$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa File: AS202828.roa (raw, json) Hash identifier: O53Ws9h3P+GTysfo2ZobGaHu+XED0WGd3NFJwVDkKgM= Subject key identifier: D2:A0:4E:F4:6C:F4:75:87:5C:51:7F:53:96:A3:6F:21:02:71:AA:B3 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 607E30BA93777690C0255B86FED54C2CD0B4B333 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 202828 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:7e:30:ba:93:77:76:90:c0:25:5b:86:fe:d5:4c:2c:d0:b4:b3:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=D2A04EF46CF475875C517F5396A36F210271AAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:1b:40:9f:5e:f7:84:2b:5a:b8:c1:8d:c6: 2a:c3:1a:d3:36:22:ab:48:52:7c:96:de:b2:ee:bb: 3c:f6:3b:87:69:d5:66:b7:69:d4:c2:71:85:fb:5b: 46:70:e0:13:36:5a:c6:85:90:e7:87:eb:38:23:ad: b0:88:e7:a0:74:1c:27:09:1f:f7:b5:81:71:7e:00: 5b:f4:8d:78:7c:45:5a:da:fa:6b:74:b5:6a:51:91: 63:b2:2b:7f:c8:4c:08:f3:80:fe:7b:a1:b3:93:04: 95:17:27:9b:af:83:1c:15:27:d0:11:d3:b3:c7:b0: a7:1e:8f:d0:34:3d:3e:e4:ad:b5:9d:c5:b7:0f:07: a5:6f:9c:84:3a:e5:55:d9:8e:1f:23:9e:b9:02:00: 30:44:ca:df:de:7b:72:9b:58:86:82:00:8b:78:8e: b5:d3:04:c7:aa:b6:04:6c:09:ca:a8:c5:39:7e:c2: e3:32:7c:c6:33:50:82:ca:8b:22:ea:71:ce:86:d8: cb:c7:2e:cd:50:15:d0:ba:7c:ba:b9:b6:46:41:50: 7a:8d:ca:04:82:4d:f5:40:c7:95:4d:7e:4f:a8:4b: 0b:8a:26:a8:82:eb:e5:d4:b5:5a:10:84:f8:5a:65: fd:4d:02:98:62:cf:86:1f:a5:46:e4:f0:d7:89:8b: 6f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A0:4E:F4:6C:F4:75:87:5C:51:7F:53:96:A3:6F:21:02:71:AA:B3 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 38:6a:33:1e:19:3d:98:13:0f:3e:ae:65:cb:8c:ec:8e:91:74: 37:7e:fb:cf:0c:ec:0d:1b:5a:b1:36:a8:17:ec:7f:1d:b1:d8: 08:31:38:38:df:77:32:2f:f5:7c:c7:1b:86:56:1e:9f:f1:56: fa:e1:5d:75:d9:dc:2d:d7:05:a1:5c:34:53:ec:c4:ec:68:e0: 4b:68:c0:02:a4:36:6d:91:d2:20:73:75:8d:83:79:e7:a0:c2: d3:92:2d:5d:83:c1:cb:3d:3d:7e:62:24:c8:03:0b:19:ed:92: 34:b1:1b:b9:99:52:6d:a8:fb:a8:31:84:1d:4f:e5:7a:16:a6: 60:bc:0f:81:88:30:d6:66:71:00:ec:29:89:fc:39:e2:1c:51: b2:44:bf:02:55:d6:c6:0e:fd:70:3b:02:2b:c6:50:26:d9:34: 97:d7:65:89:38:51:95:d2:fa:b1:8a:d2:62:a6:e4:12:f3:77: 3e:09:c1:1b:8f:1f:de:06:8a:f8:4f:74:ed:64:e0:3c:c9:31: f7:e3:3f:66:3e:af:5b:fd:df:8e:8f:08:9f:73:44:61:13:d0: 0b:ff:2b:cf:87:da:46:bc:9d:c2:5c:56:e9:f0:f6:b1:8c:1d: 60:77:6a:42:9b:39:16:13:48:b4:4e:1c:a5:b1:3b:3c:a9:69: 4c:25:de:33 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYH4wupN3dpDAJVuG/tVMLNC0szMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEQyQTA0RUY0NkNGNDc1ODc1QzUxN0Y1Mzk2QTM2RjIxMDI3MUFBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0htAn173hCtauMGNxirDGtM2 IqtIUnyW3rLuuzz2O4dp1Wa3adTCcYX7W0Zw4BM2WsaFkOeH6zgjrbCI56B0HCcJ H/e1gXF+AFv0jXh8RVra+mt0tWpRkWOyK3/ITAjzgP57obOTBJUXJ5uvgxwVJ9AR 07PHsKcej9A0PT7krbWdxbcPB6VvnIQ65VXZjh8jnrkCADBEyt/ee3KbWIaCAIt4 jrXTBMeqtgRsCcqoxTl+wuMyfMYzUILKiyLqcc6G2MvHLs1QFdC6fLq5tkZBUHqN ygSCTfVAx5VNfk+oSwuKJqiC6+XUtVoQhPhaZf1NAphiz4YfpUbk8NeJi29DAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0qBO9Gz0dYdcUX9TlqNvIQJxqrMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAyODI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA4ajMeGT2YEw8+rmXLjOyOkXQ3fvvPDOwN G1qxNqgX7H8dsdgIMTg433cyL/V8xxuGVh6f8Vb64V112dwt1wWhXDRT7MTsaOBL aMACpDZtkdIgc3WNg3nnoMLTki1dg8HLPT1+YiTIAwsZ7ZI0sRu5mVJtqPuoMYQd T+V6FqZgvA+BiDDWZnEA7CmJ/DniHFGyRL8CVdbGDv1wOwIrxlAm2TSX12WJOFGV 0vqxitJipuQS83c+CcEbjx/eBor4T3TtZOA8yTH34z9mPq9b/d+Ojwifc0RhE9AL /yvPh9pGvJ3CXFbp8PaxjB1gd2pCmzkWE0i0ThylsTs8qWlMJd4z -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org