$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa File: AS59920.roa (raw, json) Hash identifier: fkzk3oo1yS5645NOA+1/66Y8ny+PEazMAJ1A05azYWs= Subject key identifier: 4B:C7:AB:F5:6B:88:87:97:FC:58:FC:A5:6C:EE:73:B5:99:65:BA:AD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5B8444E58FD0DD3CFF41D400D8B84A1A1CBB2829 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa Signing time: Tue 19 Nov 2024 18:33:35 +0000 ROA not before: Tue 19 Nov 2024 18:28:35 +0000 ROA not after: Tue 18 Nov 2025 18:33:35 +0000 asID: 59920 IP address blocks: 2a07:54c1:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:84:44:e5:8f:d0:dd:3c:ff:41:d4:00:d8:b8:4a:1a:1c:bb:28:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Nov 19 18:28:35 2024 GMT Not After : Nov 18 18:33:35 2025 GMT Subject: CN=4BC7ABF56B888797FC58FCA56CEE73B59965BAAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:70:1e:ba:de:15:7f:f1:ab:3d:02:e7:04:8b: cc:8f:8c:4d:59:a4:33:94:28:57:47:04:6b:d1:7d: e7:47:00:d7:06:c8:95:a0:f2:bd:87:48:ca:78:54: 74:38:07:b9:14:0b:b1:00:13:dd:88:f5:12:57:9b: 0e:35:19:b9:bf:70:c2:2c:b9:fb:9f:05:bb:f1:40: 19:19:e3:89:d5:2b:69:de:25:07:19:50:45:f6:29: f7:7b:c7:b2:5a:c0:be:bb:6e:5f:9b:9f:9d:c2:91: 52:a5:98:4d:7f:d5:1d:25:b5:0c:be:ab:9c:be:68: dc:e6:60:f4:32:85:14:24:7c:56:c4:18:9f:cf:6c: 04:bb:b9:cd:a5:e9:9a:28:68:d8:93:a7:87:1c:80: c4:d3:6a:92:69:df:4e:1e:6d:bc:7d:b5:b3:f1:99: d2:20:57:a8:72:4c:a3:95:90:b3:4b:10:44:0e:71: 99:13:17:4a:81:87:5a:4e:3e:0d:f2:c8:16:c3:04: af:98:9d:53:37:8d:60:99:5b:8b:2a:81:cc:26:6c: d4:42:38:2a:ad:05:b2:1f:c2:18:62:81:6a:e5:ca: ed:4b:ae:96:03:95:4a:3c:e8:b8:e0:12:f5:e8:8b: ad:d5:91:ae:50:0f:d2:ff:f0:0a:34:23:2b:f7:11: 4c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C7:AB:F5:6B:88:87:97:FC:58:FC:A5:6C:EE:73:B5:99:65:BA:AD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:5000::/36 Signature Algorithm: sha256WithRSAEncryption 0b:0a:5b:67:62:19:7d:48:43:80:b9:00:73:5e:26:94:9a:69: ad:6b:27:99:00:92:38:53:54:20:a3:cd:4c:81:5f:c3:80:51: 7f:4f:e2:48:50:d7:87:0f:31:62:fb:73:d4:2b:7c:28:3f:08: e6:ac:56:75:36:8a:d4:8d:2f:e4:94:35:fc:c8:af:e8:1f:bb: 77:fc:fc:b1:f6:49:7c:14:d3:fc:da:36:87:2d:f1:ea:9d:a7: 6e:17:98:63:c4:b8:dd:ea:8c:b7:e0:1e:ea:dd:cd:e4:77:cb: ce:de:93:dd:1c:b7:94:16:f7:d8:6e:5b:c7:c3:ae:51:a1:25: ae:dd:a7:f6:43:7c:8f:78:fb:68:6d:76:5f:ca:8f:5b:18:d5: 46:17:f6:05:cc:f9:6c:5b:33:30:ac:48:7d:78:7c:23:8a:bf: bc:8a:36:20:56:f8:58:a4:d2:4c:99:df:17:53:07:35:bf:aa: 0d:eb:38:a8:e7:92:ca:37:e1:04:26:bc:5f:cc:b8:52:9b:b1: 89:a6:53:27:9e:6d:7e:3a:54:e1:dd:f4:b2:f0:df:0a:e4:2e: ad:07:e8:62:df:70:77:b6:c4:b1:37:08:3b:3e:86:0b:37:3a: 99:4c:85:4a:cb:64:5b:cf:55:af:86:20:96:0f:ea:05:b2:78: 8f:fa:a0:83 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUW4RE5Y/Q3Tz/QdQA2LhKGhy7KCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDExMTkxODI4MzVaFw0yNTExMTgxODMzMzVaMDMxMTAvBgNV BAMTKDRCQzdBQkY1NkI4ODg3OTdGQzU4RkNBNTZDRUU3M0I1OTk2NUJBQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1cB663hV/8as9AucEi8yPjE1Z pDOUKFdHBGvRfedHANcGyJWg8r2HSMp4VHQ4B7kUC7EAE92I9RJXmw41Gbm/cMIs ufufBbvxQBkZ44nVK2neJQcZUEX2Kfd7x7JawL67bl+bn53CkVKlmE1/1R0ltQy+ q5y+aNzmYPQyhRQkfFbEGJ/PbAS7uc2l6ZooaNiTp4ccgMTTapJp304ebbx9tbPx mdIgV6hyTKOVkLNLEEQOcZkTF0qBh1pOPg3yyBbDBK+YnVM3jWCZW4sqgcwmbNRC OCqtBbIfwhhigWrlyu1LrpYDlUo86LjgEvXoi63Vka5QD9L/8Ao0Iyv3EUy7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUS8er9WuIh5f8WPylbO5ztZlluq0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTk5MjAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQqB1TB UDANBgkqhkiG9w0BAQsFAAOCAQEACwpbZ2IZfUhDgLkAc14mlJpprWsnmQCSOFNU IKPNTIFfw4BRf0/iSFDXhw8xYvtz1Ct8KD8I5qxWdTaK1I0v5JQ1/Miv6B+7d/z8 sfZJfBTT/No2hy3x6p2nbheYY8S43eqMt+Ae6t3N5HfLzt6T3Ry3lBb32G5bx8Ou UaElrt2n9kN8j3j7aG12X8qPWxjVRhf2Bcz5bFszMKxIfXh8I4q/vIo2IFb4WKTS TJnfF1MHNb+qDes4qOeSyjfhBCa8X8y4UpuxiaZTJ55tfjpU4d30svDfCuQurQfo Yt9wd7bEsTcIOz6GCzc6mUyFSstkW89Vr4Yglg/qBbJ4j/qggw== -----END CERTIFICATE-----Generated at Sun Nov 24 10:00:15 2024 by rpki-client on console-ams.rpki-client.org