$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa File: AS203232.roa (raw, json) Hash identifier: jKC+44alKZZppwoKm7ugSLCQysfBgmNjTP3gju7CWkg= Subject key identifier: A9:DC:77:E5:70:18:44:2F:83:35:99:71:D2:CD:19:A4:B3:57:5D:CC Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6026D36AB06E8C77E6B031FB298D9D8582A7A408 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa Signing time: Wed 26 Jun 2024 17:29:19 +0000 ROA not before: Wed 26 Jun 2024 17:24:19 +0000 ROA not after: Wed 25 Jun 2025 17:29:19 +0000 asID: 203232 IP address blocks: 2a07:54c1:1000::/36 maxlen: 48 2a07:54c4:1754::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:26:d3:6a:b0:6e:8c:77:e6:b0:31:fb:29:8d:9d:85:82:a7:a4:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jun 26 17:24:19 2024 GMT Not After : Jun 25 17:29:19 2025 GMT Subject: CN=A9DC77E57018442F83359971D2CD19A4B3575DCC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8d:13:9d:6e:4f:bb:80:ff:55:9e:2c:e1:77: 70:88:a6:d2:16:47:c6:e1:ac:d7:79:8e:c7:84:12: 0c:d8:3c:86:6a:6d:ac:10:da:fb:e2:38:b4:38:8f: 33:85:da:24:db:ea:f2:e0:e4:6e:c2:ee:3a:ae:aa: 07:08:1b:94:9e:e7:8f:6b:6e:18:11:9c:89:bf:46: d5:1a:81:a6:bb:ee:f2:07:bb:dd:14:b3:0c:45:62: bc:0f:29:20:a4:b2:84:ad:6c:29:69:1e:aa:3e:0d: 23:9c:e2:31:75:da:77:fd:04:42:2e:1e:86:ee:ad: e9:ea:da:56:ef:08:05:28:d8:e7:72:47:ac:57:4f: e9:df:bb:bd:3b:cf:57:e1:55:47:95:8b:96:77:b5: da:18:f2:08:3d:36:92:67:76:bf:d3:12:f4:b8:75: 84:91:64:c1:0e:1c:bd:37:a3:3a:4e:fd:72:80:d3: 35:88:a3:cd:21:2c:9c:b2:fa:cc:52:09:62:12:92: 44:a5:35:d7:4e:2a:d0:a8:a0:fb:65:d9:58:3b:fa: 60:e8:b7:c3:04:bb:52:55:00:d4:9a:9a:f2:93:f2: 49:97:a4:e7:9a:3d:c2:db:59:03:a6:60:e3:2b:4c: ef:82:4e:bb:a7:22:6a:bd:28:b7:7f:db:78:69:c1: 97:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DC:77:E5:70:18:44:2F:83:35:99:71:D2:CD:19:A4:B3:57:5D:CC X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:1000::/36 2a07:54c4:1754::/48 Signature Algorithm: sha256WithRSAEncryption ad:ce:38:17:a1:7e:dc:b3:f1:28:a0:d6:17:78:d9:90:d9:e9: 96:a2:a0:d9:2b:bd:db:93:1b:b6:69:f2:72:f7:3a:0c:6f:ed: f5:37:41:41:d7:13:2a:c7:e6:c7:d1:4d:5a:f4:83:7d:8e:01: b3:6d:47:34:9f:8f:23:c0:61:95:f6:b5:ce:e2:34:c3:2a:58: 5b:c6:4e:ae:10:0c:58:07:34:24:93:18:70:9e:4f:a9:81:13: 22:23:c7:26:ee:4b:9c:6f:a1:d9:49:89:7c:d0:11:0a:76:c3: 52:55:8c:35:71:99:ce:8d:40:43:f4:37:32:4c:0d:76:cd:f4: 26:7c:46:17:43:18:c6:08:23:86:67:fb:82:e4:2c:fc:9a:25: 0c:5f:c0:e9:b0:d3:e0:23:1e:72:17:79:fd:42:58:16:d7:46: 57:f3:77:19:5c:d5:77:06:3b:83:3c:e0:ff:5f:80:31:f5:cf: 9d:08:e8:3e:5a:92:56:96:f0:ba:d0:2c:47:89:c7:8b:ea:98: a1:6c:ab:68:7e:84:1a:f2:d4:6d:bd:78:4d:1c:f8:ae:d5:79: 83:fb:9d:46:a6:26:a8:e3:0b:4c:cb:63:1a:9a:f9:e5:c6:27: b6:76:c0:2a:a6:58:5d:70:18:1d:f6:3d:c4:2c:00:37:dd:5c: 0a:45:6b:da -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUYCbTarBujHfmsDH7KY2dhYKnpAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA2MjYxNzI0MTlaFw0yNTA2MjUxNzI5MTlaMDMxMTAvBgNV BAMTKEE5REM3N0U1NzAxODQ0MkY4MzM1OTk3MUQyQ0QxOUE0QjM1NzVEQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYjROdbk+7gP9Vnizhd3CIptIW R8bhrNd5jseEEgzYPIZqbawQ2vviOLQ4jzOF2iTb6vLg5G7C7jquqgcIG5Se549r bhgRnIm/RtUagaa77vIHu90UswxFYrwPKSCksoStbClpHqo+DSOc4jF12nf9BEIu Hoburenq2lbvCAUo2OdyR6xXT+nfu707z1fhVUeVi5Z3tdoY8gg9NpJndr/TEvS4 dYSRZMEOHL03ozpO/XKA0zWIo80hLJyy+sxSCWISkkSlNddOKtCooPtl2Vg7+mDo t8MEu1JVANSamvKT8kmXpOeaPcLbWQOmYOMrTO+CTrunImq9KLd/23hpwZcXAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUqdx35XAYRC+DNZlx0s0ZpLNXXcwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzMjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYEKgdU wRADBwAqB1TEF1QwDQYJKoZIhvcNAQELBQADggEBAK3OOBehftyz8Sig1hd42ZDZ 6ZaioNkrvduTG7Zp8nL3Ogxv7fU3QUHXEyrH5sfRTVr0g32OAbNtRzSfjyPAYZX2 tc7iNMMqWFvGTq4QDFgHNCSTGHCeT6mBEyIjxybuS5xvodlJiXzQEQp2w1JVjDVx mc6NQEP0NzJMDXbN9CZ8RhdDGMYII4Zn+4LkLPyaJQxfwOmw0+AjHnIXef1CWBbX Rlfzdxlc1XcGO4M84P9fgDH1z50I6D5aklaW8LrQLEeJx4vqmKFsq2h+hBry1G29 eE0c+K7VeYP7nUamJqjjC0zLYxqa+eXGJ7Z2wCqmWF1wGB32PcQsADfdXApFa9o= -----END CERTIFICATE-----Generated at Sun Nov 24 10:22:13 2024 by rpki-client on console-fra.rpki-client.org