$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS200201.roa File: AS200201.roa (raw, json) Hash identifier: OIHagIwGAyDkeGoGNIV0bwdhnH7EGau5W/E83fpjLqU= Subject key identifier: 5A:D3:D8:83:49:B1:9B:9D:82:D5:A8:49:77:6D:D6:A4:8B:C6:D9:C9 Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Certificate serial: 5431E6832EC013F57498E05F2416923EC95DF775 Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS200201.roa Signing time: Thu 29 Aug 2024 03:41:13 +0000 ROA not before: Thu 29 Aug 2024 03:36:13 +0000 ROA not after: Thu 28 Aug 2025 03:41:13 +0000 asID: 200201 IP address blocks: 2a0a:6044:b900::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:31:e6:83:2e:c0:13:f5:74:98:e0:5f:24:16:92:3e:c9:5d:f7:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503 Validity Not Before: Aug 29 03:36:13 2024 GMT Not After : Aug 28 03:41:13 2025 GMT Subject: CN=5AD3D88349B19B9D82D5A849776DD6A48BC6D9C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:28:a1:38:46:8f:a6:57:85:88:67:53:cb: ab:97:0e:68:09:ff:f7:b2:a0:68:07:67:10:87:a0: e3:5b:98:f1:6e:ca:a1:43:87:a0:7e:35:73:41:3b: 75:e7:d6:70:38:46:90:2f:50:f3:78:ef:85:50:5a: 2f:5a:bf:f3:e4:f7:c7:5f:ad:7f:21:9c:21:16:aa: f2:82:27:9d:f7:d8:70:fc:dc:93:7e:a7:f3:99:6d: ab:90:75:13:b2:41:6d:67:4f:1c:02:06:d9:5b:68: 0e:bb:3c:3c:0c:ce:b7:af:26:30:fa:cc:10:dc:6a: c8:55:de:6a:0c:bc:3e:6e:c5:6f:89:24:99:48:40: 4e:18:c2:53:47:97:e5:f7:1c:9a:5e:b8:22:5b:41: cf:f1:69:c4:bf:4c:10:cc:cb:04:8c:7d:09:41:22: 8a:32:79:5e:1e:cd:5f:ed:d9:d3:49:c5:96:d7:90: 05:9d:70:8f:81:3e:9c:bf:95:4d:44:8a:9c:c1:9d: ed:18:90:21:7a:96:3b:e8:d8:6e:c2:02:f5:b9:0f: 69:6d:1f:3e:36:4b:55:a8:b4:39:54:f3:8a:23:b6: d3:7f:a0:3c:d6:2e:07:e3:3d:44:37:30:e5:cd:58: cc:df:d0:17:d7:75:5a:9f:dd:c7:e3:96:34:4f:cc: bc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D3:D8:83:49:B1:9B:9D:82:D5:A8:49:77:6D:D6:A4:8B:C6:D9:C9 X509v3 Authority Key Identifier: keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS200201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b900::/40 Signature Algorithm: sha256WithRSAEncryption 7e:d3:96:14:11:f9:57:8d:1e:af:23:f7:e6:b5:83:c8:ed:63: db:2e:30:37:8b:0a:ae:f7:53:56:43:59:65:69:0a:8d:a6:00: 84:dc:75:02:eb:d4:aa:62:1f:25:1a:95:59:24:fc:1b:e0:ca: 7e:11:ee:cb:49:0d:78:89:7a:d2:93:ce:bf:1e:47:d8:2e:b4: de:78:71:75:66:d5:e6:0a:75:94:48:c4:f9:b2:4e:09:13:6a: 88:eb:8f:97:f6:5d:d8:48:b0:7f:46:93:0c:81:ca:35:bf:61: 61:76:db:0a:31:98:64:a7:fd:fa:ff:52:4e:03:c1:ae:1f:37: 0c:54:ba:31:73:fa:6e:62:9b:d2:ff:eb:57:2b:c8:e4:81:a1: c0:e4:bf:97:53:51:42:f1:42:7b:78:38:fe:39:1c:83:fa:65: 57:1c:d3:34:d0:66:06:12:6f:cd:52:fa:a7:f5:02:c8:f3:e5: e3:0d:38:30:f1:82:72:5b:c7:9f:86:a9:6f:f1:97:7a:02:b4: 4d:dd:e0:44:1c:6e:8c:9b:c1:1d:45:d7:56:da:df:28:b9:2d: 81:86:37:e5:82:e6:a5:86:eb:be:35:bd:29:fd:db:de:a4:88: 2a:d2:77:3f:c4:43:25:e1:d8:27:56:59:0d:bb:4e:0e:a8:82: a3:70:31:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVDHmgy7AE/V0mOBfJBaSPsld93UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD ODhGODUwMzAeFw0yNDA4MjkwMzM2MTNaFw0yNTA4MjgwMzQxMTNaMDMxMTAvBgNV BAMTKDVBRDNEODgzNDlCMTlCOUQ4MkQ1QTg0OTc3NkRENkE0OEJDNkQ5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7fCihOEaPpleFiGdTy6uXDmgJ //eyoGgHZxCHoONbmPFuyqFDh6B+NXNBO3Xn1nA4RpAvUPN474VQWi9av/Pk98df rX8hnCEWqvKCJ5332HD83JN+p/OZbauQdROyQW1nTxwCBtlbaA67PDwMzrevJjD6 zBDcashV3moMvD5uxW+JJJlIQE4YwlNHl+X3HJpeuCJbQc/xacS/TBDMywSMfQlB IooyeV4ezV/t2dNJxZbXkAWdcI+BPpy/lU1EipzBne0YkCF6ljvo2G7CAvW5D2lt Hz42S1WotDlU84ojttN/oDzWLgfjPUQ3MOXNWMzf0BfXdVqf3cfjljRPzLxJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWtPYg0mxm52C1ahJd23WpIvG2ckwHwYDVR0j BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjAwMjAxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg RLkwDQYJKoZIhvcNAQELBQADggEBAH7TlhQR+VeNHq8j9+a1g8jtY9suMDeLCq73 U1ZDWWVpCo2mAITcdQLr1KpiHyUalVkk/Bvgyn4R7stJDXiJetKTzr8eR9gutN54 cXVm1eYKdZRIxPmyTgkTaojrj5f2XdhIsH9GkwyByjW/YWF22woxmGSn/fr/Uk4D wa4fNwxUujFz+m5im9L/61cryOSBocDkv5dTUULxQnt4OP45HIP6ZVcc0zTQZgYS b81S+qf1Asjz5eMNODDxgnJbx5+GqW/xl3oCtE3d4EQcboybwR1F11ba3yi5LYGG N+WC5qWG6741vSn9296kiCrSdz/EQyXh2CdWWQ27Tg6ogqNwMbw= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org