$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa File: AS200351.roa (raw, json) Hash identifier: MROSsjHL0CIvMauGXRpTFHRBm4X2hK6Q89r3d0Y69z0= Subject key identifier: 1E:DE:BF:38:92:9C:54:D0:9F:07:5D:EF:FA:9E:8E:69:D1:EA:E2:F7 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3C3B48E738A5673857C75171B12559A79DD9141D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 200351 IP address blocks: 2a07:54c4:175b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 17:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3b:48:e7:38:a5:67:38:57:c7:51:71:b1:25:59:a7:9d:d9:14:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=1EDEBF38929C54D09F075DEFFA9E8E69D1EAE2F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:89:f7:c6:46:72:99:c2:15:e1:4f:a3:6c:0d: f4:7a:7b:a2:b4:6b:b2:ed:7b:c0:46:c3:0b:1a:9c: a7:6d:5a:5b:19:1c:53:8c:11:9a:31:08:d2:de:a8: ac:84:76:84:82:ca:98:44:53:a8:b1:d5:37:dd:39: 25:3c:83:94:2a:48:65:f7:6b:51:1b:e7:0e:cb:21: 70:9f:2f:fd:4d:1b:51:ef:cb:6a:8f:ea:05:05:4f: 0c:9c:4c:5f:ac:00:c3:1d:5d:5d:d6:bd:6a:7d:8f: 1a:40:86:e7:57:c1:4f:3a:f3:7e:dd:3c:e3:e9:c9: 7d:1e:cc:89:b2:1a:c8:79:0d:a9:e4:40:89:7f:97: a2:31:2f:57:6c:c8:82:8d:51:e2:51:9f:cb:b4:60: 8c:35:8e:df:98:68:6f:be:63:0a:23:74:a7:b0:49: 47:e0:d4:6d:3b:52:42:97:a2:c4:36:17:51:2b:ab: dd:12:2e:50:37:68:36:a4:44:ea:03:3e:34:a6:0d: 95:47:b7:13:30:7c:d4:f5:7c:2f:94:44:37:29:6b: 3f:ef:14:72:bb:32:c5:53:aa:95:9f:5d:77:14:aa: 24:1d:72:b7:d4:e7:c7:5e:aa:27:17:a3:38:92:02: 12:15:f7:7f:a1:d5:e8:30:71:f3:71:49:ac:6a:58: 3a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DE:BF:38:92:9C:54:D0:9F:07:5D:EF:FA:9E:8E:69:D1:EA:E2:F7 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200351.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175b::/48 Signature Algorithm: sha256WithRSAEncryption 61:c9:8e:9b:6a:ff:6c:c1:cb:70:1b:4b:97:33:d2:f6:63:f1: fb:24:48:b1:ec:ee:21:fd:c4:d2:15:6b:40:0e:9f:80:ae:cc: c8:8d:cc:1c:7b:94:74:c0:b7:c2:e4:ad:c6:b7:15:90:7d:b4: e0:d8:4b:27:32:75:73:a0:0b:34:9c:f5:18:3f:c9:90:61:54: da:b7:7d:3b:ba:19:aa:51:f7:b3:59:70:93:1b:25:d4:70:8f: ad:3f:8a:06:7b:6e:ba:0f:ee:5f:62:49:ae:f6:86:67:61:2a: e6:eb:5f:bf:f4:92:38:02:74:ec:e0:80:05:9e:d5:35:82:09: 7b:c2:f2:53:ac:e6:e1:35:53:90:88:1b:ac:7c:c5:21:4c:9b: 78:c6:e3:c6:08:45:8f:6c:d0:58:21:33:85:07:a3:d6:1c:e7: e8:7e:f5:d2:40:f8:a8:e9:4a:dc:0a:60:0e:ca:e4:03:07:56: 66:92:fa:cc:9d:f0:6f:54:8b:4e:db:53:eb:27:1e:bf:59:7a: c2:87:92:c4:97:75:b4:33:81:59:32:31:23:ad:e0:e8:14:a7: 70:f9:7d:50:66:77:1a:bd:72:02:d2:be:f1:e0:7b:6c:bc:45: 00:4a:94:81:5e:3c:ce:af:53:70:74:e1:62:93:55:dc:fc:b2: a9:32:1a:95 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPDtI5zilZzhXx1FxsSVZp53ZFB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKDFFREVCRjM4OTI5QzU0RDA5RjA3NURFRkZBOUU4RTY5RDFFQUUyRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDViffGRnKZwhXhT6NsDfR6e6K0 a7Lte8BGwwsanKdtWlsZHFOMEZoxCNLeqKyEdoSCyphEU6ix1TfdOSU8g5QqSGX3 a1Eb5w7LIXCfL/1NG1Hvy2qP6gUFTwycTF+sAMMdXV3WvWp9jxpAhudXwU86837d POPpyX0ezImyGsh5DankQIl/l6IxL1dsyIKNUeJRn8u0YIw1jt+YaG++YwojdKew SUfg1G07UkKXosQ2F1Erq90SLlA3aDakROoDPjSmDZVHtxMwfNT1fC+URDcpaz/v FHK7MsVTqpWfXXcUqiQdcrfU58deqicXoziSAhIV93+h1egwcfNxSaxqWDqhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHt6/OJKcVNCfB13v+p6OadHq4vcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwMzUxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdbMA0GCSqGSIb3DQEBCwUAA4IBAQBhyY6bav9swctwG0uXM9L2Y/H7JEix7O4h /cTSFWtADp+ArszIjcwce5R0wLfC5K3GtxWQfbTg2EsnMnVzoAs0nPUYP8mQYVTa t307uhmqUfezWXCTGyXUcI+tP4oGe266D+5fYkmu9oZnYSrm61+/9JI4AnTs4IAF ntU1ggl7wvJTrObhNVOQiBusfMUhTJt4xuPGCEWPbNBYITOFB6PWHOfofvXSQPio 6UrcCmAOyuQDB1ZmkvrMnfBvVItO21PrJx6/WXrCh5LEl3W0M4FZMjEjreDoFKdw +X1QZncavXIC0r7x4HtsvEUASpSBXjzOr1NwdOFik1Xc/LKpMhqV -----END CERTIFICATE-----Generated at Fri Nov 22 23:43:15 2024 by rpki-client on console-fra.rpki-client.org