$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa File: AS44733.roa (raw, json) Hash identifier: AJZvxRq7xgKQueXlgnEiFQPRNjf2iz2DEQuWVdC8TT8= Subject key identifier: 4D:AF:7A:90:B0:3C:49:D2:AF:CE:69:E2:53:2A:30:70:DC:8D:6F:4D Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5486B26BB4A6D07D9D2B06324D82A310DC5D3BE4 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa Signing time: Sun 26 Jan 2025 00:06:18 +0000 ROA not before: Sun 26 Jan 2025 00:01:18 +0000 ROA not after: Sun 25 Jan 2026 00:06:18 +0000 asID: 44733 IP address blocks: 2a07:54c4:18f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:86:b2:6b:b4:a6:d0:7d:9d:2b:06:32:4d:82:a3:10:dc:5d:3b:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 26 00:01:18 2025 GMT Not After : Jan 25 00:06:18 2026 GMT Subject: CN=4DAF7A90B03C49D2AFCE69E2532A3070DC8D6F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bf:7e:ca:cb:1a:af:ee:90:8f:19:3f:29:03: c9:4e:d9:19:d0:0b:16:d2:cd:34:1c:1e:e0:8a:70: 0c:d3:34:b9:74:8d:be:0a:e4:9e:7c:c1:1d:2d:c6: 03:1e:70:ef:ee:81:fa:b7:10:d4:d1:6b:ce:31:6f: 29:03:57:a3:03:42:61:22:fb:e7:08:99:99:d6:46: d0:5a:11:88:5a:3d:5c:01:8f:37:4a:65:c2:58:67: 63:f7:3a:39:f9:50:90:61:34:31:f5:1f:ea:ed:9d: 7d:fc:fc:64:22:80:f2:72:45:1f:74:35:6b:d5:fa: 79:0e:d2:b7:94:53:19:74:8e:78:cd:be:32:8e:9e: 5d:bf:c2:3e:6a:ba:9c:0c:14:db:52:88:77:10:ab: 79:f1:44:ef:ee:35:f4:25:90:4d:91:79:03:97:24: bd:b2:e5:1f:65:2a:0b:e0:cb:f3:df:d6:c6:d7:00: 3a:8c:41:cb:cd:6e:c1:a6:cb:2c:a9:1e:17:41:87: 2b:bf:1b:58:1c:24:1e:db:be:31:b9:d9:c0:15:1b: 7d:2c:a3:d1:5c:95:5e:89:ea:f7:7b:ae:2b:18:15: 46:28:e0:b7:54:e6:73:09:37:78:b4:fa:1a:19:fa: 9e:0b:38:fd:1d:89:ba:32:3a:60:77:28:3c:a4:35: e4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AF:7A:90:B0:3C:49:D2:AF:CE:69:E2:53:2A:30:70:DC:8D:6F:4D X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:18f4::/48 Signature Algorithm: sha256WithRSAEncryption 1b:74:de:83:3e:1b:d9:2d:f8:67:c1:29:dd:3b:76:0c:77:93: 58:c6:53:ea:07:6d:63:fa:63:f8:1d:bc:5d:c4:80:25:f8:07: ac:a1:35:26:17:4d:1a:85:0a:37:0d:60:1f:95:0b:e6:d7:83: 72:ab:45:31:bd:f7:f5:d2:2b:04:ac:1e:55:cc:19:9f:df:33: b9:f3:bb:d7:0d:45:26:2a:d3:5b:4f:21:ef:00:e3:c0:31:1d: 0e:1b:e4:a6:bc:8a:4a:0e:90:a6:3a:02:50:73:40:78:f3:f5: 1b:d6:69:b5:cd:f5:fd:6d:5b:16:6e:ec:29:b6:86:18:3d:61: d3:85:7c:47:0e:5e:25:09:66:25:e5:4b:3d:46:67:66:34:c7: d5:44:0a:62:ca:a3:da:27:74:c1:6f:2b:d6:01:c2:e8:a9:dd: a8:2e:46:9c:74:0b:04:95:13:9c:08:99:de:d5:66:79:a1:c6: 25:ab:54:98:13:45:28:de:a2:c3:e1:46:6b:a8:0d:17:c4:df: 21:19:db:7b:95:8f:89:66:42:a0:f9:1f:5f:8f:5a:5b:2d:bd: a4:d6:60:1f:ab:fa:3e:a8:7f:18:b6:c7:63:46:d0:79:89:86: 0a:35:4a:11:72:23:6a:56:e3:d6:79:d5:37:cb:37:86:60:2e: 8c:2a:85:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVIaya7Sm0H2dKwYyTYKjENxdO+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAxMjYwMDAxMThaFw0yNjAxMjUwMDA2MThaMDMxMTAvBgNV BAMTKDREQUY3QTkwQjAzQzQ5RDJBRkNFNjlFMjUzMkEzMDcwREM4RDZGNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVv37Kyxqv7pCPGT8pA8lO2RnQ CxbSzTQcHuCKcAzTNLl0jb4K5J58wR0txgMecO/ugfq3ENTRa84xbykDV6MDQmEi ++cImZnWRtBaEYhaPVwBjzdKZcJYZ2P3Ojn5UJBhNDH1H+rtnX38/GQigPJyRR90 NWvV+nkO0reUUxl0jnjNvjKOnl2/wj5qupwMFNtSiHcQq3nxRO/uNfQlkE2ReQOX JL2y5R9lKgvgy/Pf1sbXADqMQcvNbsGmyyypHhdBhyu/G1gcJB7bvjG52cAVG30s o9FclV6J6vd7risYFUYo4LdU5nMJN3i0+hoZ+p4LOP0diboyOmB3KDykNeQ5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTa96kLA8SdKvzmniUyowcNyNb00wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ3MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE GPQwDQYJKoZIhvcNAQELBQADggEBABt03oM+G9kt+GfBKd07dgx3k1jGU+oHbWP6 Y/gdvF3EgCX4B6yhNSYXTRqFCjcNYB+VC+bXg3KrRTG99/XSKwSsHlXMGZ/fM7nz u9cNRSYq01tPIe8A48AxHQ4b5Ka8ikoOkKY6AlBzQHjz9RvWabXN9f1tWxZu7Cm2 hhg9YdOFfEcOXiUJZiXlSz1GZ2Y0x9VECmLKo9ondMFvK9YBwuip3aguRpx0CwSV E5wImd7VZnmhxiWrVJgTRSjeosPhRmuoDRfE3yEZ23uVj4lmQqD5H1+PWlstvaTW YB+r+j6ofxi2x2NG0HmJhgo1ShFyI2pW49Z51TfLN4ZgLowqhYU= -----END CERTIFICATE-----Generated at Fri Apr 4 17:05:57 2025 by rpki-client