$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa File: AS44733.roa (raw, json) Hash identifier: P3GqI8tHxQvQMneDLEQcxA/glEOCrEUgO9a5eqYdjLQ= Subject key identifier: 12:FA:E7:E1:AF:24:3B:40:CA:DB:C3:54:F9:10:D3:60:67:DA:80:02 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 29665E5680B76B0A7F4A05338EF34DD93FDE1CC1 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa Signing time: Sat 24 Feb 2024 23:34:50 +0000 ROA not before: Sat 24 Feb 2024 23:29:50 +0000 ROA not after: Sat 22 Feb 2025 23:34:50 +0000 asID: 44733 IP address blocks: 2a07:54c4:18f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:66:5e:56:80:b7:6b:0a:7f:4a:05:33:8e:f3:4d:d9:3f:de:1c:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 24 23:29:50 2024 GMT Not After : Feb 22 23:34:50 2025 GMT Subject: CN=12FAE7E1AF243B40CADBC354F910D36067DA8002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:77:93:af:91:6f:03:67:61:32:92:46:22:10: f3:87:ca:34:73:b2:d5:69:fe:87:f0:b5:0f:68:3c: 5a:3f:a4:de:6b:8f:d4:c9:01:9a:c1:81:65:06:49: 0d:3c:2c:4c:cc:94:c7:e8:c9:32:9f:9c:e4:da:fd: 32:17:76:50:99:91:9d:95:40:fc:7e:ff:79:25:48: 19:c5:81:cb:3e:9b:90:ec:67:f5:ad:ae:ef:c0:c6: 74:9e:ff:e0:fd:86:97:73:4c:06:9f:31:2b:8c:cb: 81:82:1d:bc:5e:a8:cd:69:02:15:94:fe:21:8c:12: ac:1e:bc:75:71:c2:36:b7:96:6b:2c:65:32:57:b9: f9:2a:eb:f8:ed:25:c4:e3:4e:63:e3:4d:fd:8a:6d: 38:ad:d7:23:f4:e5:7a:9e:63:73:ca:95:23:c4:f7: df:0a:9f:b3:a4:3e:b0:8f:44:9b:ea:64:05:2b:d7: 81:12:a5:82:25:ab:7b:c8:8f:e2:4a:9f:f6:d0:ec: 51:ea:46:55:8d:ea:19:f6:ae:20:57:6c:df:68:22: ee:43:12:2a:0e:cc:98:96:ef:75:2c:dc:be:76:86: cd:8d:17:e4:24:aa:89:ef:29:e1:8a:b8:02:dd:30: ae:1d:b0:8b:aa:94:27:f5:08:40:45:45:64:8f:24: 17:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:FA:E7:E1:AF:24:3B:40:CA:DB:C3:54:F9:10:D3:60:67:DA:80:02 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS44733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:18f4::/48 Signature Algorithm: sha256WithRSAEncryption 8e:a3:59:fa:6f:da:9d:53:17:d4:17:31:58:d6:8c:6a:cb:ef: b8:c1:93:ed:57:9d:74:50:c3:00:90:0e:43:b4:93:40:4a:11: d2:2a:dd:3d:b1:af:44:02:d3:d9:1d:84:5a:c9:51:c3:37:74: cf:cb:16:bb:e5:ac:a2:51:3d:49:90:0c:e7:eb:36:c1:3d:83: 3a:7f:33:d1:17:d3:c0:21:aa:07:59:1c:c0:66:56:dc:e6:76: 53:e8:3e:08:8b:a7:c2:08:da:4f:73:fc:45:ed:d0:bb:d1:a2: ba:99:9b:97:bb:ba:97:a6:c8:02:f9:95:c1:b3:fd:e4:1a:00: fa:dc:a6:c4:09:f1:a0:3f:67:b3:20:7e:5b:23:28:51:f4:e8: 2c:44:69:00:ae:3a:80:fa:b0:33:0f:49:73:33:80:3c:e8:46: e3:16:68:c9:22:28:11:b1:cd:55:7e:fc:88:e6:1b:bd:a7:ce: d1:c0:b6:f4:26:16:bc:34:78:74:93:89:c6:ad:c0:29:48:37: 9d:a6:17:f1:30:7d:67:56:36:13:8f:72:36:4d:27:0b:14:5a: 85:d3:ef:fe:a1:27:5d:cb:c9:f1:ad:8c:6e:9c:44:66:fc:7a: ec:88:9d:d3:23:cd:bc:97:e5:97:ae:16:3b:45:d0:44:f6:f4: 95:96:0a:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKWZeVoC3awp/SgUzjvNN2T/eHMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMjQyMzI5NTBaFw0yNTAyMjIyMzM0NTBaMDMxMTAvBgNV BAMTKDEyRkFFN0UxQUYyNDNCNDBDQURCQzM1NEY5MTBEMzYwNjdEQTgwMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZd5OvkW8DZ2EykkYiEPOHyjRz stVp/ofwtQ9oPFo/pN5rj9TJAZrBgWUGSQ08LEzMlMfoyTKfnOTa/TIXdlCZkZ2V QPx+/3klSBnFgcs+m5DsZ/Wtru/AxnSe/+D9hpdzTAafMSuMy4GCHbxeqM1pAhWU /iGMEqwevHVxwja3lmssZTJXufkq6/jtJcTjTmPjTf2KbTit1yP05XqeY3PKlSPE 998Kn7OkPrCPRJvqZAUr14ESpYIlq3vIj+JKn/bQ7FHqRlWN6hn2riBXbN9oIu5D EioOzJiW73Us3L52hs2NF+QkqonvKeGKuALdMK4dsIuqlCf1CEBFRWSPJBdxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEvrn4a8kO0DK28NU+RDTYGfagAIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDQ3MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE GPQwDQYJKoZIhvcNAQELBQADggEBAI6jWfpv2p1TF9QXMVjWjGrL77jBk+1XnXRQ wwCQDkO0k0BKEdIq3T2xr0QC09kdhFrJUcM3dM/LFrvlrKJRPUmQDOfrNsE9gzp/ M9EX08AhqgdZHMBmVtzmdlPoPgiLp8II2k9z/EXt0LvRorqZm5e7upemyAL5lcGz /eQaAPrcpsQJ8aA/Z7MgflsjKFH06CxEaQCuOoD6sDMPSXMzgDzoRuMWaMkiKBGx zVV+/IjmG72nztHAtvQmFrw0eHSTicatwClIN52mF/EwfWdWNhOPcjZNJwsUWoXT 7/6hJ13LyfGtjG6cRGb8euyIndMjzbyX5ZeuFjtF0ET29JWWCko= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org