$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa File: AS60841.roa (raw, json) Hash identifier: jI5ZdnM4bv0xk0JR1YXSZUfbETgLSYYdWmayGivc2zk= Subject key identifier: 7C:80:9C:29:3F:44:AF:B8:B2:62:7A:31:1E:58:3D:23:46:F1:E4:51 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7A4E692DE702BEE88B46FC2BD111A125AE2850AF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa Signing time: Thu 11 Apr 2024 02:36:30 +0000 ROA not before: Thu 11 Apr 2024 02:31:30 +0000 ROA not after: Thu 10 Apr 2025 02:36:30 +0000 asID: 60841 IP address blocks: 2a07:54c1:5000::/36 maxlen: 36 2a07:54c1:5000::/36 maxlen: 48 2a07:54c4:174a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4e:69:2d:e7:02:be:e8:8b:46:fc:2b:d1:11:a1:25:ae:28:50:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Apr 11 02:31:30 2024 GMT Not After : Apr 10 02:36:30 2025 GMT Subject: CN=7C809C293F44AFB8B2627A311E583D2346F1E451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:dc:1a:7f:d2:97:78:8c:53:2e:27:f6:93: cc:f1:cb:ef:e3:05:8d:5e:71:8d:73:7e:76:10:9f: 4b:e1:37:f4:39:f3:3a:00:59:85:0e:34:84:b7:53: 44:1d:3e:6c:de:1a:1f:25:f1:86:8f:a1:1d:ed:2c: 0e:ac:42:3e:fd:05:d4:5e:bc:42:36:b0:92:86:9e: bf:dd:24:f5:39:23:03:a5:dd:dc:84:03:6a:56:fd: 4b:1f:5d:87:a7:5b:09:ce:39:79:0e:6b:b0:53:7b: 7b:ff:34:4c:bd:57:44:01:2c:41:10:c2:7d:2a:05: f8:0d:8a:bc:a4:4d:4f:bc:b7:fc:5d:77:8c:82:6f: 05:e2:78:8f:81:9e:3c:b2:3d:ae:06:f7:6b:25:ab: 7c:b1:18:78:92:5a:f7:c7:02:ed:db:01:8e:2b:ea: 47:0f:6b:d2:43:2a:12:2c:34:86:d4:54:1d:01:a0: 3a:e2:6b:ea:e7:c6:52:d4:f8:ab:d0:45:82:23:a8: 19:f7:97:01:b2:6a:79:ae:bc:b4:35:58:29:31:4e: 9d:15:8e:ec:54:c1:d9:43:05:97:ee:50:22:91:25: 6c:d9:4f:49:e1:3b:1e:c8:5d:fc:68:cf:e1:9a:3e: 8b:08:f1:a8:5d:f5:0b:37:6b:86:d9:71:18:c3:12: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:80:9C:29:3F:44:AF:B8:B2:62:7A:31:1E:58:3D:23:46:F1:E4:51 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:5000::/36 2a07:54c4:174a::/48 Signature Algorithm: sha256WithRSAEncryption 20:fe:29:a9:97:57:4b:f4:c2:c9:c5:3c:4a:6a:16:2c:08:75: df:c4:d8:6c:c6:19:d9:13:89:7a:82:01:54:11:31:e0:35:1a: dc:5a:a3:40:af:6b:73:1e:27:a8:a1:85:87:66:01:fc:5c:f1: f8:86:4c:dc:05:c0:ba:80:0e:9b:6a:9e:06:c5:b9:fe:fb:4a: 8b:0d:10:ca:1d:b1:ca:c7:78:e4:e1:e2:0c:bf:30:0b:05:cf: bd:9f:ea:19:4c:d2:60:70:ce:20:38:b0:88:65:54:68:dc:6e: 39:db:d4:d7:1b:f1:e7:53:73:10:fb:88:a0:3c:5a:bd:00:ae: b8:92:d4:5f:c6:a8:9f:37:8c:b3:f0:b5:fa:21:4d:43:df:90: 06:50:69:05:84:8d:2d:d1:a7:37:69:a5:c9:98:af:e7:3c:7a: 27:e8:f2:9c:81:af:ac:4d:aa:c4:56:15:d2:3e:33:6c:99:c0: 79:f9:0e:2d:1d:87:a9:b4:56:af:36:e5:d6:84:e8:11:3d:71: 77:b2:04:89:56:c8:a3:6f:bb:ea:bf:1b:55:aa:30:3c:a9:e2: da:90:2b:7b:91:85:09:9f:e5:e8:30:c5:f7:7f:d6:c1:59:a5: b2:f9:62:65:86:29:08:d9:4f:1e:4a:64:f6:14:c6:8d:cb:f9: 1c:f8:ec:e4 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUek5pLecCvuiLRvwr0RGhJa4oUK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA0MTEwMjMxMzBaFw0yNTA0MTAwMjM2MzBaMDMxMTAvBgNV BAMTKDdDODA5QzI5M0Y0NEFGQjhCMjYyN0EzMTFFNTgzRDIzNDZGMUU0NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHP9waf9KXeIxTLif2k8zxy+/j BY1ecY1zfnYQn0vhN/Q58zoAWYUONIS3U0QdPmzeGh8l8YaPoR3tLA6sQj79BdRe vEI2sJKGnr/dJPU5IwOl3dyEA2pW/UsfXYenWwnOOXkOa7BTe3v/NEy9V0QBLEEQ wn0qBfgNirykTU+8t/xdd4yCbwXieI+BnjyyPa4G92slq3yxGHiSWvfHAu3bAY4r 6kcPa9JDKhIsNIbUVB0BoDria+rnxlLU+KvQRYIjqBn3lwGyanmuvLQ1WCkxTp0V juxUwdlDBZfuUCKRJWzZT0nhOx7IXfxoz+GaPosI8ahd9Qs3a4bZcRjDEqHLAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUfICcKT9Er7iyYnoxHlg9I0bx5FEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNjA4NDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBgQqB1TB UAMHACoHVMQXSjANBgkqhkiG9w0BAQsFAAOCAQEAIP4pqZdXS/TCycU8SmoWLAh1 38TYbMYZ2ROJeoIBVBEx4DUa3FqjQK9rcx4nqKGFh2YB/Fzx+IZM3AXAuoAOm2qe BsW5/vtKiw0Qyh2xysd45OHiDL8wCwXPvZ/qGUzSYHDOIDiwiGVUaNxuOdvU1xvx 51NzEPuIoDxavQCuuJLUX8aonzeMs/C1+iFNQ9+QBlBpBYSNLdGnN2mlyZiv5zx6 J+jynIGvrE2qxFYV0j4zbJnAefkOLR2HqbRWrzbl1oToET1xd7IEiVbIo2+76r8b VaowPKni2pAre5GFCZ/l6DDF93/WwVmlsvliZYYpCNlPHkpk9hTGjcv5HPjs5A== -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org