$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60379.roa File: AS60379.roa (raw, json) Hash identifier: dhM2ohvugLa2TVAfW9onG4ogJauHt0vrkIf9s36wGhk= Subject key identifier: 55:B0:60:86:90:95:F4:38:C7:FB:B2:A6:15:05:49:A8:F7:69:A1:53 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5F3398C7FC9ABEED454D145484C2564E7656624D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60379.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 60379 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:33:98:c7:fc:9a:be:ed:45:4d:14:54:84:c2:56:4e:76:56:62:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=55B060869095F438C7FBB2A6150549A8F769A153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9d:02:f1:f8:f2:c8:22:d2:8d:73:15:fc:74: e2:6d:d3:79:1b:f0:6d:bb:2b:f3:fb:28:2c:27:6d: 02:56:18:9d:c5:bd:68:34:99:03:88:84:f9:89:3d: c3:c5:0e:67:43:6e:31:89:26:f3:42:bb:83:35:5e: 16:9d:1e:42:e4:56:80:82:41:51:2c:15:91:01:f7: 88:84:98:4f:81:d3:78:75:3a:bd:bd:5c:52:5e:24: 51:49:d0:87:48:2d:d2:ed:51:cc:30:79:8e:97:b0: 33:85:8c:88:c1:84:85:7a:23:76:0f:29:86:2a:84: 96:f1:3e:c1:da:ad:d3:8a:c5:cd:b3:f6:85:9b:4f: 85:0d:78:03:4a:94:7f:57:66:89:62:06:4c:18:da: 6b:84:85:3f:21:1a:28:ea:04:b5:0e:36:ae:c8:7d: 78:cf:f6:83:fb:e0:aa:b3:9c:0d:c1:30:ca:13:06: f3:1f:8d:89:58:8e:d0:3c:96:55:69:e4:5a:5a:d6: 90:cb:02:fd:9c:fd:61:81:69:b1:17:40:39:79:8b: 9f:1a:83:49:92:4d:c9:95:27:ee:d4:1c:83:68:08: ff:d8:9f:d0:ad:9d:6c:95:e2:35:29:3e:c0:ab:a6: a7:70:b1:7d:90:5f:4b:c4:72:f5:b1:00:18:e6:47: 8b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B0:60:86:90:95:F4:38:C7:FB:B2:A6:15:05:49:A8:F7:69:A1:53 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60379.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 6d:40:fc:53:34:7b:e2:87:f1:b4:09:2b:9b:3e:48:67:e4:a7: 59:95:6d:83:1f:48:c1:da:ce:c2:01:72:74:d0:8d:37:4a:56: 02:38:f1:3d:e2:93:ff:52:b9:b8:29:20:9c:12:1a:0f:64:63: 0c:c0:b6:07:46:9c:58:c4:1e:18:1c:70:95:e6:2f:da:ca:dd: bb:d4:e6:e7:df:db:b8:38:75:31:61:16:62:0f:2f:7f:ef:96: 0a:f4:8c:7b:22:55:c8:e1:72:d6:d0:97:7f:db:61:6d:62:c7: 71:72:c4:83:62:8d:c5:0d:9b:c5:34:54:df:17:b6:71:74:0b: e6:c3:05:82:19:fc:ea:34:f0:1b:79:02:4d:1d:7b:1e:a2:52: 5d:05:dc:b0:11:d0:7a:ad:56:d1:0b:28:e8:8b:c5:f9:0a:22: 25:c4:c0:d8:ef:23:01:f1:a1:52:57:61:63:ce:28:4f:3e:80: 93:6b:dc:a7:6e:1a:55:47:3c:ab:7c:85:fa:a4:10:af:2f:fc: c0:8a:88:8d:91:79:61:55:0e:e1:28:e4:c6:82:2c:9d:05:e8: 3d:f5:d8:ca:ca:99:8d:ba:e8:60:30:04:7a:76:0d:db:df:3a: 8f:ec:e3:d8:5e:a9:54:11:6d:5d:d5:97:75:52:d8:45:31:20: a6:9e:2f:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXzOYx/yavu1FTRRUhMJWTnZWYk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDU1QjA2MDg2OTA5NUY0MzhDN0ZCQjJBNjE1MDU0OUE4Rjc2OUExNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9nQLx+PLIItKNcxX8dOJt03kb 8G27K/P7KCwnbQJWGJ3FvWg0mQOIhPmJPcPFDmdDbjGJJvNCu4M1XhadHkLkVoCC QVEsFZEB94iEmE+B03h1Or29XFJeJFFJ0IdILdLtUcwweY6XsDOFjIjBhIV6I3YP KYYqhJbxPsHardOKxc2z9oWbT4UNeANKlH9XZoliBkwY2muEhT8hGijqBLUONq7I fXjP9oP74KqznA3BMMoTBvMfjYlYjtA8llVp5Fpa1pDLAv2c/WGBabEXQDl5i58a g0mSTcmVJ+7UHINoCP/Yn9CtnWyV4jUpPsCrpqdwsX2QX0vEcvWxABjmR4vhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVbBghpCV9DjH+7KmFQVJqPdpoVMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNjAzNzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAG1A/FM0e+KH8bQJK5s+SGfkp1mVbYMfSMHa zsIBcnTQjTdKVgI48T3ik/9SubgpIJwSGg9kYwzAtgdGnFjEHhgccJXmL9rK3bvU 5uff27g4dTFhFmIPL3/vlgr0jHsiVcjhctbQl3/bYW1ix3FyxINijcUNm8U0VN8X tnF0C+bDBYIZ/Oo08Bt5Ak0dex6iUl0F3LAR0HqtVtELKOiLxfkKIiXEwNjvIwHx oVJXYWPOKE8+gJNr3KduGlVHPKt8hfqkEK8v/MCKiI2ReWFVDuEo5MaCLJ0F6D31 2MrKmY266GAwBHp2DdvfOo/s49heqVQRbV3Vl3VS2EUxIKaeL3k= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org