$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa File: AS201242.roa (raw, json) Hash identifier: fEefn/bRZcx0/h4p3H5j5I5uAjrgWqz5IhMoeVF0maY= Subject key identifier: 4E:94:DA:BA:2D:47:15:6E:31:5A:B5:E3:08:FF:6D:17:4A:C8:FD:A2 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 572FCF94F2F28BCB72227A7800C55FA56BE2EF40 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa Signing time: Tue 20 Aug 2024 02:31:53 +0000 ROA not before: Tue 20 Aug 2024 02:26:53 +0000 ROA not after: Tue 19 Aug 2025 02:31:53 +0000 asID: 201242 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:2f:cf:94:f2:f2:8b:cb:72:22:7a:78:00:c5:5f:a5:6b:e2:ef:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:53 2024 GMT Not After : Aug 19 02:31:53 2025 GMT Subject: CN=4E94DABA2D47156E315AB5E308FF6D174AC8FDA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:91:83:82:ca:d2:af:2c:3a:a9:60:67:dc:d6: 2f:41:a8:f5:6c:51:9b:32:f3:64:97:d5:1b:91:9d: 9b:a2:fa:83:d0:80:34:91:a9:98:be:a4:07:de:e6: 4a:51:be:de:07:84:2a:eb:ab:77:03:d6:88:ea:4f: 5e:ea:64:f0:45:65:5f:33:bc:99:d6:94:f8:ca:af: be:a3:6c:f3:c2:ac:aa:33:cd:6e:d0:b3:e9:35:ed: 0c:4e:39:64:eb:d0:89:11:79:ac:0f:f3:85:ee:19: fb:4b:ba:71:76:2d:1b:fb:0e:7e:9b:7f:1f:93:79: 93:2f:2b:e7:41:df:6b:10:fb:10:a4:3d:98:28:1f: 69:68:2e:12:d7:f7:73:21:aa:f6:1b:1d:51:52:83: 31:25:1a:49:89:57:ab:b6:59:a5:6f:33:0e:37:fc: a1:71:c9:68:8a:dc:9d:8f:b8:61:d0:07:88:82:19: 2c:27:7b:e9:74:d3:e2:72:ca:e2:f1:93:6e:1f:d1: ca:c0:c5:f2:07:cf:38:3d:a0:06:ac:24:6d:50:f0: 4a:29:84:d1:9b:fc:84:76:04:92:a4:b7:d0:55:2b: 5e:20:10:cc:a7:38:8f:fe:2f:36:47:a0:c2:aa:a8: 86:7e:a6:1e:aa:14:c4:c2:27:66:84:e2:b8:fa:86: 28:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:94:DA:BA:2D:47:15:6E:31:5A:B5:E3:08:FF:6D:17:4A:C8:FD:A2 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS201242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 45:f1:7d:7b:f5:41:4c:8d:32:11:62:26:3a:f3:bd:d3:de:ad: 63:9d:6b:5c:93:79:8b:98:71:50:94:98:0e:65:79:7e:cd:ae: e8:7c:3d:8a:0b:f7:81:cb:4d:bd:a3:ae:43:82:50:6e:cd:a5: bc:cd:fe:f2:d5:60:49:da:8b:00:eb:f0:83:06:93:7e:0c:bf: d0:49:c8:10:bf:4d:09:c3:04:1d:33:8d:c7:fd:68:9e:fd:03: 31:18:dd:2c:f0:62:b9:53:b4:bc:1c:68:bb:95:c0:e5:42:ca: b9:18:17:7b:c8:da:76:6c:17:cd:5b:c4:3a:4b:d8:1e:29:dd: 89:6c:f6:01:9c:9c:82:79:4a:9d:dd:9c:7b:77:12:00:04:09: 1b:cd:14:7c:f2:b0:7e:d9:56:25:3b:0b:ad:59:24:ee:0a:59: ad:76:ef:47:79:80:ec:f3:e5:d5:d0:7c:32:6d:50:b4:5c:84: b1:d8:08:3c:7a:50:7b:62:55:71:2a:1f:16:2c:eb:10:e1:26: 72:50:8b:4e:2f:00:0e:95:7a:30:4d:d2:29:6d:07:7e:e9:66: ab:ed:97:d9:25:dd:0b:71:ff:eb:dc:0e:0b:4f:e2:25:7e:c3: 96:9b:5b:9f:92:eb:d3:06:d5:74:b7:9f:88:02:4f:a2:60:ee: 0c:9e:68:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVy/PlPLyi8tyInp4AMVfpWvi70AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTNaFw0yNTA4MTkwMjMxNTNaMDMxMTAvBgNV BAMTKDRFOTREQUJBMkQ0NzE1NkUzMTVBQjVFMzA4RkY2RDE3NEFDOEZEQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfkYOCytKvLDqpYGfc1i9BqPVs UZsy82SX1RuRnZui+oPQgDSRqZi+pAfe5kpRvt4HhCrrq3cD1ojqT17qZPBFZV8z vJnWlPjKr76jbPPCrKozzW7Qs+k17QxOOWTr0IkReawP84XuGftLunF2LRv7Dn6b fx+TeZMvK+dB32sQ+xCkPZgoH2loLhLX93MhqvYbHVFSgzElGkmJV6u2WaVvMw43 /KFxyWiK3J2PuGHQB4iCGSwne+l00+JyyuLxk24f0crAxfIHzzg9oAasJG1Q8Eop hNGb/IR2BJKkt9BVK14gEMynOI/+LzZHoMKqqIZ+ph6qFMTCJ2aE4rj6hihFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTpTaui1HFW4xWrXjCP9tF0rI/aIwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAxMjQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBF8X179UFMjTIRYiY6873T3q1jnWtck3mL mHFQlJgOZXl+za7ofD2KC/eBy029o65DglBuzaW8zf7y1WBJ2osA6/CDBpN+DL/Q ScgQv00JwwQdM43H/Wie/QMxGN0s8GK5U7S8HGi7lcDlQsq5GBd7yNp2bBfNW8Q6 S9geKd2JbPYBnJyCeUqd3Zx7dxIABAkbzRR88rB+2VYlOwutWSTuClmtdu9HeYDs 8+XV0HwybVC0XISx2Ag8elB7YlVxKh8WLOsQ4SZyUItOLwAOlXowTdIpbQd+6War 7ZfZJd0Lcf/r3A4LT+IlfsOWm1ufkuvTBtV0t5+IAk+iYO4Mnmjg -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org