$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44570.roa File: AS44570.roa (raw, json) Hash identifier: 7PLU2C81SpN2gEW+KEsabhtnD8M0KIz0tcE6w47VEIU= Subject key identifier: B6:12:1F:41:D8:F8:02:A9:FC:69:F9:22:50:85:C2:44:F8:82:B7:AD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 72FC9563858826B8A31C09CF22BDCD82DAC81B36 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44570.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 44570 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:fc:95:63:85:88:26:b8:a3:1c:09:cf:22:bd:cd:82:da:c8:1b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=B6121F41D8F802A9FC69F9225085C244F882B7AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:7a:16:1e:b2:a3:45:0f:1f:e4:6c:0a:62: 0f:79:17:b5:2f:9d:0d:6f:f6:7d:5f:5c:4a:30:b1: 28:04:ea:31:a5:66:1a:4a:1b:28:c3:c1:d5:67:dd: c4:09:b0:d5:e6:65:0a:dc:47:85:e2:1d:e2:b5:e9: 6e:4e:50:67:5f:1b:44:bf:5d:eb:a3:b5:02:02:32: 4d:74:a7:13:23:91:05:b0:ed:c1:ed:49:f2:12:98: fb:97:18:38:82:40:04:2d:cd:7a:51:91:c9:6b:c2: 67:22:a3:b7:98:c5:03:1c:56:1f:94:a3:4d:7a:7a: 0d:43:d2:9f:bd:f9:16:e7:a6:96:dc:75:74:0b:00: cc:33:40:9f:fd:11:1b:e1:a3:c2:81:f1:c8:93:32: ca:87:49:47:a8:f6:16:32:aa:3b:23:93:8e:d0:9e: 96:3a:8e:c9:b6:67:31:e3:c8:46:d4:31:84:41:c6: e5:ab:46:b4:ee:8f:18:58:a6:d6:3d:85:1c:3c:39: 42:86:df:92:fe:b6:ec:4a:c8:6a:cd:87:f9:1d:5b: 9b:81:9d:2b:c3:41:32:46:15:fb:14:0e:b8:c1:91: 6f:1b:f6:8d:39:05:2b:f5:2a:e0:17:da:bf:ec:1d: 25:37:64:ec:6f:d9:fa:00:2b:35:92:59:c1:98:49: 03:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:12:1F:41:D8:F8:02:A9:FC:69:F9:22:50:85:C2:44:F8:82:B7:AD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44570.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption b2:9b:ef:71:ae:d8:e1:80:fb:14:67:c2:6a:f8:e2:be:c7:60: 10:f9:6b:4d:52:e8:81:c2:7f:f9:67:c8:0d:d5:94:1d:e2:b9: b8:e4:e2:00:42:c7:7d:a5:f6:7b:81:cc:45:4b:68:a4:04:21: 60:bf:dc:b7:b1:06:c7:56:b1:55:1a:ab:52:ce:43:ef:2e:9c: 94:53:04:03:cf:c3:f2:66:c0:cd:07:cd:2d:d9:ea:f4:fd:8b: 57:02:23:04:b8:a3:5a:d7:5f:22:29:59:28:9f:be:a0:08:3d: a6:7c:0d:50:06:96:b3:13:d5:03:c8:bd:21:9f:a9:c2:13:9f: 23:66:28:7a:35:61:fd:24:0f:fd:9a:f4:08:77:e3:27:8b:26: c9:8b:7c:ce:c9:67:58:6b:ea:94:33:c1:ee:47:2f:24:76:63: 19:5b:94:45:3d:ff:73:9f:4a:c4:a4:2e:fa:be:b6:b3:9c:aa: f6:a0:27:0b:88:b0:3e:9a:fc:ca:97:d9:53:0b:36:74:9d:f6: d7:24:86:cb:ed:f3:97:87:8e:bf:b7:a7:ab:5f:58:27:f8:98: 89:41:09:3a:d0:36:47:e6:f3:a4:a2:74:6e:cb:55:eb:6e:e7: 48:18:f3:99:84:33:68:e8:66:c3:14:54:68:d9:fb:2f:d9:64: 6b:a4:39:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcvyVY4WIJrijHAnPIr3NgtrIGzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKEI2MTIxRjQxRDhGODAyQTlGQzY5RjkyMjUwODVDMjQ0Rjg4MkI3QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3T3oWHrKjRQ8f5GwKYg95F7Uv nQ1v9n1fXEowsSgE6jGlZhpKGyjDwdVn3cQJsNXmZQrcR4XiHeK16W5OUGdfG0S/ XeujtQICMk10pxMjkQWw7cHtSfISmPuXGDiCQAQtzXpRkclrwmcio7eYxQMcVh+U o016eg1D0p+9+RbnppbcdXQLAMwzQJ/9ERvho8KB8ciTMsqHSUeo9hYyqjsjk47Q npY6jsm2ZzHjyEbUMYRBxuWrRrTujxhYptY9hRw8OUKG35L+tuxKyGrNh/kdW5uB nSvDQTJGFfsUDrjBkW8b9o05BSv1KuAX2r/sHSU3ZOxv2foAKzWSWcGYSQOJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUthIfQdj4Aqn8afkiUIXCRPiCt60wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ1NzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBALKb73Gu2OGA+xRnwmr44r7HYBD5a01S6IHC f/lnyA3VlB3iubjk4gBCx32l9nuBzEVLaKQEIWC/3LexBsdWsVUaq1LOQ+8unJRT BAPPw/JmwM0HzS3Z6vT9i1cCIwS4o1rXXyIpWSifvqAIPaZ8DVAGlrMT1QPIvSGf qcITnyNmKHo1Yf0kD/2a9Ah34yeLJsmLfM7JZ1hr6pQzwe5HLyR2YxlblEU9/3Of SsSkLvq+trOcqvagJwuIsD6a/MqX2VMLNnSd9tckhsvt85eHjr+3p6tfWCf4mIlB CTrQNkfm86SidG7LVetu50gY85mEM2joZsMUVGjZ+y/ZZGukOUY= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org