$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa File: AS203619.roa (raw, json) Hash identifier: 5Bey2M2b78rJEIomXVbruEMNI6Juuf4AcqGkcRp8Wv8= Subject key identifier: 77:66:99:93:0A:4B:73:82:BA:C9:8A:1D:85:26:9D:EA:86:05:02:E4 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 679DA97AA627359A211AA32E6675BB85B0471576 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 203619 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9d:a9:7a:a6:27:35:9a:21:1a:a3:2e:66:75:bb:85:b0:47:15:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=776699930A4B7382BAC98A1D85269DEA860502E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fc:0e:0a:da:d9:d5:39:bf:6b:45:d5:30:37: 84:83:c6:a6:55:93:1f:eb:f7:7b:bb:5d:5f:51:b0: f5:9e:40:e6:06:88:9e:c2:da:63:77:6f:27:f4:4b: 12:68:8c:71:95:9f:f2:ba:5d:3a:fa:c9:79:0f:03: fc:a7:fb:0e:42:08:a2:e5:38:a5:f1:60:99:f1:09: 53:9d:1f:fe:03:3d:5c:f0:02:b1:53:af:65:99:4d: 0d:d2:a2:4a:01:7f:fd:2b:d7:6a:13:b7:11:c5:41: 4c:b3:22:43:ce:23:a7:a8:03:d8:0c:96:c1:b9:23: c6:c7:c2:03:ad:cc:a2:0c:7e:46:66:39:81:dc:6c: f8:77:dc:61:82:57:a6:7c:2c:ca:8d:7c:d3:ab:cb: 34:7c:52:63:81:70:44:86:cf:a7:e3:1f:e0:4c:0c: 14:8f:0e:0f:76:f6:88:46:76:d8:69:d2:d1:a6:c5: 54:a6:9d:e4:34:83:12:1a:b6:74:21:04:f6:56:bb: 5d:a9:83:37:37:cf:49:36:ff:7a:a5:a4:19:0a:63: 7c:c2:24:9a:61:c5:10:31:b3:f2:83:01:dd:f5:ed: d9:32:78:46:0c:7d:72:a3:6f:f2:31:fa:60:01:ed: 66:a3:40:a9:64:18:00:13:f0:a7:3c:40:52:0f:c5: 89:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:66:99:93:0A:4B:73:82:BA:C9:8A:1D:85:26:9D:EA:86:05:02:E4 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203619.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 39:ba:8b:35:c2:52:67:ad:0a:19:eb:ff:cd:a1:69:ed:ed:71: 14:60:ef:ae:70:08:d5:e6:2d:ec:af:a7:03:2a:c7:15:cd:d2: 04:d5:02:d4:f6:f4:1c:c4:4e:3b:0e:96:e9:b3:2e:7c:ff:15: a9:de:54:7f:d0:5c:71:1a:22:f3:e1:5e:a2:e4:ff:65:5b:85: ea:ea:86:de:3b:6b:65:32:70:92:81:fc:5d:bf:b9:cd:c9:d0: d3:ec:54:6f:e9:d8:39:3a:f4:43:a9:a6:28:77:bc:7c:5b:db: 0c:62:31:83:52:5e:41:8b:3f:af:b4:62:cf:a9:51:3e:23:b1: e6:f6:42:93:3f:9c:14:47:86:87:9f:db:32:d5:61:d5:08:e9: d4:71:07:49:51:14:d4:a3:bb:00:e9:f9:41:05:db:e0:9e:86: ca:7f:98:72:0a:28:42:38:ff:08:df:d3:3a:18:19:2c:2e:c2: c4:18:ae:06:ff:49:6e:1c:ef:1b:b5:39:5c:37:82:36:37:a0: a0:fd:3f:3c:6b:4f:86:dc:8b:69:13:93:e5:a8:48:f0:c4:25: 70:af:3d:b7:3d:59:ad:9e:1d:a7:83:59:cb:23:75:7a:54:fc: 42:d2:19:2c:6a:a0:a5:f1:ba:a2:12:d6:0d:37:07:ce:aa:b2: c1:23:d5:0f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZ52peqYnNZohGqMuZnW7hbBHFXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKDc3NjY5OTkzMEE0QjczODJCQUM5OEExRDg1MjY5REVBODYwNTAyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb/A4K2tnVOb9rRdUwN4SDxqZV kx/r93u7XV9RsPWeQOYGiJ7C2mN3byf0SxJojHGVn/K6XTr6yXkPA/yn+w5CCKLl OKXxYJnxCVOdH/4DPVzwArFTr2WZTQ3SokoBf/0r12oTtxHFQUyzIkPOI6eoA9gM lsG5I8bHwgOtzKIMfkZmOYHcbPh33GGCV6Z8LMqNfNOryzR8UmOBcESGz6fjH+BM DBSPDg929ohGdthp0tGmxVSmneQ0gxIatnQhBPZWu12pgzc3z0k2/3qlpBkKY3zC JJphxRAxs/KDAd317dkyeEYMfXKjb/Ix+mAB7WajQKlkGAAT8Kc8QFIPxYnLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUd2aZkwpLc4K6yYodhSad6oYFAuQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzNjE5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA5uos1wlJnrQoZ6//NoWnt7XEUYO+ucAjV 5i3sr6cDKscVzdIE1QLU9vQcxE47Dpbpsy58/xWp3lR/0FxxGiLz4V6i5P9lW4Xq 6obeO2tlMnCSgfxdv7nNydDT7FRv6dg5OvRDqaYod7x8W9sMYjGDUl5Biz+vtGLP qVE+I7Hm9kKTP5wUR4aHn9sy1WHVCOnUcQdJURTUo7sA6flBBdvgnobKf5hyCihC OP8I39M6GBksLsLEGK4G/0luHO8btTlcN4I2N6Cg/T88a0+G3ItpE5PlqEjwxCVw rz23PVmtnh2ng1nLI3V6VPxC0hksaqCl8bqiEtYNNwfOqrLBI9UP -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org