$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa File: AS47326.roa (raw, json) Hash identifier: shCxCRKDSzeZK+8J5ShiD3wVvhBd9Q7QaBiQI+T4x9c= Subject key identifier: 18:B2:74:01:D9:39:4D:1E:42:23:09:C1:9B:A8:7A:3F:D1:B9:B6:D4 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6E9C450A3100A916A93438915C60F093496C2BA1 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa Signing time: Thu 21 Sep 2023 02:48:58 +0000 ROA not before: Thu 21 Sep 2023 02:43:58 +0000 ROA not after: Thu 19 Sep 2024 02:48:58 +0000 asID: 47326 IP address blocks: 2a07:54c6::/32 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9c:45:0a:31:00:a9:16:a9:34:38:91:5c:60:f0:93:49:6c:2b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 21 02:43:58 2023 GMT Not After : Sep 19 02:48:58 2024 GMT Subject: CN=18B27401D9394D1E422309C19BA87A3FD1B9B6D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:e8:3d:df:df:c2:a7:df:38:70:d1:9d:b3: 06:85:e2:93:72:66:7f:d4:27:9d:32:1c:5e:e1:31: d7:66:bc:c6:48:f1:43:98:90:50:63:fb:13:8f:62: c7:51:a7:2a:92:08:66:a1:5e:fe:5f:ad:d4:3a:09: 21:ae:f8:1b:fa:cb:ea:a6:ea:75:2c:57:09:9d:c8: 21:96:86:39:27:67:aa:a3:95:9c:32:26:9d:f1:03: 57:99:9f:aa:ee:e7:57:7d:d7:e9:6a:84:6d:61:1b: 7b:0d:c0:d5:6d:0e:c9:0b:d5:e1:ff:ce:ab:8a:29: ad:7b:07:44:2c:75:b5:e2:72:9a:78:7d:09:37:bc: d3:70:67:45:6e:c5:24:d4:3e:51:ab:c3:39:3b:8d: ab:5c:c1:d3:67:f2:5a:1f:53:9c:4d:77:19:42:bd: 86:68:ca:ba:73:d6:4f:fb:09:5c:11:81:f3:04:57: 38:47:d5:14:ae:76:5e:fc:ad:25:67:47:83:74:a3: 9a:91:d9:71:53:b0:29:0b:84:b1:82:59:24:8a:0a: 3c:6e:18:16:b1:44:4b:ce:bb:d9:d1:4b:11:6c:50: 4f:4d:62:aa:56:13:18:1c:43:51:27:45:c6:ab:1e: 51:ba:17:e8:16:8d:ef:f7:1e:c5:ef:ef:6c:6f:5a: e2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B2:74:01:D9:39:4D:1E:42:23:09:C1:9B:A8:7A:3F:D1:B9:B6:D4 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c6::/32 Signature Algorithm: sha256WithRSAEncryption 73:5f:55:34:fe:ec:86:57:c1:58:ca:35:e2:9c:9c:70:e7:9f: a0:cd:3d:c4:de:c1:7f:1b:bc:6d:ec:cc:bd:20:3b:e0:39:b2: cb:b6:ea:44:3e:08:71:a3:64:89:eb:fa:04:df:1f:d4:2b:df: 73:58:24:af:fb:8a:73:5d:9a:ee:dc:6b:ed:9a:42:f2:aa:e0: 87:46:32:f2:fa:4d:74:11:f6:68:f5:0f:91:65:f0:fc:2c:4e: 9a:ae:c6:d2:62:f2:56:5b:7d:33:20:f6:56:8f:db:f6:23:72: cd:b6:d5:b4:33:6e:85:6f:42:cd:60:40:76:45:36:50:65:bc: df:08:9d:57:6d:26:eb:5a:bb:47:07:ba:ad:98:e4:54:28:2f: cd:90:2d:ac:d8:6e:97:be:e0:a8:42:78:26:fe:7f:bb:08:fd: 78:dd:c3:b3:91:04:d0:c3:60:ae:db:ec:8b:87:cb:ca:53:53: 19:fc:56:ee:42:67:7b:95:d5:cd:b2:4d:cd:dd:9e:bf:64:9b: 89:53:a8:f3:7e:50:15:d6:9c:cb:f9:21:4e:73:f8:a8:18:36: 95:f0:7a:97:da:3a:e8:24:90:b7:59:2b:29:3a:3c:8a:d2:b4: 20:e2:fe:59:7b:5c:b4:e9:a7:3f:20:67:43:35:68:1b:42:35: a1:3d:2d:97 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUbpxFCjEAqRapNDiRXGDwk0lsK6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MjEwMjQzNThaFw0yNDA5MTkwMjQ4NThaMDMxMTAvBgNV BAMTKDE4QjI3NDAxRDkzOTREMUU0MjIzMDlDMTlCQTg3QTNGRDFCOUI2RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9zeg939/Cp984cNGdswaF4pNy Zn/UJ50yHF7hMddmvMZI8UOYkFBj+xOPYsdRpyqSCGahXv5frdQ6CSGu+Bv6y+qm 6nUsVwmdyCGWhjknZ6qjlZwyJp3xA1eZn6ru51d91+lqhG1hG3sNwNVtDskL1eH/ zquKKa17B0QsdbXicpp4fQk3vNNwZ0VuxSTUPlGrwzk7jatcwdNn8lofU5xNdxlC vYZoyrpz1k/7CVwRgfMEVzhH1RSudl78rSVnR4N0o5qR2XFTsCkLhLGCWSSKCjxu GBaxREvOu9nRSxFsUE9NYqpWExgcQ1EnRcarHlG6F+gWje/3HsXv72xvWuLNAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUGLJ0Adk5TR5CIwnBm6h6P9G5ttQwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDczMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAqB1TG MA0GCSqGSIb3DQEBCwUAA4IBAQBzX1U0/uyGV8FYyjXinJxw55+gzT3E3sF/G7xt 7My9IDvgObLLtupEPghxo2SJ6/oE3x/UK99zWCSv+4pzXZru3GvtmkLyquCHRjLy +k10EfZo9Q+RZfD8LE6arsbSYvJWW30zIPZWj9v2I3LNttW0M26Fb0LNYEB2RTZQ ZbzfCJ1XbSbrWrtHB7qtmORUKC/NkC2s2G6XvuCoQngm/n+7CP143cOzkQTQw2Cu 2+yLh8vKU1MZ/FbuQmd7ldXNsk3N3Z6/ZJuJU6jzflAV1pzL+SFOc/ioGDaV8HqX 2jroJJC3WSspOjyK0rQg4v5Ze1y06ac/IGdDNWgbQjWhPS2X -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org