$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: biQrcIjhcOXnjXfQpvYe8fIHRgBty2KARSJtsH9tabU= Subject key identifier: F9:83:EF:5D:A1:33:09:28:C9:38:AD:C0:3A:87:B0:17:96:8C:F4:38 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 18F394E56CC8A56D45D6A536FCA1BC185E117E20 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa Signing time: Fri 23 Aug 2024 23:31:58 +0000 ROA not before: Fri 23 Aug 2024 23:26:58 +0000 ROA not after: Fri 22 Aug 2025 23:31:58 +0000 asID: 47272 IP address blocks: 2a07:54c4:175f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f3:94:e5:6c:c8:a5:6d:45:d6:a5:36:fc:a1:bc:18:5e:11:7e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 23 23:26:58 2024 GMT Not After : Aug 22 23:31:58 2025 GMT Subject: CN=F983EF5DA1330928C938ADC03A87B017968CF438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:58:79:af:2f:72:04:f4:59:d5:d5:84:65:b0: 6d:5f:89:ba:6e:ef:70:5b:fd:cc:f3:09:3d:9b:f8: 66:c8:d8:66:41:fa:14:d1:4f:1a:a9:14:0b:c5:9b: 3b:f6:75:66:36:f7:d3:35:ef:2a:86:98:7a:0e:c1: 63:93:0f:0d:d7:c2:af:ea:7b:8e:0c:d8:f9:54:30: 2b:a9:6f:b1:7a:2e:36:55:4c:ec:4d:62:d4:8f:4f: ca:58:70:50:01:41:83:b9:c7:ca:77:28:a0:71:f8: bf:5c:e3:2e:a3:d7:f7:ed:4a:29:6f:d4:62:e5:e8: a1:6c:37:7a:78:94:c8:a0:18:6d:ce:e8:84:67:b4: da:28:9a:e0:82:d4:d2:2d:67:87:46:15:a4:e0:c1: 82:69:84:87:d7:f4:04:55:99:ca:16:78:58:f9:29: 06:aa:8e:05:64:94:9d:de:5f:76:58:67:c3:c5:07: f2:32:5c:e7:c8:5d:71:4a:31:29:9e:92:f9:9e:23: cc:7d:4e:ad:0f:60:80:5d:3a:30:ad:6e:d9:f2:a2: 9d:cf:ac:e9:44:de:82:82:5f:10:59:1e:77:86:ff: dc:83:d5:29:56:89:8d:91:38:cd:40:da:62:0a:3a: 3f:c1:8f:ae:7c:b4:e7:4f:1e:bd:4d:14:fd:18:ac: ae:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:83:EF:5D:A1:33:09:28:C9:38:AD:C0:3A:87:B0:17:96:8C:F4:38 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175f::/48 Signature Algorithm: sha256WithRSAEncryption b1:11:16:f6:07:5f:92:47:cf:5e:29:37:23:47:01:07:9f:b6: 6a:19:2d:5a:9a:f1:3a:b8:19:b1:7b:16:e8:57:f2:7b:8c:c4: 31:01:9e:9e:56:4a:a2:bf:a6:a9:8b:04:7b:42:6c:ef:20:40: 20:7b:9c:17:47:24:5e:19:c1:9b:7d:b3:55:21:a4:2d:d0:6d: 82:e4:8d:91:34:4d:39:db:76:4e:2c:74:aa:3f:8c:6d:96:58: c8:b0:56:b6:dc:d7:c0:cc:e3:bf:15:b1:2f:6c:70:9d:c8:6d: 25:61:a9:5a:c2:1c:5a:55:f7:97:b3:fd:c8:08:0b:a6:7f:64: c3:65:6f:62:1f:32:9c:dc:93:18:28:e5:96:7a:03:30:2d:82: bf:b2:54:f0:08:fb:da:06:1b:d3:b5:00:32:27:39:d7:10:d4: 3b:0b:82:87:2a:17:a4:a0:81:a9:2a:36:ff:d6:5e:67:d2:df: 1b:cc:3c:5c:93:26:02:58:66:b4:a8:77:99:38:34:ec:7a:aa: b5:71:c9:0c:38:bc:52:7c:c5:16:81:e5:45:47:f7:67:3d:64: 0a:55:c7:9f:20:3b:65:81:bc:ab:44:b9:ea:56:da:cb:28:dc: 16:c4:10:43:36:9d:2b:de:4f:14:6d:b5:20:60:f4:a1:d9:60: a5:2b:33:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGPOU5WzIpW1F1qU2/KG8GF4RfiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjMyMzI2NThaFw0yNTA4MjIyMzMxNThaMDMxMTAvBgNV BAMTKEY5ODNFRjVEQTEzMzA5MjhDOTM4QURDMDNBODdCMDE3OTY4Q0Y0MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKWHmvL3IE9FnV1YRlsG1fibpu 73Bb/czzCT2b+GbI2GZB+hTRTxqpFAvFmzv2dWY299M17yqGmHoOwWOTDw3Xwq/q e44M2PlUMCupb7F6LjZVTOxNYtSPT8pYcFABQYO5x8p3KKBx+L9c4y6j1/ftSilv 1GLl6KFsN3p4lMigGG3O6IRntNoomuCC1NItZ4dGFaTgwYJphIfX9ARVmcoWeFj5 KQaqjgVklJ3eX3ZYZ8PFB/IyXOfIXXFKMSmekvmeI8x9Tq0PYIBdOjCtbtnyop3P rOlE3oKCXxBZHneG/9yD1SlWiY2ROM1A2mIKOj/Bj658tOdPHr1NFP0YrK7ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+YPvXaEzCSjJOK3AOoewF5aM9DgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDcyNzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F18wDQYJKoZIhvcNAQELBQADggEBALERFvYHX5JHz14pNyNHAQeftmoZLVqa8Tq4 GbF7FuhX8nuMxDEBnp5WSqK/pqmLBHtCbO8gQCB7nBdHJF4ZwZt9s1UhpC3QbYLk jZE0TTnbdk4sdKo/jG2WWMiwVrbc18DM478VsS9scJ3IbSVhqVrCHFpV95ez/cgI C6Z/ZMNlb2IfMpzckxgo5ZZ6AzAtgr+yVPAI+9oGG9O1ADInOdcQ1DsLgocqF6Sg gakqNv/WXmfS3xvMPFyTJgJYZrSod5k4NOx6qrVxyQw4vFJ8xRaB5UVH92c9ZApV x58gO2WBvKtEuepW2sso3BbEEEM2nSveTxRttSBg9KHZYKUrM68= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org