$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa File: AS202828.roa (raw, json) Hash identifier: zqqEyx5Y2z1JeAUIshQV+AUcJVQXYeMtia2M2kP8Tig= Subject key identifier: 48:9C:F1:A9:62:13:E7:0B:CA:BA:D2:8C:FB:9B:5B:A5:85:69:B7:2E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0783CB1EEEC209F723F4181EA8150F7AF2F9F809 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa Signing time: Tue 20 Aug 2024 02:31:57 +0000 ROA not before: Tue 20 Aug 2024 02:26:57 +0000 ROA not after: Tue 19 Aug 2025 02:31:57 +0000 asID: 202828 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:83:cb:1e:ee:c2:09:f7:23:f4:18:1e:a8:15:0f:7a:f2:f9:f8:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:57 2024 GMT Not After : Aug 19 02:31:57 2025 GMT Subject: CN=489CF1A96213E70BCABAD28CFB9B5BA58569B72E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:54:da:a1:0c:3b:01:27:09:02:19:9e:b5:f6: ef:02:e2:8a:78:1d:c6:7f:0b:bf:51:8d:86:57:56: 52:60:b3:2f:a8:d5:29:ac:13:10:38:ba:da:f3:3a: 11:d2:b9:2b:af:30:66:57:30:1c:91:b4:cd:0a:1a: ff:44:cb:90:2d:51:13:40:4e:05:0c:c8:9b:67:cb: 28:60:9f:10:fe:59:54:03:5b:62:e1:6a:1d:e0:f3: 66:ee:40:e4:bf:44:79:7a:ed:af:71:f0:28:58:5f: 71:8c:3c:08:f4:6d:2e:49:d9:df:83:36:50:4c:1b: be:dd:82:fd:11:46:a0:19:bc:30:d6:c2:5a:60:42: 53:2f:2c:f2:60:f7:11:7a:c6:0e:59:b7:03:4a:a1: 8c:87:27:e1:a6:d6:d0:d9:48:dc:52:7d:fd:57:b5: 8b:e1:83:09:d1:7d:01:35:a7:7b:b2:21:69:fa:f9: 93:94:ec:5c:93:a6:4f:9c:a8:4e:bc:f2:49:35:c2: af:b8:bc:b8:85:ae:4e:60:9e:fb:54:84:d4:e1:ac: ca:20:5c:c6:49:35:69:0f:70:ee:57:61:ff:5c:4b: eb:6c:3e:91:99:55:30:0c:91:91:63:24:06:0f:53: b6:e3:eb:4f:15:d3:85:45:38:35:bf:5d:24:04:cd: 51:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9C:F1:A9:62:13:E7:0B:CA:BA:D2:8C:FB:9B:5B:A5:85:69:B7:2E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS202828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3a:8a:7e:cf:1d:0d:f0:15:34:c4:bb:22:9e:49:38:d8:03:da: af:b7:72:28:d1:c1:c7:ff:3b:7c:f7:72:7f:f5:ed:fe:72:15: 48:7e:45:52:b9:a8:7d:ce:89:d5:6c:95:d4:44:e1:46:a5:ec: fa:fc:e8:28:f3:af:65:fb:64:df:d5:34:11:fc:8f:cd:11:7e: e8:6c:b5:be:48:d6:89:89:a0:2a:a1:14:d5:f5:d1:22:80:cd: 90:1f:f8:5f:d2:8e:89:d8:19:d9:74:e8:52:8d:8a:b4:9e:90: d9:96:2e:fb:ec:88:75:0e:15:77:8e:2d:3b:9f:d2:d4:cd:12: 5c:cb:eb:46:52:f3:ee:b2:d4:0f:0a:e4:c8:ea:15:14:55:30: 60:27:f0:7a:f1:ea:32:d6:31:39:da:c5:5d:66:25:c0:86:24: 15:17:4b:e5:cb:58:ba:61:60:ae:26:ec:3d:d2:68:5a:a2:99: 22:8a:1a:02:a2:ad:52:90:d8:3a:e1:48:1e:fa:d2:f0:db:19: 3e:32:06:07:af:15:6b:2d:1b:86:b9:9d:52:09:e6:43:42:4c: c8:e2:19:79:07:de:19:e1:2f:89:49:b0:cb:ce:90:99:24:b3: 1a:22:9c:a4:47:0e:b2:91:33:25:45:e3:7f:61:b3:f1:06:d1: ac:2c:15:18 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUB4PLHu7CCfcj9BgeqBUPevL5+AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTdaFw0yNTA4MTkwMjMxNTdaMDMxMTAvBgNV BAMTKDQ4OUNGMUE5NjIxM0U3MEJDQUJBRDI4Q0ZCOUI1QkE1ODU2OUI3MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsVNqhDDsBJwkCGZ619u8C4op4 HcZ/C79RjYZXVlJgsy+o1SmsExA4utrzOhHSuSuvMGZXMByRtM0KGv9Ey5AtURNA TgUMyJtnyyhgnxD+WVQDW2Lhah3g82buQOS/RHl67a9x8ChYX3GMPAj0bS5J2d+D NlBMG77dgv0RRqAZvDDWwlpgQlMvLPJg9xF6xg5ZtwNKoYyHJ+Gm1tDZSNxSff1X tYvhgwnRfQE1p3uyIWn6+ZOU7FyTpk+cqE688kk1wq+4vLiFrk5gnvtUhNThrMog XMZJNWkPcO5XYf9cS+tsPpGZVTAMkZFjJAYPU7bj608V04VFODW/XSQEzVE/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUSJzxqWIT5wvKutKM+5tbpYVpty4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjAyODI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA6in7PHQ3wFTTEuyKeSTjYA9qvt3Io0cHH /zt893J/9e3+chVIfkVSuah9zonVbJXUROFGpez6/Ogo869l+2Tf1TQR/I/NEX7o bLW+SNaJiaAqoRTV9dEigM2QH/hf0o6J2BnZdOhSjYq0npDZli777Ih1DhV3ji07 n9LUzRJcy+tGUvPustQPCuTI6hUUVTBgJ/B68eoy1jE52sVdZiXAhiQVF0vly1i6 YWCuJuw90mhaopkiihoCoq1SkNg64Uge+tLw2xk+MgYHrxVrLRuGuZ1SCeZDQkzI 4hl5B94Z4S+JSbDLzpCZJLMaIpykRw6ykTMlReN/YbPxBtGsLBUY -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org