$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa File: AS203868.roa (raw, json) Hash identifier: oE6RwQwFG4sbXXx6gl6VeoFDdMngxV2GuG3f1R4brq4= Subject key identifier: CF:15:5C:7A:39:25:2E:36:E1:58:F9:AC:E8:E7:41:C0:7A:E7:47:B9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7140D7563FA18F5822DE264BC2B1283FBAFB10A9 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 203868 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:40:d7:56:3f:a1:8f:58:22:de:26:4b:c2:b1:28:3f:ba:fb:10:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=CF155C7A39252E36E158F9ACE8E741C07AE747B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:b2:ca:7c:5d:46:be:78:ac:9a:eb:82:6c: ed:b5:29:96:91:40:a4:90:d8:29:79:bb:36:58:6f: 2c:cb:1b:50:40:f8:ce:1e:d3:5d:12:19:4b:2d:ce: e1:53:cc:6f:7a:d2:5d:f2:80:14:5a:7a:e2:9a:25: 69:ff:30:16:e6:ec:f7:94:68:64:22:de:4b:e7:16: ec:1e:e3:45:73:ca:41:f1:31:11:f1:49:8d:9a:f7: 99:e5:21:a9:24:e6:ae:0b:24:79:f9:3d:e7:5d:ae: c5:da:d7:fe:20:a8:09:1e:54:da:ba:e8:39:75:42: ab:77:a3:bd:36:d3:c7:28:b2:50:9f:d7:86:7b:e7: c2:b5:c6:03:45:03:29:56:a0:ad:36:d8:d1:0f:e0: 21:c9:c1:36:78:ec:74:83:66:d8:ce:ed:5b:c7:5c: c5:bf:27:93:a2:01:d8:aa:07:42:9b:7f:29:d3:1c: 7e:e7:02:c6:09:41:e4:45:38:b8:5d:49:c0:00:3c: d1:dc:fe:d3:e6:61:07:bc:91:fb:04:23:9d:69:cd: ff:15:12:87:15:e6:0b:6c:6a:5e:b5:99:32:27:73: 5f:2b:a3:83:db:fb:0e:ad:a8:be:17:62:9d:f3:a7: 36:6f:0b:a6:0a:79:85:03:1d:d3:6e:a1:c2:3d:a5: 40:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:15:5C:7A:39:25:2E:36:E1:58:F9:AC:E8:E7:41:C0:7A:E7:47:B9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 5b:a6:ff:aa:50:ce:54:5f:e4:27:85:7c:c0:6d:c5:76:bb:b0: 15:27:e5:e5:b3:be:3d:d6:cf:23:1b:30:b4:0a:0d:91:01:d0: ac:54:30:63:29:33:e2:8a:cb:e9:9f:c5:1c:39:2a:83:75:4c: 27:ff:17:90:1c:62:80:46:d7:96:ae:28:92:3a:00:6a:e1:6e: ef:99:22:37:5b:a1:75:89:c1:31:d3:d1:b9:e0:5e:51:65:c7: b8:b6:39:36:bb:82:c8:90:ab:af:03:0f:44:20:fe:2c:95:00: f1:cc:35:08:8f:fe:0a:32:e7:cd:88:f5:88:28:06:ac:98:db: 63:56:d7:64:23:9e:95:a0:12:7c:27:40:3f:77:84:b5:64:55: 2b:62:2b:d9:11:cb:64:0e:c5:b3:a6:e9:57:78:bc:13:c8:48: c4:99:91:24:3f:75:35:1b:c8:2b:b1:6e:d6:2f:c1:5e:dd:24: 14:d7:3f:aa:4a:9e:04:c6:72:98:89:3b:ad:e3:e4:0d:8c:16: 37:5b:7d:b6:c9:03:48:94:0e:ac:24:d1:1c:6e:0d:56:a5:be: f6:a4:f1:87:7a:fa:93:24:fb:66:a3:0d:15:c7:99:32:83:71: 51:21:5e:b4:82:34:16:73:fd:09:df:13:2b:e1:10:65:12:d6: 2e:2a:08:67 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcUDXVj+hj1gi3iZLwrEoP7r7EKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKENGMTU1QzdBMzkyNTJFMzZFMTU4RjlBQ0U4RTc0MUMwN0FFNzQ3QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGk7LKfF1GvnismuuCbO21KZaR QKSQ2Cl5uzZYbyzLG1BA+M4e010SGUstzuFTzG960l3ygBRaeuKaJWn/MBbm7PeU aGQi3kvnFuwe40VzykHxMRHxSY2a95nlIakk5q4LJHn5PeddrsXa1/4gqAkeVNq6 6Dl1Qqt3o70208coslCf14Z758K1xgNFAylWoK022NEP4CHJwTZ47HSDZtjO7VvH XMW/J5OiAdiqB0KbfynTHH7nAsYJQeRFOLhdScAAPNHc/tPmYQe8kfsEI51pzf8V EocV5gtsal61mTInc18ro4Pb+w6tqL4XYp3zpzZvC6YKeYUDHdNuocI9pUCtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzxVcejklLjbhWPms6OdBwHrnR7kwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzODY4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBbpv+qUM5UX+QnhXzAbcV2u7AVJ+Xls749 1s8jGzC0Cg2RAdCsVDBjKTPiisvpn8UcOSqDdUwn/xeQHGKARteWriiSOgBq4W7v mSI3W6F1icEx09G54F5RZce4tjk2u4LIkKuvAw9EIP4slQDxzDUIj/4KMufNiPWI KAasmNtjVtdkI56VoBJ8J0A/d4S1ZFUrYivZEctkDsWzpulXeLwTyEjEmZEkP3U1 G8grsW7WL8Fe3SQU1z+qSp4ExnKYiTut4+QNjBY3W322yQNIlA6sJNEcbg1Wpb72 pPGHevqTJPtmow0Vx5kyg3FRIV60gjQWc/0J3xMr4RBlEtYuKghn -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org