$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa File: AS203232.roa (raw, json) Hash identifier: JXRTYDdIWa13GmvmbcI6QTsqVyXWHXbvWnxpm8ZBY+s= Subject key identifier: 80:B6:1C:73:36:E1:C5:8D:48:BB:8D:9C:8A:56:D1:B1:6F:E6:DB:AA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 77B27975A8F9B628D6F1594E568F159DD849C372 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 203232 IP address blocks: 2a07:54c1:1000::/36 maxlen: 48 2a07:54c4:8::/48 maxlen: 48 2a07:54c4:1754::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b2:79:75:a8:f9:b6:28:d6:f1:59:4e:56:8f:15:9d:d8:49:c3:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=80B61C7336E1C58D48BB8D9C8A56D1B16FE6DBAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:e1:5b:dc:5e:33:30:f6:27:d6:4a:6a:2b: cb:0e:5a:a7:de:f8:14:ad:9d:f0:56:a5:f2:12:be: 75:dd:17:40:39:93:bf:6d:a9:70:da:74:28:6a:ed: 23:dd:70:aa:f9:bf:6c:33:32:d2:7a:03:6d:63:51: 36:81:e8:f5:2c:1e:eb:a1:cc:4e:79:83:ef:41:39: 98:81:05:28:67:88:0a:dc:1e:f4:f8:04:8b:50:ed: 43:72:98:4c:79:75:44:f1:ae:c7:f5:2a:ea:cc:2a: 7b:43:f2:50:93:4d:9e:97:c2:65:04:2a:66:cd:44: 74:92:3c:a5:e7:59:8c:ad:9d:f7:1a:84:bc:8a:f4: d4:74:3b:fe:1a:6c:8e:a4:64:c7:18:52:49:a3:a3: 99:f7:63:ee:1c:4f:8e:56:a2:c2:72:5b:b7:3c:ac: 6b:75:0a:5d:e1:18:d9:4c:c7:2b:c6:cc:75:de:87: bc:3e:80:90:41:12:6e:3c:cd:44:63:ec:8e:d4:7c: c4:c8:d5:b2:39:16:50:95:3a:b5:98:13:0b:03:9b: 73:b0:42:1c:f6:5e:2f:34:7e:10:0d:88:c6:f1:99: 84:6f:3b:ae:a9:a9:f2:22:f2:5b:00:b2:db:7d:b0: e5:f5:18:03:26:98:46:00:cc:d6:b8:45:e1:8e:a1: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B6:1C:73:36:E1:C5:8D:48:BB:8D:9C:8A:56:D1:B1:6F:E6:DB:AA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:1000::/36 2a07:54c4:8::/48 2a07:54c4:1754::/48 Signature Algorithm: sha256WithRSAEncryption 68:b8:2f:c4:9f:07:5b:18:9c:23:f6:eb:e4:84:11:1f:a3:fb: 2b:09:2a:32:41:1a:f8:ea:72:c2:99:16:26:c3:0b:61:f2:f7: 14:89:c3:bf:89:56:a4:b1:40:38:a5:98:1a:df:95:61:6c:7d: 47:da:87:a4:e3:fe:dc:31:95:17:a9:b9:c5:20:37:f4:ac:23: f1:2c:63:3f:9c:9e:14:9d:d0:ee:f6:14:42:b2:c8:e4:7b:30: 76:2b:5e:84:74:ef:98:0e:c1:4f:18:0f:38:57:9d:7d:f2:c6: 35:b8:7e:dc:45:53:00:19:2e:2b:1b:d4:a7:aa:a9:c9:ec:23: e2:21:ea:5f:b7:dc:29:27:4c:89:32:bf:f0:71:6d:6f:96:af: 2a:3f:94:62:61:98:6e:0e:e4:25:c6:6c:c9:29:9e:3b:4f:5d: 19:28:9f:8d:3b:19:9f:86:81:a0:8a:eb:3a:66:44:1b:a8:27: 9c:7c:65:f5:d3:14:bb:44:91:60:34:97:99:08:31:89:b0:66: 34:63:be:60:55:ec:c8:e3:da:a7:ab:8b:b7:43:ff:43:ef:26: 58:20:29:71:66:71:4a:e8:c7:d8:91:f2:5e:92:fc:da:d0:90: f0:ef:d9:7f:41:77:67:c4:58:09:67:64:1c:cb:1a:df:06:5b: 22:ba:83:3b -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUd7J5daj5tijW8VlOVo8VndhJw3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDgwQjYxQzczMzZFMUM1OEQ0OEJCOEQ5QzhBNTZEMUIxNkZFNkRCQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5v+Fb3F4zMPYn1kpqK8sOWqfe +BStnfBWpfISvnXdF0A5k79tqXDadChq7SPdcKr5v2wzMtJ6A21jUTaB6PUsHuuh zE55g+9BOZiBBShniArcHvT4BItQ7UNymEx5dUTxrsf1KurMKntD8lCTTZ6XwmUE KmbNRHSSPKXnWYytnfcahLyK9NR0O/4abI6kZMcYUkmjo5n3Y+4cT45WosJyW7c8 rGt1Cl3hGNlMxyvGzHXeh7w+gJBBEm48zURj7I7UfMTI1bI5FlCVOrWYEwsDm3Ow Qhz2Xi80fhANiMbxmYRvO66pqfIi8lsAstt9sOX1GAMmmEYAzNa4ReGOoee9AgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUgLYcczbhxY1Iu42cilbRsW/m26owHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzMjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAAjAaAwYEKgdU wRADBwAqB1TEAAgDBwAqB1TEF1QwDQYJKoZIhvcNAQELBQADggEBAGi4L8SfB1sY nCP26+SEER+j+ysJKjJBGvjqcsKZFibDC2Hy9xSJw7+JVqSxQDilmBrflWFsfUfa h6Tj/twxlRepucUgN/SsI/EsYz+cnhSd0O72FEKyyOR7MHYrXoR075gOwU8YDzhX nX3yxjW4ftxFUwAZLisb1KeqqcnsI+Ih6l+33CknTIkyv/BxbW+Wryo/lGJhmG4O 5CXGbMkpnjtPXRkon407GZ+GgaCK6zpmRBuoJ5x8ZfXTFLtEkWA0l5kIMYmwZjRj vmBV7Mjj2qeri7dD/0PvJlggKXFmcUrox9iR8l6S/NrQkPDv2X9Bd2fEWAlnZBzL Gt8GWyK6gzs= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org