$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa File: AS47326.roa (raw, json) Hash identifier: NCyezpt9u7/+cORJmwpxEBO6AEZDo5jCIYv9Q1TuK/A= Subject key identifier: 62:4C:01:6D:4C:70:0B:79:A8:73:AA:8C:19:8A:53:A8:37:36:3C:90 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 47C09A31E74639C6C09332B2B29E753103A6F019 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa Signing time: Thu 22 Aug 2024 03:31:58 +0000 ROA not before: Thu 22 Aug 2024 03:26:58 +0000 ROA not after: Thu 21 Aug 2025 03:31:58 +0000 asID: 47326 IP address blocks: 2a07:54c6::/32 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c0:9a:31:e7:46:39:c6:c0:93:32:b2:b2:9e:75:31:03:a6:f0:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 22 03:26:58 2024 GMT Not After : Aug 21 03:31:58 2025 GMT Subject: CN=624C016D4C700B79A873AA8C198A53A837363C90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ca:a2:f3:cb:59:0b:2a:e2:7c:36:25:f8:d7: d1:1e:9a:62:06:96:11:56:29:67:6d:c1:4c:10:aa: e0:fb:e8:ff:ef:bf:9d:6c:f2:82:b4:de:51:e2:b1: ff:0c:27:95:cc:43:ef:c5:b7:3d:71:ba:18:3e:2f: 95:8d:21:a3:f1:40:23:e0:8f:9b:da:04:a5:6a:93: 24:9e:70:d8:46:a3:46:13:cd:aa:17:61:aa:0c:e1: 18:97:a2:a2:0a:3c:da:d5:29:a1:3c:5f:0a:0c:dc: f7:66:1c:3e:03:0f:f9:b6:c0:29:05:ce:ef:e3:19: 0b:f3:29:4e:25:1a:c9:00:65:7e:78:da:8f:0d:0b: 50:e7:0a:b8:79:e9:1b:85:32:13:e7:9f:45:5a:85: 37:4e:5f:52:69:ca:3e:6f:e0:49:6d:69:3b:ee:72: 57:bb:5b:96:01:fa:f7:7a:67:3b:f4:7e:18:f9:6e: a7:f7:f7:62:e9:e2:5d:04:26:55:e1:6b:14:f3:c3: 6e:40:d1:46:60:d4:f0:41:02:a6:21:11:47:92:ca: f1:1b:34:1b:41:ed:d2:58:91:fb:dc:03:5d:80:79: 37:f3:dc:28:be:89:ac:ef:aa:84:bc:c6:4e:e1:8d: 42:41:15:b2:a3:c1:b7:da:c0:88:e4:29:aa:f2:f9: f9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4C:01:6D:4C:70:0B:79:A8:73:AA:8C:19:8A:53:A8:37:36:3C:90 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c6::/32 Signature Algorithm: sha256WithRSAEncryption 1d:42:23:37:66:f3:9b:95:83:58:8f:30:9e:6a:43:ee:f6:98: 68:8c:2f:f6:a5:6d:9c:ee:83:35:98:c5:ee:c7:af:2b:ee:93: b1:64:61:b7:9b:5e:4e:2e:65:27:81:db:e5:c9:e6:fb:8b:4f: c7:93:3e:2f:8c:af:62:fc:4b:5f:2e:77:bb:89:a6:d2:b1:ec: 4f:9c:a4:d3:d1:b5:ef:af:43:f4:05:01:29:1b:1f:89:d9:ae: 8a:76:b1:da:91:a7:d2:12:49:20:cc:6d:b9:2e:0c:e9:4f:89: 6a:62:75:25:a7:11:8b:47:e0:a0:a4:b7:aa:8c:83:08:00:f8: 74:59:8a:1a:1c:7f:d2:29:f5:8b:80:89:68:23:e2:72:26:0b: f7:08:89:6f:75:a4:78:5c:42:68:24:89:45:a7:c4:a3:76:b3: a6:7f:1d:06:46:53:ea:52:77:05:65:71:1e:b7:a2:47:83:e2: 3f:e9:10:5c:01:b8:85:69:5b:a8:bf:52:1c:4f:ae:df:a5:94: 33:12:91:5b:8f:47:bf:d2:5c:2b:5c:87:a6:34:39:57:d2:d8: 07:c7:07:9e:e6:7e:02:47:54:61:94:df:62:36:9a:bd:1b:78: 02:63:f6:78:2a:91:96:50:66:0a:f0:65:ce:5e:a1:f1:6c:da: a3:37:19:1b -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUR8CaMedGOcbAkzKysp51MQOm8BkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjIwMzI2NThaFw0yNTA4MjEwMzMxNThaMDMxMTAvBgNV BAMTKDYyNEMwMTZENEM3MDBCNzlBODczQUE4QzE5OEE1M0E4MzczNjNDOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3yqLzy1kLKuJ8NiX419EemmIG lhFWKWdtwUwQquD76P/vv51s8oK03lHisf8MJ5XMQ+/Ftz1xuhg+L5WNIaPxQCPg j5vaBKVqkySecNhGo0YTzaoXYaoM4RiXoqIKPNrVKaE8XwoM3PdmHD4DD/m2wCkF zu/jGQvzKU4lGskAZX542o8NC1DnCrh56RuFMhPnn0VahTdOX1Jpyj5v4EltaTvu cle7W5YB+vd6Zzv0fhj5bqf392Lp4l0EJlXhaxTzw25A0UZg1PBBAqYhEUeSyvEb NBtB7dJYkfvcA12AeTfz3Ci+iazvqoS8xk7hjUJBFbKjwbfawIjkKary+fn1AgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUYkwBbUxwC3moc6qMGYpTqDc2PJAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDczMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAqB1TG MA0GCSqGSIb3DQEBCwUAA4IBAQAdQiM3ZvOblYNYjzCeakPu9phojC/2pW2c7oM1 mMXux68r7pOxZGG3m15OLmUngdvlyeb7i0/Hkz4vjK9i/EtfLne7iabSsexPnKTT 0bXvr0P0BQEpGx+J2a6KdrHakafSEkkgzG25LgzpT4lqYnUlpxGLR+CgpLeqjIMI APh0WYoaHH/SKfWLgIloI+JyJgv3CIlvdaR4XEJoJIlFp8SjdrOmfx0GRlPqUncF ZXEet6JHg+I/6RBcAbiFaVuov1IcT67fpZQzEpFbj0e/0lwrXIemNDlX0tgHxwee 5n4CR1RhlN9iNpq9G3gCY/Z4KpGWUGYK8GXOXqHxbNqjNxkb -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org