$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa File: AS44658.roa (raw, json) Hash identifier: NR2dPUMaaZKN7XHBQSYPKYXxYWHSOUA+srtQ/5/v+W8= Subject key identifier: EB:50:46:09:AB:A7:B7:25:50:4A:4E:5D:6A:96:B0:DF:C1:98:20:FC Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 717AEA6750080AA1529D3C7FF71398E94F3B725D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa Signing time: Tue 28 Nov 2023 11:38:29 +0000 ROA not before: Tue 28 Nov 2023 11:33:29 +0000 ROA not after: Tue 26 Nov 2024 11:38:29 +0000 asID: 44658 IP address blocks: 2a07:54c4:1300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7a:ea:67:50:08:0a:a1:52:9d:3c:7f:f7:13:98:e9:4f:3b:72:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Nov 28 11:33:29 2023 GMT Not After : Nov 26 11:38:29 2024 GMT Subject: CN=EB504609ABA7B725504A4E5D6A96B0DFC19820FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:57:93:02:4d:92:4e:08:70:c6:0c:3d:6d:e0: bc:67:7b:9d:a6:69:62:72:15:b4:2a:38:12:85:aa: c8:2f:4f:36:f8:50:f3:60:2c:54:0a:82:b2:d9:f5: d5:51:04:d4:d5:35:98:4f:01:2a:c4:6d:1c:35:6c: 14:d5:36:6c:83:36:26:96:95:46:54:9f:50:6f:c9: 5d:56:16:75:b5:64:d6:65:15:53:82:7c:84:f6:ac: 51:29:5a:ff:31:9c:0d:99:37:d6:23:de:43:c2:b0: 4a:38:fb:f1:e6:19:c2:72:01:ea:90:70:4d:b0:14: 01:76:d1:ba:52:ae:9b:e9:d7:4d:51:84:b4:d9:f0: 38:b1:82:fb:72:f6:e7:8c:08:6d:52:be:90:4d:57: 1f:fc:cd:fc:71:1c:42:cb:85:94:8d:51:23:4c:be: 41:cd:2d:46:ea:f3:5f:03:ab:47:eb:f9:91:c4:24: da:44:8b:7b:78:a8:15:fe:66:9f:c1:82:95:ed:d2: a7:99:72:a4:5c:64:f2:30:30:99:e8:8b:34:e4:a8: 09:cf:74:2e:4a:02:80:98:46:70:ea:e1:0c:de:bf: f3:f3:7a:b4:62:90:3e:f5:3d:5f:0d:32:90:55:ca: 74:0c:8c:5b:f9:61:d5:d5:f1:4a:41:fa:fe:72:25: 82:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:50:46:09:AB:A7:B7:25:50:4A:4E:5D:6A:96:B0:DF:C1:98:20:FC X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1300::/40 Signature Algorithm: sha256WithRSAEncryption 26:84:2d:b1:d2:4b:d9:d7:3f:0d:38:f9:b4:f3:02:71:87:41: 1d:76:74:a5:02:19:4c:25:cc:9c:0d:ea:cd:5d:be:fa:4b:b8: 3f:00:db:69:e9:93:94:33:5c:ab:93:0c:29:03:1e:0b:83:e3: 49:66:81:1e:eb:04:72:ae:22:de:07:3f:e0:a6:40:aa:8a:e1: 54:6a:10:56:40:2c:ce:73:22:b7:22:93:7d:9d:1f:31:48:78: 08:3e:f5:c4:b6:5e:67:d7:52:36:0e:77:ba:e0:67:95:94:f7: 8c:1a:61:c4:72:d0:7f:a5:dc:93:f3:bd:a4:a2:96:99:6f:0d: 93:b2:1a:fa:9b:30:4c:38:33:c3:64:cf:b8:90:3b:c8:84:6a: a3:f6:b6:9a:5f:1e:eb:02:7d:d5:a3:c9:78:93:27:05:c6:44: 1a:71:67:6d:b6:14:4a:71:3d:56:84:21:26:33:a3:cf:9f:15: 9a:07:ab:d8:b5:6f:d0:58:e5:63:14:94:c6:b0:90:25:7a:f0: fa:56:40:83:15:2d:49:51:f5:fd:1f:38:fb:21:9a:70:f3:36: 1c:26:88:df:78:8c:c4:19:bd:b4:89:89:58:f9:d4:ee:5d:11: 2a:19:66:99:16:86:07:d6:9c:8c:54:93:02:01:37:50:e9:8e: 90:6a:4a:b1 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUcXrqZ1AICqFSnTx/9xOY6U87cl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzExMjgxMTMzMjlaFw0yNDExMjYxMTM4MjlaMDMxMTAvBgNV BAMTKEVCNTA0NjA5QUJBN0I3MjU1MDRBNEU1RDZBOTZCMERGQzE5ODIwRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaV5MCTZJOCHDGDD1t4Lxne52m aWJyFbQqOBKFqsgvTzb4UPNgLFQKgrLZ9dVRBNTVNZhPASrEbRw1bBTVNmyDNiaW lUZUn1BvyV1WFnW1ZNZlFVOCfIT2rFEpWv8xnA2ZN9Yj3kPCsEo4+/HmGcJyAeqQ cE2wFAF20bpSrpvp101RhLTZ8Dixgvty9ueMCG1SvpBNVx/8zfxxHELLhZSNUSNM vkHNLUbq818Dq0fr+ZHEJNpEi3t4qBX+Zp/BgpXt0qeZcqRcZPIwMJnoizTkqAnP dC5KAoCYRnDq4Qzev/PzerRikD71PV8NMpBVynQMjFv5YdXV8UpB+v5yJYJfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU61BGCauntyVQSk5dapaw38GYIPwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ2NTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TE EzANBgkqhkiG9w0BAQsFAAOCAQEAJoQtsdJL2dc/DTj5tPMCcYdBHXZ0pQIZTCXM nA3qzV2++ku4PwDbaemTlDNcq5MMKQMeC4PjSWaBHusEcq4i3gc/4KZAqorhVGoQ VkAsznMityKTfZ0fMUh4CD71xLZeZ9dSNg53uuBnlZT3jBphxHLQf6Xck/O9pKKW mW8Nk7Ia+pswTDgzw2TPuJA7yIRqo/a2ml8e6wJ91aPJeJMnBcZEGnFnbbYUSnE9 VoQhJjOjz58Vmger2LVv0FjlYxSUxrCQJXrw+lZAgxUtSVH1/R84+yGacPM2HCaI 33iMxBm9tImJWPnU7l0RKhlmmRaGB9acjFSTAgE3UOmOkGpKsQ== -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org