$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS951.roa File: AS951.roa (raw, json) Hash identifier: U1uCv0QyhYS9kL+0iO0VbgxUw7ASttAYG41o52oJHnU= Subject key identifier: 52:7E:2F:7D:E9:D9:48:88:3D:9E:7C:5A:CC:CA:F9:B6:72:2F:DB:88 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4840CD4FCEA6A057BA25A5FA7063876BF6EBAFF3 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS951.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 951 IP address blocks: 2a07:54c4:1751::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:40:cd:4f:ce:a6:a0:57:ba:25:a5:fa:70:63:87:6b:f6:eb:af:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=527E2F7DE9D948883D9E7C5ACCCAF9B6722FDB88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:15:fc:35:77:b3:03:95:e0:09:48:57:51: 51:7d:8d:e5:94:42:f7:3f:a3:37:d9:0a:c4:90:8d: b0:c3:35:80:b7:90:ad:13:a0:ce:95:cf:10:81:50: ef:c6:a5:15:35:ea:bc:a7:37:9a:55:f0:27:60:db: 8d:14:7c:78:fa:ad:e1:e0:1f:42:52:c5:f1:b5:22: 5c:3a:2f:8a:4e:8b:db:ef:68:89:db:cb:c2:73:11: ef:b6:d0:1d:73:15:9a:c6:57:4c:fb:10:8f:8b:30: 17:8e:40:08:8e:cb:68:1a:ab:11:da:f9:60:00:e7: 73:8d:27:c4:0b:13:56:f3:84:ee:64:b4:ca:70:fe: 26:9c:35:dc:4f:25:2f:10:a8:8e:5a:39:3e:b0:93: 98:f2:fe:35:d8:b4:d1:04:19:9d:cc:8e:a1:6e:22: 66:c5:06:af:d8:c9:44:a8:e5:8e:24:b6:1e:f1:cd: 23:93:dd:d7:90:e6:57:80:02:ec:a8:d6:df:49:50: 2a:7b:78:43:27:cc:e4:9e:c2:04:08:9c:38:d8:aa: 30:d0:a7:3c:46:58:3b:0e:3c:7b:10:4a:87:d9:15: e8:1c:9e:fc:b8:a0:d7:54:d6:e4:3b:02:5f:27:fc: 6e:58:0e:c5:7d:d2:5b:39:30:f1:39:13:45:13:16: 2d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7E:2F:7D:E9:D9:48:88:3D:9E:7C:5A:CC:CA:F9:B6:72:2F:DB:88 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS951.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1751::/48 Signature Algorithm: sha256WithRSAEncryption 92:c1:55:bd:5a:17:be:7a:e1:2a:05:50:1e:27:25:a6:53:c4: df:12:63:77:26:43:d3:a9:4d:89:59:46:89:0d:6f:f3:cd:a3: 0b:03:f4:62:62:40:55:10:96:da:6d:ba:2c:26:c9:89:20:53: c1:a4:e3:f3:6b:2a:e7:10:4f:90:87:40:0b:64:5f:f9:d6:15: e7:ab:72:31:ad:b3:b9:bb:58:cc:b6:fd:9d:be:0c:7f:6c:28: 8c:07:a5:9c:cb:f1:00:b1:bb:22:88:8d:74:df:75:12:ee:ca: 2a:31:a8:32:c6:00:de:1f:1a:8c:62:f6:bd:ad:c5:d7:ba:07: a4:07:05:26:57:2d:56:37:ca:3b:e7:e9:b5:be:66:7c:71:4c: 70:6a:63:69:18:56:49:57:0a:cc:87:92:a6:5a:13:b5:7a:04: aa:1e:96:4e:0b:5b:f3:9d:28:04:15:61:d9:7f:00:d5:1d:87: 2e:5f:81:22:41:7d:5f:6c:8a:0f:bd:6a:b0:21:c6:d6:9a:b8: 40:75:c6:4b:45:76:cc:5f:6d:e9:a6:52:cd:d8:08:ef:11:34: 9b:1e:59:fb:05:96:29:cc:27:6b:51:32:28:72:b9:8b:44:3f: 0c:d5:39:c0:7e:db:5d:48:95:0e:b2:cc:9e:86:da:fc:c0:06: 4b:08:d5:5c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUSEDNT86moFe6JaX6cGOHa/brr/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTVaFw0yNTA4MTkwMjMxNTVaMDMxMTAvBgNV BAMTKDUyN0UyRjdERTlEOTQ4ODgzRDlFN0M1QUNDQ0FGOUI2NzIyRkRCODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1UxX8NXezA5XgCUhXUVF9jeWU Qvc/ozfZCsSQjbDDNYC3kK0ToM6VzxCBUO/GpRU16rynN5pV8Cdg240UfHj6reHg H0JSxfG1Ilw6L4pOi9vvaInby8JzEe+20B1zFZrGV0z7EI+LMBeOQAiOy2gaqxHa +WAA53ONJ8QLE1bzhO5ktMpw/iacNdxPJS8QqI5aOT6wk5jy/jXYtNEEGZ3MjqFu ImbFBq/YyUSo5Y4kth7xzSOT3deQ5leAAuyo1t9JUCp7eEMnzOSewgQInDjYqjDQ pzxGWDsOPHsQSofZFegcnvy4oNdU1uQ7Al8n/G5YDsV90ls5MPE5E0UTFi3ZAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUUn4vfenZSIg9nnxazMr5tnIv24gwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTOTUxLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUxBdR MA0GCSqGSIb3DQEBCwUAA4IBAQCSwVW9Whe+euEqBVAeJyWmU8TfEmN3JkPTqU2J WUaJDW/zzaMLA/RiYkBVEJbabbosJsmJIFPBpOPzayrnEE+Qh0ALZF/51hXnq3Ix rbO5u1jMtv2dvgx/bCiMB6Wcy/EAsbsiiI1033US7soqMagyxgDeHxqMYva9rcXX ugekBwUmVy1WN8o75+m1vmZ8cUxwamNpGFZJVwrMh5KmWhO1egSqHpZOC1vznSgE FWHZfwDVHYcuX4EiQX1fbIoPvWqwIcbWmrhAdcZLRXbMX23pplLN2AjvETSbHln7 BZYpzCdrUTIocrmLRD8M1TnAfttdSJUOssyehtr8wAZLCNVc -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org