$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200454.roa File: AS200454.roa (raw, json) Hash identifier: /TFGNX/RSUbfZULG21lgV1nojCZ8940mN5GohuVOn38= Subject key identifier: D4:8E:33:7D:2B:4D:86:7F:E9:8E:F8:FE:23:AA:35:67:4E:9A:60:E6 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 10CA6C0862E304F88F9D14415EF22C04626877DB Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200454.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 200454 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1759::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ca:6c:08:62:e3:04:f8:8f:9d:14:41:5e:f2:2c:04:62:68:77:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=D48E337D2B4D867FE98EF8FE23AA35674E9A60E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a1:96:c6:44:a9:c1:f0:b2:07:46:64:20:f9: 18:11:70:3e:1f:af:8d:13:5e:3e:38:a8:dd:40:dc: 16:1e:5e:bb:6c:aa:c6:c5:ac:68:86:b4:ae:d9:e0: c5:d0:4e:74:b7:08:be:a7:91:84:21:80:27:38:e6: b4:d7:30:30:20:69:45:d9:dc:1b:0b:52:c7:36:de: 79:85:f8:bb:32:b4:1d:76:52:18:bf:70:54:9a:04: 93:ba:9a:3c:dd:36:d2:69:23:b5:5b:69:d7:5d:ea: 3d:95:6c:3b:e5:e2:c1:72:b5:09:03:20:f6:9a:a6: 34:29:51:f9:65:ec:17:27:ed:11:9d:ea:d9:83:b5: 39:4a:64:cb:75:44:d3:e0:88:47:09:b9:d7:66:b5: 67:b3:0c:6a:9c:95:44:3e:3b:2e:57:08:46:4b:ad: 63:55:22:d7:78:1a:7d:0f:9f:8f:63:07:ed:8a:05: 5c:8d:67:fd:76:7c:b9:8b:cd:f7:1f:88:95:2d:95: 76:73:19:25:b6:95:bf:fb:af:8f:97:65:a2:6b:3f: 51:67:d6:ab:c6:28:fb:c5:6f:92:d7:98:53:59:71: 04:82:6a:c5:3a:30:9e:a8:d9:c4:13:b7:1d:74:a0: 80:14:42:b2:8d:53:3f:b9:66:b1:06:55:b3:de:1a: 04:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8E:33:7D:2B:4D:86:7F:E9:8E:F8:FE:23:AA:35:67:4E:9A:60:E6 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1759::/48 Signature Algorithm: sha256WithRSAEncryption 63:ec:63:25:a8:77:f0:99:67:8e:0a:9d:94:86:e3:94:cd:c8: 09:71:57:dc:2f:e2:5d:47:76:bc:ff:fa:22:71:30:50:f7:43: b1:7a:28:ab:a8:36:4c:75:c3:69:2e:d9:30:1b:a4:12:5c:35: 94:4d:7a:b1:f2:e7:37:28:47:cc:27:26:2c:a2:e0:40:de:7e: ff:9d:8c:39:5e:3d:c7:53:85:8a:cc:74:45:79:49:02:f2:d1: d7:53:b5:53:e6:e4:72:03:71:4b:0a:1f:b2:21:c8:bc:74:5b: eb:cd:c1:e8:6b:f5:38:78:94:04:c7:26:26:cb:05:25:d9:b8: 52:62:1e:89:71:1b:91:13:fe:e3:6a:52:a9:53:da:8b:c4:5b: 5d:f6:78:e6:3e:34:9c:b5:8e:a0:1b:50:6f:4b:ce:29:bf:6b: f5:40:66:1b:29:f3:5e:5a:b2:00:82:62:ab:79:0e:41:da:0d: 95:25:06:d2:83:b5:5a:13:94:06:52:ea:e9:e0:ba:4b:cb:92: af:ac:11:b3:89:3b:27:5f:ce:7a:e5:20:c5:8f:e0:1c:f0:12: f1:53:ae:31:e7:6a:65:6f:cf:bc:b6:21:7c:22:bb:ed:41:79: a1:ee:31:65:1a:0d:50:45:9b:c5:7c:a3:9e:a7:2d:3d:50:d7: 24:b0:46:1a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUEMpsCGLjBPiPnRRBXvIsBGJod9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEQ0OEUzMzdEMkI0RDg2N0ZFOThFRjhGRTIzQUEzNTY3NEU5QTYwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1oZbGRKnB8LIHRmQg+RgRcD4f r40TXj44qN1A3BYeXrtsqsbFrGiGtK7Z4MXQTnS3CL6nkYQhgCc45rTXMDAgaUXZ 3BsLUsc23nmF+LsytB12Uhi/cFSaBJO6mjzdNtJpI7Vbaddd6j2VbDvl4sFytQkD IPaapjQpUfll7Bcn7RGd6tmDtTlKZMt1RNPgiEcJuddmtWezDGqclUQ+Oy5XCEZL rWNVItd4Gn0Pn49jB+2KBVyNZ/12fLmLzfcfiJUtlXZzGSW2lb/7r4+XZaJrP1Fn 1qvGKPvFb5LXmFNZcQSCasU6MJ6o2cQTtx10oIAUQrKNUz+5ZrEGVbPeGgTDAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQU1I4zfStNhn/pjvj+I6o1Z06aYOYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwNDU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdZMA0GCSqGSIb3DQEBCwUAA4IBAQBj7GMlqHfwmWeOCp2UhuOU zcgJcVfcL+JdR3a8//oicTBQ90OxeiirqDZMdcNpLtkwG6QSXDWUTXqx8uc3KEfM JyYsouBA3n7/nYw5Xj3HU4WKzHRFeUkC8tHXU7VT5uRyA3FLCh+yIci8dFvrzcHo a/U4eJQExyYmywUl2bhSYh6JcRuRE/7jalKpU9qLxFtd9njmPjSctY6gG1BvS84p v2v1QGYbKfNeWrIAgmKreQ5B2g2VJQbSg7VaE5QGUurp4LpLy5KvrBGziTsnX856 5SDFj+Ac8BLxU64x52plb8+8tiF8IrvtQXmh7jFlGg1QRZvFfKOepy09UNcksEYa -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org