$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa File: AS203867.roa (raw, json) Hash identifier: 8pH7J43Wlq6HhuxOQwq4Ro7tDPYKlm5ThmYzZelXodw= Subject key identifier: 36:28:99:03:FF:AD:90:D8:DB:B3:19:57:32:48:F6:6A:74:74:4B:E9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 109CC366B0006B7E995B1989FC0B6E6464D9F4C2 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 203867 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1758::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:9c:c3:66:b0:00:6b:7e:99:5b:19:89:fc:0b:6e:64:64:d9:f4:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=36289903FFAD90D8DBB319573248F66A74744BE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:80:cb:da:93:44:0c:e3:15:24:94:4f:98:12: e7:65:43:be:23:8c:ef:2f:80:c8:4e:35:37:4b:3e: 3c:ca:c4:48:12:ae:b4:9d:eb:aa:3c:15:18:5f:7e: fa:0d:75:e8:6d:fb:ff:26:17:a4:35:10:e4:0e:50: b4:58:4b:c4:8e:14:64:2d:f1:db:44:5d:e9:4e:fe: a1:d5:36:0c:38:54:63:e7:5b:a7:49:af:86:34:45: d3:c7:92:85:da:58:2b:95:06:32:53:86:91:b6:94: e8:01:e8:6d:06:55:1a:ed:27:5a:dc:67:17:8f:c3: cf:12:3d:8a:11:26:46:76:5f:06:40:4a:6d:fe:66: cf:9b:bd:a8:d9:bc:9f:82:7a:10:89:76:a9:9f:88: 4c:92:26:46:1e:d4:60:9e:8b:27:bf:98:f3:b3:e2: ed:0d:1d:9e:53:91:c4:ac:34:42:7d:1c:27:b3:9d: ad:64:0a:d4:fb:7e:13:c2:26:c9:57:03:bf:8f:ca: 98:d7:e3:99:80:70:fa:87:66:c8:c5:a5:26:05:27: 7c:d7:ac:f1:ca:51:0e:9e:2a:de:01:70:8f:c8:90: e2:88:8f:ad:a4:fc:a9:dd:0c:67:fc:b1:e4:6c:4c: 98:ec:5a:b9:19:3f:43:91:6b:03:15:9a:3a:f6:8b: 3f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:28:99:03:FF:AD:90:D8:DB:B3:19:57:32:48:F6:6A:74:74:4B:E9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1758::/48 Signature Algorithm: sha256WithRSAEncryption b6:a5:9c:0b:fe:69:cb:90:5f:34:89:fe:45:79:79:a4:1f:1e: 09:f7:4f:c9:65:a9:2b:5e:b1:00:96:da:15:ed:db:af:8b:7f: 56:da:fb:20:41:97:3d:66:87:76:84:1f:93:5f:88:90:05:d5: 58:36:2c:ff:41:e7:05:67:1b:6e:a3:f0:a3:ea:38:e0:d1:f2: 88:43:7a:b9:a3:6b:b8:2e:45:35:cc:cf:72:60:2b:c6:af:47: 81:91:fc:01:b1:30:e2:e4:fa:89:58:06:68:92:99:ce:da:66: 38:39:56:96:4f:cc:cb:0f:62:71:a8:d2:13:82:b0:65:4c:90: bc:b1:18:2d:58:bb:78:8a:7a:13:a8:54:47:46:18:fa:d9:02: f5:c7:0f:27:ba:50:a5:e5:07:1b:48:3d:5e:92:4a:77:c0:de: 99:94:2d:32:f5:a6:c0:e7:4e:30:7e:1b:d8:26:9d:ce:1c:ce: 4f:e7:c0:89:d5:a4:2b:3b:23:2c:62:0e:e8:8b:8a:c0:ed:57: c6:39:10:7d:90:e9:2e:65:1e:1b:5f:21:3b:4b:59:03:f9:a3: 5d:51:32:08:65:14:a3:60:a1:8b:3c:b5:a9:ab:47:ab:e3:35: 77:1a:95:f9:f7:32:d1:4b:4f:d7:6d:09:8a:60:0a:5d:90:75: 84:67:1e:ee -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUEJzDZrAAa36ZWxmJ/AtuZGTZ9MIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKDM2Mjg5OTAzRkZBRDkwRDhEQkIzMTk1NzMyNDhGNjZBNzQ3NDRCRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3gMvak0QM4xUklE+YEudlQ74j jO8vgMhONTdLPjzKxEgSrrSd66o8FRhffvoNdeht+/8mF6Q1EOQOULRYS8SOFGQt 8dtEXelO/qHVNgw4VGPnW6dJr4Y0RdPHkoXaWCuVBjJThpG2lOgB6G0GVRrtJ1rc ZxePw88SPYoRJkZ2XwZASm3+Zs+bvajZvJ+CehCJdqmfiEySJkYe1GCeiye/mPOz 4u0NHZ5TkcSsNEJ9HCezna1kCtT7fhPCJslXA7+PypjX45mAcPqHZsjFpSYFJ3zX rPHKUQ6eKt4BcI/IkOKIj62k/KndDGf8seRsTJjsWrkZP0ORawMVmjr2iz/LAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUNiiZA/+tkNjbsxlXMkj2anR0S+kwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzODY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdYMA0GCSqGSIb3DQEBCwUAA4IBAQC2pZwL/mnLkF80if5FeXmk Hx4J90/JZakrXrEAltoV7duvi39W2vsgQZc9Zod2hB+TX4iQBdVYNiz/QecFZxtu o/Cj6jjg0fKIQ3q5o2u4LkU1zM9yYCvGr0eBkfwBsTDi5PqJWAZokpnO2mY4OVaW T8zLD2JxqNITgrBlTJC8sRgtWLt4inoTqFRHRhj62QL1xw8nulCl5QcbSD1ekkp3 wN6ZlC0y9abA504wfhvYJp3OHM5P58CJ1aQrOyMsYg7oi4rA7VfGORB9kOkuZR4b XyE7S1kD+aNdUTIIZRSjYKGLPLWpq0er4zV3GpX59zLRS0/XbQmKYApdkHWEZx7u -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org