$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200993.roa File: AS200993.roa (raw, json) Hash identifier: mIp3B10eF/nst9bAyZtNB0MjdXDWO/9U1u2hUQ7k7rU= Subject key identifier: CE:EF:58:25:7F:8A:0E:8F:FB:8E:72:63:89:72:C3:BB:A0:A5:48:47 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4FA81F33703C6CE078EE1F7705F64A3154AC109E Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200993.roa Signing time: Tue 02 Jan 2024 03:24:06 +0000 ROA not before: Tue 02 Jan 2024 03:19:06 +0000 ROA not after: Tue 31 Dec 2024 03:24:06 +0000 asID: 200993 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a8:1f:33:70:3c:6c:e0:78:ee:1f:77:05:f6:4a:31:54:ac:10:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 2 03:19:06 2024 GMT Not After : Dec 31 03:24:06 2024 GMT Subject: CN=CEEF58257F8A0E8FFB8E72638972C3BBA0A54847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:31:47:1e:e1:00:7f:be:b5:12:44:63:dc:47: a8:39:53:2d:72:f8:27:f6:d9:7e:47:2a:8f:d5:af: 3e:a7:01:f0:e7:a5:4c:d6:3f:20:ef:55:3b:2d:df: 69:0a:aa:48:50:ef:8d:ee:8e:74:a0:3c:59:bd:af: 66:61:27:5f:82:2b:74:7c:6f:1d:90:64:a8:7a:de: 8e:ea:b5:9e:de:90:e1:3d:6e:b7:e8:4f:4f:16:50: 07:84:ba:f0:22:fd:d9:a5:c3:e3:79:8f:df:03:96: d1:25:88:43:ea:82:6f:f2:96:7d:05:ea:e7:53:6c: b7:70:4b:c0:28:58:61:bc:a2:d1:e6:eb:d4:c5:ec: 17:3b:ab:74:e8:89:30:68:e9:6f:58:e9:b3:80:57: 2c:a3:89:bb:d5:e0:12:c0:5d:af:c0:12:1d:2d:67: b8:b3:27:86:bb:20:5f:e7:88:a7:33:ba:c4:81:7b: e9:50:68:bd:c7:cf:98:38:c2:11:45:58:d3:25:12: 13:54:cb:8d:4b:c5:b2:b9:64:a6:a9:c9:c7:f3:7f: e5:66:f4:fd:51:37:42:9c:f3:18:ce:7a:c9:cd:07: 0a:d9:4d:d5:58:5f:e2:81:14:e7:51:7b:96:b4:9a: 17:cc:b2:b9:ce:f4:28:8f:b2:59:5d:c9:c3:cc:fb: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EF:58:25:7F:8A:0E:8F:FB:8E:72:63:89:72:C3:BB:A0:A5:48:47 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200993.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 9e:9b:ec:0b:a6:fc:a1:7b:56:92:7e:a3:79:f1:d6:81:32:68: 92:02:be:77:b4:46:f0:6b:73:21:0d:ff:cb:4b:a5:ee:c6:fc: 07:27:c1:65:3e:8c:0b:b3:f2:ac:58:23:d1:a5:b6:c8:9b:4d: 73:b2:96:f0:90:01:41:11:15:8a:60:3a:86:aa:07:b9:48:67: ed:6a:4d:52:6a:4b:24:be:e3:c1:13:b5:15:24:52:e7:91:e7: 1e:da:ac:8b:3c:87:c6:6c:f8:58:91:c7:43:06:3d:33:02:e8: ae:2e:47:47:63:71:bf:dd:4a:47:c5:14:0b:c4:3b:d3:b1:79: 88:6a:75:66:cc:d7:9a:11:11:fa:d0:d8:a6:8f:8d:78:ee:a3: 44:7c:0c:44:88:80:24:97:5b:ae:d4:a6:c2:5e:54:e6:99:2b: 68:0d:8f:63:ef:e1:ad:a5:a7:3b:be:c5:eb:ab:f7:12:b8:ba: 9d:1d:2e:c1:bf:e8:4e:e8:77:ff:3d:e9:51:06:47:ef:9c:74: 00:e0:e5:40:6f:80:7c:72:d2:25:7e:9e:2d:a5:34:a0:5d:6c: 3b:8f:f9:78:1e:44:94:92:a7:7c:1f:90:2c:b6:f5:58:e9:85: 9e:52:08:0f:d9:a3:dc:74:18:c8:fd:3e:09:e5:f1:9f:f1:15: 48:7f:13:74 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUT6gfM3A8bOB47h93BfZKMVSsEJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAxMDIwMzE5MDZaFw0yNDEyMzEwMzI0MDZaMDMxMTAvBgNV BAMTKENFRUY1ODI1N0Y4QTBFOEZGQjhFNzI2Mzg5NzJDM0JCQTBBNTQ4NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSMUce4QB/vrUSRGPcR6g5Uy1y +Cf22X5HKo/Vrz6nAfDnpUzWPyDvVTst32kKqkhQ743ujnSgPFm9r2ZhJ1+CK3R8 bx2QZKh63o7qtZ7ekOE9brfoT08WUAeEuvAi/dmlw+N5j98DltEliEPqgm/yln0F 6udTbLdwS8AoWGG8otHm69TF7Bc7q3ToiTBo6W9Y6bOAVyyjibvV4BLAXa/AEh0t Z7izJ4a7IF/niKczusSBe+lQaL3Hz5g4whFFWNMlEhNUy41LxbK5ZKapycfzf+Vm 9P1RN0Kc8xjOesnNBwrZTdVYX+KBFOdRe5a0mhfMsrnO9CiPslldycPM+/tBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzu9YJX+KDo/7jnJjiXLDu6ClSEcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwOTkzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCem+wLpvyhe1aSfqN58daBMmiSAr53tEbw a3MhDf/LS6XuxvwHJ8FlPowLs/KsWCPRpbbIm01zspbwkAFBERWKYDqGqge5SGft ak1SakskvuPBE7UVJFLnkece2qyLPIfGbPhYkcdDBj0zAuiuLkdHY3G/3UpHxRQL xDvTsXmIanVmzNeaERH60Nimj4147qNEfAxEiIAkl1uu1KbCXlTmmStoDY9j7+Gt pac7vsXrq/cSuLqdHS7Bv+hO6Hf/PelRBkfvnHQA4OVAb4B8ctIlfp4tpTSgXWw7 j/l4HkSUkqd8H5AstvVY6YWeUggP2aPcdBjI/T4J5fGf8RVIfxN0 -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org