$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa File: AS201242.roa (raw, json) Hash identifier: 0X0gGmuNT94Q01Nequ47oEE3efoKV4M0GqKl3ML1lQ0= Subject key identifier: 2D:E9:E0:40:DC:80:23:33:50:84:7B:5F:75:AB:8C:96:9D:9D:3C:EE Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 59FC639318EF40B7585574E769CCF0A1F7081460 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 201242 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fc:63:93:18:ef:40:b7:58:55:74:e7:69:cc:f0:a1:f7:08:14:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=2DE9E040DC80233350847B5F75AB8C969D9D3CEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:dc:a5:7e:b9:b8:7e:dc:e0:4f:79:bc:94: 2f:b1:ea:44:22:62:b1:9a:97:64:d8:d4:49:cf:d7: 4e:75:9c:da:71:e3:cb:e6:11:07:6b:0c:5d:56:42: 68:84:39:51:56:7f:da:3b:dd:2f:30:50:43:7e:a1: f8:90:62:06:4b:ec:78:85:4a:3d:a9:63:67:6b:8a: ca:e1:95:4c:35:16:e7:8f:7c:5c:58:06:55:cb:5a: a0:d6:98:67:7b:76:54:98:c9:8e:cc:30:38:b8:21: fe:26:39:49:0b:75:eb:c1:22:69:e0:08:bd:4d:45: 33:ab:ed:8e:3c:b0:60:ca:89:8f:8c:97:45:18:a5: 0a:b4:b3:09:95:6e:39:61:92:fe:1b:82:2d:0d:51: b6:5d:e0:50:d2:46:86:37:04:98:dc:ac:42:31:45: 6d:72:0b:51:9d:8a:67:44:03:06:52:e4:0e:fc:d4: 7c:24:03:12:36:09:33:53:19:be:f2:df:5d:3e:f0: 85:f3:c8:8f:1e:ae:18:c0:cb:1e:98:7a:7a:9a:18: c2:36:75:c6:78:46:a6:48:86:72:b7:18:5a:f0:4a: 3e:65:01:72:53:89:09:8a:5c:3a:ca:87:f1:23:1d: ab:63:ba:b0:2a:40:d6:08:49:d9:f2:e0:fe:af:c4: 2b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E9:E0:40:DC:80:23:33:50:84:7B:5F:75:AB:8C:96:9D:9D:3C:EE X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 39:ae:91:c4:38:b6:96:38:a3:c8:d9:03:9a:9a:fb:1d:79:37: 07:f6:de:af:6c:47:c5:8d:05:c2:c2:cb:a2:29:86:c1:8c:ec: 46:89:2a:a2:3b:e6:ed:2d:a4:6e:91:71:37:2c:0e:12:c2:35: 16:3e:0a:3f:74:37:5b:6b:40:ab:1a:8d:65:d0:33:79:18:3b: 73:e1:cb:0f:98:01:3a:2b:90:0c:b9:8b:2a:b3:60:f2:61:b2: 43:d9:6a:0f:59:fd:eb:47:3d:26:5b:81:6c:64:0b:6e:cd:99: 27:4c:fb:43:b6:fa:f0:c1:9e:85:d0:64:24:fa:d7:45:5b:ce: be:83:0a:53:c0:c3:fa:ff:28:cc:dd:65:d1:f4:3c:97:90:1c: 38:97:6d:31:9c:ce:72:1a:eb:ce:1c:52:22:34:90:f4:55:d2: 2b:78:a9:53:23:2d:41:bd:08:e9:16:4f:5d:cf:a9:e0:78:03: 53:36:63:60:bc:5e:73:d0:c9:c6:60:47:0e:60:21:b4:c6:bb: dc:52:a4:04:2c:e6:47:12:dc:82:c9:7f:3b:73:4c:7b:8a:f8: 8e:87:d2:81:bd:ea:f6:86:95:6f:16:38:de:bd:7d:53:13:26: f7:2b:81:92:f9:92:c8:50:ff:be:a4:6b:44:ec:79:76:dc:b6: 80:ad:3a:ce -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWfxjkxjvQLdYVXTnaczwofcIFGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDJERTlFMDQwREM4MDIzMzM1MDg0N0I1Rjc1QUI4Qzk2OUQ5RDNDRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Ddylfrm4ftzgT3m8lC+x6kQi YrGal2TY1EnP1051nNpx48vmEQdrDF1WQmiEOVFWf9o73S8wUEN+ofiQYgZL7HiF Sj2pY2drisrhlUw1FuePfFxYBlXLWqDWmGd7dlSYyY7MMDi4If4mOUkLdevBImng CL1NRTOr7Y48sGDKiY+Ml0UYpQq0swmVbjlhkv4bgi0NUbZd4FDSRoY3BJjcrEIx RW1yC1GdimdEAwZS5A781HwkAxI2CTNTGb7y310+8IXzyI8erhjAyx6YenqaGMI2 dcZ4RqZIhnK3GFrwSj5lAXJTiQmKXDrKh/EjHatjurAqQNYISdny4P6vxCvNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULengQNyAIzNQhHtfdauMlp2dPO4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAxMjQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA5rpHEOLaWOKPI2QOamvsdeTcH9t6vbEfF jQXCwsuiKYbBjOxGiSqiO+btLaRukXE3LA4SwjUWPgo/dDdba0CrGo1l0DN5GDtz 4csPmAE6K5AMuYsqs2DyYbJD2WoPWf3rRz0mW4FsZAtuzZknTPtDtvrwwZ6F0GQk +tdFW86+gwpTwMP6/yjM3WXR9DyXkBw4l20xnM5yGuvOHFIiNJD0VdIreKlTIy1B vQjpFk9dz6ngeANTNmNgvF5z0MnGYEcOYCG0xrvcUqQELOZHEtyCyX87c0x7iviO h9KBver2hpVvFjjevX1TEyb3K4GS+ZLIUP++pGtE7Hl23LaArTrO -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org