$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa File: AS203868.roa (raw, json) Hash identifier: ZFGSBU78oq9i5ve4CO2gpAmz7QHMTBMg3J5I1XiZH00= Subject key identifier: 35:CA:47:67:96:78:02:34:24:CE:F0:41:1B:17:64:5F:F8:77:27:18 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3DEF5652ED6E069D683FAD3CC83DA8A75B81DF39 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa Signing time: Tue 19 Sep 2023 02:14:59 +0000 ROA not before: Tue 19 Sep 2023 02:09:59 +0000 ROA not after: Tue 17 Sep 2024 02:14:59 +0000 asID: 203868 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 06 May 2024 16:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ef:56:52:ed:6e:06:9d:68:3f:ad:3c:c8:3d:a8:a7:5b:81:df:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:59 2023 GMT Not After : Sep 17 02:14:59 2024 GMT Subject: CN=35CA47679678023424CEF0411B17645FF8772718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fa:4f:e7:60:da:bf:60:8d:22:27:17:29:39: a8:9a:f8:4b:3e:ff:01:d2:99:6e:71:c8:c8:4c:dd: 9c:2d:43:9b:9d:73:2f:5d:b2:1c:f2:17:92:2a:98: ad:02:b3:d4:65:7d:80:f3:e6:cb:16:bb:d6:64:11: ff:60:72:a9:03:d9:a4:24:e0:28:83:10:ed:8f:13: 2f:74:cb:cc:5f:0c:1f:09:fb:94:07:22:e6:43:af: 21:41:38:11:7e:b4:c0:6c:4d:cf:5a:6e:8e:27:dd: 3c:dd:c6:82:e6:be:f9:1b:05:6f:d8:54:6a:f3:2c: 4b:b6:e6:fb:fd:d9:f7:82:c2:4d:6f:ec:f8:49:bb: 5a:6d:a8:9f:84:23:63:db:1b:64:d6:eb:13:77:18: 02:c0:0a:4d:8f:dc:18:29:7a:78:d7:34:1b:e9:f1: 1e:44:0c:8f:50:31:4a:9f:a9:82:b8:a4:fa:5b:99: e9:91:6d:82:13:02:8e:ca:90:b7:b3:da:79:8c:cb: 2e:55:4f:95:cb:07:a4:40:95:51:17:5b:c9:87:0a: a9:51:bf:7e:13:91:ed:7c:31:ab:93:e3:8f:00:0a: 59:5d:25:cb:96:fc:fb:f1:b4:b0:10:81:ae:d8:02: 36:1c:ff:78:07:eb:32:ae:ab:6e:ed:d8:3c:f1:01: 79:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CA:47:67:96:78:02:34:24:CE:F0:41:1B:17:64:5F:F8:77:27:18 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS203868.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 93:6f:b6:8e:46:5e:b6:3a:85:72:17:eb:42:11:06:44:50:8b: a9:81:cb:29:7a:35:df:76:fb:31:81:32:2f:24:05:af:b7:14: 34:f2:49:34:4a:34:1f:5d:a8:72:77:71:8d:75:1f:8b:d1:c4: fd:2f:3a:86:44:5e:5a:1c:b4:4a:81:60:ae:5a:43:7f:64:ad: 89:ea:f4:21:5b:9d:a6:ae:bc:02:9d:b1:7b:f1:96:e1:4b:b7: 1b:23:2f:a4:91:d9:a9:f4:0b:38:e5:12:03:75:f2:3e:93:bd: 6b:e2:63:c9:06:d2:70:d0:a7:25:77:83:c5:d6:13:b2:0e:3a: dd:21:6d:44:9e:4b:2d:45:da:d0:ec:da:62:8f:6e:84:0f:2e: ae:b7:4f:e6:81:fe:94:8a:5b:61:38:5f:7c:1e:aa:1e:a1:76: 47:60:c2:4a:2a:59:2e:78:8c:ab:16:e1:f1:8b:85:c5:1a:d6: fd:2c:dd:88:47:67:78:6e:7e:c5:25:bb:9b:1c:4c:21:ec:53: d8:cf:8b:e5:56:87:ac:ef:8c:24:6c:51:89:fc:cf:ed:4f:88: 77:a6:f9:79:82:b4:4d:b5:fb:56:bb:90:07:58:99:9f:15:a8: 89:ee:01:42:38:21:3f:59:7f:02:24:d3:69:34:c7:1d:16:3d: c2:e9:5b:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPe9WUu1uBp1oP608yD2op1uB3zkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTlaFw0yNDA5MTcwMjE0NTlaMDMxMTAvBgNV BAMTKDM1Q0E0NzY3OTY3ODAyMzQyNENFRjA0MTFCMTc2NDVGRjg3NzI3MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo+k/nYNq/YI0iJxcpOaia+Es+ /wHSmW5xyMhM3ZwtQ5udcy9dshzyF5IqmK0Cs9RlfYDz5ssWu9ZkEf9gcqkD2aQk 4CiDEO2PEy90y8xfDB8J+5QHIuZDryFBOBF+tMBsTc9abo4n3TzdxoLmvvkbBW/Y VGrzLEu25vv92feCwk1v7PhJu1ptqJ+EI2PbG2TW6xN3GALACk2P3BgpenjXNBvp 8R5EDI9QMUqfqYK4pPpbmemRbYITAo7KkLez2nmMyy5VT5XLB6RAlVEXW8mHCqlR v34Tke18MauT448AClldJcuW/PvxtLAQga7YAjYc/3gH6zKuq27t2DzxAXnTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNcpHZ5Z4AjQkzvBBGxdkX/h3JxgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAzODY4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCTb7aORl62OoVyF+tCEQZEUIupgcspejXf dvsxgTIvJAWvtxQ08kk0SjQfXahyd3GNdR+L0cT9LzqGRF5aHLRKgWCuWkN/ZK2J 6vQhW52mrrwCnbF78ZbhS7cbIy+kkdmp9As45RIDdfI+k71r4mPJBtJw0Kcld4PF 1hOyDjrdIW1EnkstRdrQ7Npij26EDy6ut0/mgf6UilthOF98HqoeoXZHYMJKKlku eIyrFuHxi4XFGtb9LN2IR2d4bn7FJbubHEwh7FPYz4vlVoes74wkbFGJ/M/tT4h3 pvl5grRNtftWu5AHWJmfFaiJ7gFCOCE/WX8CJNNpNMcdFj3C6Vsk -----END CERTIFICATE-----Generated at Sun May 5 21:26:32 2024 by rpki-client on console-fra.rpki-client.org