$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa File: AS60841.roa (raw, json) Hash identifier: yZpmYF+auNrDWV1gVxMJUqJCAX0eOatq9nzf9zczcXI= Subject key identifier: 47:1B:C0:01:17:78:73:03:AB:96:97:78:6D:67:15:6D:18:BF:BD:32 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 189043733FEA5529FDF1CFE1D81FEFCA40F79777 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa Signing time: Thu 13 Mar 2025 03:06:26 +0000 ROA not before: Thu 13 Mar 2025 03:01:26 +0000 ROA not after: Thu 12 Mar 2026 03:06:26 +0000 asID: 60841 IP address blocks: 2a07:54c1:5000::/36 maxlen: 36 2a07:54c1:5000::/36 maxlen: 48 2a07:54c4:174a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 21:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:90:43:73:3f:ea:55:29:fd:f1:cf:e1:d8:1f:ef:ca:40:f7:97:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 13 03:01:26 2025 GMT Not After : Mar 12 03:06:26 2026 GMT Subject: CN=471BC00117787303AB9697786D67156D18BFBD32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:03:76:b3:b4:a5:1c:bd:8f:4f:be:82:44:43: 70:16:5b:d3:e6:bc:ca:57:b6:d5:53:ec:6d:80:68: 79:bd:53:cb:a3:97:d3:6e:3e:61:8a:6a:a9:99:85: 4b:3a:80:a6:e7:5f:cd:f6:d8:42:0c:f7:7e:61:54: 77:22:38:b9:45:d9:5c:4f:fe:43:14:9d:5f:88:dc: b5:13:05:db:01:33:19:1c:61:6b:10:ef:8a:bf:18: 09:1a:f3:80:e3:45:33:cd:58:a7:94:42:f3:ce:46: f7:79:04:d1:79:53:0f:9d:3c:ba:b8:44:48:43:c4: 66:86:07:e1:53:7c:0b:7a:5e:e7:cd:d2:07:80:a0: 86:bc:ec:af:03:37:88:6b:85:05:fa:b6:83:25:bc: c4:3b:6d:04:65:80:29:27:04:e9:8b:ce:67:6d:f9: 1f:13:fe:63:32:b4:73:50:f2:69:5e:fd:bb:98:a7: 2d:cc:a3:bf:ee:1a:da:84:43:eb:7a:4a:5b:3c:54: e0:5e:c4:63:fb:f9:19:06:ee:d9:4d:55:89:c9:a5: 51:ab:3c:d1:67:f3:4d:06:78:1a:e3:c3:81:88:e5: 3c:6f:fe:cc:2d:95:23:f4:6d:99:8d:2b:d9:d6:0c: bb:10:e1:18:00:21:88:c6:58:97:c1:6b:24:a3:5a: 2c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:1B:C0:01:17:78:73:03:AB:96:97:78:6D:67:15:6D:18:BF:BD:32 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:5000::/36 2a07:54c4:174a::/48 Signature Algorithm: sha256WithRSAEncryption 5b:80:96:81:99:cc:dd:a9:0b:78:46:94:13:00:94:46:f3:8a: e3:be:d0:a5:b4:3c:e6:66:11:09:27:f8:8f:55:b0:f1:5c:31: c3:87:12:40:b9:c7:41:eb:c7:1a:ad:38:95:66:18:7d:67:63: 94:50:18:94:ed:98:d3:53:53:6b:60:e6:53:d7:2a:1e:d4:2d: f8:dd:00:e5:d6:c7:f9:45:5d:ec:4d:7f:d1:de:e0:45:a3:86: 72:0c:53:00:5f:ab:44:9b:bc:f0:75:dd:d4:5f:f0:8a:69:2c: bb:76:e3:22:ac:e3:35:4a:40:bc:e8:c7:7f:ed:81:34:20:fa: 2a:76:13:77:1a:c1:52:16:15:2d:c8:1a:51:33:9a:c1:67:82: 05:b5:6e:ff:7b:0a:f3:02:d8:28:61:2d:c5:25:c8:f5:8c:4d: b5:55:58:36:c1:b7:94:cb:b1:03:e2:71:9d:f8:7e:c6:ba:1b: e9:3a:e1:8e:ad:d0:0b:0e:ef:93:e4:c9:38:d6:15:91:ea:b6: a0:00:d9:c1:aa:0c:b1:27:9a:1f:db:3a:dc:9e:4d:70:31:4f: 96:6f:18:68:6b:b8:55:bb:8f:4c:9b:b2:20:64:6b:22:41:07: 57:7a:7b:54:7d:50:e3:5d:54:b0:63:b4:61:d6:1e:15:f5:6e: a1:1c:1b:d1 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUGJBDcz/qVSn98c/h2B/vykD3l3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAzMTMwMzAxMjZaFw0yNjAzMTIwMzA2MjZaMDMxMTAvBgNV BAMTKDQ3MUJDMDAxMTc3ODczMDNBQjk2OTc3ODZENjcxNTZEMThCRkJEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9A3aztKUcvY9PvoJEQ3AWW9Pm vMpXttVT7G2AaHm9U8ujl9NuPmGKaqmZhUs6gKbnX8322EIM935hVHciOLlF2VxP /kMUnV+I3LUTBdsBMxkcYWsQ74q/GAka84DjRTPNWKeUQvPORvd5BNF5Uw+dPLq4 REhDxGaGB+FTfAt6XufN0geAoIa87K8DN4hrhQX6toMlvMQ7bQRlgCknBOmLzmdt +R8T/mMytHNQ8mle/buYpy3Mo7/uGtqEQ+t6Sls8VOBexGP7+RkG7tlNVYnJpVGr PNFn800GeBrjw4GI5Txv/swtlSP0bZmNK9nWDLsQ4RgAIYjGWJfBaySjWix3AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQURxvAARd4cwOrlpd4bWcVbRi/vTIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNjA4NDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBgQqB1TB UAMHACoHVMQXSjANBgkqhkiG9w0BAQsFAAOCAQEAW4CWgZnM3akLeEaUEwCURvOK 477QpbQ85mYRCSf4j1Ww8Vwxw4cSQLnHQevHGq04lWYYfWdjlFAYlO2Y01NTa2Dm U9cqHtQt+N0A5dbH+UVd7E1/0d7gRaOGcgxTAF+rRJu88HXd1F/wimksu3bjIqzj NUpAvOjHf+2BNCD6KnYTdxrBUhYVLcgaUTOawWeCBbVu/3sK8wLYKGEtxSXI9YxN tVVYNsG3lMuxA+Jxnfh+xrob6Trhjq3QCw7vk+TJONYVkeq2oADZwaoMsSeaH9s6 3J5NcDFPlm8YaGu4VbuPTJuyIGRrIkEHV3p7VH1Q411UsGO0YdYeFfVuoRwb0Q== -----END CERTIFICATE-----Generated at Thu Apr 3 07:05:27 2025 by rpki-client