$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa File: AS200572.roa (raw, json) Hash identifier: us0qs/pCCilkvu+fPHbSZmQ4ETviPzb+nIBiBWnfUVQ= Subject key identifier: 1F:4A:BE:DF:B1:70:6B:75:2A:59:6E:8B:E4:05:4C:EE:1E:D5:82:EF Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 34DC47D0C58E62653A3A61A934D8816AE46D4EEA Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 200572 IP address blocks: 2a07:54c1:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:dc:47:d0:c5:8e:62:65:3a:3a:61:a9:34:d8:81:6a:e4:6d:4e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=1F4ABEDFB1706B752A596E8BE4054CEE1ED582EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:80:2d:b1:c4:c6:d6:d1:a9:99:f6:69:02:b0: 32:08:68:d8:a7:c5:e4:fb:2b:f1:7a:18:e0:d8:c8: e7:d6:c4:3c:2f:74:9b:c4:d6:22:a5:ac:73:75:37: 8f:8a:81:a9:d2:b5:01:74:d5:94:be:f8:24:57:26: da:b0:34:ec:91:5a:2e:7d:6c:43:b2:5d:ea:f0:ed: 54:52:ff:9c:b7:b4:bc:a3:d2:9e:7e:fd:17:79:e5: 84:f3:63:1f:33:63:8b:61:84:6f:04:e0:d8:53:4a: ca:26:dd:fe:f5:8c:7b:47:c9:76:a7:13:c9:e4:2b: db:70:da:53:85:96:b8:26:71:1e:ae:f0:6e:30:c1: 08:4e:15:0d:3f:0b:f6:81:d7:65:8d:e0:90:f9:7f: 74:20:1f:8a:f6:fe:d1:30:5b:ce:ad:8e:02:81:78: 95:f6:de:d8:35:9a:cb:70:23:df:ef:1e:3a:ee:00: 4c:86:dc:fe:d4:8a:21:dd:1f:63:74:8f:d3:95:d6: 58:19:d7:bb:e7:ed:6a:8d:45:6e:89:6a:47:70:af: 05:56:75:0d:c0:3e:7e:17:99:3d:aa:6e:34:f2:e4: 76:bb:a7:db:63:82:a9:8b:8d:25:00:00:cc:29:3b: 6c:de:c3:57:06:e4:5e:ed:c6:5e:f4:1d:06:4c:0f: 86:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4A:BE:DF:B1:70:6B:75:2A:59:6E:8B:E4:05:4C:EE:1E:D5:82:EF X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4000::/40 Signature Algorithm: sha256WithRSAEncryption 86:35:3b:5d:df:d0:09:91:5d:47:b2:99:51:fb:a1:b6:b4:b5: ff:3b:81:b1:8f:b1:b5:88:c2:e3:b9:95:21:40:0c:9a:89:94: 7e:3e:26:c3:ff:7e:c4:f6:a1:3d:0e:cd:cd:57:ea:b4:aa:d1: 24:ed:48:53:a0:5d:bb:78:84:c1:66:74:92:6b:0f:41:99:c0: 15:64:88:85:18:3c:7d:29:6b:51:ef:1a:8f:20:cb:06:96:49: 22:20:6e:30:bc:c5:cd:51:8f:05:36:9d:4d:11:94:76:c6:a7: ee:bd:ab:45:c8:17:08:cf:7a:23:e5:e9:28:41:30:15:95:7d: df:be:3c:ea:c6:fc:f3:fc:64:5e:51:ea:da:be:54:c0:00:f4: fe:25:26:1a:1d:2e:03:3d:2e:30:7c:e2:f2:ee:ec:1d:4a:20: 95:b7:a1:3f:d9:12:e1:7c:30:e1:da:c3:30:c7:5e:e5:d1:42: 14:78:61:e3:28:03:61:4b:88:c8:2d:13:ba:1e:3f:bd:d6:59: 92:92:ea:e1:d0:c3:b2:f8:6d:23:40:24:64:33:4b:2e:49:f5: d1:0b:a1:47:a1:bc:e9:cf:7f:a4:fa:b0:94:5e:94:f1:5a:3c: 6c:1d:38:c8:0e:14:8f:0a:77:01:a8:8b:da:ee:89:1a:bf:eb: de:61:81:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNNxH0MWOYmU6OmGpNNiBauRtTuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKDFGNEFCRURGQjE3MDZCNzUyQTU5NkU4QkU0MDU0Q0VFMUVENTgyRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqgC2xxMbW0amZ9mkCsDIIaNin xeT7K/F6GODYyOfWxDwvdJvE1iKlrHN1N4+KganStQF01ZS++CRXJtqwNOyRWi59 bEOyXerw7VRS/5y3tLyj0p5+/Rd55YTzYx8zY4thhG8E4NhTSsom3f71jHtHyXan E8nkK9tw2lOFlrgmcR6u8G4wwQhOFQ0/C/aB12WN4JD5f3QgH4r2/tEwW86tjgKB eJX23tg1mstwI9/vHjruAEyG3P7UiiHdH2N0j9OV1lgZ17vn7WqNRW6JakdwrwVW dQ3APn4XmT2qbjTy5Ha7p9tjgqmLjSUAAMwpO2zew1cG5F7txl70HQZMD4bNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUH0q+37Fwa3UqWW6L5AVM7h7Vgu8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwNTcyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUAwDQYJKoZIhvcNAQELBQADggEBAIY1O13f0AmRXUeymVH7oba0tf87gbGPsbWI wuO5lSFADJqJlH4+JsP/fsT2oT0Ozc1X6rSq0STtSFOgXbt4hMFmdJJrD0GZwBVk iIUYPH0pa1HvGo8gywaWSSIgbjC8xc1RjwU2nU0RlHbGp+69q0XIFwjPeiPl6ShB MBWVfd++POrG/PP8ZF5R6tq+VMAA9P4lJhodLgM9LjB84vLu7B1KIJW3oT/ZEuF8 MOHawzDHXuXRQhR4YeMoA2FLiMgtE7oeP73WWZKS6uHQw7L4bSNAJGQzSy5J9dEL oUehvOnPf6T6sJRelPFaPGwdOMgOFI8KdwGoi9ruiRq/695hgSU= -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org