$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa File: AS203619.roa (raw, json) Hash identifier: +82djWIdokfAPI4igK8yv1Kb1IsOHHwz5UT7LQPKZtw= Subject key identifier: 1F:66:1E:4D:C8:A7:39:3D:81:9D:D1:42:E1:46:91:70:8F:FC:1E:46 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1CEC6D80E4B670C2D83A9FB278540CDF31D71092 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 203619 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ec:6d:80:e4:b6:70:c2:d8:3a:9f:b2:78:54:0c:df:31:d7:10:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=1F661E4DC8A7393D819DD142E14691708FFC1E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:93:af:ba:c8:88:04:04:44:c6:9f:b3:2c: 29:d1:59:31:ea:f2:e5:45:c8:96:f4:d4:7b:50:78: 4e:90:cf:e2:56:35:50:a6:28:ba:18:9c:f9:16:b9: 06:d7:84:4c:7e:56:75:2d:d0:71:91:12:24:54:b9: 1b:39:54:b0:c7:28:84:c5:1c:4b:5e:e5:d4:65:96: dc:a0:fc:61:07:2b:31:ea:26:14:b3:7c:7b:44:4b: 72:61:4c:bf:4c:02:2a:28:72:0d:9e:9c:9c:03:e2: 92:43:2d:d0:0b:37:cc:cf:4d:1f:c7:51:6d:b7:36: 04:14:93:46:6e:36:a6:7c:d1:26:0a:dd:15:57:52: e1:50:5a:ab:de:d7:c6:b6:0e:8b:85:57:72:f4:fa: 68:7c:0c:68:c2:15:fb:89:56:25:c2:be:c9:e6:f1: 57:da:8f:bb:21:a3:47:3d:4e:02:aa:00:f2:5a:27: 9b:bf:64:c5:7d:f9:64:9f:a3:80:88:f8:22:4b:cc: 07:cf:cc:2e:32:e8:47:2f:b4:6a:1c:b6:46:81:a9: fe:5d:7a:cc:c9:21:60:f7:ab:bf:93:a2:af:ee:73: 57:2a:8a:f7:16:75:64:4e:f1:88:49:8a:ab:3a:3f: 28:f2:28:a8:71:94:5e:1d:29:89:ab:02:f4:7c:42: b1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:66:1E:4D:C8:A7:39:3D:81:9D:D1:42:E1:46:91:70:8F:FC:1E:46 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 32:c0:7b:6a:0e:48:99:be:62:a9:b2:6e:21:e6:d8:41:61:b2: f1:01:6c:79:0f:fc:24:f1:1f:bc:54:ff:31:1a:4b:ba:54:02: dc:22:1f:3b:9b:ab:bc:3e:c4:7d:97:d4:5a:ac:c2:13:11:0f: 70:be:1d:09:c5:d7:ec:ae:5c:0b:39:62:ea:f8:b8:86:f1:e2: f5:6f:d9:60:b8:db:24:89:35:c2:de:a9:8a:34:f3:38:82:60: 20:ff:2f:ab:11:8e:51:c7:54:cc:3b:2d:20:5d:4a:99:19:77: 72:bb:c9:91:a8:bd:54:00:0f:75:a5:ec:44:92:cf:46:f5:27: 19:22:6f:90:ce:f2:42:c8:0e:d3:f7:15:e6:fe:d6:c2:a3:90: 01:d7:c9:f3:0c:ff:97:80:9c:dc:20:f8:4b:99:ed:95:49:56: 6e:af:6d:a3:93:d4:13:14:9c:df:d4:aa:20:2c:42:46:ca:d3: 87:40:49:e6:0c:6b:b6:93:9f:b2:d8:87:40:6a:23:5b:99:61: 63:40:e8:cf:6b:8f:e9:ea:ac:5d:92:0f:5e:de:a8:8b:99:6b: 41:ec:e2:00:df:fe:f1:0c:de:cf:30:13:7c:32:b2:4c:90:b2: 22:a2:93:ab:d4:4a:d1:44:59:43:92:2c:a5:11:1a:fd:0d:22: 70:ab:02:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHOxtgOS2cMLYOp+yeFQM3zHXEJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDFGNjYxRTREQzhBNzM5M0Q4MTlERDE0MkUxNDY5MTcwOEZGQzFFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBJJOvusiIBARExp+zLCnRWTHq 8uVFyJb01HtQeE6Qz+JWNVCmKLoYnPkWuQbXhEx+VnUt0HGREiRUuRs5VLDHKITF HEte5dRlltyg/GEHKzHqJhSzfHtES3JhTL9MAioocg2enJwD4pJDLdALN8zPTR/H UW23NgQUk0ZuNqZ80SYK3RVXUuFQWqve18a2DouFV3L0+mh8DGjCFfuJViXCvsnm 8Vfaj7sho0c9TgKqAPJaJ5u/ZMV9+WSfo4CI+CJLzAfPzC4y6EcvtGoctkaBqf5d eszJIWD3q7+Toq/uc1cqivcWdWRO8YhJiqs6PyjyKKhxlF4dKYmrAvR8QrFFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUH2YeTcinOT2BndFC4UaRcI/8HkYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzNjE5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAywHtqDkiZvmKpsm4h5thBYbLxAWx5D/wk 8R+8VP8xGku6VALcIh87m6u8PsR9l9RarMITEQ9wvh0JxdfsrlwLOWLq+LiG8eL1 b9lguNskiTXC3qmKNPM4gmAg/y+rEY5Rx1TMOy0gXUqZGXdyu8mRqL1UAA91pexE ks9G9ScZIm+QzvJCyA7T9xXm/tbCo5AB18nzDP+XgJzcIPhLme2VSVZur22jk9QT FJzf1KogLEJGytOHQEnmDGu2k5+y2IdAaiNbmWFjQOjPa4/p6qxdkg9e3qiLmWtB 7OIA3/7xDN7PMBN8MrJMkLIiopOr1ErRRFlDkiylERr9DSJwqwLj -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org