$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa File: AS203453.roa (raw, json) Hash identifier: CexkzNI5F+jSTZwd88jXf/Qq8WUb+9Gu0Lj6i4/WdJk= Subject key identifier: F0:DB:0F:AB:BB:3E:BE:5D:9A:C2:DE:4F:E1:98:B4:21:AF:7E:5C:95 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 682A54882D02270051A637A5E6319A57A67E45A0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 203453 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:2a:54:88:2d:02:27:00:51:a6:37:a5:e6:31:9a:57:a6:7e:45:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=F0DB0FABBB3EBE5D9AC2DE4FE198B421AF7E5C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ca:61:18:38:d8:9d:7e:b4:43:f0:a8:0b:ab: d4:7a:a5:ca:a1:22:d6:6d:a2:78:21:ae:f0:d0:8f: 65:01:6d:8d:34:43:8f:19:e2:80:83:d3:b4:a5:74: fe:fe:c8:04:73:16:2a:b7:c0:62:54:d2:dc:bc:5e: 3b:eb:68:59:83:f7:66:79:50:c1:e1:2a:76:7c:0d: dc:89:6d:a5:84:9a:39:80:2f:88:eb:d6:03:d6:a7: 93:3c:30:41:fe:a2:92:0b:e0:e8:06:3f:91:7a:2e: 43:60:10:05:c2:f8:e3:18:a1:05:86:3a:92:1a:ed: c4:ff:12:e8:be:40:75:07:56:28:d3:b3:5f:4a:4e: 15:a9:9e:e6:74:48:30:a2:2a:86:cb:56:cd:3a:de: 84:63:06:90:68:b7:a3:2c:ee:2f:09:6f:05:ed:9f: 67:f0:00:83:80:05:6c:91:1c:21:ff:06:7f:f3:3f: 23:0b:d5:15:02:17:0d:4e:0a:2e:67:a8:7f:70:c9: af:98:6f:5c:59:5d:a9:77:66:c3:67:5f:23:ea:da: 67:e8:80:fa:65:01:d8:75:0d:a7:59:13:50:d3:d6: 07:77:fd:c1:d7:32:84:4f:f8:d9:1d:26:43:fd:29: d0:c3:e2:bc:a9:96:72:68:13:db:6a:09:16:1b:9b: 45:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DB:0F:AB:BB:3E:BE:5D:9A:C2:DE:4F:E1:98:B4:21:AF:7E:5C:95 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 87:11:3f:95:3b:fd:ea:04:90:00:19:4f:c6:db:d2:60:cd:12: 9c:8a:2a:89:89:2a:09:75:75:7f:3f:55:57:de:4c:0e:78:0c: 2a:96:46:9b:b6:09:97:91:28:57:54:56:52:10:fd:ed:21:d8: 9b:5b:3c:46:b4:09:fa:8f:ed:63:d8:53:e2:54:d5:4f:c8:33: ef:18:ca:35:2a:20:f8:4c:a9:61:09:41:f0:80:c4:fd:68:12: 55:af:5b:09:ca:c1:ee:43:30:b8:2f:ca:64:80:b5:ab:30:77: 99:e0:be:0a:ed:5c:d7:7b:4d:7b:36:e8:bc:db:ae:2b:83:85: c6:7f:94:c4:65:65:91:21:17:38:8f:56:97:ee:31:4f:8d:e4: f4:21:2e:74:02:c9:e2:84:8f:1c:93:5a:cb:ff:cb:62:57:35: 62:ef:29:80:ac:69:db:58:b6:14:1f:b8:8f:07:7d:96:49:fb: 0e:5c:78:17:16:fa:db:87:b1:0d:f4:7b:5c:6f:05:50:bc:b0: 5a:69:eb:e1:b6:4e:e7:25:86:94:4f:16:01:d4:3c:0d:47:9a: be:1c:ec:2f:7b:0e:ba:91:3b:25:19:c3:b0:7f:27:b3:a2:3f: 78:db:e4:9b:8b:f7:40:2a:53:cc:dc:d8:33:ab:3a:b6:29:27: 06:eb:b0:c1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUaCpUiC0CJwBRpjel5jGaV6Z+RaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKEYwREIwRkFCQkIzRUJFNUQ5QUMyREU0RkUxOThCNDIxQUY3RTVDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClymEYONidfrRD8KgLq9R6pcqh ItZtonghrvDQj2UBbY00Q48Z4oCD07SldP7+yARzFiq3wGJU0ty8XjvraFmD92Z5 UMHhKnZ8DdyJbaWEmjmAL4jr1gPWp5M8MEH+opIL4OgGP5F6LkNgEAXC+OMYoQWG OpIa7cT/Eui+QHUHVijTs19KThWpnuZ0SDCiKobLVs063oRjBpBot6Ms7i8JbwXt n2fwAIOABWyRHCH/Bn/zPyML1RUCFw1OCi5nqH9wya+Yb1xZXal3ZsNnXyPq2mfo gPplAdh1DadZE1DT1gd3/cHXMoRP+NkdJkP9KdDD4ryplnJoE9tqCRYbm0W7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8NsPq7s+vl2awt5P4Zi0Ia9+XJUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzNDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCHET+VO/3qBJAAGU/G29JgzRKciiqJiSoJ dXV/P1VX3kwOeAwqlkabtgmXkShXVFZSEP3tIdibWzxGtAn6j+1j2FPiVNVPyDPv GMo1KiD4TKlhCUHwgMT9aBJVr1sJysHuQzC4L8pkgLWrMHeZ4L4K7VzXe017Nui8 264rg4XGf5TEZWWRIRc4j1aX7jFPjeT0IS50AsnihI8ck1rL/8tiVzVi7ymArGnb WLYUH7iPB32WSfsOXHgXFvrbh7EN9HtcbwVQvLBaaevhtk7nJYaUTxYB1DwNR5q+ HOwvew66kTslGcOwfyezoj942+Sbi/dAKlPM3Ngzqzq2KScG67DB -----END CERTIFICATE-----Generated at Sun Nov 24 10:22:13 2024 by rpki-client on console-fra.rpki-client.org