$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60900.roa File: AS60900.roa (raw, json) Hash identifier: UU8s6sTWwyNQYS1/td1m68qWjE6Zvoyrcf9QD5cIffg= Subject key identifier: 72:C2:12:62:EB:8B:45:9D:AD:3B:4A:CC:AB:16:19:84:D5:A0:BA:E9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1151DF7CB1A7D404149E787A180E76E9E2E06FC3 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60900.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 60900 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:51:df:7c:b1:a7:d4:04:14:9e:78:7a:18:0e:76:e9:e2:e0:6f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=72C21262EB8B459DAD3B4ACCAB161984D5A0BAE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:70:c5:9a:20:31:df:f1:72:33:e3:0b:3e: 9a:d3:a1:65:d5:8f:9c:42:98:df:ab:f8:e9:cd:91: 78:30:7b:29:0d:f4:ba:19:3f:73:4f:e5:7e:9e:21: 18:5b:81:ac:6a:e2:c6:df:cd:ba:ef:6f:9d:1b:74: 26:f9:23:7f:d9:51:51:5c:99:4f:47:0a:80:89:bd: 16:60:c2:fd:13:29:ab:74:fd:61:82:ff:ba:4d:d0: 09:9f:0b:6d:4d:1b:f7:4e:6d:e2:02:20:8b:e2:98: b3:1f:4e:78:95:f0:88:92:39:c8:da:4d:4d:22:3d: dc:c5:22:38:aa:0c:32:41:2a:d3:8e:d4:1e:0e:52: 0e:d0:1c:48:34:4a:38:d0:78:ec:27:6e:d8:21:d2: b7:0f:b8:85:f9:9d:a8:f1:4d:f1:fe:e5:87:8c:6e: 67:11:3f:23:8f:ba:06:52:a3:1d:ef:5b:f3:ba:11: 5e:6b:7a:43:0a:9f:d9:ad:b8:e0:ab:92:26:29:41: 55:a4:e5:73:34:2f:bd:a1:b0:38:11:61:2e:90:96: 3e:9a:65:68:c0:5e:4f:d7:92:47:d8:d7:d1:a8:6d: f5:62:68:66:11:7a:77:5b:6b:c6:0e:74:8a:d3:a0: cd:fa:ed:f8:0e:86:af:f8:62:ab:43:49:20:e2:b6: bf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C2:12:62:EB:8B:45:9D:AD:3B:4A:CC:AB:16:19:84:D5:A0:BA:E9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS60900.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 41:59:05:9e:35:6e:2c:61:94:27:1f:14:f8:10:f0:33:ca:19: 2d:07:4d:af:98:98:c0:64:3e:d9:97:41:0f:82:0f:2c:cd:97: 50:33:73:a4:be:54:1f:9f:b2:7d:0f:91:f7:a3:ee:72:eb:1f: c5:14:6a:64:53:c7:d3:ff:b4:ee:95:dc:f4:03:c0:39:cc:c8: 56:51:2a:90:a7:cf:89:84:e6:37:29:1d:7f:dc:64:22:02:e0: 56:1b:f5:f8:d3:61:08:69:9d:52:82:4b:c7:79:ad:4b:c8:39: d1:42:17:07:66:9c:ac:ce:20:75:cb:68:5b:a3:6e:06:a2:af: 34:90:a3:8a:d5:c9:dc:43:0f:f5:7e:f5:d2:2f:49:16:b5:f1: 25:ab:3c:92:8d:51:b7:6a:c6:1d:45:c3:49:5a:62:a9:60:a1: 2e:02:7d:26:4e:20:eb:3a:5c:5b:d4:b5:48:c9:ff:9d:87:7e: 56:fe:89:1f:a3:7f:2b:93:a8:a2:5f:50:7d:94:46:58:c1:81: 6d:de:bb:50:5e:bd:6c:a8:0d:bf:f5:30:ed:bf:c2:16:14:e8: f7:43:ad:62:43:16:97:58:08:37:5d:1e:39:cd:bc:c1:cb:65: 4a:6b:ec:71:f0:3d:bf:3f:83:77:75:f2:05:1b:9d:91:fd:b7: 3d:07:ca:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEVHffLGn1AQUnnh6GA526eLgb8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDcyQzIxMjYyRUI4QjQ1OURBRDNCNEFDQ0FCMTYxOTg0RDVBMEJBRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC603DFmiAx3/FyM+MLPprToWXV j5xCmN+r+OnNkXgweykN9LoZP3NP5X6eIRhbgaxq4sbfzbrvb50bdCb5I3/ZUVFc mU9HCoCJvRZgwv0TKat0/WGC/7pN0AmfC21NG/dObeICIIvimLMfTniV8IiSOcja TU0iPdzFIjiqDDJBKtOO1B4OUg7QHEg0SjjQeOwnbtgh0rcPuIX5najxTfH+5YeM bmcRPyOPugZSox3vW/O6EV5rekMKn9mtuOCrkiYpQVWk5XM0L72hsDgRYS6Qlj6a ZWjAXk/XkkfY19GobfViaGYRendba8YOdIrToM367fgOhq/4YqtDSSDitr+xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcsISYuuLRZ2tO0rMqxYZhNWguukwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNjA5MDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAEFZBZ41bixhlCcfFPgQ8DPKGS0HTa+YmMBk PtmXQQ+CDyzNl1Azc6S+VB+fsn0Pkfej7nLrH8UUamRTx9P/tO6V3PQDwDnMyFZR KpCnz4mE5jcpHX/cZCIC4FYb9fjTYQhpnVKCS8d5rUvIOdFCFwdmnKzOIHXLaFuj bgairzSQo4rVydxDD/V+9dIvSRa18SWrPJKNUbdqxh1Fw0laYqlgoS4CfSZOIOs6 XFvUtUjJ/52Hflb+iR+jfyuTqKJfUH2URljBgW3eu1BevWyoDb/1MO2/whYU6PdD rWJDFpdYCDddHjnNvMHLZUpr7HHwPb8/g3d18gUbnZH9tz0Hyrs= -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org