$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54009.roa File: AS54009.roa (raw, json) Hash identifier: 6ufIIfo34kfilUoOR4uocWv58eHelZU3O4P8xIAFkHw= Subject key identifier: DE:86:6B:7D:A3:C9:EF:38:A2:C9:66:5E:7D:44:90:16:26:55:1D:67 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 020C0DFF0C50F48F7232E3CF5510384CAC0A84F2 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54009.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 54009 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:0c:0d:ff:0c:50:f4:8f:72:32:e3:cf:55:10:38:4c:ac:0a:84:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=DE866B7DA3C9EF38A2C9665E7D44901626551D67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:2a:68:21:97:04:e3:c8:9b:2e:6d:4d:8c: 49:99:96:25:52:3c:ba:b6:fa:cc:20:b1:dd:41:13: e5:6b:d1:80:5d:03:45:38:e7:f8:15:66:5c:ee:7d: c7:3d:41:8c:c6:68:57:eb:7a:4d:6c:85:e0:ee:fa: b8:44:1b:87:70:a7:20:8a:e4:df:29:e2:49:76:3b: 1b:ef:d7:fa:91:67:c3:79:2d:a0:7a:5f:87:ff:0a: e1:ee:39:b4:4c:c5:c6:33:ee:3c:0e:55:2d:60:69: cd:47:79:a6:e8:eb:7d:ba:bf:9b:57:5e:b5:d4:cd: a2:ed:9e:6b:bb:b3:10:65:12:25:ed:c3:d7:50:df: 94:eb:7a:9c:eb:ab:9e:c9:13:dc:f9:04:3e:f3:09: 19:51:b2:21:c2:fe:f4:d4:79:57:5a:83:5a:08:8d: e1:ad:06:2f:01:da:44:48:4c:54:c5:b9:0d:c4:90: 84:da:a5:72:54:5e:5e:23:ea:42:12:be:89:4d:53: 38:4c:9b:7e:ce:52:18:d0:52:4f:8b:ac:f3:27:73: 17:40:05:65:e7:de:13:59:a3:bd:e6:67:ff:bc:9e: 8c:7a:74:32:82:d5:0b:f4:bf:6f:4c:f7:30:95:65: a8:3e:57:b1:d6:90:fa:e2:87:ad:43:bb:f3:8b:b4: 38:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:86:6B:7D:A3:C9:EF:38:A2:C9:66:5E:7D:44:90:16:26:55:1D:67 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS54009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2b:e3:3d:1d:d6:5d:d8:5b:04:05:c7:af:6f:df:22:84:29:cf: c0:c5:5f:cb:06:33:d2:87:12:53:3b:e0:9e:8d:b5:80:48:45: ef:9e:46:46:37:b5:ca:6e:71:f4:88:cd:ba:6e:58:9b:f3:eb: b3:ca:f7:f8:8e:fe:fd:72:09:5a:3c:56:67:51:b8:d8:11:e5: b2:da:cf:fb:79:3b:be:8b:96:c9:af:45:52:e0:8e:98:9b:ba: 11:90:75:c3:9a:aa:56:18:2f:73:7d:ba:dc:a5:25:a3:c8:6a: b2:26:0c:2e:fa:91:4a:8b:b7:65:34:8d:b7:26:5f:58:79:4d: 0e:53:ba:2a:1d:51:f0:ef:f9:4e:f8:09:68:f7:90:54:de:6f: 38:01:1a:84:e2:13:eb:e2:a0:0f:f1:05:47:94:fa:23:62:88: bc:f7:19:95:3a:81:92:08:d8:1f:9b:c6:55:65:06:bd:9e:89: 77:a3:71:70:f9:d5:c5:44:58:d8:c9:05:37:3d:25:12:92:a9: 77:72:af:3d:ca:f9:9c:3e:48:36:c4:be:41:dc:d4:cb:d4:b1: 63:fb:d5:30:56:60:3b:40:38:53:a7:6e:77:b1:bc:22:7b:2e: 48:db:58:7c:af:66:e6:02:e2:4f:e7:73:f1:9f:da:50:fb:27: 02:b1:b5:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAgwN/wxQ9I9yMuPPVRA4TKwKhPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKERFODY2QjdEQTNDOUVGMzhBMkM5NjY1RTdENDQ5MDE2MjY1NTFENjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQfipoIZcE48ibLm1NjEmZliVS PLq2+swgsd1BE+Vr0YBdA0U45/gVZlzufcc9QYzGaFfrek1sheDu+rhEG4dwpyCK 5N8p4kl2Oxvv1/qRZ8N5LaB6X4f/CuHuObRMxcYz7jwOVS1gac1Heabo6326v5tX XrXUzaLtnmu7sxBlEiXtw9dQ35Trepzrq57JE9z5BD7zCRlRsiHC/vTUeVdag1oI jeGtBi8B2kRITFTFuQ3EkITapXJUXl4j6kISvolNUzhMm37OUhjQUk+LrPMncxdA BWXn3hNZo73mZ/+8nox6dDKC1Qv0v29M9zCVZag+V7HWkPrih61Du/OLtDiVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3oZrfaPJ7ziiyWZefUSQFiZVHWcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTNTQwMDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBACvjPR3WXdhbBAXHr2/fIoQpz8DFX8sGM9KH ElM74J6NtYBIRe+eRkY3tcpucfSIzbpuWJvz67PK9/iO/v1yCVo8VmdRuNgR5bLa z/t5O76LlsmvRVLgjpibuhGQdcOaqlYYL3N9utylJaPIarImDC76kUqLt2U0jbcm X1h5TQ5TuiodUfDv+U74CWj3kFTebzgBGoTiE+vioA/xBUeU+iNiiLz3GZU6gZII 2B+bxlVlBr2eiXejcXD51cVEWNjJBTc9JRKSqXdyrz3K+Zw+SDbEvkHc1MvUsWP7 1TBWYDtAOFOnbnexvCJ7LkjbWHyvZuYC4k/nc/Gf2lD7JwKxtVg= -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org