$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa File: AS206444.roa (raw, json) Hash identifier: Blce5UvMz8ld/pK3ZIsZXghie7S89EJ+lORA/5rmvEs= Subject key identifier: A4:59:A2:32:7C:21:CB:3B:CE:B7:FA:3A:BF:AB:6E:DC:00:F2:08:62 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 571A289384A26655D515A01D72C02216823BFA42 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 206444 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:9800::/37 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:1a:28:93:84:a2:66:55:d5:15:a0:1d:72:c0:22:16:82:3b:fa:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=A459A2327C21CB3BCEB7FA3ABFAB6EDC00F20862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:21:e5:c8:be:48:b0:04:56:cd:6a:69:a7: 6f:c6:3d:ba:25:8e:5f:9d:53:3f:8d:ad:dc:d9:70: 4f:b0:2c:a6:8b:09:87:21:3f:db:ef:52:d8:ca:10: c6:d8:17:6a:3f:35:27:87:a5:69:8b:b3:a1:57:b4: 5b:6b:9b:e2:14:cc:55:6f:2a:3b:93:f2:97:5b:df: 3c:e9:0f:ce:af:ba:26:7d:73:f2:34:55:d1:a5:7e: 19:df:81:74:32:63:b1:06:d9:74:48:0c:61:2b:70: 04:2d:ca:6d:b2:43:0a:4a:00:11:cb:f5:71:13:15: fc:c9:93:21:ca:00:4b:c9:61:9e:ef:3e:c6:b7:04: 3e:ac:b5:c7:2e:34:36:73:98:39:1d:0b:b3:0e:d7: 3a:8c:0d:06:0f:49:82:68:4a:32:36:ce:de:c1:31: 28:0d:74:56:b5:ac:b6:82:88:c3:0f:58:aa:72:c1: 07:88:36:da:42:99:73:35:f3:95:1f:7c:48:18:d6: 97:f3:14:52:0d:5c:aa:af:7b:f9:79:2e:f3:96:31: 10:23:88:77:a5:0a:8f:e0:9c:57:3e:13:8f:cf:fd: 49:af:24:24:bd:26:e2:f1:d6:cb:9d:1f:54:af:21: e9:5e:7e:d3:4c:75:12:02:1a:e3:4b:15:c9:e9:79: cf:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:59:A2:32:7C:21:CB:3B:CE:B7:FA:3A:BF:AB:6E:DC:00:F2:08:62 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:9800::/37 Signature Algorithm: sha256WithRSAEncryption 95:c9:75:ed:29:12:df:e9:5c:01:33:72:9b:1b:2a:e9:10:74: e1:0d:b5:f9:3e:2e:66:27:6c:29:b3:b0:5c:cb:4c:2f:c9:e4: 89:3c:09:b6:b1:78:5a:db:22:ba:17:47:dc:d1:fa:27:1f:46: 0e:4d:cd:09:12:1c:2b:03:94:81:46:55:fd:b7:c7:34:30:dd: 0e:76:87:f6:55:30:af:3e:27:a3:e2:ef:71:3c:72:2f:77:61: 60:b7:15:35:57:59:0a:23:a0:d2:39:7e:27:7a:08:2b:1d:84: 78:42:00:a2:2f:35:c3:2b:63:fd:b3:0a:8c:18:d3:56:90:ef: da:16:57:82:83:9e:1f:fa:7c:2e:77:f1:dd:d7:39:5a:74:34: 90:ca:b3:24:6f:de:5b:e9:3a:df:2f:4c:b4:fe:0c:21:42:67: b4:03:16:e0:53:1e:05:03:d1:e0:79:75:6f:fc:d7:b5:5e:95: 62:21:55:f4:16:3d:be:f2:2a:b4:e1:02:4c:58:70:d5:ea:d3: c2:d9:dc:42:82:73:5b:1a:26:49:b1:b0:53:7e:b6:e4:d6:02: da:2b:1f:bc:cf:83:d6:5b:ab:9a:14:b3:05:34:40:f1:62:83: 78:d2:9b:6b:41:f7:f6:80:a1:80:88:51:9a:f9:ca:cd:49:5e: eb:9d:3a:06 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUVxook4SiZlXVFaAdcsAiFoI7+kIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKEE0NTlBMjMyN0MyMUNCM0JDRUI3RkEzQUJGQUI2RURDMDBGMjA4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn9iHlyL5IsARWzWppp2/GPbol jl+dUz+NrdzZcE+wLKaLCYchP9vvUtjKEMbYF2o/NSeHpWmLs6FXtFtrm+IUzFVv KjuT8pdb3zzpD86vuiZ9c/I0VdGlfhnfgXQyY7EG2XRIDGErcAQtym2yQwpKABHL 9XETFfzJkyHKAEvJYZ7vPsa3BD6stccuNDZzmDkdC7MO1zqMDQYPSYJoSjI2zt7B MSgNdFa1rLaCiMMPWKpywQeINtpCmXM185UffEgY1pfzFFINXKqve/l5LvOWMRAj iHelCo/gnFc+E4/P/UmvJCS9JuLx1sudH1SvIeleftNMdRICGuNLFcnpec/9AgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUpFmiMnwhyzvOt/o6v6tu3ADyCGIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2NDQ0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgdU wrALAwYDKgdUxJgwDQYJKoZIhvcNAQELBQADggEBAJXJde0pEt/pXAEzcpsbKukQ dOENtfk+LmYnbCmzsFzLTC/J5Ik8CbaxeFrbIroXR9zR+icfRg5NzQkSHCsDlIFG Vf23xzQw3Q52h/ZVMK8+J6Pi73E8ci93YWC3FTVXWQojoNI5fid6CCsdhHhCAKIv NcMrY/2zCowY01aQ79oWV4KDnh/6fC538d3XOVp0NJDKsyRv3lvpOt8vTLT+DCFC Z7QDFuBTHgUD0eB5dW/817VelWIhVfQWPb7yKrThAkxYcNXq08LZ3EKCc1saJkmx sFN+tuTWAtorH7zPg9Zbq5oUswU0QPFig3jSm2tB9/aAoYCIUZr5ys1JXuudOgY= -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org