$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa File: AS924.roa (raw, json) Hash identifier: rpLfGznBaHVAjr8dJpLJQoeKNaOVOqirs301uDMlVzY= Subject key identifier: FF:42:70:5F:E5:7D:AA:A0:4C:EB:C5:EF:59:BD:A2:C0:2C:A0:BC:F8 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1A8A3AF0F8BB211C363B5E191FF138EE7F00C724 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 924 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8a:3a:f0:f8:bb:21:1c:36:3b:5e:19:1f:f1:38:ee:7f:00:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=FF42705FE57DAAA04CEBC5EF59BDA2C02CA0BCF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c3:27:f7:eb:01:4c:6f:e7:bb:b8:cd:91:e7: bc:cc:e4:a8:fe:0c:8d:e9:10:59:09:d9:74:22:b1: 73:d0:f1:8e:9f:9b:64:cb:2e:d1:bf:69:0c:8c:a7: b2:72:d6:d9:91:45:f9:9a:b2:21:20:60:0b:16:2d: 3f:b1:5c:98:99:89:67:6a:60:fc:dc:e6:e9:6c:2c: 2c:14:32:75:7f:93:c4:5b:80:79:a3:a0:2f:8f:42: 0e:92:50:44:2d:30:b0:55:bb:7c:1d:cc:08:41:6b: 0a:f0:52:4a:b5:3d:f1:2b:1b:ff:6e:1a:4f:c5:a1: e7:da:68:d1:d6:7a:98:6c:b3:b6:45:a4:db:ee:9a: b0:b3:fc:a1:76:f9:df:5f:c5:83:a0:ae:58:0d:92: ba:19:d7:85:2a:0f:61:ea:fa:1e:bd:be:d4:8e:97: a5:a2:9b:44:5b:01:52:ae:a8:8b:d3:2c:e1:5d:85: 4c:1c:c5:46:4e:ce:47:8f:1e:eb:fc:0b:0e:ad:5a: 9a:a3:88:f0:e3:d5:c3:a4:27:df:e6:29:20:f0:7e: b3:4a:63:bf:55:30:14:b4:99:3d:31:aa:7b:8a:73: f6:e2:04:3f:30:ec:3d:0e:00:b3:46:b4:e9:a3:5d: 57:51:8b:7a:f7:a5:f6:dc:d2:6a:bd:04:27:0c:16: e8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:42:70:5F:E5:7D:AA:A0:4C:EB:C5:EF:59:BD:A2:C0:2C:A0:BC:F8 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 9f:6e:44:77:56:ec:42:97:1f:34:6a:e4:61:a4:c8:41:c3:56: c2:a1:43:0c:2a:ff:06:cc:49:95:70:5b:62:54:3e:91:89:30: ff:bf:32:40:e5:11:68:a1:5c:f9:5d:ac:02:c0:0a:47:9b:5c: 11:e4:b1:63:a5:3c:1f:69:37:3d:fe:8b:1a:be:5b:47:bf:8a: 21:4b:cf:51:29:58:50:11:5b:e2:8b:9e:ef:60:77:62:19:d8: 8b:bb:6e:09:23:01:b3:7d:18:60:85:49:7c:6e:ec:91:5a:c7: 2f:64:86:5e:af:62:85:e0:d3:cf:7e:d2:36:a7:4f:bb:2f:5b: 1b:6f:da:c0:27:15:eb:53:13:c0:3a:17:2c:54:2f:1e:6a:bd: cb:71:75:63:c9:af:70:fd:55:60:70:2a:43:48:09:80:91:c3: 74:33:6f:18:f9:f9:a8:56:9f:39:1d:23:c9:ca:fe:40:4e:d4: 39:ad:99:00:ce:c6:1e:fe:9f:83:06:e4:21:8b:c5:c6:00:39: 0f:65:8c:52:b0:39:59:d0:76:9d:0a:b3:c3:24:95:5d:27:dd: 9f:ae:5a:11:20:94:99:f5:dd:dc:fc:e5:58:7d:85:63:18:e9: 2f:fb:3c:56:3f:21:b8:ba:f1:ba:dc:99:aa:f6:ae:55:38:49: e9:b2:63:62 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUGoo68Pi7IRw2O14ZH/E47n8AxyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEZGNDI3MDVGRTU3REFBQTA0Q0VCQzVFRjU5QkRBMkMwMkNBMEJDRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwyf36wFMb+e7uM2R57zM5Kj+ DI3pEFkJ2XQisXPQ8Y6fm2TLLtG/aQyMp7Jy1tmRRfmasiEgYAsWLT+xXJiZiWdq YPzc5ulsLCwUMnV/k8RbgHmjoC+PQg6SUEQtMLBVu3wdzAhBawrwUkq1PfErG/9u Gk/FoefaaNHWephss7ZFpNvumrCz/KF2+d9fxYOgrlgNkroZ14UqD2Hq+h69vtSO l6Wim0RbAVKuqIvTLOFdhUwcxUZOzkePHuv8Cw6tWpqjiPDj1cOkJ9/mKSDwfrNK Y79VMBS0mT0xqnuKc/biBD8w7D0OALNGtOmjXVdRi3r3pfbc0mq9BCcMFuitAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU/0JwX+V9qqBM68XvWb2iwCygvPgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTOTI0LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwrAL MA0GCSqGSIb3DQEBCwUAA4IBAQCfbkR3VuxClx80auRhpMhBw1bCoUMMKv8GzEmV cFtiVD6RiTD/vzJA5RFooVz5XawCwApHm1wR5LFjpTwfaTc9/osavltHv4ohS89R KVhQEVvii57vYHdiGdiLu24JIwGzfRhghUl8buyRWscvZIZer2KF4NPPftI2p0+7 L1sbb9rAJxXrUxPAOhcsVC8ear3LcXVjya9w/VVgcCpDSAmAkcN0M28Y+fmoVp85 HSPJyv5ATtQ5rZkAzsYe/p+DBuQhi8XGADkPZYxSsDlZ0HadCrPDJJVdJ92frloR IJSZ9d3c/OVYfYVjGOkv+zxWPyG4uvG63Jmq9q5VOEnpsmNi -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org