$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa File: AS203069.roa (raw, json) Hash identifier: VqoYarlJiO4Nnkw4Nr6qqKPofnS2iq/Bh+7ZyX8enWs= Subject key identifier: E5:32:60:C2:C2:FC:63:F8:EB:38:C8:AA:A8:8C:88:A2:94:2D:7F:E8 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 38A0C0138C1E04C9844AC76E1AF2A892D5D0DBBB Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa Signing time: Tue 20 Aug 2024 02:31:55 +0000 ROA not before: Tue 20 Aug 2024 02:26:55 +0000 ROA not after: Tue 19 Aug 2025 02:31:55 +0000 asID: 203069 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a0:c0:13:8c:1e:04:c9:84:4a:c7:6e:1a:f2:a8:92:d5:d0:db:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:55 2024 GMT Not After : Aug 19 02:31:55 2025 GMT Subject: CN=E53260C2C2FC63F8EB38C8AAA88C88A2942D7FE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:cb:b1:2a:55:58:f1:16:49:cf:5a:83:7b: 54:8d:29:7b:1a:ea:bf:5f:3a:21:af:2a:5b:9d:00: fe:e7:d1:de:0b:c5:15:b8:54:d7:97:a6:b9:6c:51: 9d:87:bc:e5:09:7b:2e:dc:e2:77:61:5e:56:6e:12: 63:b0:60:b4:97:bd:6b:aa:86:e7:97:42:b8:93:c2: 74:9e:8c:d4:da:72:d7:5c:1f:ad:b4:5d:39:91:43: 99:d9:54:c3:93:a8:70:21:82:83:20:03:94:1d:17: 9b:d7:2a:73:2a:06:37:09:dd:cf:54:07:e5:c6:5a: 5b:54:4a:b3:02:84:64:5a:25:02:e2:07:16:72:81: 5c:9b:bb:04:c3:6d:9d:98:cc:f2:25:53:e1:0d:7c: bc:d0:ef:db:8f:52:11:33:bb:09:3a:fc:76:b4:04: 4d:33:89:e9:57:55:5a:49:b5:02:4b:a4:52:8f:60: 3a:7f:99:a3:fe:a1:a2:39:d9:f5:67:6c:52:04:1a: 85:6d:f3:4c:64:bc:47:e3:e4:ab:a3:d6:4f:28:0d: 62:4b:4e:46:c2:99:ee:04:8e:86:40:43:9d:3f:5e: cd:88:79:55:80:d5:c4:e2:15:6a:3f:7a:69:42:4c: 6f:8f:9e:b2:b4:1a:9e:71:47:ec:76:32:17:22:8d: 0c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:32:60:C2:C2:FC:63:F8:EB:38:C8:AA:A8:8C:88:A2:94:2D:7F:E8 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203069.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 50:4f:49:51:6b:a1:ab:9c:54:02:e4:91:e3:8e:3f:11:9b:2b: a9:2c:7b:5c:5c:33:1f:48:de:ac:37:55:37:d7:38:0f:9d:e9: ce:5d:0b:08:3f:ee:51:bb:f4:8c:a7:84:c7:28:f7:08:74:4e: 0e:38:64:9a:ff:84:e3:05:90:02:24:cf:b6:a6:38:f0:e4:fb: ae:19:2d:bc:67:2d:21:4c:7f:e6:82:3a:cd:3d:af:0a:72:9e: d4:65:61:50:b2:6a:29:3d:80:d8:e5:43:8f:8a:c1:25:e0:04: a0:49:85:45:6c:65:64:65:03:66:d5:42:68:91:71:29:60:3c: 95:ca:33:62:5a:66:8d:9a:5f:1e:d2:78:7a:ff:70:16:85:0a: 1f:cc:23:4c:9a:67:0f:fe:e6:70:d8:1f:83:1a:6f:85:06:01: 5a:da:86:25:3c:2b:cf:27:75:df:06:8f:4a:32:04:09:71:cf: 49:5c:b2:4e:60:ce:cf:50:1e:64:53:09:3a:32:db:8b:1c:38: 65:f5:a8:e5:f6:4a:ee:16:95:59:94:6a:51:b0:3c:a4:68:e9: 5c:29:3d:84:f4:d5:03:ed:c1:5e:7d:41:90:88:8d:31:32:84: 36:48:00:e2:8a:01:16:aa:87:40:c9:3e:96:e0:ac:44:ea:81: b9:20:e0:77 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOKDAE4weBMmESsduGvKoktXQ27swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTVaFw0yNTA4MTkwMjMxNTVaMDMxMTAvBgNV BAMTKEU1MzI2MEMyQzJGQzYzRjhFQjM4QzhBQUE4OEM4OEEyOTQyRDdGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCph8uxKlVY8RZJz1qDe1SNKXsa 6r9fOiGvKludAP7n0d4LxRW4VNeXprlsUZ2HvOUJey7c4ndhXlZuEmOwYLSXvWuq hueXQriTwnSejNTactdcH620XTmRQ5nZVMOTqHAhgoMgA5QdF5vXKnMqBjcJ3c9U B+XGWltUSrMChGRaJQLiBxZygVybuwTDbZ2YzPIlU+ENfLzQ79uPUhEzuwk6/Ha0 BE0zielXVVpJtQJLpFKPYDp/maP+oaI52fVnbFIEGoVt80xkvEfj5Kuj1k8oDWJL TkbCme4EjoZAQ50/Xs2IeVWA1cTiFWo/emlCTG+PnrK0Gp5xR+x2MhcijQw5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5TJgwsL8Y/jrOMiqqIyIopQtf+gwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzMDY5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBQT0lRa6GrnFQC5JHjjj8RmyupLHtcXDMf SN6sN1U31zgPnenOXQsIP+5Ru/SMp4THKPcIdE4OOGSa/4TjBZACJM+2pjjw5Puu GS28Zy0hTH/mgjrNPa8Kcp7UZWFQsmopPYDY5UOPisEl4ASgSYVFbGVkZQNm1UJo kXEpYDyVyjNiWmaNml8e0nh6/3AWhQofzCNMmmcP/uZw2B+DGm+FBgFa2oYlPCvP J3XfBo9KMgQJcc9JXLJOYM7PUB5kUwk6MtuLHDhl9ajl9kruFpVZlGpRsDykaOlc KT2E9NUD7cFefUGQiI0xMoQ2SADiigEWqodAyT6W4KxE6oG5IOB3 -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org