$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200227.roa File: AS200227.roa (raw, json) Hash identifier: sMNKGTWY33E53qAzLwVCwxYLYLPN6xVVzqnHGLkMq0M= Subject key identifier: 44:31:B9:7F:71:E3:C0:78:A7:34:F1:2D:C4:11:03:DB:0D:B5:E2:2B Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 059034A369EB8CBA93C8A2E510AD0C186F016874 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200227.roa Signing time: Thu 28 Dec 2023 00:15:27 +0000 ROA not before: Thu 28 Dec 2023 00:10:27 +0000 ROA not after: Thu 26 Dec 2024 00:15:27 +0000 asID: 200227 IP address blocks: 2a07:54c1:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:90:34:a3:69:eb:8c:ba:93:c8:a2:e5:10:ad:0c:18:6f:01:68:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 28 00:10:27 2023 GMT Not After : Dec 26 00:15:27 2024 GMT Subject: CN=4431B97F71E3C078A734F12DC41103DB0DB5E22B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:69:1d:30:d4:f4:ed:b1:e1:52:50:df:2a: 2f:c4:9e:ca:3a:37:9f:6c:68:82:9d:ed:fd:1d:0b: fb:27:3e:49:03:c2:b3:02:5b:c3:18:df:c7:a9:ab: ad:22:05:f1:f2:06:a1:33:4e:5d:0b:3f:c9:1b:ce: 83:7f:9f:b2:13:9c:24:b5:79:a7:75:f9:41:a2:04: bf:0c:e9:b2:af:9e:21:8e:0f:34:6c:c5:d8:98:cb: 16:46:e6:c0:3e:9c:68:48:23:b7:b1:a4:ac:91:a9: 87:95:15:59:11:01:00:88:34:3a:2a:bd:0a:fc:83: 8c:73:12:17:82:e7:a5:74:e4:93:9c:12:8c:b8:b1: 96:05:9a:65:3a:b4:7d:e5:94:4e:5d:a8:52:7e:9d: 03:62:50:0d:5c:0c:9e:60:2f:ce:21:19:e9:fc:bc: cd:f9:d0:a6:42:31:98:84:05:88:98:8f:df:2d:e7: bc:f1:d7:c5:f3:56:ef:90:9e:77:49:7b:a9:2d:21: 75:69:68:df:71:5c:8d:ef:df:2f:8a:b5:e2:00:7a: 03:28:f0:de:3d:79:fa:4b:1c:63:6f:11:7f:3e:f7: b4:4a:c4:62:b1:35:ce:3e:1b:03:3e:28:1d:f2:6a: 53:76:5a:78:2b:8c:3a:68:c0:a2:12:5b:a9:83:df: 17:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:31:B9:7F:71:E3:C0:78:A7:34:F1:2D:C4:11:03:DB:0D:B5:E2:2B X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200227.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4500::/40 Signature Algorithm: sha256WithRSAEncryption 7a:0b:27:2e:0a:26:f9:3f:d2:d6:e4:4f:d4:9a:6a:0d:94:e8: 70:4d:06:e6:4d:85:6c:93:39:0b:72:48:3e:5e:ea:30:00:0a: d6:59:1b:91:2b:2b:42:5e:7c:2e:8b:8f:a0:5f:d8:c8:bf:12: 89:91:f3:9f:78:1b:1d:3e:1d:82:f3:22:c4:42:55:ee:d7:6d: d7:c3:84:7f:ae:88:94:1e:84:3a:31:33:65:8c:74:26:98:5c: 8c:99:5e:53:f2:3c:be:81:39:97:20:c0:8c:0d:8b:d7:d7:06: 5a:2c:2c:6a:35:2e:13:ae:15:6f:8e:26:6a:c1:5b:fe:b3:d9: bf:30:72:df:d4:d7:eb:cc:d1:58:d2:90:e6:ab:23:b6:c5:b3: 21:88:79:1b:2a:77:a4:3e:52:35:d6:b6:b0:a5:e2:10:16:90: 1a:be:c8:30:0a:18:bb:e6:dd:d5:01:63:b2:f0:94:9b:1f:ea: 4f:95:69:39:4d:66:57:8d:cb:d4:ae:28:18:e7:3a:86:eb:20: 13:b7:fa:c7:3a:40:14:11:be:dc:52:77:86:a4:ac:3a:01:28: 8d:87:0b:4d:ed:9c:21:e3:65:f8:75:01:29:6e:7e:25:70:bd: 8c:75:30:32:2d:39:cc:cc:7a:c8:13:4c:33:92:5c:11:f0:67: 5d:be:17:d9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBZA0o2nrjLqTyKLlEK0MGG8BaHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEyMjgwMDEwMjdaFw0yNDEyMjYwMDE1MjdaMDMxMTAvBgNV BAMTKDQ0MzFCOTdGNzFFM0MwNzhBNzM0RjEyREM0MTEwM0RCMERCNUUyMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz9mkdMNT07bHhUlDfKi/Enso6 N59saIKd7f0dC/snPkkDwrMCW8MY38epq60iBfHyBqEzTl0LP8kbzoN/n7ITnCS1 ead1+UGiBL8M6bKvniGODzRsxdiYyxZG5sA+nGhII7expKyRqYeVFVkRAQCINDoq vQr8g4xzEheC56V05JOcEoy4sZYFmmU6tH3llE5dqFJ+nQNiUA1cDJ5gL84hGen8 vM350KZCMZiEBYiYj98t57zx18XzVu+QnndJe6ktIXVpaN9xXI3v3y+KteIAegMo 8N49efpLHGNvEX8+97RKxGKxNc4+GwM+KB3yalN2WngrjDpowKISW6mD3xcbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURDG5f3HjwHinNPEtxBED2w214iswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwMjI3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUUwDQYJKoZIhvcNAQELBQADggEBAHoLJy4KJvk/0tbkT9Saag2U6HBNBuZNhWyT OQtySD5e6jAACtZZG5ErK0JefC6Lj6Bf2Mi/EomR8594Gx0+HYLzIsRCVe7XbdfD hH+uiJQehDoxM2WMdCaYXIyZXlPyPL6BOZcgwIwNi9fXBlosLGo1LhOuFW+OJmrB W/6z2b8wct/U1+vM0VjSkOarI7bFsyGIeRsqd6Q+UjXWtrCl4hAWkBq+yDAKGLvm 3dUBY7LwlJsf6k+VaTlNZleNy9SuKBjnOobrIBO3+sc6QBQRvtxSd4akrDoBKI2H C03tnCHjZfh1ASlufiVwvYx1MDItOczMesgTTDOSXBHwZ12+F9k= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org