$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203458.roa File: AS203458.roa (raw, json) Hash identifier: JlkeLmWxh4RKiwapHj7uswb91K0V3SX7HLojfmDQoJo= Subject key identifier: C0:51:AB:4C:1B:03:33:C9:8E:36:6E:3C:FA:E5:02:51:19:B5:A0:68 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4B6E609048B588030FA694FE28F670956E88E0E0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203458.roa Signing time: Tue 20 Aug 2024 02:31:53 +0000 ROA not before: Tue 20 Aug 2024 02:26:53 +0000 ROA not after: Tue 19 Aug 2025 02:31:53 +0000 asID: 203458 IP address blocks: 2a07:54c1:3300::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:175a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:6e:60:90:48:b5:88:03:0f:a6:94:fe:28:f6:70:95:6e:88:e0:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:53 2024 GMT Not After : Aug 19 02:31:53 2025 GMT Subject: CN=C051AB4C1B0333C98E366E3CFAE5025119B5A068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:44:17:82:42:a8:0e:d5:77:e4:b0:7e:38:3f: 6f:8c:73:6b:06:6a:0f:d0:fd:a3:58:4a:88:23:29: 30:6a:05:35:21:18:b1:1d:b4:f2:50:56:ed:98:b4: 38:84:f5:86:cc:2f:b6:8c:1e:bd:29:59:fa:c1:ff: 31:42:2d:02:76:89:4f:e0:0b:55:56:7e:63:67:23: 24:4c:41:c9:3f:91:1c:b9:f9:e0:74:e4:3b:67:4b: df:00:c7:9d:e7:17:7d:19:05:27:05:4c:da:62:ee: e5:1e:3b:2e:a5:d8:32:19:80:54:43:55:46:de:b6: c3:75:5c:89:8f:7d:6e:cd:41:03:6c:cf:85:cd:9f: dc:6a:b2:91:40:de:8c:9c:6c:10:4e:3d:aa:dd:b3: 63:7a:fc:b5:b5:87:77:8b:48:ed:1b:f3:1e:e4:17: 5c:40:ef:73:8a:1b:96:70:b7:d2:d3:b2:fb:42:bf: cf:1c:1a:c7:cd:71:44:08:79:64:02:e6:5b:8d:c4: 1e:9c:0a:e9:9f:4d:69:6c:f1:f2:ae:78:0d:e5:6e: b7:8e:47:91:69:5b:31:a8:ab:3d:68:e8:49:a2:1e: d0:32:3b:f2:60:96:73:18:41:66:c8:3c:81:a1:ef: 5a:ac:4f:65:7d:92:0c:1f:f3:2e:77:f9:43:41:a2: d6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:51:AB:4C:1B:03:33:C9:8E:36:6E:3C:FA:E5:02:51:19:B5:A0:68 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203458.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3300::/40 2a07:54c2:b00b::/48 2a07:54c4:175a::/48 Signature Algorithm: sha256WithRSAEncryption aa:9f:4e:d5:dd:0c:c3:52:4c:8c:04:83:f1:ed:ac:f6:11:a1: 1c:39:9c:20:62:ac:c6:f1:2c:8d:22:90:cf:2b:a2:4b:52:f0: 8d:f8:b4:06:a6:6c:f4:34:fe:2e:35:5c:08:a0:44:d5:77:50: b1:c6:2c:ce:65:49:80:7f:f9:a6:5d:c0:0d:db:40:5b:0c:b7: 51:ca:65:d1:27:ce:bb:5a:f6:90:50:1d:24:05:77:3e:4d:b4: 42:28:f3:60:7f:ef:9b:cf:21:2f:87:6d:be:16:cd:99:79:0e: fc:8a:72:81:88:98:47:01:97:2a:0b:33:16:b8:a6:bc:3f:4f: 87:67:a6:50:4f:33:fd:32:8d:2e:5a:70:13:2f:93:0b:05:3f: da:3d:86:c6:75:5a:d3:fe:26:38:e8:d9:d5:bb:3c:da:1b:e9: d9:3e:37:09:ba:b4:bf:bd:90:a0:a0:04:cc:63:ca:6f:35:07: 41:9e:ae:b9:e5:17:c2:39:b2:55:24:76:e1:66:cc:a8:c2:f4: c9:91:a4:0f:84:cf:39:aa:47:c1:be:67:16:e5:8f:ee:16:97: 47:4c:6a:8f:11:2c:f5:cb:8e:f6:b6:d7:a9:9c:cb:ee:74:f2: 98:f8:ef:32:20:23:98:b5:72:d9:9f:1f:b3:9b:bd:45:ea:00: eb:2a:e8:31 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUS25gkEi1iAMPppT+KPZwlW6I4OAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTNaFw0yNTA4MTkwMjMxNTNaMDMxMTAvBgNV BAMTKEMwNTFBQjRDMUIwMzMzQzk4RTM2NkUzQ0ZBRTUwMjUxMTlCNUEwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+RBeCQqgO1XfksH44P2+Mc2sG ag/Q/aNYSogjKTBqBTUhGLEdtPJQVu2YtDiE9YbML7aMHr0pWfrB/zFCLQJ2iU/g C1VWfmNnIyRMQck/kRy5+eB05DtnS98Ax53nF30ZBScFTNpi7uUeOy6l2DIZgFRD VUbetsN1XImPfW7NQQNsz4XNn9xqspFA3oycbBBOPards2N6/LW1h3eLSO0b8x7k F1xA73OKG5Zwt9LTsvtCv88cGsfNcUQIeWQC5luNxB6cCumfTWls8fKueA3lbreO R5FpWzGoqz1o6EmiHtAyO/JglnMYQWbIPIGh71qsT2V9kgwf8y53+UNBotYTAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUwFGrTBsDM8mONm48+uUCURm1oGgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzNDU4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAAjAaAwYAKgdU wTMDBwAqB1TCsAsDBwAqB1TEF1owDQYJKoZIhvcNAQELBQADggEBAKqfTtXdDMNS TIwEg/HtrPYRoRw5nCBirMbxLI0ikM8roktS8I34tAambPQ0/i41XAigRNV3ULHG LM5lSYB/+aZdwA3bQFsMt1HKZdEnzrta9pBQHSQFdz5NtEIo82B/75vPIS+Hbb4W zZl5DvyKcoGImEcBlyoLMxa4prw/T4dnplBPM/0yjS5acBMvkwsFP9o9hsZ1WtP+ Jjjo2dW7PNob6dk+Nwm6tL+9kKCgBMxjym81B0GerrnlF8I5slUkduFmzKjC9MmR pA+EzzmqR8G+Zxblj+4Wl0dMao8RLPXLjva216mcy+508pj47zIgI5i1ctmfH7Ob vUXqAOsq6DE= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org