$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS147020.roa File: AS147020.roa (raw, json) Hash identifier: z35Ms9UmZC4Ciluj0Vig6U3VvpiqYBqOiRPoip9rSDE= Subject key identifier: 88:73:55:CE:EB:89:72:46:C8:E3:D6:DE:D8:D8:F4:FA:2F:06:90:82 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0F1CBCEB66DA9ECF1B1C05F2A8DC985FB15AE871 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS147020.roa Signing time: Tue 19 Sep 2023 02:14:59 +0000 ROA not before: Tue 19 Sep 2023 02:09:59 +0000 ROA not after: Tue 17 Sep 2024 02:14:59 +0000 asID: 147020 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1c:bc:eb:66:da:9e:cf:1b:1c:05:f2:a8:dc:98:5f:b1:5a:e8:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:59 2023 GMT Not After : Sep 17 02:14:59 2024 GMT Subject: CN=887355CEEB897246C8E3D6DED8D8F4FA2F069082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:62:9d:7c:8c:fd:ab:d4:48:09:4d:bb:3c: 38:4b:eb:fb:ae:32:0b:1d:2e:02:b1:e3:b5:da:57: 81:05:bc:a9:0e:9d:f3:85:ef:3f:a8:a8:72:ba:ce: 56:a2:85:cb:ca:a8:f1:af:18:8c:a1:74:ed:35:4a: 44:b0:9f:20:5c:ab:c9:d2:54:cb:69:7f:3e:71:c7: bd:ba:6d:ed:4b:c5:c2:8a:1f:0f:10:17:85:85:53: 8b:ab:ed:8b:bc:49:0d:fe:9b:29:59:f2:c3:7c:b1: 59:7f:cf:a5:19:3c:65:cf:22:23:f0:e7:b1:f8:eb: 03:31:01:67:77:e4:bd:34:12:7e:2d:5a:3f:b9:05: 4b:7f:8e:17:2e:83:c6:dc:17:cc:90:ad:a5:6f:ad: 48:ae:bd:18:4b:48:81:93:60:53:c0:70:cd:ae:d4: 0a:e1:fb:cb:59:72:b2:b5:f2:d2:79:d8:32:e2:96: 3d:e7:10:0f:74:61:0c:4b:c1:2b:02:38:e7:2c:3e: 49:e1:8b:99:fb:c0:1a:f2:a6:59:f5:51:12:07:e9: 54:03:d7:84:f8:6b:dc:bc:f3:42:af:7b:f0:6c:49: ec:68:63:30:b8:79:fc:11:7f:30:2f:51:3e:1f:92: e0:59:2b:8e:bc:e2:63:c9:9e:4a:5b:c9:21:bd:01: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:73:55:CE:EB:89:72:46:C8:E3:D6:DE:D8:D8:F4:FA:2F:06:90:82 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS147020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a4:5c:1c:af:22:09:3a:a7:8a:bb:a6:82:8d:6d:22:64:db:e7: e2:11:16:49:11:5f:d7:95:0d:2a:93:d3:4f:0d:f4:ca:fb:01: b5:78:62:93:ec:51:f8:5b:4f:d7:2a:32:cd:92:29:de:6c:4b: a9:b0:fa:ca:14:3c:13:c1:a4:88:19:21:3f:38:e9:4a:ca:ef: 81:a6:b4:f4:5e:56:28:c0:3f:78:53:4f:2c:fc:34:81:8e:42: 72:1f:01:7d:0d:58:56:7c:ce:bd:3f:d9:27:ec:7b:e9:dd:21: be:8e:d7:ee:f4:ed:18:92:c4:4f:8f:12:27:0b:3d:e9:ec:30: 69:8a:84:05:c4:47:ba:cc:a4:7a:67:e2:b8:24:5c:9f:db:6c: 6c:c5:8d:55:4f:60:5d:08:80:4b:2b:81:68:ba:0b:72:50:e6: f5:78:2f:21:87:ba:b4:b9:a1:0a:ef:38:09:16:7a:2b:82:30: 1d:57:57:41:27:49:df:81:1a:78:f3:27:7a:50:f0:6e:4b:81: 4e:ba:73:14:c3:05:1b:9d:08:c0:72:87:1a:db:fb:2e:18:b0: c9:94:c9:52:fc:c6:42:4e:9a:40:27:53:56:9a:53:3d:ca:2e: 3c:9b:9b:34:f1:30:30:0a:ed:1a:16:4b:80:cb:54:e1:94:fd: 78:dd:13:f2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDxy862bans8bHAXyqNyYX7Fa6HEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTlaFw0yNDA5MTcwMjE0NTlaMDMxMTAvBgNV BAMTKDg4NzM1NUNFRUI4OTcyNDZDOEUzRDZERUQ4RDhGNEZBMkYwNjkwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7S2KdfIz9q9RICU27PDhL6/uu MgsdLgKx47XaV4EFvKkOnfOF7z+oqHK6zlaihcvKqPGvGIyhdO01SkSwnyBcq8nS VMtpfz5xx726be1LxcKKHw8QF4WFU4ur7Yu8SQ3+mylZ8sN8sVl/z6UZPGXPIiPw 57H46wMxAWd35L00En4tWj+5BUt/jhcug8bcF8yQraVvrUiuvRhLSIGTYFPAcM2u 1Arh+8tZcrK18tJ52DLilj3nEA90YQxLwSsCOOcsPknhi5n7wBrypln1URIH6VQD 14T4a9y880Kve/BsSexoYzC4efwRfzAvUT4fkuBZK4684mPJnkpbySG9AYO9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiHNVzuuJckbI49be2Nj0+i8GkIIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMTQ3MDIwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCkXByvIgk6p4q7poKNbSJk2+fiERZJEV/X lQ0qk9NPDfTK+wG1eGKT7FH4W0/XKjLNkinebEupsPrKFDwTwaSIGSE/OOlKyu+B prT0XlYowD94U08s/DSBjkJyHwF9DVhWfM69P9kn7Hvp3SG+jtfu9O0YksRPjxIn Cz3p7DBpioQFxEe6zKR6Z+K4JFyf22xsxY1VT2BdCIBLK4FougtyUOb1eC8hh7q0 uaEK7zgJFnorgjAdV1dBJ0nfgRp48yd6UPBuS4FOunMUwwUbnQjAcoca2/suGLDJ lMlS/MZCTppAJ1NWmlM9yi48m5s08TAwCu0aFkuAy1ThlP143RPy -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:25 2024 by rpki-client on console-fra.rpki-client.org