$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa File: AS200952.roa (raw, json) Hash identifier: LNmL+JxX8rvaK+Sp+JkqODEhM/yyzUp8O6O9avU7f4E= Subject key identifier: F5:0A:B1:5D:20:84:B6:49:4E:98:83:05:D6:D0:4D:42:5C:CC:40:85 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3EDD79669A1F14405FD32AC9DC684CDF79060CE1 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 200952 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:dd:79:66:9a:1f:14:40:5f:d3:2a:c9:dc:68:4c:df:79:06:0c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=F50AB15D2084B6494E988305D6D04D425CCC4085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:83:e3:92:80:80:10:59:bd:76:c1:3a:c4: e7:f4:6f:32:be:2a:59:c4:ee:98:94:13:d1:34:8c: 8d:54:1a:fa:a7:b1:66:b9:9a:25:1b:bb:bf:15:9a: 57:20:11:c9:15:d0:83:54:5e:0d:28:cb:2a:52:7e: 1e:8f:dd:a4:65:2a:55:00:30:83:a2:7d:9c:6d:56: f1:f2:a4:19:5c:e9:bc:17:a2:c8:08:f3:64:05:e0: c1:2e:0a:c3:53:a9:1f:45:24:b3:4c:19:f4:d6:a4: 7b:20:38:c0:2c:12:1f:b0:68:51:e7:aa:29:b4:32: 51:cc:a1:dd:fb:c9:0b:8c:4a:7a:59:6f:8d:66:49: 1d:d8:da:b6:22:8a:fd:58:18:d2:83:02:61:1b:54: 3c:36:36:9b:5f:72:a2:ac:de:7b:92:bd:3f:93:d5: ec:a3:a2:fe:5d:2c:da:c3:1a:0a:01:f6:12:c3:73: e0:21:63:b1:92:02:24:52:e9:f7:c5:cd:eb:10:cd: 8d:3c:df:68:ad:54:4b:43:58:10:9b:e8:45:28:46: 14:de:75:99:e3:49:dc:d1:06:6c:7a:0c:0a:dd:3d: fd:6f:6a:ec:37:bf:ee:71:0a:f1:37:de:a1:fa:0e: 16:21:30:f2:0f:35:b7:a6:9d:2b:27:f9:2b:9b:5e: b6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0A:B1:5D:20:84:B6:49:4E:98:83:05:D6:D0:4D:42:5C:CC:40:85 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS200952.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 91:bd:92:71:38:b5:c5:3b:a7:06:b8:4d:89:75:5b:e5:8d:39: 57:a0:f5:dd:dc:7c:45:4a:67:83:9e:b7:96:db:83:2f:2d:97: 0b:e5:59:3e:38:4b:31:0d:bb:80:de:65:b0:af:41:b4:b2:0f: cd:b7:4a:f8:ee:19:e7:aa:1f:01:c4:96:4e:40:6d:fc:23:ff: 54:96:bc:dc:d4:1b:02:21:4f:b7:45:07:3c:8e:c4:36:87:51: 44:42:3a:92:f0:f9:ef:ee:ce:0d:2a:43:f6:6e:68:0b:41:00: ff:f8:59:97:8b:e4:25:76:24:5c:4f:b5:12:68:88:77:c0:bb: bc:3e:8d:d8:50:3d:1b:96:76:5b:77:33:13:71:a5:2c:06:60: c7:02:b9:fd:3e:74:0a:27:93:6a:5d:d2:cb:ab:66:4f:71:fa: b6:a1:78:87:dd:53:61:95:c3:05:23:d2:9c:b1:85:d2:ef:7f: 46:86:6e:48:5c:85:20:94:48:b6:ff:c8:79:f3:fd:d2:f4:21: 41:35:ed:cb:b1:6e:fd:61:82:22:e0:ad:04:1e:66:47:64:af: dc:4b:6c:7f:a5:f0:0b:23:df:3a:24:43:26:a9:a8:b5:78:e1: 1a:a0:25:58:59:f9:eb:9d:23:2b:c3:46:c7:48:0a:92:56:98: 1b:d9:a3:21 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPt15ZpofFEBf0yrJ3GhM33kGDOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEY1MEFCMTVEMjA4NEI2NDk0RTk4ODMwNUQ2RDA0RDQyNUNDQzQwODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMRoPjkoCAEFm9dsE6xOf0bzK+ KlnE7piUE9E0jI1UGvqnsWa5miUbu78VmlcgEckV0INUXg0oyypSfh6P3aRlKlUA MIOifZxtVvHypBlc6bwXosgI82QF4MEuCsNTqR9FJLNMGfTWpHsgOMAsEh+waFHn qim0MlHMod37yQuMSnpZb41mSR3Y2rYiiv1YGNKDAmEbVDw2NptfcqKs3nuSvT+T 1eyjov5dLNrDGgoB9hLDc+AhY7GSAiRS6ffFzesQzY0832itVEtDWBCb6EUoRhTe dZnjSdzRBmx6DArdPf1vauw3v+5xCvE33qH6DhYhMPIPNbemnSsn+SubXrajAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9QqxXSCEtklOmIMF1tBNQlzMQIUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAwOTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCRvZJxOLXFO6cGuE2JdVvljTlXoPXd3HxF SmeDnreW24MvLZcL5Vk+OEsxDbuA3mWwr0G0sg/Nt0r47hnnqh8BxJZOQG38I/9U lrzc1BsCIU+3RQc8jsQ2h1FEQjqS8Pnv7s4NKkP2bmgLQQD/+FmXi+QldiRcT7US aIh3wLu8Po3YUD0blnZbdzMTcaUsBmDHArn9PnQKJ5NqXdLLq2ZPcfq2oXiH3VNh lcMFI9KcsYXS739Ghm5IXIUglEi2/8h58/3S9CFBNe3LsW79YYIi4K0EHmZHZK/c S2x/pfALI986JEMmqai1eOEaoCVYWfnrnSMrw0bHSAqSVpgb2aMh -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org