$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: TTwpXl7HuSb5r39u+WDp/TlfDwehuZg7yhre8uQE4j8= Subject key identifier: 75:68:33:1F:1C:2D:19:74:BF:DD:84:01:63:58:CA:25:38:CA:F5:FF Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5CACE74349B72ACD16E29E0824C17D81827A8ADF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa Signing time: Fri 22 Sep 2023 23:10:32 +0000 ROA not before: Fri 22 Sep 2023 23:05:32 +0000 ROA not after: Fri 20 Sep 2024 23:10:32 +0000 asID: 47272 IP address blocks: 2a07:54c4:175f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ac:e7:43:49:b7:2a:cd:16:e2:9e:08:24:c1:7d:81:82:7a:8a:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 22 23:05:32 2023 GMT Not After : Sep 20 23:10:32 2024 GMT Subject: CN=7568331F1C2D1974BFDD84016358CA2538CAF5FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:50:97:e0:77:40:e4:ec:c5:b0:b2:9a:da: ef:dc:86:08:19:ce:a3:5c:e0:7f:2d:35:a1:0b:1f: 91:69:9f:51:a0:53:2a:f6:22:2e:b7:09:80:df:9c: 47:02:eb:ff:7f:35:6f:b1:e2:1f:07:90:b2:42:09: 40:dd:49:e3:b7:10:04:2e:a7:19:20:c3:e2:90:ed: c6:8b:fd:d0:4a:d9:ea:b9:64:89:b2:20:e9:e0:66: a9:56:a0:76:cc:8b:ef:09:eb:5b:02:4b:68:f9:a9: 7f:d2:ae:00:4b:e4:32:ad:17:4f:5b:10:a0:2b:c6: b9:9a:42:28:a6:67:f3:ba:ab:75:34:05:cf:04:88: 78:ad:98:11:27:54:37:34:94:45:73:bd:5e:4e:03: de:3c:fe:cd:f6:3f:33:d6:89:3c:d4:88:ba:46:52: 6c:1e:7a:21:38:c9:2b:44:60:65:a4:ec:36:41:88: 90:7a:e5:bd:79:de:0e:ee:bb:70:6d:ac:56:a4:ee: af:98:b0:95:ce:9d:0b:ad:14:df:ec:60:7b:6f:e3: c1:f2:60:33:dd:c9:9e:1a:fe:f7:40:78:a1:f5:92: c5:2d:c8:6a:c4:a7:d0:da:0e:6b:ed:f8:e0:6c:67: d6:60:f1:f6:7b:7c:6d:f0:22:37:ad:23:9f:ba:a2: 40:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:68:33:1F:1C:2D:19:74:BF:DD:84:01:63:58:CA:25:38:CA:F5:FF X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175f::/48 Signature Algorithm: sha256WithRSAEncryption 5c:27:fc:ce:8f:0b:8c:89:cd:2f:b7:48:c9:09:a6:f4:91:e0: 06:9e:06:8b:51:0b:08:29:9d:4e:fc:ed:d6:ad:e0:4d:ff:15: 53:ac:b9:76:00:fc:7a:96:32:0e:99:4c:9b:64:ea:ce:04:ea: f7:a7:ad:64:10:64:4b:61:49:f1:4e:51:3a:9d:c2:34:32:5a: 4b:d0:7d:12:93:3b:17:a6:d7:00:1b:5d:fa:3e:b2:d5:d9:1a: fb:9a:31:89:34:2c:c4:1a:9b:9d:e6:47:22:c4:32:78:00:ba: 0b:ae:5d:66:56:ba:c8:1b:e8:f5:a8:f5:b5:3b:a4:2f:b0:91: 46:89:e1:5d:87:af:1e:f9:55:e0:45:fa:29:9f:d3:1c:e5:24: 04:cb:f0:ed:90:e5:d4:69:41:71:eb:48:d5:95:b2:32:6d:3e: dc:9e:1d:5f:e6:7c:6a:ca:cd:04:7d:66:35:47:6b:a6:48:0f: b2:96:d6:5c:9f:6f:62:5a:11:67:0d:64:f1:b5:70:3e:ca:ce: 18:6a:31:81:98:b7:4b:d1:e3:81:19:7d:73:00:b2:a0:aa:20: 5e:0d:f7:ba:a6:51:8f:73:5c:62:89:7f:81:d3:46:3b:cc:c1: 03:88:a2:4a:db:45:63:55:ed:03:09:22:e1:d9:cb:4f:db:bc: e1:d1:05:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXKznQ0m3Ks0W4p4IJMF9gYJ6it8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MjIyMzA1MzJaFw0yNDA5MjAyMzEwMzJaMDMxMTAvBgNV BAMTKDc1NjgzMzFGMUMyRDE5NzRCRkREODQwMTYzNThDQTI1MzhDQUY1RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhnlCX4HdA5OzFsLKa2u/chggZ zqNc4H8tNaELH5Fpn1GgUyr2Ii63CYDfnEcC6/9/NW+x4h8HkLJCCUDdSeO3EAQu pxkgw+KQ7caL/dBK2eq5ZImyIOngZqlWoHbMi+8J61sCS2j5qX/SrgBL5DKtF09b EKArxrmaQiimZ/O6q3U0Bc8EiHitmBEnVDc0lEVzvV5OA948/s32PzPWiTzUiLpG UmweeiE4yStEYGWk7DZBiJB65b153g7uu3BtrFak7q+YsJXOnQutFN/sYHtv48Hy YDPdyZ4a/vdAeKH1ksUtyGrEp9DaDmvt+OBsZ9Zg8fZ7fG3wIjetI5+6okDPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdWgzHxwtGXS/3YQBY1jKJTjK9f8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDcyNzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F18wDQYJKoZIhvcNAQELBQADggEBAFwn/M6PC4yJzS+3SMkJpvSR4AaeBotRCwgp nU787dat4E3/FVOsuXYA/HqWMg6ZTJtk6s4E6venrWQQZEthSfFOUTqdwjQyWkvQ fRKTOxem1wAbXfo+stXZGvuaMYk0LMQam53mRyLEMngAuguuXWZWusgb6PWo9bU7 pC+wkUaJ4V2Hrx75VeBF+imf0xzlJATL8O2Q5dRpQXHrSNWVsjJtPtyeHV/mfGrK zQR9ZjVHa6ZID7KW1lyfb2JaEWcNZPG1cD7KzhhqMYGYt0vR44EZfXMAsqCqIF4N 97qmUY9zXGKJf4HTRjvMwQOIokrbRWNV7QMJIuHZy0/bvOHRBUI= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org