$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa File: AS203867.roa (raw, json) Hash identifier: HTDyivfist3MX3UMNGBl46XAszHBrx64jqFAi5vijL4= Subject key identifier: 0A:8C:A7:71:58:09:E5:E2:E9:50:D8:28:2B:D5:18:BF:F7:A7:7D:A9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 16EB79330E1A9D3D3594CF5264AAAB8936734EC0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa Signing time: Tue 20 Aug 2024 02:31:53 +0000 ROA not before: Tue 20 Aug 2024 02:26:53 +0000 ROA not after: Tue 19 Aug 2025 02:31:53 +0000 asID: 203867 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1758::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:eb:79:33:0e:1a:9d:3d:35:94:cf:52:64:aa:ab:89:36:73:4e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:53 2024 GMT Not After : Aug 19 02:31:53 2025 GMT Subject: CN=0A8CA7715809E5E2E950D8282BD518BFF7A77DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:74:c1:11:77:18:9c:56:05:85:1a:8e:bd:d4: 40:13:95:d7:36:2f:7d:d9:c2:22:a2:84:76:ab:dc: da:36:a3:b2:c0:a7:9c:00:98:b4:50:33:a7:3b:35: ea:df:19:05:67:06:4b:2c:dc:30:54:86:b8:eb:db: fe:24:ff:20:73:8b:49:a4:f6:a2:cb:6b:b3:22:45: 17:ec:3d:96:f7:f2:c7:36:bc:4e:5e:c1:6f:aa:93: 35:70:57:62:63:54:7f:4b:ee:c8:4f:0d:87:2a:18: 10:97:b5:89:7f:1d:d7:69:07:6c:ee:69:ac:65:40: dd:19:67:68:2e:bd:61:0e:d5:2e:ea:66:1f:7e:60: 35:22:8b:87:a2:a4:cd:36:c2:d3:59:64:35:4f:74: 97:4c:47:70:57:33:b3:6a:e7:f2:5c:d6:b5:4a:f1: ff:68:f5:e2:6c:6d:a7:73:61:58:70:85:04:c7:6a: c2:89:3e:07:ce:e1:2c:22:bd:86:6b:15:e0:73:a0: 40:8e:fc:31:1c:d1:c2:1b:ac:02:dd:96:b9:47:0d: ce:57:e3:50:b4:43:dd:b6:88:c9:26:91:20:2a:d0: c0:ae:00:45:dd:a7:53:13:52:33:a7:3c:fb:57:77: 61:26:57:af:69:18:51:43:bd:a0:61:1b:59:3e:8b: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8C:A7:71:58:09:E5:E2:E9:50:D8:28:2B:D5:18:BF:F7:A7:7D:A9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1758::/48 Signature Algorithm: sha256WithRSAEncryption 6d:98:8d:53:bc:8d:24:8f:15:64:e0:6d:02:14:34:ce:ee:5d: 87:42:07:5b:ea:8a:bd:86:fc:31:c4:d1:12:36:9a:2f:89:5c: bf:06:e5:2e:af:51:c6:10:05:7a:08:bb:92:fa:71:27:5f:12: 45:1b:c3:ca:07:5e:3d:0e:cc:05:ee:da:0f:4c:c8:01:97:64: 89:60:40:e8:da:ba:34:62:fc:7d:50:74:79:1c:a6:c8:41:a4: 3d:50:0a:2b:13:21:6d:e5:51:db:2b:9d:3f:d4:b0:63:80:f9: 10:92:ca:77:87:78:c9:3e:b0:7d:72:29:b4:4a:b3:06:99:e9: e0:21:5d:9e:46:8f:89:5a:db:2d:1f:94:9e:2a:c9:ea:2d:a6: d4:bd:ad:eb:e4:c3:00:2d:61:2b:ea:6d:fb:64:0a:6e:2b:2e: 0e:45:a3:e4:6c:ff:b1:84:e0:20:ad:4a:ee:e1:b1:a2:37:f5: 29:83:e6:81:50:ea:53:e0:b4:28:8d:b2:c4:ee:cd:6a:87:5f: 52:a0:a4:55:be:8e:01:51:dd:75:10:96:5c:a2:47:11:22:10: 9b:18:9b:04:7b:a9:77:d6:06:6e:e4:98:ff:d9:1f:cc:f0:0f: bf:29:db:a3:bb:b4:74:21:e1:2b:40:99:7b:7e:32:86:62:74: f2:00:5a:ab -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUFut5Mw4anT01lM9SZKqriTZzTsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTNaFw0yNTA4MTkwMjMxNTNaMDMxMTAvBgNV BAMTKDBBOENBNzcxNTgwOUU1RTJFOTUwRDgyODJCRDUxOEJGRjdBNzdEQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0dMERdxicVgWFGo691EATldc2 L33ZwiKihHar3No2o7LAp5wAmLRQM6c7NerfGQVnBkss3DBUhrjr2/4k/yBzi0mk 9qLLa7MiRRfsPZb38sc2vE5ewW+qkzVwV2JjVH9L7shPDYcqGBCXtYl/HddpB2zu aaxlQN0ZZ2guvWEO1S7qZh9+YDUii4eipM02wtNZZDVPdJdMR3BXM7Nq5/Jc1rVK 8f9o9eJsbadzYVhwhQTHasKJPgfO4SwivYZrFeBzoECO/DEc0cIbrALdlrlHDc5X 41C0Q922iMkmkSAq0MCuAEXdp1MTUjOnPPtXd2EmV69pGFFDvaBhG1k+iwFlAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUCoyncVgJ5eLpUNgoK9UYv/enfakwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzODY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdYMA0GCSqGSIb3DQEBCwUAA4IBAQBtmI1TvI0kjxVk4G0CFDTO 7l2HQgdb6oq9hvwxxNESNpoviVy/BuUur1HGEAV6CLuS+nEnXxJFG8PKB149DswF 7toPTMgBl2SJYEDo2ro0Yvx9UHR5HKbIQaQ9UAorEyFt5VHbK50/1LBjgPkQksp3 h3jJPrB9cim0SrMGmengIV2eRo+JWtstH5SeKsnqLabUva3r5MMALWEr6m37ZApu Ky4ORaPkbP+xhOAgrUru4bGiN/Upg+aBUOpT4LQojbLE7s1qh19SoKRVvo4BUd11 EJZcokcRIhCbGJsEe6l31gZu5Jj/2R/M8A+/Kduju7R0IeErQJl7fjKGYnTyAFqr -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org