$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa File: AS204005.roa (raw, json) Hash identifier: 96aS6rXy6zVJ27nzNo08KRAmoz0o1gmjhkm7vZAsOkg= Subject key identifier: A0:3F:B3:3B:E8:0B:C6:FA:03:44:FD:0A:AB:3B:5A:47:70:F5:97:31 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4FFB2B6B2E3EC01936E42E5C16CD92FFAF49EE11 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 204005 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fb:2b:6b:2e:3e:c0:19:36:e4:2e:5c:16:cd:92:ff:af:49:ee:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=A03FB33BE80BC6FA0344FD0AAB3B5A4770F59731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:86:e6:1e:f1:0d:10:e4:7d:c8:b5:7e:b1:ff: 56:b1:7c:a4:b3:52:22:24:8e:a8:75:d1:b4:f0:87: 82:29:b4:13:1d:4c:43:61:d3:05:53:b6:18:6a:79: 43:22:28:db:92:d1:87:b9:2d:63:dc:4b:4e:ab:91: 68:d1:a9:b7:39:e0:22:ca:d9:25:f8:be:ea:75:f6: 27:12:e6:31:95:3e:09:82:56:53:72:f4:6c:ec:d2: 83:9f:51:af:cc:ff:aa:09:9d:6e:09:9e:ab:25:93: 92:fd:ff:3c:54:17:e1:de:2d:ad:8f:60:a9:e2:e3: 91:d4:b9:c4:6d:98:f6:94:9f:71:cc:11:2f:98:8b: 5a:6f:ce:d9:ea:42:dc:f8:a4:01:34:80:16:4d:31: a6:a7:a1:51:57:5a:e6:f7:12:4c:bc:67:cb:13:90: da:39:8f:d7:2d:35:1e:9b:e8:c7:91:96:ab:2b:20: f5:04:0a:36:f5:18:29:95:7f:39:a6:b3:f9:a8:23: ee:d8:26:53:5b:9f:81:0a:8a:86:32:3f:26:81:f0: b4:e5:b9:0d:85:58:f2:20:c9:b1:00:19:11:43:6d: 7d:6d:d3:08:31:df:2c:7e:46:1e:b2:f4:e8:fe:b1: 15:c8:ff:52:91:02:13:30:74:ba:2f:49:ef:c1:b2: cc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3F:B3:3B:E8:0B:C6:FA:03:44:FD:0A:AB:3B:5A:47:70:F5:97:31 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:5::/48 Signature Algorithm: sha256WithRSAEncryption 0f:ad:18:f1:14:b2:d9:44:cf:c6:00:a7:7a:5a:9c:56:6f:3d: 05:d2:30:59:cb:a7:e5:f6:4e:65:13:72:6c:7f:6c:f5:89:94: 03:68:de:96:15:cc:eb:d9:82:fd:43:90:ec:05:83:3a:b8:98: 84:8f:40:a6:ea:cc:9e:a1:3c:e5:6b:e5:98:33:b0:b4:da:ad: 07:62:e0:4a:d8:22:06:bb:c0:11:fb:5f:ee:9b:f3:49:a2:fd: a7:48:2f:fd:c3:db:80:f6:f2:8a:d0:c2:3c:b2:08:39:b4:0e: 06:cb:c3:5d:d4:d4:d2:9f:7e:ed:08:75:da:81:85:77:5e:ec: a4:9f:72:c4:fe:d8:fe:fd:c5:c8:68:b9:7d:c9:bc:ed:3f:7a: 15:9f:0e:84:21:ec:57:bd:1a:3a:53:2a:d0:e5:83:83:68:46: 9a:ac:36:fd:3e:46:62:44:f2:e8:34:87:e7:3f:69:46:2d:cc: bf:cc:aa:5d:7f:e2:7e:26:5c:6c:bb:5c:e6:3e:78:d8:ee:e6: c1:bf:94:d0:b8:62:5c:bb:cb:0a:a0:34:d8:4a:e0:86:b7:ff: 03:73:5a:08:b4:73:2e:46:12:6e:0b:eb:81:1d:70:0e:79:e0: ac:72:17:75:4b:d0:fb:0f:b5:36:b4:a3:a6:0f:65:82:2f:f4: 80:3b:45:ca -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUT/sray4+wBk25C5cFs2S/69J7hEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKEEwM0ZCMzNCRTgwQkM2RkEwMzQ0RkQwQUFCM0I1QTQ3NzBGNTk3MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhhuYe8Q0Q5H3ItX6x/1axfKSz UiIkjqh10bTwh4IptBMdTENh0wVTthhqeUMiKNuS0Ye5LWPcS06rkWjRqbc54CLK 2SX4vup19icS5jGVPgmCVlNy9Gzs0oOfUa/M/6oJnW4Jnqslk5L9/zxUF+HeLa2P YKni45HUucRtmPaUn3HMES+Yi1pvztnqQtz4pAE0gBZNMaanoVFXWub3Eky8Z8sT kNo5j9ctNR6b6MeRlqsrIPUECjb1GCmVfzmms/moI+7YJlNbn4EKioYyPyaB8LTl uQ2FWPIgybEAGRFDbX1t0wgx3yx+Rh6y9Oj+sRXI/1KRAhMwdLovSe/Bssw/AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUoD+zO+gLxvoDRP0KqztaR3D1lzEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0MDA1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxAAFMA0GCSqGSIb3DQEBCwUAA4IBAQAPrRjxFLLZRM/GAKd6WpxW bz0F0jBZy6fl9k5lE3Jsf2z1iZQDaN6WFczr2YL9Q5DsBYM6uJiEj0Cm6syeoTzl a+WYM7C02q0HYuBK2CIGu8AR+1/um/NJov2nSC/9w9uA9vKK0MI8sgg5tA4Gy8Nd 1NTSn37tCHXagYV3Xuykn3LE/tj+/cXIaLl9ybztP3oVnw6EIexXvRo6UyrQ5YOD aEaarDb9PkZiRPLoNIfnP2lGLcy/zKpdf+J+Jlxsu1zmPnjY7ubBv5TQuGJcu8sK oDTYSuCGt/8Dc1oItHMuRhJuC+uBHXAOeeCschd1S9D7D7U2tKOmD2WCL/SAO0XK -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org