$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa File: AS44658.roa (raw, json) Hash identifier: AJ80uTnRjq5UG942upWKG7wxoa7bWj27CKdGtlaXvTw= Subject key identifier: FF:8B:A3:6E:29:72:65:9F:AF:96:5F:70:81:94:41:3F:F0:44:1D:31 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2F6C0AA56516F802F59E1B85B6B56CEC7D91B4EF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa Signing time: Tue 29 Oct 2024 12:33:33 +0000 ROA not before: Tue 29 Oct 2024 12:28:33 +0000 ROA not after: Tue 28 Oct 2025 12:33:33 +0000 asID: 44658 IP address blocks: 2a07:54c4:1300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:6c:0a:a5:65:16:f8:02:f5:9e:1b:85:b6:b5:6c:ec:7d:91:b4:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Oct 29 12:28:33 2024 GMT Not After : Oct 28 12:33:33 2025 GMT Subject: CN=FF8BA36E2972659FAF965F708194413FF0441D31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:da:4a:3e:ac:45:90:20:7c:de:d0:ef:f2:93: 27:66:71:48:71:ed:e1:69:88:a4:b2:c0:df:16:f3: 99:3d:96:2a:ac:bb:43:f3:f6:98:bb:dc:b4:bb:1f: 3e:a6:ce:0a:05:bf:99:a1:67:4f:62:ad:c8:45:a6: cd:7f:c4:5a:bb:5d:3b:27:03:1d:f9:ce:a8:24:aa: 04:ea:80:c5:b6:14:45:c7:4d:df:79:74:73:b6:24: c4:6a:99:17:a2:fe:9c:49:aa:77:9d:1d:57:ef:a5: 03:83:57:51:90:0d:df:fb:1b:3b:68:86:b0:0b:2e: ee:f5:76:93:60:26:ac:10:d9:bb:89:d8:ad:56:a1: bb:b4:fa:1b:5a:02:28:ce:53:b5:60:b4:e1:78:03: b8:d8:95:3b:08:85:7a:28:2f:16:92:ad:02:59:8c: 5b:72:92:27:14:27:3b:43:a8:45:ab:75:a2:81:6c: 16:7c:92:c4:ac:f5:e3:3f:0f:f5:1e:62:e8:d5:bb: c2:94:41:0a:07:eb:24:ac:01:dd:86:8b:02:ef:9d: 5d:ec:68:4f:ff:26:fc:59:57:f6:53:97:6c:07:a8: 76:5f:db:e3:94:c7:db:ac:ed:3f:61:f7:d9:d8:25: 21:34:d9:50:b7:a1:bb:17:b3:02:10:f6:ca:e4:f8: ae:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8B:A3:6E:29:72:65:9F:AF:96:5F:70:81:94:41:3F:F0:44:1D:31 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1300::/40 Signature Algorithm: sha256WithRSAEncryption 26:e3:e3:bc:3f:cf:cb:ac:c8:79:e9:dc:3d:d7:9f:36:0b:a8: 01:c8:4f:1f:72:66:9a:67:ad:ee:64:cc:ca:eb:a3:60:34:40: 91:08:6e:33:26:44:8e:f4:c0:30:1a:f6:99:32:b5:ad:6f:6a: 6f:01:48:a5:71:8d:10:43:7d:52:0a:d0:42:6c:7a:46:e5:20: de:f8:28:2b:e7:d7:4d:c3:8a:16:87:2b:d6:04:9e:8f:bf:5b: 8a:19:56:a4:22:1d:4e:c1:fb:06:f6:0d:7d:0c:88:e2:68:92: ba:68:07:f9:0d:f9:67:b4:09:4e:fb:03:18:ee:ef:46:bf:e8: 89:8b:80:15:93:45:9a:76:f9:4f:f8:b2:a6:6b:d5:b4:25:ab: c1:82:40:07:47:69:26:b9:a7:fe:52:b1:d6:3a:36:19:b6:20: bc:ee:fc:01:84:55:e7:78:95:b5:7e:67:51:55:0a:c6:32:3e: bb:16:20:2f:c8:0e:75:33:72:9a:5e:e1:e6:21:15:fc:b9:21: 6c:79:b8:8a:6e:ae:82:dc:f1:e9:03:aa:7f:58:0c:d3:6e:f6: 01:55:b0:a4:bd:b6:2d:ce:cd:fe:c8:5f:1b:a0:1e:77:72:7e: 49:71:2c:44:83:77:ae:a0:54:80:47:0b:81:4c:58:e6:b1:ef: 1e:0a:e7:a9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUL2wKpWUW+AL1nhuFtrVs7H2RtO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDEwMjkxMjI4MzNaFw0yNTEwMjgxMjMzMzNaMDMxMTAvBgNV BAMTKEZGOEJBMzZFMjk3MjY1OUZBRjk2NUY3MDgxOTQ0MTNGRjA0NDFEMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb2ko+rEWQIHze0O/ykydmcUhx 7eFpiKSywN8W85k9liqsu0Pz9pi73LS7Hz6mzgoFv5mhZ09irchFps1/xFq7XTsn Ax35zqgkqgTqgMW2FEXHTd95dHO2JMRqmRei/pxJqnedHVfvpQODV1GQDd/7Gzto hrALLu71dpNgJqwQ2buJ2K1Wobu0+htaAijOU7VgtOF4A7jYlTsIhXooLxaSrQJZ jFtykicUJztDqEWrdaKBbBZ8ksSs9eM/D/UeYujVu8KUQQoH6ySsAd2GiwLvnV3s aE//JvxZV/ZTl2wHqHZf2+OUx9us7T9h99nYJSE02VC3obsXswIQ9srk+K5xAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU/4ujbilyZZ+vll9wgZRBP/BEHTEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ2NTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TE EzANBgkqhkiG9w0BAQsFAAOCAQEAJuPjvD/Py6zIeencPdefNguoAchPH3Jmmmet 7mTMyuujYDRAkQhuMyZEjvTAMBr2mTK1rW9qbwFIpXGNEEN9UgrQQmx6RuUg3vgo K+fXTcOKFocr1gSej79bihlWpCIdTsH7BvYNfQyI4miSumgH+Q35Z7QJTvsDGO7v Rr/oiYuAFZNFmnb5T/iypmvVtCWrwYJAB0dpJrmn/lKx1jo2GbYgvO78AYRV53iV tX5nUVUKxjI+uxYgL8gOdTNyml7h5iEV/LkhbHm4im6ugtzx6QOqf1gM0272AVWw pL22Lc7N/shfG6Aed3J+SXEsRIN3rqBUgEcLgUxY5rHvHgrnqQ== -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org