$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa File: AS200952.roa (raw, json) Hash identifier: HD6SPxNryQCuGdsKJZ1aPn3vQvJQ6yM1Ph/XVvELWk4= Subject key identifier: 09:CE:04:79:EC:92:4F:E5:6D:63:99:01:DB:F0:71:B7:81:06:9A:7D Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 218D145348E5C0EC7E7423567C687425C93C2A7F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 200952 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8d:14:53:48:e5:c0:ec:7e:74:23:56:7c:68:74:25:c9:3c:2a:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=09CE0479EC924FE56D639901DBF071B781069A7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e9:cd:ca:7c:09:cf:06:ef:88:d5:32:66:0c: 1a:dc:a1:cd:64:b4:f4:dd:88:a3:e1:4c:1c:40:61: 92:fc:f9:3e:40:e7:9f:e3:16:fa:5e:94:df:f8:0f: 51:a6:ff:ef:e3:85:ef:ac:8a:32:09:e7:45:fc:9f: 1f:e7:ab:3f:ac:85:56:d1:42:ec:92:66:0c:fc:22: de:a9:b0:a7:3d:2a:e5:86:0d:bd:b8:d0:b1:0d:0f: 2f:8b:c2:c0:85:3c:75:b8:10:68:4f:49:b4:fe:78: 5a:a0:b8:84:00:63:67:45:99:ef:0c:77:58:2b:4f: d5:71:b7:f2:6e:d9:69:b4:c7:d9:f1:2d:90:b4:0b: e2:dd:58:10:ed:bd:cc:d8:65:f7:2d:3a:69:9a:e6: 4f:2c:61:1e:b8:b2:d2:b3:48:77:c9:56:e9:e1:05: 74:37:57:a4:d7:fe:a1:5d:44:af:2d:60:b5:44:17: 24:7d:c6:69:0c:ca:32:c3:93:95:a0:9b:64:31:12: 2b:d9:8f:5e:a2:5d:3f:cf:a6:90:1b:86:37:86:38: 3f:1a:78:f2:d1:1b:d1:5a:3d:d2:16:d4:22:f5:d4: 1f:a1:c7:2f:ec:a8:87:63:2d:d1:02:22:31:e1:79: 4a:b2:15:8a:16:5c:2a:c4:d3:26:54:51:1d:5b:e9: ae:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CE:04:79:EC:92:4F:E5:6D:63:99:01:DB:F0:71:B7:81:06:9A:7D X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 48:df:2b:c5:00:27:8e:a6:5d:6c:ad:5d:5e:dd:6b:5d:3b:97: b4:96:3e:51:b4:48:28:d4:30:b0:79:44:d2:0e:44:a2:c7:c1: 74:65:46:9f:53:18:08:eb:85:c4:b9:e0:28:f1:a2:19:e5:c7: 2f:b7:ec:b3:6f:ca:ca:02:10:9b:9d:38:80:16:4d:d7:25:d0: bd:19:c8:e6:9b:94:ff:87:91:f6:af:8d:95:a7:27:cf:31:17: fa:38:11:a8:8d:84:96:f9:cd:d7:ea:c4:d6:3e:1c:64:c0:5c: 9a:21:d4:43:45:49:a1:66:24:90:e5:18:ac:c3:e8:f9:83:a1: df:f4:87:96:c5:c6:25:4b:d0:4d:71:d5:3d:6a:13:7f:e9:60: da:ea:cb:cc:fd:bc:1d:17:a1:70:35:cd:85:12:f3:e0:b2:a1: 2b:6d:b4:73:22:73:40:dc:c6:83:69:cf:7f:71:39:af:62:d2: 32:3d:13:cd:a9:1e:5f:f1:8f:7d:e6:53:22:59:61:df:94:19: 94:8c:55:d2:01:fe:26:de:2b:d8:02:7e:20:14:12:8b:7e:7e: bc:37:da:d4:06:86:f5:15:f7:4b:c2:37:ca:a7:a0:7a:0c:00: 86:cf:77:bd:3d:87:2b:b3:0c:b4:89:aa:2c:a5:04:e9:96:c3: c5:cd:8a:bc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIY0UU0jlwOx+dCNWfGh0Jck8Kn8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKDA5Q0UwNDc5RUM5MjRGRTU2RDYzOTkwMURCRjA3MUI3ODEwNjlBN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6c3KfAnPBu+I1TJmDBrcoc1k tPTdiKPhTBxAYZL8+T5A55/jFvpelN/4D1Gm/+/jhe+sijIJ50X8nx/nqz+shVbR QuySZgz8It6psKc9KuWGDb240LENDy+LwsCFPHW4EGhPSbT+eFqguIQAY2dFme8M d1grT9Vxt/Ju2Wm0x9nxLZC0C+LdWBDtvczYZfctOmma5k8sYR64stKzSHfJVunh BXQ3V6TX/qFdRK8tYLVEFyR9xmkMyjLDk5Wgm2QxEivZj16iXT/PppAbhjeGOD8a ePLRG9FaPdIW1CL11B+hxy/sqIdjLdECIjHheUqyFYoWXCrE0yZUUR1b6a5vAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCc4EeeyST+VtY5kB2/Bxt4EGmn0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwOTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBI3yvFACeOpl1srV1e3WtdO5e0lj5RtEgo 1DCweUTSDkSix8F0ZUafUxgI64XEueAo8aIZ5ccvt+yzb8rKAhCbnTiAFk3XJdC9 Gcjmm5T/h5H2r42VpyfPMRf6OBGojYSW+c3X6sTWPhxkwFyaIdRDRUmhZiSQ5Ris w+j5g6Hf9IeWxcYlS9BNcdU9ahN/6WDa6svM/bwdF6FwNc2FEvPgsqErbbRzInNA 3MaDac9/cTmvYtIyPRPNqR5f8Y995lMiWWHflBmUjFXSAf4m3ivYAn4gFBKLfn68 N9rUBob1FfdLwjfKp6B6DACGz3e9PYcrswy0iaospQTplsPFzYq8 -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org