$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa File: AS200572.roa (raw, json) Hash identifier: 1SfWNLMyirQTjtrS89F3jS70XZ4w6brMrhaEE8M81cY= Subject key identifier: CD:62:64:4F:87:73:AF:54:1C:60:40:28:00:71:75:8A:08:C2:AC:7E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 742B9BE3B78C42B0B423290B1682C1965EC2CA78 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 200572 IP address blocks: 2a07:54c1:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:2b:9b:e3:b7:8c:42:b0:b4:23:29:0b:16:82:c1:96:5e:c2:ca:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=CD62644F8773AF541C6040280071758A08C2AC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b1:2e:d9:82:20:4f:cc:fe:b8:cb:4e:a3:51: e8:41:1f:4b:50:2c:b9:68:80:e5:8a:24:ce:61:a6: f7:c4:4e:c2:63:35:6a:0f:ac:e1:1d:1e:75:7f:26: dd:44:40:b7:85:c5:8f:ec:ca:20:26:f3:27:d1:39: 9d:ed:5c:ae:33:8c:4a:05:24:61:ae:9c:05:3e:22: c6:98:67:41:2f:ac:87:36:e2:6c:d0:64:c5:5f:d0: 58:5c:c3:72:4d:00:5e:2c:47:9a:93:97:a9:01:c8: 1b:b6:12:ba:f0:4b:83:80:fa:16:14:3c:e8:75:73: 1d:a6:1e:3c:d7:da:28:93:eb:89:d8:6d:d3:d4:65: 83:32:94:88:7a:d0:8d:6b:d1:ab:43:5f:11:5f:e7: 78:89:51:80:03:7b:d4:da:a6:b5:af:20:2a:b2:59: 2b:09:3d:ad:be:2c:4d:4e:8f:6e:fd:90:13:c8:ac: 66:5c:08:00:8d:7f:60:ee:4d:32:ca:11:52:b1:dd: ce:42:5b:6a:8e:7b:87:d1:65:99:00:db:16:33:38: d2:f3:d2:7d:42:5a:08:47:da:c6:f1:68:ba:0e:7e: 46:bd:e1:8c:f6:eb:b3:cc:2d:00:ca:82:0b:c9:b1: ba:41:a8:29:70:d0:2b:b0:ad:27:b6:61:43:82:f2: 61:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:62:64:4F:87:73:AF:54:1C:60:40:28:00:71:75:8A:08:C2:AC:7E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200572.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4000::/40 Signature Algorithm: sha256WithRSAEncryption 64:5f:50:a8:b8:b9:23:72:c3:3f:e6:09:28:a6:32:c2:6f:38: 77:f3:7e:5e:18:a6:71:dc:77:8b:a0:47:c5:99:83:af:6f:3f: 60:e0:52:96:9b:08:ba:2c:e0:73:e8:05:18:46:22:63:96:70: bf:d6:2b:41:78:9f:32:9b:44:17:8f:eb:91:6b:ae:18:f4:6b: c4:20:62:45:ea:9b:e1:ad:5e:8b:a7:e6:64:b0:18:65:34:52: 78:c5:38:db:38:70:86:8b:1b:cc:e6:fc:84:2b:d9:a8:fd:1b: 8d:eb:71:22:d7:dc:cc:0d:38:63:e0:32:62:c2:8b:ec:51:4e: 0a:e1:ea:17:eb:e5:a4:3e:ff:6a:be:34:3f:0a:71:82:51:7a: 29:29:cb:9d:05:a6:74:77:ed:70:88:e1:a3:68:92:a2:09:76: 17:84:1d:11:71:79:fc:47:09:3c:47:84:e7:fd:9c:ca:81:0a: 2a:a6:ec:c9:b0:22:89:f6:20:1f:8e:ae:d3:02:47:6e:e3:5d: ba:30:cb:89:b6:d9:28:57:27:bf:ac:ea:d5:b2:8b:26:4d:19: dc:0b:a6:ff:a6:88:f7:7d:1d:27:fc:0b:6f:98:84:d3:f1:23: 1c:5b:15:20:9f:ae:b3:58:ca:67:9a:7d:65:3b:f6:be:56:89: 19:f3:cd:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdCub47eMQrC0IykLFoLBll7CyngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKENENjI2NDRGODc3M0FGNTQxQzYwNDAyODAwNzE3NThBMDhDMkFDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDasS7ZgiBPzP64y06jUehBH0tQ LLlogOWKJM5hpvfETsJjNWoPrOEdHnV/Jt1EQLeFxY/syiAm8yfROZ3tXK4zjEoF JGGunAU+IsaYZ0EvrIc24mzQZMVf0Fhcw3JNAF4sR5qTl6kByBu2ErrwS4OA+hYU POh1cx2mHjzX2iiT64nYbdPUZYMylIh60I1r0atDXxFf53iJUYADe9TaprWvICqy WSsJPa2+LE1Oj279kBPIrGZcCACNf2DuTTLKEVKx3c5CW2qOe4fRZZkA2xYzONLz 0n1CWghH2sbxaLoOfka94Yz267PMLQDKggvJsbpBqClw0CuwrSe2YUOC8mGBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzWJkT4dzr1QcYEAoAHF1igjCrH4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwNTcyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUAwDQYJKoZIhvcNAQELBQADggEBAGRfUKi4uSNywz/mCSimMsJvOHfzfl4YpnHc d4ugR8WZg69vP2DgUpabCLos4HPoBRhGImOWcL/WK0F4nzKbRBeP65Frrhj0a8Qg YkXqm+GtXoun5mSwGGU0UnjFONs4cIaLG8zm/IQr2aj9G43rcSLX3MwNOGPgMmLC i+xRTgrh6hfr5aQ+/2q+ND8KcYJReikpy50FpnR37XCI4aNokqIJdheEHRFxefxH CTxHhOf9nMqBCiqm7MmwIon2IB+OrtMCR27jXbowy4m22ShXJ7+s6tWyiyZNGdwL pv+miPd9HSf8C2+YhNPxIxxbFSCfrrNYymeafWU79r5WiRnzzQ4= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org