$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa File: AS203069.roa (raw, json) Hash identifier: P1S084MNYXdD6V1gjqUCxg6axrcOHbxBsuI3MHy6uhc= Subject key identifier: 41:D6:72:6E:91:F6:C0:2B:8C:82:70:27:5E:E3:B7:79:59:2D:5D:A3 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3157ED62EAE0D10980C7B436C36C150D76B7B6B0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa Signing time: Tue 19 Sep 2023 02:14:59 +0000 ROA not before: Tue 19 Sep 2023 02:09:59 +0000 ROA not after: Tue 17 Sep 2024 02:14:59 +0000 asID: 203069 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:57:ed:62:ea:e0:d1:09:80:c7:b4:36:c3:6c:15:0d:76:b7:b6:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:59 2023 GMT Not After : Sep 17 02:14:59 2024 GMT Subject: CN=41D6726E91F6C02B8C8270275EE3B779592D5DA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b5:e6:e5:9c:a5:e3:bb:f8:ae:2d:15:c3:14: 8b:b9:e9:3a:2e:73:f7:f2:e6:10:47:b6:29:b0:83: c0:d8:35:c2:a1:56:6e:c4:48:fb:98:40:14:d6:e8: 9f:11:8e:07:77:16:4a:84:fa:c3:fe:36:59:39:7f: 34:6d:61:82:e8:9e:ad:8a:d4:fc:41:c8:e6:c0:1b: 18:93:5c:ca:95:d2:7d:16:b7:92:13:30:d6:2d:26: 03:d0:f4:de:ff:0d:30:d5:f6:fe:ae:e2:46:52:fc: 81:00:49:84:6b:2a:68:04:a0:22:8f:bd:cd:65:69: c2:05:a5:69:3e:fb:00:83:d1:1c:e7:d6:bd:7b:4b: d4:4e:e8:c3:50:b1:31:ea:19:ae:2a:37:83:32:b3: 3e:f7:22:9c:5a:0f:8a:d7:23:30:6f:49:8e:03:62: 7a:b5:05:b2:ca:5a:cd:f3:fe:cf:ed:41:f9:a4:0d: 15:89:79:d4:8a:2c:9e:01:7d:1c:b9:d1:26:88:c7: 14:af:cf:2c:61:c5:c7:7a:87:3a:83:7b:26:8a:4d: 47:0b:c1:4d:b5:32:fd:ed:e3:07:22:59:2d:67:0a: e2:4f:0b:92:51:74:30:dd:1f:34:59:e9:21:7e:be: 73:c1:b8:be:a4:7a:93:a3:80:1f:67:52:c2:c3:de: 3e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D6:72:6E:91:F6:C0:2B:8C:82:70:27:5E:E3:B7:79:59:2D:5D:A3 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption ae:99:f0:d7:51:4c:d2:cb:b0:30:f5:38:8b:a5:eb:6c:c0:e5: f7:22:62:c7:57:cb:1f:18:c1:58:a8:0b:07:50:5d:26:74:76: f4:0e:37:8d:0e:38:7f:b4:d0:9d:51:87:61:19:03:01:db:ee: 5b:5e:c5:71:91:6d:44:dc:80:07:6e:b1:aa:49:f2:a7:da:c2: e8:98:b8:62:b1:58:6e:7b:20:f0:14:b2:ef:e3:7d:22:10:95: 08:f8:85:23:2c:88:09:39:d8:64:15:c9:0d:17:15:3e:3a:3c: 87:ad:7d:0b:06:73:49:be:65:bd:a5:9a:a0:ae:12:dc:5d:ec: bb:0c:f9:82:59:ac:e2:38:4c:c9:0e:65:3f:26:c5:e4:d5:dd: c3:06:7b:51:03:bd:01:3d:69:55:e2:b8:16:73:14:4d:8a:66: b4:27:5d:2a:cf:e1:a2:b6:aa:ea:cf:53:8f:ff:bc:dc:47:9d: 4d:8f:6c:d0:c9:53:c1:d6:e2:22:f2:72:13:ae:c1:7a:a0:df: 1f:5c:bf:88:f6:06:a0:d7:3c:a8:cf:bf:da:da:6c:17:bc:ef: f5:ef:17:9b:4a:a9:99:07:7e:03:cf:4d:08:26:8a:41:7e:9c: 6d:de:5e:80:ea:b9:70:6a:16:39:56:8a:57:f6:ba:43:58:ec: 98:f5:4a:43 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMVftYurg0QmAx7Q2w2wVDXa3trAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTlaFw0yNDA5MTcwMjE0NTlaMDMxMTAvBgNV BAMTKDQxRDY3MjZFOTFGNkMwMkI4QzgyNzAyNzVFRTNCNzc5NTkyRDVEQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRteblnKXju/iuLRXDFIu56Tou c/fy5hBHtimwg8DYNcKhVm7ESPuYQBTW6J8Rjgd3FkqE+sP+Nlk5fzRtYYLonq2K 1PxByObAGxiTXMqV0n0Wt5ITMNYtJgPQ9N7/DTDV9v6u4kZS/IEASYRrKmgEoCKP vc1lacIFpWk++wCD0Rzn1r17S9RO6MNQsTHqGa4qN4Mysz73IpxaD4rXIzBvSY4D Ynq1BbLKWs3z/s/tQfmkDRWJedSKLJ4BfRy50SaIxxSvzyxhxcd6hzqDeyaKTUcL wU21Mv3t4wciWS1nCuJPC5JRdDDdHzRZ6SF+vnPBuL6kepOjgB9nUsLD3j4FAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQdZybpH2wCuMgnAnXuO3eVktXaMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzMDY5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCumfDXUUzSy7Aw9TiLpetswOX3ImLHV8sf GMFYqAsHUF0mdHb0DjeNDjh/tNCdUYdhGQMB2+5bXsVxkW1E3IAHbrGqSfKn2sLo mLhisVhueyDwFLLv430iEJUI+IUjLIgJOdhkFckNFxU+OjyHrX0LBnNJvmW9pZqg rhLcXey7DPmCWaziOEzJDmU/JsXk1d3DBntRA70BPWlV4rgWcxRNima0J10qz+Gi tqrqz1OP/7zcR51Nj2zQyVPB1uIi8nITrsF6oN8fXL+I9gag1zyoz7/a2mwXvO/1 7xebSqmZB34Dz00IJopBfpxt3l6A6rlwahY5VopX9rpDWOyY9UpD -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org