$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa File: AS59920.roa (raw, json) Hash identifier: iYMySqdoWTgSDuaMs7/LoasxgcHhK4Sa/djm94nWGJA= Subject key identifier: CA:14:3C:3E:70:B9:AE:5C:CF:A5:FB:F8:23:7E:29:1F:B2:25:C7:F7 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2E81928B611074EE2DF9FD6948B60F178270E563 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa Signing time: Tue 19 Dec 2023 17:43:34 +0000 ROA not before: Tue 19 Dec 2023 17:38:34 +0000 ROA not after: Tue 17 Dec 2024 17:43:34 +0000 asID: 59920 IP address blocks: 2a07:54c1:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:81:92:8b:61:10:74:ee:2d:f9:fd:69:48:b6:0f:17:82:70:e5:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 19 17:38:34 2023 GMT Not After : Dec 17 17:43:34 2024 GMT Subject: CN=CA143C3E70B9AE5CCFA5FBF8237E291FB225C7F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:4d:63:e7:37:e8:fd:13:6e:47:2a:4b:ad: 85:ac:e5:f2:58:f2:cf:f5:0d:6d:6f:2c:22:39:2d: c8:8f:08:c5:bf:6f:4c:a7:0c:d5:04:3c:00:d2:1b: 49:1d:34:91:26:9f:93:ed:1e:59:9e:9a:b0:25:78: b7:ae:5a:a7:a7:58:d5:31:39:26:95:32:a8:af:fc: 78:12:29:23:79:a8:5b:b7:84:9e:61:22:64:e2:23: 51:af:f4:d9:a6:61:a1:dd:4b:80:e8:cd:04:ba:9f: 5d:30:8d:d5:0a:02:39:3f:b9:c3:61:9d:7a:53:e2: fc:54:36:85:70:09:6f:7e:77:3c:c6:d2:2c:c5:d9: 5f:8c:43:b6:12:19:e3:6c:53:2f:57:78:3f:1f:e4: 7e:33:74:3e:12:61:5e:ae:c2:d3:ba:1e:12:1e:5e: bd:be:f8:33:a0:13:76:0a:f0:c3:74:94:06:e6:69: 4c:a0:65:ce:c2:d1:41:55:fa:89:49:6c:4c:06:d9: 51:b9:24:a9:3d:7d:ad:1d:87:e0:db:97:0b:57:de: ba:df:50:10:1c:6a:c5:88:e8:d9:ac:cd:59:77:93: bf:e9:40:9b:19:72:64:88:07:31:ab:d0:6c:80:16: d4:b5:c5:25:32:e4:59:ac:f4:2b:9a:21:0f:68:02: 1b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:14:3C:3E:70:B9:AE:5C:CF:A5:FB:F8:23:7E:29:1F:B2:25:C7:F7 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS59920.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:5000::/36 Signature Algorithm: sha256WithRSAEncryption 32:92:9d:7f:fe:ea:1c:10:3c:37:17:cc:04:79:ec:59:ba:4c: 3a:62:a8:43:54:f7:4e:c8:41:e3:dc:70:0e:b1:bd:33:a4:42: 28:27:25:2c:ba:86:56:da:5d:25:1f:bd:60:8e:c0:1f:89:7a: 57:60:bf:3f:a2:1c:80:65:38:4c:5e:a1:fa:b2:79:8a:ca:ec: 0c:64:70:50:35:6c:a2:69:8d:1d:72:e5:4f:8b:bc:cf:f5:43: da:4c:cb:f8:31:d6:d9:68:9c:d7:41:ca:0c:98:79:f1:12:47: d7:c7:b8:b2:10:e9:41:75:30:0e:bf:81:62:24:7b:9d:2f:5f: a9:95:93:8a:d0:03:97:e1:cf:18:54:14:50:b9:db:84:c5:21: d9:83:c0:02:1b:3a:53:51:f2:45:0f:82:4f:80:b7:bc:12:f2: 6a:1d:78:96:06:b6:27:22:c6:3c:5f:bd:a5:4e:d9:d6:52:b2: 3f:b4:d3:81:19:c6:bd:ba:cc:64:ca:99:4c:26:46:f2:e8:42: 9d:45:2b:75:be:32:c2:16:b0:7b:50:d6:a2:d9:e0:9c:17:22: 60:a6:4f:50:29:39:41:16:d0:7a:91:74:40:0f:2e:86:de:93: 73:66:78:60:bd:35:3b:4a:0e:7f:2a:4b:ac:46:f4:a9:f7:c4: a8:5d:82:45 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULoGSi2EQdO4t+f1pSLYPF4Jw5WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEyMTkxNzM4MzRaFw0yNDEyMTcxNzQzMzRaMDMxMTAvBgNV BAMTKENBMTQzQzNFNzBCOUFFNUNDRkE1RkJGODIzN0UyOTFGQjIyNUM3RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHyU1j5zfo/RNuRypLrYWs5fJY 8s/1DW1vLCI5LciPCMW/b0ynDNUEPADSG0kdNJEmn5PtHlmemrAleLeuWqenWNUx OSaVMqiv/HgSKSN5qFu3hJ5hImTiI1Gv9NmmYaHdS4DozQS6n10wjdUKAjk/ucNh nXpT4vxUNoVwCW9+dzzG0izF2V+MQ7YSGeNsUy9XeD8f5H4zdD4SYV6uwtO6HhIe Xr2++DOgE3YK8MN0lAbmaUygZc7C0UFV+olJbEwG2VG5JKk9fa0dh+DblwtX3rrf UBAcasWI6NmszVl3k7/pQJsZcmSIBzGr0GyAFtS1xSUy5Fms9CuaIQ9oAhvZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUyhQ8PnC5rlzPpfv4I34pH7Ilx/cwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTk5MjAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQqB1TB UDANBgkqhkiG9w0BAQsFAAOCAQEAMpKdf/7qHBA8NxfMBHnsWbpMOmKoQ1T3TshB 49xwDrG9M6RCKCclLLqGVtpdJR+9YI7AH4l6V2C/P6IcgGU4TF6h+rJ5isrsDGRw UDVsommNHXLlT4u8z/VD2kzL+DHW2Wic10HKDJh58RJH18e4shDpQXUwDr+BYiR7 nS9fqZWTitADl+HPGFQUULnbhMUh2YPAAhs6U1HyRQ+CT4C3vBLyah14lga2JyLG PF+9pU7Z1lKyP7TTgRnGvbrMZMqZTCZG8uhCnUUrdb4ywhawe1DWotngnBciYKZP UCk5QRbQepF0QA8uht6Tc2Z4YL01O0oOfypLrEb0qffEqF2CRQ== -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org