$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa File: AS202262.roa (raw, json) Hash identifier: h2OYBQD6OxIn6xT+laXSPX+HTg+OkMooTcg5XnozGMk= Subject key identifier: 67:D5:DF:C3:30:7C:A0:86:E9:A9:99:60:51:ED:0E:9C:93:07:EC:23 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5F5446F7B21E449259E6B46FEC8EA6A7CA3036CC Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 202262 IP address blocks: 2a07:54c1:3000::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:54:46:f7:b2:1e:44:92:59:e6:b4:6f:ec:8e:a6:a7:ca:30:36:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=67D5DFC3307CA086E9A9996051ED0E9C9307EC23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:83:fe:52:e6:78:bd:b4:80:df:8b:1c:53: e6:32:96:62:a8:44:11:e3:b4:18:e9:13:70:51:53: 11:de:a9:85:a3:4c:46:9a:bf:69:ac:27:7c:d3:4a: 3c:cd:41:ee:f7:52:90:f1:3f:ec:67:94:ad:38:85: 65:b0:85:62:4a:c9:a4:b1:f1:97:02:d0:31:3c:dd: 62:ad:46:20:82:e5:ca:f6:65:78:cc:d9:03:91:e9: 55:52:54:c7:49:6b:d6:47:4c:c8:d3:a3:a7:4f:18: c2:11:80:11:c2:de:69:92:d1:4d:5d:7b:b1:fd:4c: 59:1c:04:d9:6a:ed:f2:6f:a2:e7:79:3d:fa:03:5b: 3e:ad:9a:7b:dc:df:15:92:e4:1e:15:5f:d3:ec:df: 5f:2a:e7:9e:42:93:c1:05:44:a2:fc:22:a7:89:ce: 63:84:c0:a5:a5:9a:b9:64:07:2d:a8:e2:0f:55:c3: c8:15:c8:6f:8d:47:9e:a5:81:ee:cf:7a:82:51:6d: 98:87:42:d4:97:22:7b:e9:c6:74:b2:af:54:e7:fc: 84:1c:f2:45:38:98:5e:44:07:65:0e:f0:6a:0a:0d: c4:dc:74:3c:5f:ec:57:cf:47:2e:d9:12:31:9a:c0: 71:ed:cb:23:1f:bf:a8:67:f3:f2:98:ea:77:dc:0c: 53:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D5:DF:C3:30:7C:A0:86:E9:A9:99:60:51:ED:0E:9C:93:07:EC:23 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202262.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3000::/40 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 8c:2d:5c:39:a1:f5:41:ba:2b:12:3e:ab:70:9e:d4:3e:dd:8d: 95:0c:6f:1f:14:f8:22:0f:3a:09:07:9c:17:8b:10:fd:f6:c2: 37:5b:6d:7b:f3:11:78:e8:33:da:da:6d:74:02:ad:f8:d4:06: 3d:d6:63:50:8a:b9:a4:78:52:82:5e:7a:2b:bc:8a:ee:6f:24: 4a:01:48:c8:ea:d4:2f:8e:24:9b:b4:19:68:38:fd:7f:19:8a: 68:a2:83:6a:ff:dc:c3:ad:5d:14:20:ae:78:2b:04:19:e0:0b: e3:13:4a:45:c0:b5:ac:04:b2:91:1f:0b:67:c6:d6:76:74:9c: dd:66:c3:42:c5:4c:b7:e3:dd:28:af:81:49:0e:e1:3c:d1:37: c5:af:1e:14:6c:8c:cd:01:f8:4e:d2:46:1d:36:8b:dc:71:3a: b0:2b:33:ff:dc:5d:d8:21:07:e9:4f:d8:fd:bf:5e:cd:c9:82: 2d:7b:e9:f5:6d:80:2c:f6:e5:00:3f:f8:c2:37:ad:20:77:ad: 9c:12:75:73:64:ed:49:2a:34:7f:84:0f:9b:0f:71:5f:52:df: c8:70:be:02:5c:9c:0a:e1:d4:7e:72:f5:1c:6e:96:b0:a2:90: a4:42:88:8a:e7:9b:e0:65:c5:67:05:d1:f9:5d:73:55:0d:14: bf:b3:07:02 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUX1RG97IeRJJZ5rRv7I6mp8owNswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKDY3RDVERkMzMzA3Q0EwODZFOUE5OTk2MDUxRUQwRTlDOTMwN0VDMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsWIP+UuZ4vbSA34scU+YylmKo RBHjtBjpE3BRUxHeqYWjTEaav2msJ3zTSjzNQe73UpDxP+xnlK04hWWwhWJKyaSx 8ZcC0DE83WKtRiCC5cr2ZXjM2QOR6VVSVMdJa9ZHTMjTo6dPGMIRgBHC3mmS0U1d e7H9TFkcBNlq7fJvoud5PfoDWz6tmnvc3xWS5B4VX9Ps318q555Ck8EFRKL8IqeJ zmOEwKWlmrlkBy2o4g9Vw8gVyG+NR56lge7PeoJRbZiHQtSXInvpxnSyr1Tn/IQc 8kU4mF5EB2UO8GoKDcTcdDxf7FfPRy7ZEjGawHHtyyMfv6hn8/KY6nfcDFMfAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUZ9XfwzB8oIbpqZlgUe0OnJMH7CMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAyMjYyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYAKgdU wTADBwAqB1TCsAswDQYJKoZIhvcNAQELBQADggEBAIwtXDmh9UG6KxI+q3Ce1D7d jZUMbx8U+CIPOgkHnBeLEP32wjdbbXvzEXjoM9rabXQCrfjUBj3WY1CKuaR4UoJe eiu8iu5vJEoBSMjq1C+OJJu0GWg4/X8Zimiig2r/3MOtXRQgrngrBBngC+MTSkXA tawEspEfC2fG1nZ0nN1mw0LFTLfj3SivgUkO4TzRN8WvHhRsjM0B+E7SRh02i9xx OrArM//cXdghB+lP2P2/Xs3Jgi176fVtgCz25QA/+MI3rSB3rZwSdXNk7UkqNH+E D5sPcV9S38hwvgJcnArh1H5y9RxulrCikKRCiIrnm+BlxWcF0fldc1UNFL+zBwI= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org