$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa File: AS924.roa (raw, json) Hash identifier: +nfXWRvQ8O5c+A0wRQbwMsZfJUMJrp8YSX2iGiB0jkQ= Subject key identifier: BE:C5:6E:C4:3A:66:37:3A:D5:3C:7B:C3:D7:6D:55:C6:A8:65:82:81 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7EB7359FDE8FA73A6D5B569829887DBE9CC4DFD8 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 924 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b7:35:9f:de:8f:a7:3a:6d:5b:56:98:29:88:7d:be:9c:c4:df:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=BEC56EC43A66373AD53C7BC3D76D55C6A8658281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fb:0d:4e:b7:8d:75:0e:82:96:4b:53:5b:ef: 70:87:83:6b:94:87:0b:3a:b6:0c:ef:59:00:c1:46: 61:8c:0a:f9:37:ca:af:42:06:86:79:cd:06:4d:db: 7e:cf:9e:b3:7b:46:96:e0:23:9d:c5:e2:ef:7e:b8: 2b:7b:a1:9a:62:4f:40:64:a9:bc:ee:9c:24:13:83: d1:e9:87:26:b1:1a:ca:fc:dd:6a:d3:4e:eb:ba:d3: e8:1d:1a:1d:0d:1e:8c:d7:04:d4:77:cd:4c:76:9a: 52:4c:09:e9:45:7d:9e:a9:46:b6:17:a5:2b:f2:fb: da:cc:e3:6b:74:ae:ff:df:22:e5:fc:0b:d6:c8:93: 65:9b:35:cb:90:c5:6e:72:35:21:9a:df:7c:b5:59: 30:6d:b8:4f:6c:82:49:d7:77:8e:9c:8d:01:a3:a0: c3:05:ac:d6:12:de:2a:9a:04:22:b9:9e:09:bf:71: 45:40:f8:e2:3b:68:39:10:bb:4c:bf:fd:9e:80:79: 37:10:45:f4:79:b8:58:d5:04:e9:93:d4:ee:e6:96: e9:1a:93:d0:9e:e7:be:27:55:7d:22:53:93:9a:63: aa:88:7a:62:d0:9a:86:d0:56:ce:8f:ca:19:0d:70: 4e:9f:0b:69:5e:8d:1c:4d:d4:13:a3:1a:9d:bd:ea: 55:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C5:6E:C4:3A:66:37:3A:D5:3C:7B:C3:D7:6D:55:C6:A8:65:82:81 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 4e:23:fc:33:29:f7:20:f5:87:a4:47:fa:fb:f7:fa:7e:06:a3: 89:95:71:a9:70:03:1f:d7:b7:0e:94:40:c1:48:50:0b:35:8f: 2b:53:3e:a0:5c:d1:78:bc:4a:fc:e3:22:1a:1c:bf:e7:71:68: f2:75:f6:b5:3c:cf:df:44:6a:6e:12:c2:a2:76:53:05:57:ff: 0b:ec:ab:e9:a3:03:b1:3f:ae:a8:80:fa:e2:34:da:e6:8f:3f: 8e:75:ea:88:b0:cb:95:36:be:fb:16:83:ec:3f:29:90:a4:33: d5:e2:43:ce:0d:5b:40:1d:fd:03:b5:c9:ed:da:36:66:24:b3: 59:57:50:c6:ed:c0:b3:b1:45:31:95:ab:10:f3:98:7e:b3:84: d7:9d:8c:67:c1:b9:f3:f7:ce:db:1a:46:ca:33:71:d7:69:d1: 58:5c:c6:83:31:77:9c:81:7d:25:b0:42:da:49:27:63:c8:e0: e5:0f:ef:96:9f:aa:82:a1:2f:7d:e1:ec:44:39:80:d8:08:28: e8:de:09:d1:5e:11:d9:0f:b7:46:f2:b0:b9:09:42:ee:9a:b9: 99:b3:4b:bd:8c:9a:c1:09:d4:18:85:f1:18:0a:f9:16:06:00: 4a:a1:66:d2:08:2f:30:12:17:c7:51:e5:f9:c4:e5:19:fa:8e: 81:68:9f:9c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUfrc1n96PpzptW1aYKYh9vpzE39gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEJFQzU2RUM0M0E2NjM3M0FENTNDN0JDM0Q3NkQ1NUM2QTg2NTgyODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm+w1Ot411DoKWS1Nb73CHg2uU hws6tgzvWQDBRmGMCvk3yq9CBoZ5zQZN237PnrN7RpbgI53F4u9+uCt7oZpiT0Bk qbzunCQTg9HphyaxGsr83WrTTuu60+gdGh0NHozXBNR3zUx2mlJMCelFfZ6pRrYX pSvy+9rM42t0rv/fIuX8C9bIk2WbNcuQxW5yNSGa33y1WTBtuE9sgknXd46cjQGj oMMFrNYS3iqaBCK5ngm/cUVA+OI7aDkQu0y//Z6AeTcQRfR5uFjVBOmT1O7mluka k9Ce574nVX0iU5OaY6qIemLQmobQVs6PyhkNcE6fC2lejRxN1BOjGp296lUvAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUvsVuxDpmNzrVPHvD121VxqhlgoEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTOTI0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwrAL MA0GCSqGSIb3DQEBCwUAA4IBAQBOI/wzKfcg9YekR/r79/p+BqOJlXGpcAMf17cO lEDBSFALNY8rUz6gXNF4vEr84yIaHL/ncWjydfa1PM/fRGpuEsKidlMFV/8L7Kvp owOxP66ogPriNNrmjz+OdeqIsMuVNr77FoPsPymQpDPV4kPODVtAHf0Dtcnt2jZm JLNZV1DG7cCzsUUxlasQ85h+s4TXnYxnwbnz987bGkbKM3HXadFYXMaDMXecgX0l sELaSSdjyODlD++Wn6qCoS994exEOYDYCCjo3gnRXhHZD7dG8rC5CULumrmZs0u9 jJrBCdQYhfEYCvkWBgBKoWbSCC8wEhfHUeX5xOUZ+o6BaJ+c -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org