$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa File: AS203453.roa (raw, json) Hash identifier: GuAoybAV2swyjejE7XxSNqeueUJ3lpODdp4uCLWoy+g= Subject key identifier: DD:84:38:BC:53:E6:7F:4A:73:10:E9:26:8F:AB:47:79:FC:78:33:D1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 18FEC78813D1E20B536323891780E38C79B1F83D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 203453 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fe:c7:88:13:d1:e2:0b:53:63:23:89:17:80:e3:8c:79:b1:f8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=DD8438BC53E67F4A7310E9268FAB4779FC7833D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f3:02:56:23:10:1f:90:d5:f4:09:a9:dc:5d: 4d:48:b2:0b:8f:92:d6:e2:0c:99:bf:db:ca:f0:23: 33:d1:be:b8:ab:82:eb:b4:8a:53:a6:4b:74:75:78: 54:6c:a2:70:09:0f:2f:e2:2e:2d:b0:d0:9d:df:00: c9:64:fb:82:ae:10:7a:5d:ce:45:4f:46:8d:28:e5: 2b:f5:5c:3f:09:c3:98:83:7b:43:b6:61:cd:b8:d4: bd:c2:9f:84:00:63:42:78:07:1a:f3:c4:9f:8f:74: e2:03:4c:23:51:d7:fc:2d:5b:0a:a5:b6:18:8d:eb: 71:6e:e3:69:fb:df:34:47:65:ef:dc:f0:7f:35:3f: 8d:02:59:e1:0d:92:ca:03:fb:e3:b8:d6:e4:81:4b: 0f:d0:4b:51:81:c6:10:ab:ba:2c:6d:89:a5:03:c4: b6:a3:24:4a:ba:06:58:33:7a:22:fb:04:9f:65:77: 4b:e2:51:82:cd:e6:44:0d:c2:03:9b:a4:d7:3e:54: fc:19:8b:b0:21:fe:6d:8a:64:13:f6:9a:4b:2c:d7: 4f:73:ef:4d:4a:88:e6:52:9a:3f:cd:8f:cd:24:55: 9d:3a:e6:eb:8d:10:73:ee:f4:87:2d:c2:ba:96:35: e0:2c:f8:4e:08:a5:1b:67:23:ef:15:53:83:29:da: 44:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:84:38:BC:53:E6:7F:4A:73:10:E9:26:8F:AB:47:79:FC:78:33:D1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3c:9c:17:37:71:7b:bf:cf:85:f6:ef:85:45:4a:3a:d8:84:45: 7c:f1:53:27:9d:4b:a2:bf:b3:e4:f0:ab:78:6b:4e:0a:34:87: 37:b2:80:38:82:a3:1d:ee:dd:e7:6c:04:be:8a:22:62:8c:bc: 8e:61:bc:d5:e8:74:99:ee:09:09:22:5f:b2:d8:10:97:f4:ac: 9a:50:d8:2f:76:d1:26:90:41:e6:83:b0:e9:6a:2e:17:ce:6f: 4d:bb:15:e7:d7:8e:b1:b4:b2:72:12:d9:3e:82:ba:e7:77:a6: 74:d8:84:02:74:9d:5e:72:57:93:28:7d:5b:6c:65:d4:7f:fb: 28:c4:ed:b2:14:ae:2e:59:1f:44:53:07:30:2b:f1:10:be:ab: 74:0f:8b:de:15:cc:29:5c:71:3e:1c:b4:d2:bc:3f:cb:a2:84: 85:8e:5f:59:68:64:fa:ec:a5:1f:33:0e:02:5a:e2:b9:e7:08: fb:b9:a1:16:4f:c8:76:ec:ea:d0:1b:6d:ba:8f:59:91:62:4c: 9c:d4:33:1a:71:c4:31:97:bc:d8:2a:bd:0f:a6:29:d2:45:f7: 9f:66:fd:7a:7e:c0:2f:94:9b:b1:fb:bc:6e:c6:eb:68:73:e7: e0:0f:f4:24:48:37:b2:5b:94:10:9c:c8:1c:23:3d:9e:d0:e4: 58:88:45:f6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGP7HiBPR4gtTYyOJF4DjjHmx+D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKEREODQzOEJDNTNFNjdGNEE3MzEwRTkyNjhGQUI0Nzc5RkM3ODMzRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38wJWIxAfkNX0CancXU1IsguP ktbiDJm/28rwIzPRvrirguu0ilOmS3R1eFRsonAJDy/iLi2w0J3fAMlk+4KuEHpd zkVPRo0o5Sv1XD8Jw5iDe0O2Yc241L3Cn4QAY0J4BxrzxJ+PdOIDTCNR1/wtWwql thiN63Fu42n73zRHZe/c8H81P40CWeENksoD++O41uSBSw/QS1GBxhCruixtiaUD xLajJEq6BlgzeiL7BJ9ld0viUYLN5kQNwgObpNc+VPwZi7Ah/m2KZBP2mkss109z 701KiOZSmj/Nj80kVZ065uuNEHPu9IctwrqWNeAs+E4IpRtnI+8VU4Mp2kT9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU3YQ4vFPmf0pzEOkmj6tHefx4M9EwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzNDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA8nBc3cXu/z4X274VFSjrYhEV88VMnnUui v7Pk8Kt4a04KNIc3soA4gqMd7t3nbAS+iiJijLyOYbzV6HSZ7gkJIl+y2BCX9Kya UNgvdtEmkEHmg7Dpai4Xzm9NuxXn146xtLJyEtk+grrnd6Z02IQCdJ1ecleTKH1b bGXUf/soxO2yFK4uWR9EUwcwK/EQvqt0D4veFcwpXHE+HLTSvD/LooSFjl9ZaGT6 7KUfMw4CWuK55wj7uaEWT8h27OrQG226j1mRYkyc1DMaccQxl7zYKr0PpinSRfef Zv16fsAvlJux+7xuxutoc+fgD/QkSDeyW5QQnMgcIz2e0ORYiEX2 -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org