$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200866.roa File: AS200866.roa (raw, json) Hash identifier: LnXtxXOTUkn++EDA+CzHyXDIn6n98EPCYdJVrIvnj3A= Subject key identifier: 68:0C:83:87:F1:50:53:11:A9:1A:CE:B7:99:C1:03:F4:BB:5F:E5:C4 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 14FBE98E0359A5B01A3BA0683AA53753FA8DD2F9 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200866.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 200866 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fb:e9:8e:03:59:a5:b0:1a:3b:a0:68:3a:a5:37:53:fa:8d:d2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=680C8387F1505311A91ACEB799C103F4BB5FE5C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:65:cd:61:32:68:94:9a:4d:f4:56:1b:bb: c4:a4:b4:73:db:b8:cb:01:34:b4:2b:9a:47:eb:ae: 13:bf:39:e3:f7:b0:2c:c6:87:a9:83:f0:04:74:9e: bf:97:ed:c1:c3:95:83:bf:89:fc:07:cf:de:a1:b1: 0a:33:f6:b4:4a:b0:74:c8:2e:ec:32:e2:3c:4e:41: 0f:89:62:59:22:08:b6:ce:50:01:98:ba:df:ff:47: 7f:ca:ce:bc:03:be:83:6b:71:97:7a:98:b7:54:25: 37:7f:4b:69:1b:e3:48:6a:e4:59:85:c8:5b:a7:bd: 09:36:16:33:7a:f3:e5:53:db:ef:d4:c8:e6:61:2a: b2:f0:fc:d3:09:8e:d7:e6:a7:05:46:5c:5c:3b:7b: ac:4b:f9:9b:7d:d9:8b:db:29:ef:bb:b9:34:87:13: fb:dc:30:7e:fd:f5:7b:ba:32:67:6a:87:db:bc:31: dc:0a:46:a3:36:08:4f:4e:1b:65:26:ab:51:dc:ab: 69:6f:6d:46:f8:e5:8b:9d:65:65:49:d4:ba:1a:54: cb:bd:da:18:8a:c4:f3:e1:ed:4f:d9:25:49:a6:bd: a8:e1:1e:3f:23:04:ec:2f:03:ab:15:f9:7b:a9:f8: 5b:50:75:79:2e:f9:4d:c2:a2:97:cb:0c:71:eb:0a: 7d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0C:83:87:F1:50:53:11:A9:1A:CE:B7:99:C1:03:F4:BB:5F:E5:C4 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 4a:b3:f1:01:81:6c:45:76:ec:76:52:c7:f3:80:b1:7f:4c:18: 41:89:87:df:1c:a1:47:ba:92:dc:80:16:b3:ce:5d:a6:ab:97: 2f:2b:1b:50:20:11:f1:cb:cd:d3:c8:9d:9f:a7:b2:99:2b:75: e8:8d:7c:74:c6:fd:0c:31:05:fe:9b:54:15:a8:e6:f1:74:2d: 5d:59:13:67:8a:5a:4d:99:fb:e9:2b:63:aa:94:3f:85:1d:6e: 96:24:24:dd:96:67:66:a1:5e:8a:71:8f:a6:0c:f2:05:32:c1: 18:e9:b7:e6:dc:45:a9:5d:d7:f9:b7:8d:6c:70:4b:57:bd:a8: 6b:cd:18:5b:87:71:19:f9:94:f0:8d:42:9e:98:e2:c5:77:78: 6b:c1:21:76:59:a7:f0:2f:71:d5:55:58:a3:f6:50:c5:49:73: 8b:b3:e9:fe:51:2f:c0:3c:09:94:66:04:49:8d:39:46:26:c1: b2:1c:59:27:fb:0e:32:fb:6a:1d:35:35:ac:a8:d4:55:d6:e7: 84:d7:8f:f2:8d:28:a0:bb:1c:fe:de:37:d0:a0:04:ac:bc:1b: c6:64:ee:7c:76:88:6f:d2:b0:0d:be:c9:c2:8b:6f:6f:56:8d: 29:71:46:63:75:77:c3:6b:bd:e5:c1:2b:90:12:5e:3c:c0:e3: 0a:21:20:05 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFPvpjgNZpbAaO6BoOqU3U/qN0vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDY4MEM4Mzg3RjE1MDUzMTFBOTFBQ0VCNzk5QzEwM0Y0QkI1RkU1QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRkmXNYTJolJpN9FYbu8SktHPb uMsBNLQrmkfrrhO/OeP3sCzGh6mD8AR0nr+X7cHDlYO/ifwHz96hsQoz9rRKsHTI Luwy4jxOQQ+JYlkiCLbOUAGYut//R3/KzrwDvoNrcZd6mLdUJTd/S2kb40hq5FmF yFunvQk2FjN68+VT2+/UyOZhKrLw/NMJjtfmpwVGXFw7e6xL+Zt92YvbKe+7uTSH E/vcMH799Xu6Mmdqh9u8MdwKRqM2CE9OG2Umq1Hcq2lvbUb45YudZWVJ1LoaVMu9 2hiKxPPh7U/ZJUmmvajhHj8jBOwvA6sV+Xup+FtQdXku+U3CopfLDHHrCn3fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaAyDh/FQUxGpGs63mcED9Ltf5cQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwODY2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBKs/EBgWxFdux2UsfzgLF/TBhBiYffHKFH upLcgBazzl2mq5cvKxtQIBHxy83TyJ2fp7KZK3XojXx0xv0MMQX+m1QVqObxdC1d WRNnilpNmfvpK2OqlD+FHW6WJCTdlmdmoV6KcY+mDPIFMsEY6bfm3EWpXdf5t41s cEtXvahrzRhbh3EZ+ZTwjUKemOLFd3hrwSF2WafwL3HVVVij9lDFSXOLs+n+US/A PAmUZgRJjTlGJsGyHFkn+w4y+2odNTWsqNRV1ueE14/yjSiguxz+3jfQoASsvBvG ZO58dohv0rANvsnCi29vVo0pcUZjdXfDa73lwSuQEl48wOMKISAF -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:25 2024 by rpki-client on console-fra.rpki-client.org