$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48436.roa File: AS48436.roa (raw, json) Hash identifier: 64v2ifGMNH3mMB7Qv5NAVcpH5ga1aH6C6QK1qes1e64= Subject key identifier: A3:1B:93:A0:FE:1C:DF:6E:D1:3F:B7:EE:4B:98:2C:62:1B:67:08:BC Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 75D16588A246D03346B259F5F4D30E0AFBE4F15E Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48436.roa Signing time: Fri 26 Jul 2024 21:42:24 +0000 ROA not before: Fri 26 Jul 2024 21:37:24 +0000 ROA not after: Fri 25 Jul 2025 21:42:24 +0000 asID: 48436 IP address blocks: 2a07:54c1:c1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Sep 2024 02:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d1:65:88:a2:46:d0:33:46:b2:59:f5:f4:d3:0e:0a:fb:e4:f1:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jul 26 21:37:24 2024 GMT Not After : Jul 25 21:42:24 2025 GMT Subject: CN=A31B93A0FE1CDF6ED13FB7EE4B982C621B6708BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cb:57:b2:f9:6a:7b:bc:93:09:5f:c7:9c:50: 7b:ab:8e:25:17:92:73:c8:be:21:1e:93:bd:9b:96: 81:68:3c:ec:12:aa:ab:71:98:0e:1e:04:0a:28:aa: 8e:19:35:62:66:22:e8:35:39:2d:d5:75:e4:a1:34: c7:2e:dc:a7:5b:c7:5d:e5:21:d2:19:24:9b:d4:8d: ff:4c:bc:b0:59:a9:34:6c:4a:c6:e5:0a:4e:d2:c2: 72:9b:6f:6f:c5:ef:d2:17:2f:3a:77:57:1e:cb:37: 98:f4:7c:f0:42:e1:c3:69:2f:10:1f:ce:fa:e5:f7: e2:a0:c8:6c:f1:2b:84:56:e3:45:27:bb:17:73:10: d4:6e:8f:99:e6:3b:00:a5:a2:ca:77:81:20:0a:e9: fc:eb:63:14:00:69:f7:74:0a:34:6c:be:b3:18:1c: 6a:47:26:a6:79:b5:aa:24:d5:af:9a:00:16:51:9b: a7:88:dc:d7:ec:1c:3c:b9:30:78:a8:e2:72:91:d5: 8d:8a:e6:74:6c:c2:92:9f:45:02:64:6e:f4:d5:b9: 5c:0a:f5:0a:af:44:e7:a8:64:f3:ac:84:6b:6e:5f: 7f:96:70:e9:32:85:0a:42:33:60:62:bc:a1:5a:6e: 4a:1c:b8:02:d8:3d:c8:b6:f3:a2:55:36:40:d8:d9: ac:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1B:93:A0:FE:1C:DF:6E:D1:3F:B7:EE:4B:98:2C:62:1B:67:08:BC X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS48436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c1e0::/44 Signature Algorithm: sha256WithRSAEncryption 6c:de:4d:ad:cf:77:ee:9b:b5:8b:03:25:47:fa:4d:a2:64:22: 00:b1:04:2a:08:80:12:ab:3c:8e:e8:64:e7:44:cf:fb:d7:75: e3:be:ee:48:eb:2b:4a:09:fe:0b:26:28:d3:ae:cc:35:3c:5e: db:d3:c9:27:40:df:6e:33:a1:4e:be:60:98:48:4e:90:b7:b3: b3:56:af:0c:23:f5:76:4b:de:5b:89:d1:1e:ab:2f:e5:87:39: 5f:c2:7c:f5:c3:d4:5c:07:51:af:5f:a5:b6:b1:6e:67:48:fe: a4:2f:8b:12:a8:e8:d4:49:6b:c5:17:22:72:0b:75:be:6a:a2: ff:dd:03:eb:6f:f4:51:a8:36:ef:26:70:0c:5f:40:d6:36:20: 14:4e:91:55:82:05:cd:22:83:e8:79:29:e4:a2:78:51:c0:3a: a6:e3:ff:2e:4d:97:6c:fb:8e:43:93:1a:41:44:51:a0:8a:77: 4b:69:a1:40:79:74:5c:fe:94:5e:a2:58:13:04:ba:e7:cf:c0: 40:ca:25:bc:09:6c:91:a2:9b:69:03:ac:dd:1e:97:cd:d9:1d: b9:18:a4:39:b7:f4:bd:13:ec:40:69:88:49:30:fb:82:92:57: 20:cc:95:e2:81:90:9c:bd:0e:ae:10:82:a4:29:86:22:ad:9d: a9:eb:9f:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUddFliKJG0DNGsln19NMOCvvk8V4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA3MjYyMTM3MjRaFw0yNTA3MjUyMTQyMjRaMDMxMTAvBgNV BAMTKEEzMUI5M0EwRkUxQ0RGNkVEMTNGQjdFRTRCOTgyQzYyMUI2NzA4QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCby1ey+Wp7vJMJX8ecUHurjiUX knPIviEek72bloFoPOwSqqtxmA4eBAooqo4ZNWJmIug1OS3VdeShNMcu3Kdbx13l IdIZJJvUjf9MvLBZqTRsSsblCk7SwnKbb2/F79IXLzp3Vx7LN5j0fPBC4cNpLxAf zvrl9+KgyGzxK4RW40UnuxdzENRuj5nmOwClosp3gSAK6fzrYxQAafd0CjRsvrMY HGpHJqZ5taok1a+aABZRm6eI3NfsHDy5MHio4nKR1Y2K5nRswpKfRQJkbvTVuVwK 9QqvROeoZPOshGtuX3+WcOkyhQpCM2BivKFabkocuALYPci286JVNkDY2azXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoxuToP4c327RP7fuS5gsYhtnCLwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNDg0MzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqB1TB weAwDQYJKoZIhvcNAQELBQADggEBAGzeTa3Pd+6btYsDJUf6TaJkIgCxBCoIgBKr PI7oZOdEz/vXdeO+7kjrK0oJ/gsmKNOuzDU8XtvTySdA324zoU6+YJhITpC3s7NW rwwj9XZL3luJ0R6rL+WHOV/CfPXD1FwHUa9fpbaxbmdI/qQvixKo6NRJa8UXInIL db5qov/dA+tv9FGoNu8mcAxfQNY2IBROkVWCBc0ig+h5KeSieFHAOqbj/y5Nl2z7 jkOTGkFEUaCKd0tpoUB5dFz+lF6iWBMEuufPwEDKJbwJbJGim2kDrN0el83ZHbkY pDm39L0T7EBpiEkw+4KSVyDMleKBkJy9Dq4QgqQphiKtnanrn9s= -----END CERTIFICATE-----Generated at Sat Sep 7 07:42:46 2024 by rpki-client on console-fra.rpki-client.org