$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47689.roa File: AS47689.roa (raw, json) Hash identifier: 17UAxjPJ8LWSfklEglDlbSP1uFnzUUuJytwep2xcJvY= Subject key identifier: 42:E6:5A:B5:65:E0:36:6E:C6:49:E1:37:14:50:E6:27:53:7E:CF:FA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 152E7C357CB6CB6D859D42BB8EACEF2F2F4FDCAA Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47689.roa Signing time: Mon 30 Oct 2023 21:08:30 +0000 ROA not before: Mon 30 Oct 2023 21:03:30 +0000 ROA not after: Mon 28 Oct 2024 21:08:30 +0000 asID: 47689 IP address blocks: 2a07:54c1:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 03 May 2024 22:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2e:7c:35:7c:b6:cb:6d:85:9d:42:bb:8e:ac:ef:2f:2f:4f:dc:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Oct 30 21:03:30 2023 GMT Not After : Oct 28 21:08:30 2024 GMT Subject: CN=42E65AB565E0366EC649E1371450E627537ECFFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f0:8f:68:16:7a:0c:97:f9:7d:e9:94:fd:f6: 98:69:6c:33:c2:f8:c9:c0:c0:3e:f6:14:9a:f5:0d: 4f:19:04:1e:a6:62:3a:e5:1f:56:a7:a5:d1:22:0d: bc:f5:f1:77:92:03:3d:ef:59:29:85:56:35:68:44: 35:17:01:ae:08:00:c8:ff:4d:c1:9b:a2:79:fb:d2: 03:27:62:c1:3a:87:c1:26:98:41:e0:b1:39:6d:d9: 7c:8d:32:6b:22:31:bb:a0:e4:79:8f:1a:11:e7:cb: 61:ee:49:18:7e:17:32:b3:5c:09:c2:46:3f:65:c2: db:83:58:8c:f2:ca:02:ab:46:0e:73:1f:86:43:88: 6b:93:bc:82:28:ea:0a:e0:05:c2:75:67:a8:e2:97: 61:93:75:e2:c8:c4:bd:dd:30:33:83:9b:bb:8b:c9: 4b:fb:84:cf:88:a7:8b:89:55:e2:1b:e4:48:4c:36: 16:b3:a8:a8:28:45:8d:71:76:06:6c:9c:0c:b8:ab: bf:b2:32:87:3f:b9:1a:d5:02:65:7b:c9:56:0a:5f: a2:ac:47:39:0e:4b:56:92:28:67:11:9f:34:d8:fc: c7:f8:e6:fa:27:29:80:8f:2c:73:77:8f:bc:de:0d: 3b:f1:2e:95:c5:9a:85:26:a0:09:15:b8:d9:a9:45: e0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E6:5A:B5:65:E0:36:6E:C6:49:E1:37:14:50:E6:27:53:7E:CF:FA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS47689.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4100::/40 Signature Algorithm: sha256WithRSAEncryption 5f:ac:00:ed:b8:72:a8:18:66:6e:51:20:0e:3b:e1:6b:68:75: 29:48:5c:99:0f:c0:00:4e:a5:78:24:72:bf:08:fc:bb:61:18: e4:d4:be:fa:90:1b:de:7c:e8:bd:16:9d:09:53:06:d3:51:ca: 1a:f0:ec:9a:71:88:81:0a:a5:4a:88:21:23:3d:7f:22:60:ac: e0:5d:5d:aa:7d:8a:f6:ac:55:e2:a0:cc:6d:1a:e2:12:e8:2f: 16:66:2b:fe:5e:b5:a2:3c:ea:43:4b:86:15:96:c3:54:24:2d: fa:3f:d1:c9:99:3c:68:b8:0e:94:3f:06:d3:15:aa:50:c8:88: cb:3e:b9:f1:c9:3d:fa:b5:f6:ef:b4:64:bb:e5:b1:59:36:fc: ca:15:32:19:10:5b:2c:3c:a0:b7:f3:04:5d:fe:08:d8:78:74: 20:b7:49:8c:cc:c7:4c:7c:da:5e:92:cc:91:8d:68:97:9b:b6: f3:ba:95:ee:0d:b3:cf:45:77:ac:3b:28:17:56:40:5c:c6:fb: 65:6c:c0:68:8f:c3:ea:3b:40:4f:23:7c:4d:e4:31:a6:e8:02: 05:73:1c:53:0c:6f:b5:c9:af:d4:70:af:be:1f:6b:9e:5b:98: ec:3c:03:89:eb:80:7a:d5:1b:7d:01:5e:21:fa:a8:17:1e:18: 6f:db:12:a4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFS58NXy2y22FnUK7jqzvLy9P3KowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEwMzAyMTAzMzBaFw0yNDEwMjgyMTA4MzBaMDMxMTAvBgNV BAMTKDQyRTY1QUI1NjVFMDM2NkVDNjQ5RTEzNzE0NTBFNjI3NTM3RUNGRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC38I9oFnoMl/l96ZT99phpbDPC +MnAwD72FJr1DU8ZBB6mYjrlH1anpdEiDbz18XeSAz3vWSmFVjVoRDUXAa4IAMj/ TcGbonn70gMnYsE6h8EmmEHgsTlt2XyNMmsiMbug5HmPGhHny2HuSRh+FzKzXAnC Rj9lwtuDWIzyygKrRg5zH4ZDiGuTvIIo6grgBcJ1Z6jil2GTdeLIxL3dMDODm7uL yUv7hM+Ip4uJVeIb5EhMNhazqKgoRY1xdgZsnAy4q7+yMoc/uRrVAmV7yVYKX6Ks RzkOS1aSKGcRnzTY/Mf45vonKYCPLHN3j7zeDTvxLpXFmoUmoAkVuNmpReCZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUQuZatWXgNm7GSeE3FFDmJ1N+z/owHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDc2ODkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TB QTANBgkqhkiG9w0BAQsFAAOCAQEAX6wA7bhyqBhmblEgDjvha2h1KUhcmQ/AAE6l eCRyvwj8u2EY5NS++pAb3nzovRadCVMG01HKGvDsmnGIgQqlSoghIz1/ImCs4F1d qn2K9qxV4qDMbRriEugvFmYr/l61ojzqQ0uGFZbDVCQt+j/RyZk8aLgOlD8G0xWq UMiIyz658ck9+rX277Rku+WxWTb8yhUyGRBbLDygt/MEXf4I2Hh0ILdJjMzHTHza XpLMkY1ol5u287qV7g2zz0V3rDsoF1ZAXMb7ZWzAaI/D6jtATyN8TeQxpugCBXMc Uwxvtcmv1HCvvh9rnluY7DwDieuAetUbfQFeIfqoFx4Yb9sSpA== -----END CERTIFICATE-----Generated at Fri May 3 03:44:58 2024 by rpki-client on console-ams.rpki-client.org