$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa File: AS50224.roa (raw, json) Hash identifier: Rb8mtrfUQ6R13mrZz+XsxgvwcMA1ILJFg82pJ/C+TKM= Subject key identifier: B2:8F:A4:83:3C:D6:0C:26:E7:3F:B7:CA:CB:C4:73:CF:82:67:7E:C9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7DE8F017BB5CD628EE8F1039CA21A09056875116 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 50224 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 May 2024 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e8:f0:17:bb:5c:d6:28:ee:8f:10:39:ca:21:a0:90:56:87:51:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=B28FA4833CD60C26E73FB7CACBC473CF82677EC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:89:1c:37:be:44:03:6a:c6:ce:ce:cd:95:18: 35:6e:7f:ba:93:fd:6e:26:a4:6a:39:35:2e:ee:6a: c4:b0:12:70:7c:ef:65:52:be:d4:f0:54:84:31:f8: 84:a5:42:ab:11:43:5f:be:ab:45:06:94:91:48:11: 23:42:d9:dc:e4:77:3c:c5:37:be:fc:a3:aa:cf:fd: 42:24:49:e1:34:35:28:f4:86:f2:01:6a:f1:61:dc: de:c3:cd:9d:40:95:bd:ad:76:f1:36:76:7b:e8:94: f8:2c:63:16:45:4c:e2:70:9e:64:71:d5:13:cd:52: b9:b8:8e:c0:64:24:b1:7f:66:aa:6f:0a:a5:df:6b: e9:93:ca:b1:f5:72:38:05:f5:ce:00:8f:76:9d:39: 88:a2:6d:eb:b7:57:f2:b0:fa:90:cd:b9:15:83:a5: 01:3c:9b:71:00:4f:be:2e:5c:2c:c7:8b:cf:60:31: c1:9a:e2:c3:3a:b0:8f:c5:f6:f5:bc:f4:a0:e3:30: 7f:1c:4d:f8:b2:2e:5f:a8:5c:3c:49:41:1f:d9:fb: 3a:8c:1f:b8:6b:83:93:ae:17:1c:0d:4a:88:d5:e7: 3e:ca:31:42:60:55:59:2e:9f:de:f7:d5:af:d0:12: fe:c1:58:b3:1d:4f:c9:51:bd:30:1e:84:f7:7c:3e: 28:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8F:A4:83:3C:D6:0C:26:E7:3F:B7:CA:CB:C4:73:CF:82:67:7E:C9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS50224.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a0:97:5f:25:12:99:6c:60:17:30:5e:8e:77:f6:0c:6e:98:45: 95:5e:cf:7b:06:c1:71:e8:02:5d:4c:1f:eb:1e:e1:84:a3:98: f5:0b:32:ee:fd:d7:48:b8:34:c0:07:1d:27:2c:6d:6b:d9:29: b3:c0:53:21:4a:2c:96:f7:cd:80:67:4a:b6:d2:78:a0:39:bf: a3:88:93:1f:a5:77:ae:52:98:87:34:32:6a:ad:00:be:ed:44: 26:87:00:5e:e2:7b:5f:6e:40:bf:12:c0:9d:83:f0:16:43:06: cc:c5:ab:cc:50:37:63:42:ed:04:0a:f6:d3:a5:04:67:3d:bc: d4:56:3c:2f:06:5d:c3:70:27:fb:20:7f:1f:55:95:8a:40:07: 0b:ed:02:25:e1:1a:3f:4d:68:7b:1f:ca:47:27:35:92:a8:76: 11:ef:6b:06:b6:8f:d2:25:bd:29:a9:51:04:b6:86:59:44:12: 21:32:8b:9a:98:db:d3:bc:d5:78:d3:d0:3e:30:d8:c3:18:b0: 83:36:34:a9:d0:6c:a5:cb:50:b9:76:08:71:92:66:73:f7:eb: 3b:1b:41:a8:ac:88:04:05:2b:83:17:1a:a2:19:06:03:84:46: d1:5f:0a:6a:91:16:9f:d2:24:f2:ab:20:d3:e2:ce:e6:1f:f8: ca:8c:a5:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfejwF7tc1ijujxA5yiGgkFaHURYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEIyOEZBNDgzM0NENjBDMjZFNzNGQjdDQUNCQzQ3M0NGODI2NzdFQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAiRw3vkQDasbOzs2VGDVuf7qT /W4mpGo5NS7uasSwEnB872VSvtTwVIQx+ISlQqsRQ1++q0UGlJFIESNC2dzkdzzF N778o6rP/UIkSeE0NSj0hvIBavFh3N7DzZ1Alb2tdvE2dnvolPgsYxZFTOJwnmRx 1RPNUrm4jsBkJLF/ZqpvCqXfa+mTyrH1cjgF9c4Aj3adOYiibeu3V/Kw+pDNuRWD pQE8m3EAT74uXCzHi89gMcGa4sM6sI/F9vW89KDjMH8cTfiyLl+oXDxJQR/Z+zqM H7hrg5OuFxwNSojV5z7KMUJgVVkun9731a/QEv7BWLMdT8lRvTAehPd8PijjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUso+kgzzWDCbnP7fKy8Rzz4JnfskwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTAyMjQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAKCXXyUSmWxgFzBejnf2DG6YRZVez3sGwXHo Al1MH+se4YSjmPULMu7910i4NMAHHScsbWvZKbPAUyFKLJb3zYBnSrbSeKA5v6OI kx+ld65SmIc0MmqtAL7tRCaHAF7ie19uQL8SwJ2D8BZDBszFq8xQN2NC7QQK9tOl BGc9vNRWPC8GXcNwJ/sgfx9VlYpABwvtAiXhGj9NaHsfykcnNZKodhHvawa2j9Il vSmpUQS2hllEEiEyi5qY29O81XjT0D4w2MMYsIM2NKnQbKXLULl2CHGSZnP36zsb QaisiAQFK4MXGqIZBgOERtFfCmqRFp/SJPKrINPizuYf+MqMpS0= -----END CERTIFICATE-----Generated at Wed May 8 05:13:20 2024 by rpki-client on console-fra.rpki-client.org