$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa File: AS204005.roa (raw, json) Hash identifier: Yi6I/rT/tY0HiJGoeP1/mgChXiJ+wwRcKupGyDLH01U= Subject key identifier: 16:3B:27:8C:1E:11:1A:6C:7B:10:7E:46:77:D1:21:02:2E:9C:76:B9 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 21351E2AFFB9CB60806CCC2649BAC42017114567 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa Signing time: Wed 26 Jun 2024 17:29:04 +0000 ROA not before: Wed 26 Jun 2024 17:24:04 +0000 ROA not after: Wed 25 Jun 2025 17:29:04 +0000 asID: 204005 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:35:1e:2a:ff:b9:cb:60:80:6c:cc:26:49:ba:c4:20:17:11:45:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jun 26 17:24:04 2024 GMT Not After : Jun 25 17:29:04 2025 GMT Subject: CN=163B278C1E111A6C7B107E4677D121022E9C76B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:92:c9:f4:fd:fb:05:08:9e:dd:b0:ef:e0:ea: ab:b0:ec:52:1e:ff:55:d5:cb:0a:e9:bb:d3:0d:13: 73:48:70:3d:be:de:d5:48:00:67:0c:48:17:64:3c: 57:0d:ac:9d:29:0e:45:8c:dd:51:00:7e:f6:8c:4c: 35:93:a3:1d:ce:aa:44:f5:fc:9c:ba:a0:90:e7:82: 8a:1d:04:ee:09:ca:a4:a1:f9:73:1e:73:06:91:6c: f1:00:a0:01:b6:e5:1b:78:9c:22:22:bf:d8:4b:61: bc:68:99:85:54:c7:7a:cb:48:3d:3a:14:9a:72:f2: aa:f1:0c:d8:1f:81:b6:89:54:12:c2:9c:02:1d:a7: 47:fc:09:17:43:45:6e:8a:94:78:bb:81:7c:cd:e1: c2:88:27:94:20:39:8d:2b:87:0d:6b:74:03:d6:b3: cf:e7:2b:48:d5:95:5f:85:87:5d:5d:1d:bb:3a:16: 4d:1c:2c:02:93:53:fa:fb:15:25:c0:0a:f1:99:fb: 08:c9:4a:e9:97:1d:c3:63:e3:12:e3:84:27:01:c1: cd:ff:03:8f:86:bc:5f:0e:4a:63:28:eb:f3:d3:5f: 4e:b7:63:2b:10:96:9f:fc:4d:55:5c:52:16:58:23: 76:2c:e2:6e:55:07:88:59:7f:96:e6:d9:1b:44:b3: fe:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:3B:27:8C:1E:11:1A:6C:7B:10:7E:46:77:D1:21:02:2E:9C:76:B9 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 03:c9:d8:b6:39:65:ce:db:8d:2c:78:e8:0d:63:de:95:35:e0: e0:64:86:82:bb:49:61:6d:c9:59:f4:df:73:37:7c:8f:c5:00: 73:2d:27:d2:a9:6b:9c:65:15:30:08:53:66:cb:26:8a:07:e0: f8:fa:3d:93:3e:15:f3:39:4d:de:84:56:8a:24:c4:f4:3f:bd: 69:b3:e3:8a:d7:00:f5:f5:5a:f8:a6:88:56:be:60:58:81:c1: f9:26:e4:a0:1b:10:db:7a:1c:9a:05:90:eb:35:72:a7:df:c3: b6:75:e6:b0:7f:d0:d0:90:99:63:8f:64:90:ec:08:76:6e:f4: d5:4d:60:a8:5c:01:d3:95:19:75:c3:7d:90:fc:3e:df:49:b3: 46:5b:ac:a7:00:7f:10:ad:36:58:f3:21:33:e0:08:0b:77:2e: 3d:e3:85:71:19:7c:9b:1f:70:a8:d3:8e:d8:e7:1b:7f:9a:ee: c1:d5:9a:56:59:a9:18:b1:b6:61:06:ed:57:50:a3:00:cc:71: dc:0b:e3:ea:08:df:92:2f:b6:63:a5:3e:7e:24:36:69:f7:55: 93:77:be:d1:9d:60:21:ab:25:1a:7f:8e:48:9a:50:bc:fc:66: 7e:57:fe:ed:ee:09:72:5e:61:c2:3d:67:26:74:e5:d1:8c:32: 49:8f:f0:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUITUeKv+5y2CAbMwmSbrEIBcRRWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA2MjYxNzI0MDRaFw0yNTA2MjUxNzI5MDRaMDMxMTAvBgNV BAMTKDE2M0IyNzhDMUUxMTFBNkM3QjEwN0U0Njc3RDEyMTAyMkU5Qzc2QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ksn0/fsFCJ7dsO/g6quw7FIe /1XVywrpu9MNE3NIcD2+3tVIAGcMSBdkPFcNrJ0pDkWM3VEAfvaMTDWTox3OqkT1 /Jy6oJDngoodBO4JyqSh+XMecwaRbPEAoAG25Rt4nCIiv9hLYbxomYVUx3rLSD06 FJpy8qrxDNgfgbaJVBLCnAIdp0f8CRdDRW6KlHi7gXzN4cKIJ5QgOY0rhw1rdAPW s8/nK0jVlV+Fh11dHbs6Fk0cLAKTU/r7FSXACvGZ+wjJSumXHcNj4xLjhCcBwc3/ A4+GvF8OSmMo6/PTX063YysQlp/8TVVcUhZYI3Ys4m5VB4hZf5bm2RtEs/7lAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFjsnjB4RGmx7EH5Gd9EhAi6cdrkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0MDA1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQADydi2OWXO240seOgNY96VNeDgZIaCu0lh bclZ9N9zN3yPxQBzLSfSqWucZRUwCFNmyyaKB+D4+j2TPhXzOU3ehFaKJMT0P71p s+OK1wD19Vr4pohWvmBYgcH5JuSgGxDbehyaBZDrNXKn38O2deawf9DQkJljj2SQ 7Ah2bvTVTWCoXAHTlRl1w32Q/D7fSbNGW6ynAH8QrTZY8yEz4AgLdy4944VxGXyb H3Co047Y5xt/mu7B1ZpWWakYsbZhBu1XUKMAzHHcC+PqCN+SL7ZjpT5+JDZp91WT d77RnWAhqyUaf45ImlC8/GZ+V/7t7glyXmHCPWcmdOXRjDJJj/BM -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org