52: b6:a7:12:af:3c:a7:9e:05:e0:8b:84:98:a6:3f:67:22:b0:ad: 96:ab:1f:f8:dd:76:02:5e:7f:5b:38:8c:61:f6:c9:66:4c:72: 75:12:3d:59:ca:4c:4c:c5:f6:08:df:59:05:f1:37:45:dd:9a: 6d:55:1f:05:0f:e4:39:ff:5b:bc:76:34:27:8a:3a:cb:3c:a2: 0e:b2:b1:07:5e:d5:8c:b8:cf:13:5a:d9:92:20:1a:38:d7:35: 9b:8c:93:8e:40:a0:ea:7e:9b:7b:bd:62:23:df:38:ea:45:d3: 25:50:32:ea:4e:5d:3f:30:19:64:a8:2d:09:7d:77:a5:7b:b2: 6d:4e:bd:52:9b:d8:eb:c5:b0:04:a2:95:98:20:66:1b:d7:c5: cb:0b:aa:b1:30:df:17:ba:e9:46:8a:af:2f:a6:35:1b:52:94: 99:2f:8c:7f:c0:34:e8:d1:e2:bc:e0:e0:b1:2c:ce:a6:f6:cc: 84:55:f2:bb:92:43:5f:7d:90:a6:c2:89:96:8f:e6:88:f9:d0: 85:26:1a:e0:00:77:ed:94:13:42:43:bb:76:e3:29:ac:36:09: 76:b8:42:bd:7b:da:66:86:37:e1:b6:b2:88:a4:c9:7b:f8:21: 3b:1d:b5:13 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYpJb8a8leJS6z4nDuBiRdoXYu3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDM5NEIwNTU2NEUwODNCNDUyOEEwQjc4NDY0RkVGRDQ0ODdDMzVBNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIM+0aCPqzaI+LSHMLwJZkq3gA SuVqvB2PP1LIWG+nBVwHOnv6XVPNXnHQw2xlFEhsxP5+5FV8arpp4ACfgZyAqY3n 6kT25QuKXhzBo417imfoXaECHHvbUitg/34VJkhFHUEGS8EO4VE7yWlnt/nLXKc4 PC8LCrBchVC2lzk4z8HGhM1oCxJSurYYMrZLXn7l5FbMppNLYTsTaKU6uKtr0qMF d/VdMoqWpolrGbE1juMVcPs7vAUtF27i59EMQgpQm+REfLeVxXLLBudLBqqsgd2s rnSEqPCjUd55MXRjOlU8SGwshia6xVA3b61Oa3xjmoJjKA8ArgsUR/okIwBXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOUsFVk4IO0UooLeEZP79RIfDWl0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTk2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAHB+22Hl8vh0eKfegvWpRJCtUranEq88p54F 4IuEmKY/ZyKwrZarH/jddgJef1s4jGH2yWZMcnUSPVnKTEzF9gjfWQXxN0Xdmm1V HwUP5Dn/W7x2NCeKOss8og6ysQde1Yy4zxNa2ZIgGjjXNZuMk45AoOp+m3u9YiPf OOpF0yVQMupOXT8wGWSoLQl9d6V7sm1OvVKb2OvFsASilZggZhvXxcsLqrEw3xe6 6UaKry+mNRtSlJkvjH/ANOjR4rzg4LEszqb2zIRV8ruSQ199kKbCiZaP5oj50IUm GuAAd+2UE0JDu3bjKaw2CXa4Qr172maGN+G2soikyXv4ITsdtRM= -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org