$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS41666.roa File: AS41666.roa (raw, json) Hash identifier: 3eQ4h17qLl643VbsXqjfan10w2tBe+DEU6tH6omoiKE= Subject key identifier: BC:C3:81:32:1F:F9:11:0B:76:A3:56:50:37:2B:5D:BE:DA:81:1C:56 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4022E3A66765117D5C1BAE57E53030142436E05A Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS41666.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 41666 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:22:e3:a6:67:65:11:7d:5c:1b:ae:57:e5:30:30:14:24:36:e0:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=BCC381321FF9110B76A35650372B5DBEDA811C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f5:87:30:94:aa:8b:81:ef:31:30:e2:47:a1: 63:6b:d9:73:7f:c2:58:fb:e5:8c:7b:c2:e6:ed:87: 34:3f:76:fa:04:c8:f0:1f:18:3f:19:33:dc:80:70: 7f:ed:36:7a:23:6e:16:6e:71:42:cf:4c:4f:be:fb: cb:82:eb:9e:53:4c:e2:1a:da:4a:8e:7e:4a:2c:3a: 26:b6:78:37:d4:20:7e:0b:c0:bc:9f:3a:eb:56:3d: b9:98:89:3f:e1:33:00:83:f6:96:f1:31:dc:56:06: 4f:5a:e3:76:ff:ad:ca:37:61:df:a9:0f:a6:51:cd: d6:6a:c2:37:6a:b6:19:99:6c:d4:f9:c1:15:b0:81: a0:90:fc:30:ec:68:58:7e:26:f7:40:ae:ac:b3:6d: bd:25:20:b7:b3:d4:28:3c:bc:f3:c0:b4:4c:a2:d6: 55:fa:d4:51:e1:c0:fb:16:9b:c1:e5:d3:1e:10:86: 1b:ac:30:12:16:9a:68:04:24:86:b2:83:b7:93:57: c4:9b:16:86:6f:43:4f:4c:ec:e4:84:26:70:8c:7c: e6:35:d3:d1:32:03:cb:9e:dc:c3:55:41:19:f0:8c: 7d:ae:c2:c6:3a:03:c8:ff:a7:03:be:29:17:49:a8: e1:91:7a:96:b3:13:58:a8:a2:8e:57:30:7d:27:da: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C3:81:32:1F:F9:11:0B:76:A3:56:50:37:2B:5D:BE:DA:81:1C:56 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS41666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 83:56:97:09:67:61:e4:65:a0:4a:cc:f3:18:41:2f:5a:eb:9c: 86:64:ca:35:09:52:4e:49:02:d6:2c:f7:c4:e0:5f:ad:27:bb: 9f:f6:d8:eb:4c:48:43:b7:eb:91:71:c4:b7:14:1e:18:aa:6a: b8:f8:1a:dc:59:b4:82:f7:11:1e:dc:77:31:33:46:0d:5c:30: 31:d7:95:8a:0c:84:65:64:e5:68:d5:be:c4:ef:ab:5e:21:0a: 19:10:7c:50:b4:ab:14:5e:fe:a9:3e:71:c0:c6:5f:af:52:9b: 78:de:05:62:4c:84:72:b3:b8:6d:2b:14:c6:83:0e:86:52:3e: 49:60:60:fd:87:c0:9e:9e:62:c0:2a:e3:00:58:e4:4a:1c:e8: ca:5a:65:53:8d:27:32:28:8e:9e:9a:ac:df:5e:04:86:74:c0: fe:f0:b4:f3:d5:63:19:06:88:ed:39:2c:50:93:08:bd:f3:20: 64:06:13:0f:60:e7:64:bb:2d:99:06:84:2e:f0:f0:34:39:d7: 48:f5:a3:e8:78:4e:31:69:1c:00:ea:82:ec:3a:35:89:38:30: 84:37:38:74:1b:16:47:88:1a:99:d7:e4:e1:98:42:66:5d:7b: 8c:93:df:9f:15:a0:0d:3b:ef:76:7b:d1:53:47:95:06:3a:e7: c6:8b:92:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQCLjpmdlEX1cG65X5TAwFCQ24FowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEJDQzM4MTMyMUZGOTExMEI3NkEzNTY1MDM3MkI1REJFREE4MTFDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX9YcwlKqLge8xMOJHoWNr2XN/ wlj75Yx7wubthzQ/dvoEyPAfGD8ZM9yAcH/tNnojbhZucULPTE+++8uC655TTOIa 2kqOfkosOia2eDfUIH4LwLyfOutWPbmYiT/hMwCD9pbxMdxWBk9a43b/rco3Yd+p D6ZRzdZqwjdqthmZbNT5wRWwgaCQ/DDsaFh+JvdArqyzbb0lILez1Cg8vPPAtEyi 1lX61FHhwPsWm8Hl0x4QhhusMBIWmmgEJIayg7eTV8SbFoZvQ09M7OSEJnCMfOY1 09EyA8ue3MNVQRnwjH2uwsY6A8j/pwO+KRdJqOGRepazE1iooo5XMH0n2v9ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvMOBMh/5EQt2o1ZQNytdvtqBHFYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDE2NjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAINWlwlnYeRloErM8xhBL1rrnIZkyjUJUk5J AtYs98TgX60nu5/22OtMSEO365FxxLcUHhiqarj4GtxZtIL3ER7cdzEzRg1cMDHX lYoMhGVk5WjVvsTvq14hChkQfFC0qxRe/qk+ccDGX69Sm3jeBWJMhHKzuG0rFMaD DoZSPklgYP2HwJ6eYsAq4wBY5Eoc6MpaZVONJzIojp6arN9eBIZ0wP7wtPPVYxkG iO05LFCTCL3zIGQGEw9g52S7LZkGhC7w8DQ510j1o+h4TjFpHADqguw6NYk4MIQ3 OHQbFkeIGpnX5OGYQmZde4yT358VoA0773Z70VNHlQY658aLkls= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org