$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44487.roa File: AS44487.roa (raw, json) Hash identifier: ltMOez0tbrD7sywGOyRtwA/ZAwSaECSJTM6dwP3fGAc= Subject key identifier: D9:B4:26:1A:23:90:2B:0B:DB:B5:06:3F:99:79:B4:E2:CE:35:B6:E1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1FBD3526FB58B4ECA7BEB4D58975AC60352A2A51 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44487.roa Signing time: Tue 27 Feb 2024 23:43:28 +0000 ROA not before: Tue 27 Feb 2024 23:38:28 +0000 ROA not after: Tue 25 Feb 2025 23:43:28 +0000 asID: 44487 IP address blocks: 2a07:54c1:3400::/39 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:bd:35:26:fb:58:b4:ec:a7:be:b4:d5:89:75:ac:60:35:2a:2a:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 27 23:38:28 2024 GMT Not After : Feb 25 23:43:28 2025 GMT Subject: CN=D9B4261A23902B0BDBB5063F9979B4E2CE35B6E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f1:c0:d3:d4:c2:75:a8:f4:45:9b:83:04:87: 34:92:62:2c:2a:6c:7f:1d:1a:49:ab:bf:5d:ab:14: d2:3e:8c:0e:01:6a:16:3a:a2:87:76:af:a9:a6:49: 3a:d3:cc:96:79:78:5b:9f:bd:65:ba:0b:b1:b0:fb: c9:32:fd:83:b1:b6:01:f3:a7:e6:a1:54:48:4a:f9: 9b:b1:40:fd:ef:85:a4:f0:7f:c1:77:46:f6:5e:59: bb:43:e8:91:0c:8d:b6:59:3a:79:26:79:85:6c:f6: 6a:d5:25:25:8c:b2:7d:10:15:1c:46:e3:6f:ff:3b: 63:72:a9:e0:f9:17:01:0d:7e:c7:52:fb:af:3d:bc: 81:5c:a7:93:4c:3f:3a:a9:97:80:14:8c:c6:05:8d: b6:88:f7:2a:2c:9e:e1:ab:f1:15:bd:86:07:79:67: 5a:3a:c8:52:5a:76:d5:8a:ab:62:e9:2b:b4:b8:62: f6:4c:2f:ae:27:3f:ca:05:dd:c5:a6:fa:b4:f2:c0: 4f:89:7c:7a:9d:09:bb:c3:53:fe:09:d2:e3:bf:a7: 28:de:13:0e:82:0e:ad:c7:8f:fc:33:d6:e8:1d:95: e2:c5:51:2e:a1:27:a1:1d:96:2c:c1:de:81:88:f5: f5:b0:ce:a8:10:2e:8f:c1:80:aa:3b:0e:8f:2e:65: e6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B4:26:1A:23:90:2B:0B:DB:B5:06:3F:99:79:B4:E2:CE:35:B6:E1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44487.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3400::/39 Signature Algorithm: sha256WithRSAEncryption 5f:a6:53:df:05:08:9a:70:23:93:c5:76:ca:79:d7:97:cb:ed: 2c:a6:06:27:97:01:ec:09:6c:3c:cc:cd:c6:5e:4c:06:32:f2: 14:fe:4c:52:80:95:96:18:31:ab:51:d9:6e:2b:7d:26:64:1c: ea:e1:d0:71:5b:48:11:8e:5a:b2:81:c9:78:f9:cd:4c:80:45: ce:6e:37:70:db:8b:26:a2:e1:6e:e7:55:e0:02:6a:7b:51:b7: d9:81:c8:8a:47:ff:fd:94:d4:1c:bf:28:70:52:b9:82:ec:b3: c4:f3:dd:87:cf:ee:5f:4e:d2:b7:89:5b:b1:2d:ca:eb:df:18: 94:65:6b:04:b0:0f:b8:03:5d:a3:39:65:8b:b1:2a:66:2b:79: de:30:5e:0d:c1:2d:1c:cd:eb:38:f9:a8:91:c1:ae:9d:ab:90: e3:04:f8:95:7f:0c:7f:37:ca:0f:51:e7:de:87:37:42:6c:e3: ed:aa:d6:24:c3:a1:93:c2:8e:91:c4:8f:bb:b2:0c:bc:e8:e8: 29:ec:f1:53:b1:43:0b:69:2f:26:bf:9d:91:ac:96:ce:4d:03: 78:e8:cc:5b:bf:b1:cc:91:b8:c6:f8:a6:ac:73:35:1b:5a:e7: d2:9d:7e:ae:4e:5c:5c:9c:e6:67:d7:45:ce:c2:3b:c2:39:6e: 9d:eb:02:39 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUH701JvtYtOynvrTViXWsYDUqKlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMjcyMzM4MjhaFw0yNTAyMjUyMzQzMjhaMDMxMTAvBgNV BAMTKEQ5QjQyNjFBMjM5MDJCMEJEQkI1MDYzRjk5NzlCNEUyQ0UzNUI2RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8cDT1MJ1qPRFm4MEhzSSYiwq bH8dGkmrv12rFNI+jA4BahY6ood2r6mmSTrTzJZ5eFufvWW6C7Gw+8ky/YOxtgHz p+ahVEhK+ZuxQP3vhaTwf8F3RvZeWbtD6JEMjbZZOnkmeYVs9mrVJSWMsn0QFRxG 42//O2NyqeD5FwENfsdS+689vIFcp5NMPzqpl4AUjMYFjbaI9yosnuGr8RW9hgd5 Z1o6yFJadtWKq2LpK7S4YvZML64nP8oF3cWm+rTywE+JfHqdCbvDU/4J0uO/pyje Ew6CDq3Hj/wz1ugdleLFUS6hJ6EdlizB3oGI9fWwzqgQLo/BgKo7Do8uZeZ5AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2bQmGiOQKwvbtQY/mXm04s41tuEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ0ODcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgEqB1TB NDANBgkqhkiG9w0BAQsFAAOCAQEAX6ZT3wUImnAjk8V2ynnXl8vtLKYGJ5cB7Als PMzNxl5MBjLyFP5MUoCVlhgxq1HZbit9JmQc6uHQcVtIEY5asoHJePnNTIBFzm43 cNuLJqLhbudV4AJqe1G32YHIikf//ZTUHL8ocFK5guyzxPPdh8/uX07St4lbsS3K 698YlGVrBLAPuANdozlli7EqZit53jBeDcEtHM3rOPmokcGunauQ4wT4lX8MfzfK D1Hn3oc3Qmzj7arWJMOhk8KOkcSPu7IMvOjoKezxU7FDC2kvJr+dkayWzk0DeOjM W7+xzJG4xvimrHM1G1rn0p1+rk5cXJzmZ9dFzsI7wjlunesCOQ== -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org