$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa File: AS204375.roa (raw, json) Hash identifier: 9wD+53BSHOqZCUPw6X59X2NtrPgIzP9OXRMCxkAMBuE= Subject key identifier: 13:28:AD:15:1D:49:8D:F0:22:BE:62:A9:54:CA:DB:1B:D8:CC:75:E5 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 34581120E2C6A809702A4289C8E16835E1E907B0 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa Signing time: Tue 20 Aug 2024 02:31:58 +0000 ROA not before: Tue 20 Aug 2024 02:26:58 +0000 ROA not after: Tue 19 Aug 2025 02:31:58 +0000 asID: 204375 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:58:11:20:e2:c6:a8:09:70:2a:42:89:c8:e1:68:35:e1:e9:07:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:58 2024 GMT Not After : Aug 19 02:31:58 2025 GMT Subject: CN=1328AD151D498DF022BE62A954CADB1BD8CC75E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9e:85:b2:81:28:a6:a6:e3:b0:83:dd:a6:4c: 6b:ad:e9:8d:77:27:ed:b3:de:1e:7d:5f:a0:6c:98: ae:ca:de:01:76:2f:1f:6a:04:f3:d6:b2:55:89:c0: 9e:a1:5b:33:31:3b:86:f6:a0:56:9c:77:45:5e:62: 28:50:90:d8:04:01:64:6b:ac:5f:f8:e7:bc:ff:bd: 98:0e:41:05:5d:33:e9:a4:4c:bc:07:7a:1d:5d:f2: 4a:8e:85:2e:b9:70:fc:89:d0:59:f7:b9:d8:45:c5: 2b:03:0e:d4:d9:16:7f:65:f3:37:39:5f:88:b6:c9: 75:7e:b2:2e:07:de:61:8a:4c:3d:cc:70:17:93:76: 58:80:1a:26:9d:a4:f0:6d:ac:3c:01:84:93:1f:97: ba:be:fe:d9:d2:dd:f1:97:9d:3c:3e:ae:d6:4d:0d: 45:45:24:23:e9:6e:5a:0a:f4:ab:e4:c5:40:d2:a1: 0c:75:8d:0d:1e:5a:57:af:93:2a:95:fd:a0:27:c0: ad:2b:88:c8:4e:9f:7a:eb:28:a1:e3:f3:85:cc:bb: 40:e8:64:6b:7b:b6:6b:f3:9b:3a:cc:7d:a9:da:81: 0d:f2:bc:8e:3a:6e:8a:48:fa:c8:4d:42:97:01:66: 13:5f:78:c9:4e:32:d9:de:aa:f3:2a:48:95:4e:3d: 97:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:28:AD:15:1D:49:8D:F0:22:BE:62:A9:54:CA:DB:1B:D8:CC:75:E5 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a3:e9:30:4a:82:31:75:3b:54:25:67:f5:a5:24:86:85:81:c8: 77:0b:e3:8d:02:5c:b0:3b:a6:09:ac:b2:e5:37:4a:9e:42:9f: 7e:e0:ad:92:57:31:f5:d0:1c:a2:ba:0f:4b:c9:f5:2f:6e:70: 60:fe:f2:1a:63:08:b0:ef:27:12:fd:e0:6f:88:89:7a:e5:1a: 73:6a:c5:9a:fb:d5:6f:b4:c9:f9:3f:73:a4:89:86:f4:0c:91: b0:01:52:0c:3a:e7:59:9b:af:b0:e7:39:5e:2d:34:65:99:9b: 41:3a:ed:02:a7:5f:bc:73:f2:51:c3:28:7d:ee:36:fa:31:3d: 57:dc:49:db:13:2a:88:bc:ac:ec:31:17:e4:dd:6f:f4:ef:9b: be:74:87:8d:2d:08:b2:6f:d8:f4:e3:2c:ff:4d:2a:cf:a7:dc: 0d:8f:7e:bb:c6:b5:41:ef:25:99:91:66:db:08:bb:8f:60:4b: 03:82:81:4f:30:0a:0d:00:cd:a3:1a:8b:0a:61:ef:68:ca:d1: ac:32:96:8e:d2:3a:45:9b:14:36:60:8a:88:16:1d:b9:9a:7f: 98:5c:83:21:68:4e:48:cd:b1:13:32:ac:f9:1b:d5:07:55:d9: 6e:e1:13:58:2c:f3:99:85:1d:b6:6a:8c:9e:a5:e4:d2:f0:7f: 82:2e:d5:9c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNFgRIOLGqAlwKkKJyOFoNeHpB7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NThaFw0yNTA4MTkwMjMxNThaMDMxMTAvBgNV BAMTKDEzMjhBRDE1MUQ0OThERjAyMkJFNjJBOTU0Q0FEQjFCRDhDQzc1RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsnoWygSimpuOwg92mTGut6Y13 J+2z3h59X6BsmK7K3gF2Lx9qBPPWslWJwJ6hWzMxO4b2oFacd0VeYihQkNgEAWRr rF/457z/vZgOQQVdM+mkTLwHeh1d8kqOhS65cPyJ0Fn3udhFxSsDDtTZFn9l8zc5 X4i2yXV+si4H3mGKTD3McBeTdliAGiadpPBtrDwBhJMfl7q+/tnS3fGXnTw+rtZN DUVFJCPpbloK9KvkxUDSoQx1jQ0eWlevkyqV/aAnwK0riMhOn3rrKKHj84XMu0Do ZGt7tmvzmzrMfanagQ3yvI46bopI+shNQpcBZhNfeMlOMtneqvMqSJVOPZcxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEyitFR1JjfAivmKpVMrbG9jMdeUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0Mzc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCj6TBKgjF1O1QlZ/WlJIaFgch3C+ONAlyw O6YJrLLlN0qeQp9+4K2SVzH10Byiug9LyfUvbnBg/vIaYwiw7ycS/eBviIl65Rpz asWa+9VvtMn5P3OkiYb0DJGwAVIMOudZm6+w5zleLTRlmZtBOu0Cp1+8c/JRwyh9 7jb6MT1X3EnbEyqIvKzsMRfk3W/075u+dIeNLQiyb9j04yz/TSrPp9wNj367xrVB 7yWZkWbbCLuPYEsDgoFPMAoNAM2jGosKYe9oytGsMpaO0jpFmxQ2YIqIFh25mn+Y XIMhaE5IzbETMqz5G9UHVdlu4RNYLPOZhR22aoyepeTS8H+CLtWc -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org