$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa File: AS204375.roa (raw, json) Hash identifier: DykYeaN4QN/SeLbGUK+KlA+JKhlf0Y8Qm5tyFcQgvBs= Subject key identifier: 2B:FA:57:E6:73:85:58:FA:2F:12:85:D3:DE:64:07:BD:24:8A:B6:F5 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4DD4E2B050F64681C1347BC289B45B5DDC02D9F5 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 204375 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d4:e2:b0:50:f6:46:81:c1:34:7b:c2:89:b4:5b:5d:dc:02:d9:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=2BFA57E6738558FA2F1285D3DE6407BD248AB6F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:12:60:f8:f4:86:20:ff:a2:f5:34:60:0b:42: b4:dc:03:de:1f:86:86:98:db:21:50:85:b3:8d:64: 6f:bd:8c:85:4b:3f:54:4f:39:ff:71:ec:ef:0d:24: 12:a4:f3:eb:3b:08:dd:27:24:c4:e3:5c:fb:ea:f7: 23:e9:26:6e:75:83:63:b6:d0:f2:71:f5:d2:ef:f5: d2:54:5a:b1:3a:48:91:fa:08:41:86:3a:93:c7:99: 54:17:f6:de:3f:d4:f3:c9:e6:77:d6:2e:c4:17:86: cc:e7:ef:96:17:d8:96:47:37:59:6f:ef:1a:e8:46: 9f:03:94:74:2d:bb:f3:b9:87:3b:ab:e3:bb:f6:f5: c9:b7:2d:f3:22:f9:65:f9:25:f4:95:1b:a8:59:e4: 77:41:50:6e:f9:7d:87:81:df:1d:8a:3c:07:81:9f: 19:e3:27:c5:5b:31:9f:39:c7:fb:f0:89:5c:b3:69: cb:f9:0d:c1:28:e6:96:a1:77:03:fd:dd:2a:3e:e4: e1:80:d1:dc:85:71:c9:f6:0e:95:32:b2:5d:5d:d4: aa:55:a7:b9:51:e9:f8:1b:39:37:6c:15:ee:fd:f8: f4:f9:73:9e:b4:fc:33:f0:af:0a:43:63:57:30:03: f5:56:1b:d5:2c:71:dc:8a:06:6e:eb:d1:10:da:f5: 65:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FA:57:E6:73:85:58:FA:2F:12:85:D3:DE:64:07:BD:24:8A:B6:F5 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204375.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a8:c4:3f:32:e4:c8:98:69:28:3b:7b:f5:ba:5c:a9:47:4b:f8: 6b:d7:d3:7d:e3:1a:60:81:07:6e:fb:62:2b:3a:b3:79:77:d4: e9:c2:52:2f:bc:ad:9f:d3:67:19:4b:cc:e2:59:bf:3a:c7:5c: 11:24:8b:39:9f:fd:3d:dd:e9:23:1c:e3:9e:d1:c8:aa:8b:f2: c4:3b:a4:5c:4c:9e:5f:2c:d0:cf:40:92:f4:0a:f7:a0:75:1f: 26:63:48:ce:ed:67:7b:90:9a:1f:b2:72:d5:92:17:78:2a:b4: 25:bb:47:4f:3f:c9:63:00:bf:c6:97:ba:78:dc:98:40:e3:c2: 6d:71:04:3a:23:00:15:69:85:87:22:63:6a:eb:d1:20:8c:f4: 5a:b0:67:ff:bc:16:e8:6e:d8:bf:de:35:22:43:92:b2:41:23: ec:06:53:a4:e0:7f:4b:9f:e3:c7:60:5d:8e:ef:d3:5e:8c:9c: 1e:ee:16:ab:6c:27:1b:47:ac:36:32:c8:81:54:5f:71:72:0b: 06:15:eb:17:77:13:c2:e9:37:95:4b:31:81:bb:e4:87:41:f0: be:64:2f:44:8d:45:4f:47:1c:9e:34:38:57:5f:d9:a5:ba:3e: 77:60:66:90:42:b2:e3:92:5e:00:d4:3b:4a:ac:50:44:ea:de: 00:d4:ba:d6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTdTisFD2RoHBNHvCibRbXdwC2fUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDJCRkE1N0U2NzM4NTU4RkEyRjEyODVEM0RFNjQwN0JEMjQ4QUI2RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpEmD49IYg/6L1NGALQrTcA94f hoaY2yFQhbONZG+9jIVLP1RPOf9x7O8NJBKk8+s7CN0nJMTjXPvq9yPpJm51g2O2 0PJx9dLv9dJUWrE6SJH6CEGGOpPHmVQX9t4/1PPJ5nfWLsQXhszn75YX2JZHN1lv 7xroRp8DlHQtu/O5hzur47v29cm3LfMi+WX5JfSVG6hZ5HdBUG75fYeB3x2KPAeB nxnjJ8VbMZ85x/vwiVyzacv5DcEo5pahdwP93So+5OGA0dyFccn2DpUysl1d1KpV p7lR6fgbOTdsFe79+PT5c560/DPwrwpDY1cwA/VWG9UscdyKBm7r0RDa9WVbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUK/pX5nOFWPovEoXT3mQHvSSKtvUwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0Mzc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCoxD8y5MiYaSg7e/W6XKlHS/hr19N94xpg gQdu+2IrOrN5d9TpwlIvvK2f02cZS8ziWb86x1wRJIs5n/093ekjHOOe0ciqi/LE O6RcTJ5fLNDPQJL0CvegdR8mY0jO7Wd7kJofsnLVkhd4KrQlu0dPP8ljAL/Gl7p4 3JhA48JtcQQ6IwAVaYWHImNq69EgjPRasGf/vBbobti/3jUiQ5KyQSPsBlOk4H9L n+PHYF2O79NejJwe7harbCcbR6w2MsiBVF9xcgsGFesXdxPC6TeVSzGBu+SHQfC+ ZC9EjUVPRxyeNDhXX9mluj53YGaQQrLjkl4A1DtKrFBE6t4A1LrW -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org