$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa File: AS200351.roa (raw, json) Hash identifier: 7ejJbZE1L21hiD8fzSMFzSXeCaTeSmF1jTfsWKAH694= Subject key identifier: 73:E2:FA:4E:E7:7E:A7:1D:45:9A:8C:57:42:62:F2:60:DE:21:6C:28 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 71B2181FFC1F10AFDCD7AB7C71D12C4A5F37401C Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 200351 IP address blocks: 2a07:54c4:175b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:b2:18:1f:fc:1f:10:af:dc:d7:ab:7c:71:d1:2c:4a:5f:37:40:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=73E2FA4EE77EA71D459A8C574262F260DE216C28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:3d:df:2a:bb:96:dc:52:af:51:48:06:6d: 43:c4:21:6b:fa:90:09:87:9f:c5:9f:7e:4f:2e:60: 8d:ff:fb:4e:dd:42:2b:3b:cc:0d:92:80:c8:25:e9: cc:9c:ca:73:c9:5c:85:40:32:4f:a1:29:3c:7c:b2: c3:51:3a:84:2a:c2:5d:91:72:e3:a1:49:51:42:57: aa:6b:a0:9c:3a:e1:43:e8:c1:bf:a4:39:c4:2c:93: 60:bc:8f:47:3b:78:6f:69:26:8f:21:fd:68:7e:3a: a3:6c:3f:ba:e1:97:88:fb:dd:0e:b9:9a:b0:2a:79: f3:e7:83:52:48:84:46:b3:c3:1b:bb:46:d1:e1:12: 3c:65:23:20:1c:a6:8e:68:13:4e:95:d8:41:b7:87: 00:69:25:d1:09:fe:52:83:30:9c:4e:82:de:0c:86: c7:0a:0f:08:88:cc:f4:a3:32:18:89:43:43:3a:fe: e7:b7:41:89:ef:1f:56:48:f3:05:f5:2f:fb:14:d0: 73:ab:6f:91:94:7e:4f:5e:d2:8a:f7:8f:38:eb:e4: dc:8a:b6:a4:3c:a2:4c:55:4a:86:c2:3e:1b:1e:b7: 36:fc:46:42:16:e1:48:45:66:5d:e2:c8:a8:d9:33: 8f:f5:ef:99:e4:0d:3b:0c:58:8f:33:2a:2f:1e:3f: 48:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E2:FA:4E:E7:7E:A7:1D:45:9A:8C:57:42:62:F2:60:DE:21:6C:28 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175b::/48 Signature Algorithm: sha256WithRSAEncryption 45:99:ed:27:eb:22:dd:88:3c:c8:7d:f3:1f:4d:be:c9:6c:ed: 49:b6:ec:95:23:74:bd:87:18:cb:72:3d:71:9d:12:81:78:4c: cf:77:3c:b3:5b:d7:02:72:4f:4b:2f:c0:3d:64:1a:b4:2e:37: 15:8e:96:81:b5:e7:12:31:f0:90:03:ed:0c:f2:12:a1:b8:15: 6d:e3:e6:45:9f:c3:19:b3:c5:58:15:0a:c1:44:0b:e7:2d:40: a2:09:c5:c3:c7:14:be:c9:e1:4b:a3:12:3e:33:47:42:30:de: e1:fe:00:6e:11:55:c6:cc:4a:9b:22:5e:c8:a9:d6:00:de:9d: 4a:a0:12:12:9c:b4:43:65:b8:69:99:65:4f:b0:e1:86:e1:1a: f6:3c:91:9b:4e:e8:c2:a3:be:b8:dc:2f:23:73:14:2f:0c:ee: fc:75:ce:eb:6c:33:4f:9c:ca:d9:1f:1c:71:51:96:01:8b:06: 61:63:d2:79:34:bb:e8:79:ec:7b:74:c5:c6:f2:c8:d2:69:8d: 2f:b2:d0:a3:d7:7d:97:2a:fb:8a:b7:17:36:01:cf:e2:4d:0d: e9:1d:7f:00:da:8a:0d:99:c3:fe:78:90:07:0a:50:3a:7c:47: c9:a2:11:e5:80:70:89:56:d1:e0:01:15:55:4e:1b:5c:98:b0: 65:71:36:a9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcbIYH/wfEK/c16t8cdEsSl83QBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDczRTJGQTRFRTc3RUE3MUQ0NTlBOEM1NzQyNjJGMjYwREUyMTZDMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBJz3fKruW3FKvUUgGbUPEIWv6 kAmHn8Wffk8uYI3/+07dQis7zA2SgMgl6cycynPJXIVAMk+hKTx8ssNROoQqwl2R cuOhSVFCV6proJw64UPowb+kOcQsk2C8j0c7eG9pJo8h/Wh+OqNsP7rhl4j73Q65 mrAqefPng1JIhEazwxu7RtHhEjxlIyAcpo5oE06V2EG3hwBpJdEJ/lKDMJxOgt4M hscKDwiIzPSjMhiJQ0M6/ue3QYnvH1ZI8wX1L/sU0HOrb5GUfk9e0or3jzjr5NyK tqQ8okxVSobCPhsetzb8RkIW4UhFZl3iyKjZM4/175nkDTsMWI8zKi8eP0hvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUc+L6Tud+px1FmoxXQmLyYN4hbCgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwMzUxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdbMA0GCSqGSIb3DQEBCwUAA4IBAQBFme0n6yLdiDzIffMfTb7JbO1JtuyVI3S9 hxjLcj1xnRKBeEzPdzyzW9cCck9LL8A9ZBq0LjcVjpaBtecSMfCQA+0M8hKhuBVt 4+ZFn8MZs8VYFQrBRAvnLUCiCcXDxxS+yeFLoxI+M0dCMN7h/gBuEVXGzEqbIl7I qdYA3p1KoBISnLRDZbhpmWVPsOGG4Rr2PJGbTujCo7643C8jcxQvDO78dc7rbDNP nMrZHxxxUZYBiwZhY9J5NLvoeex7dMXG8sjSaY0vstCj132XKvuKtxc2Ac/iTQ3p HX8A2ooNmcP+eJAHClA6fEfJohHlgHCJVtHgARVVThtcmLBlcTap -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:25 2024 by rpki-client on console-fra.rpki-client.org