$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200242.roa File: AS200242.roa (raw, json) Hash identifier: gxrTcvfExGkOXWM34gRhlNyq3CjXyH3DY2xv2aBIsW8= Subject key identifier: 31:CE:44:13:5A:22:30:42:7B:F7:05:C2:77:F5:67:C5:F0:FB:5F:BE Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 27E37E698C0377CE330F7D50B666F492E2D8EE14 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200242.roa Signing time: Thu 22 Aug 2024 22:31:58 +0000 ROA not before: Thu 22 Aug 2024 22:26:58 +0000 ROA not after: Thu 21 Aug 2025 22:31:58 +0000 asID: 200242 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e3:7e:69:8c:03:77:ce:33:0f:7d:50:b6:66:f4:92:e2:d8:ee:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 22 22:26:58 2024 GMT Not After : Aug 21 22:31:58 2025 GMT Subject: CN=31CE44135A2230427BF705C277F567C5F0FB5FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4c:25:ad:bb:cb:eb:53:eb:aa:35:f3:08:27: df:ab:b2:1a:52:fa:80:e0:a1:b6:7b:b5:f5:a5:0a: 4c:96:cf:b6:16:6e:2d:6e:4f:84:7e:a0:57:53:7d: 7b:ad:93:f2:b5:ad:5d:98:e8:8a:d1:e4:e1:ab:b0: b3:61:f6:7c:c5:1a:43:3f:fd:b9:2a:16:ef:1f:db: 81:aa:6c:22:96:5f:a6:8c:c4:28:9e:87:70:3d:a2: 2f:06:56:58:a7:cf:c3:00:c9:b4:df:44:dc:ea:f3: f8:9f:eb:f5:4f:3f:8d:44:e2:9f:f1:c3:ca:c5:2b: e0:54:11:03:90:28:3c:e2:ba:bb:57:f7:6b:68:c7: 64:a6:d5:c4:c2:16:07:8e:11:e1:0d:3a:3f:14:f8: 48:fd:a3:82:00:4a:1e:b2:cf:33:58:f9:76:2c:77: cc:ef:13:0c:06:7c:63:b0:5a:0f:64:90:1a:e7:dc: d9:80:76:3c:5e:cd:d6:20:fc:72:89:50:45:b8:07: bd:7f:33:d5:7e:87:76:f4:e3:8b:8b:12:39:cd:10: 19:bf:e7:e4:8a:16:9b:ec:69:93:49:9b:37:8d:31: fb:1d:62:a4:ff:3b:d3:b1:30:4e:3e:17:4f:a5:c3: a1:95:cb:14:15:2c:48:55:12:72:0f:a8:3f:3a:c7: 69:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CE:44:13:5A:22:30:42:7B:F7:05:C2:77:F5:67:C5:F0:FB:5F:BE X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 74:84:62:af:b7:4a:53:f8:b0:cd:83:be:82:76:93:92:74:60: 02:5a:de:f9:8b:4e:5f:ce:b7:10:2f:73:22:9e:f4:93:0b:2f: de:8b:0b:6c:82:85:d7:f8:80:69:cb:e6:e6:a0:5c:74:0f:d2: de:52:3a:fe:6d:97:36:0a:77:03:4a:b4:32:6a:5e:cb:83:bb: 47:e4:b3:56:91:48:03:ec:8b:79:d6:da:b8:2a:08:96:bf:4a: 2c:ae:5d:a2:5d:14:86:70:de:38:7e:d0:b5:f3:0a:e4:89:f5: e8:5a:e4:5f:f1:23:d3:e3:3d:2e:6e:1d:d8:03:87:42:46:0b: 81:ae:96:91:6d:d7:e2:ba:16:64:68:b8:3e:63:a1:ac:09:3d: 5f:c4:cf:6c:c0:bd:cf:c5:e9:ce:ef:ed:de:bb:f1:0c:3f:96: 98:a5:5f:70:f5:30:62:20:b7:12:d3:3a:19:ec:f8:07:d1:32: 02:65:f3:77:4f:c9:41:bf:42:70:59:db:56:21:ef:f3:ca:f8: aa:7e:35:04:8e:09:5e:e9:7e:63:6e:e4:3f:83:54:d5:26:3b: 19:89:de:82:52:16:6d:94:48:82:8a:47:89:4d:a7:25:15:4d: dc:1c:fe:75:c9:da:f9:b1:41:92:a0:0b:7d:bf:36:93:ed:fb: 44:19:39:27 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJ+N+aYwDd84zD31Qtmb0kuLY7hQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjIyMjI2NThaFw0yNTA4MjEyMjMxNThaMDMxMTAvBgNV BAMTKDMxQ0U0NDEzNUEyMjMwNDI3QkY3MDVDMjc3RjU2N0M1RjBGQjVGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5TCWtu8vrU+uqNfMIJ9+rshpS +oDgobZ7tfWlCkyWz7YWbi1uT4R+oFdTfXutk/K1rV2Y6IrR5OGrsLNh9nzFGkM/ /bkqFu8f24GqbCKWX6aMxCieh3A9oi8GVlinz8MAybTfRNzq8/if6/VPP41E4p/x w8rFK+BUEQOQKDziurtX92tox2Sm1cTCFgeOEeENOj8U+Ej9o4IASh6yzzNY+XYs d8zvEwwGfGOwWg9kkBrn3NmAdjxezdYg/HKJUEW4B71/M9V+h3b044uLEjnNEBm/ 5+SKFpvsaZNJmzeNMfsdYqT/O9OxME4+F0+lw6GVyxQVLEhVEnIPqD86x2nBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMc5EE1oiMEJ79wXCd/VnxfD7X74wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwMjQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQB0hGKvt0pT+LDNg76CdpOSdGACWt75i05f zrcQL3MinvSTCy/eiwtsgoXX+IBpy+bmoFx0D9LeUjr+bZc2CncDSrQyal7Lg7tH 5LNWkUgD7It51tq4KgiWv0osrl2iXRSGcN44ftC18wrkifXoWuRf8SPT4z0ubh3Y A4dCRguBrpaRbdfiuhZkaLg+Y6GsCT1fxM9swL3PxenO7+3eu/EMP5aYpV9w9TBi ILcS0zoZ7PgH0TICZfN3T8lBv0JwWdtWIe/zyviqfjUEjgle6X5jbuQ/g1TVJjsZ id6CUhZtlEiCikeJTaclFU3cHP51ydr5sUGSoAt9vzaT7ftEGTkn -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org