$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS23428.roa File: AS23428.roa (raw, json) Hash identifier: Ljocc3XYFnR93ieXWK5AP5P0ZKUPMGKxJLpCtNmBDGg= Subject key identifier: 4B:DE:06:D4:D5:F0:C8:52:B6:A9:72:AC:F5:CF:58:04:86:C1:86:B0 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 11CAA4E2795821C79C0140E7B03C91FEEF1599F2 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS23428.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 23428 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ca:a4:e2:79:58:21:c7:9c:01:40:e7:b0:3c:91:fe:ef:15:99:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=4BDE06D4D5F0C852B6A972ACF5CF580486C186B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:54:e0:08:01:78:bf:ef:e2:be:50:df:36:0e: 12:ad:36:28:d3:60:da:a9:2f:4c:18:2c:62:bd:d8: 1f:0d:40:43:4b:36:a3:3a:48:38:8d:b6:bc:d7:c6: 50:e8:1b:0f:ad:22:6f:fb:b8:84:fd:c8:dd:ca:77: a7:34:a1:dd:bb:26:e7:3f:0d:92:53:0e:6b:72:e2: 70:39:e7:be:ab:4e:e0:b1:8c:a2:84:11:21:65:99: 47:1f:6c:da:05:7a:38:f5:34:40:ce:4f:44:06:d8: 45:d2:99:c5:61:46:88:c8:ce:e0:0b:4f:d6:a2:30: 0d:cb:91:18:97:5d:d7:85:a1:fa:64:0a:32:28:08: 38:6e:52:0f:c2:75:dc:39:5f:64:1f:60:53:b2:01: 88:ae:fd:0e:6a:ef:f4:e9:6f:5c:60:f7:a3:41:22: 0f:2f:c7:40:d9:55:0b:88:47:62:e4:d1:0b:e8:6a: f7:e0:9b:ac:98:ae:bc:56:b2:9d:1c:83:18:ee:5a: 48:6a:b1:4d:8f:1d:26:29:2a:bd:0b:44:20:83:7a: 39:cb:f9:7a:20:08:0a:32:83:be:eb:c0:ea:95:0e: e3:f2:ae:41:cc:6c:cc:43:4f:61:4a:cf:bd:a6:4d: 3c:21:23:a4:f5:ce:99:79:b9:98:61:66:5c:b0:8d: 5f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DE:06:D4:D5:F0:C8:52:B6:A9:72:AC:F5:CF:58:04:86:C1:86:B0 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS23428.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 1a:83:2d:16:a7:f8:4f:5e:b1:9a:bd:96:28:ee:2c:f3:c8:cf: f4:fc:09:96:4f:72:63:ef:4b:b2:43:4a:e3:02:ca:e1:aa:a5: 06:0a:61:e1:9b:bf:2b:45:58:7b:2a:67:15:f3:38:b8:e6:32: 76:3e:3c:46:b0:77:54:0c:c5:dd:5d:88:68:3b:b5:26:c7:31: eb:7e:ee:0d:fb:e5:40:57:f8:c4:1a:26:d2:01:83:8f:3e:31: 7b:08:dc:c7:1f:18:91:f0:10:5c:bf:3e:08:5c:e6:4a:5b:9c: e0:b6:b2:e0:e9:39:d4:d6:53:5b:0d:ab:19:bf:76:a2:a7:55: ee:3a:9d:10:43:02:e0:2a:21:df:b0:0f:e3:c7:35:8f:3a:f7: 13:b5:63:1b:14:e1:78:8d:33:5f:90:36:18:d9:87:bd:6d:cd: 32:22:dc:93:b6:f1:b0:7b:6b:58:10:7d:76:21:50:d8:9f:71: 8b:7f:18:41:a9:86:16:e0:03:45:41:ca:55:97:76:66:29:b7: 07:4f:4b:a1:0a:ff:2d:5d:2f:4d:68:2a:e7:e3:9c:2f:e4:98: 9e:9d:e1:74:7b:5d:f7:27:10:a4:4d:41:7f:13:4e:ed:6e:99: 79:9e:86:62:0b:58:75:5e:30:f4:62:b8:d7:34:db:53:93:3b: 45:d8:17:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEcqk4nlYIcecAUDnsDyR/u8VmfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDRCREUwNkQ0RDVGMEM4NTJCNkE5NzJBQ0Y1Q0Y1ODA0ODZDMTg2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJVOAIAXi/7+K+UN82DhKtNijT YNqpL0wYLGK92B8NQENLNqM6SDiNtrzXxlDoGw+tIm/7uIT9yN3Kd6c0od27Juc/ DZJTDmty4nA5576rTuCxjKKEESFlmUcfbNoFejj1NEDOT0QG2EXSmcVhRojIzuAL T9aiMA3LkRiXXdeFofpkCjIoCDhuUg/Cddw5X2QfYFOyAYiu/Q5q7/Tpb1xg96NB Ig8vx0DZVQuIR2Lk0Qvoavfgm6yYrrxWsp0cgxjuWkhqsU2PHSYpKr0LRCCDejnL +XogCAoyg77rwOqVDuPyrkHMbMxDT2FKz72mTTwhI6T1zpl5uZhhZlywjV/ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS94G1NXwyFK2qXKs9c9YBIbBhrAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjM0Mjgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBABqDLRan+E9esZq9lijuLPPIz/T8CZZPcmPv S7JDSuMCyuGqpQYKYeGbvytFWHsqZxXzOLjmMnY+PEawd1QMxd1diGg7tSbHMet+ 7g375UBX+MQaJtIBg48+MXsI3McfGJHwEFy/Pghc5kpbnOC2suDpOdTWU1sNqxm/ dqKnVe46nRBDAuAqId+wD+PHNY869xO1YxsU4XiNM1+QNhjZh71tzTIi3JO28bB7 a1gQfXYhUNifcYt/GEGphhbgA0VBylWXdmYptwdPS6EK/y1dL01oKufjnC/kmJ6d 4XR7XfcnEKRNQX8TTu1umXmehmILWHVeMPRiuNc021OTO0XYF6w= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org