$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa File: AS204508.roa (raw, json) Hash identifier: dWkksxMqCqTWCjsDssrXdgZe4L/HLxorACYwan7iQWQ= Subject key identifier: ED:8B:53:39:59:CF:83:4C:6A:8E:B0:5F:05:90:4E:E0:23:14:46:30 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1ED788BBDB4BDCA227592135CB043AA4CC16390D Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 204508 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 03 May 2024 22:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d7:88:bb:db:4b:dc:a2:27:59:21:35:cb:04:3a:a4:cc:16:39:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=ED8B533959CF834C6A8EB05F05904EE023144630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:b3:5b:00:0c:fc:5f:7f:1f:fb:22:73:69: bd:01:58:f3:77:51:2b:3f:90:11:73:b8:c8:7b:d5: ab:7e:e7:7c:be:e4:8a:57:cf:bb:a8:20:b7:aa:33: e5:46:60:7f:c6:2d:8d:8b:1a:d4:2d:2c:ad:79:de: e2:6b:da:07:9a:f3:0d:6a:d8:7d:1e:71:24:e6:68: 7a:d2:a3:24:56:a1:7a:ea:6d:e5:83:4a:88:16:ac: a2:25:cf:5a:05:f2:c5:8e:a6:78:51:10:97:72:d0: fe:87:ed:60:14:6a:6c:e3:2a:ab:34:f5:75:e3:0d: bc:4f:1b:eb:89:37:c4:13:e5:48:77:d5:cd:55:0f: fa:a5:6c:63:26:fd:3d:b9:21:f6:94:9a:fe:43:72: 18:55:26:49:ea:e8:55:f0:4c:a2:53:2a:c7:05:84: 57:92:fd:40:0d:80:46:d8:f6:aa:69:73:9a:47:a6: 73:1e:1e:7b:27:51:d5:65:4f:b0:13:98:ec:25:5f: 42:85:a6:01:2c:42:33:ca:c6:c5:7a:4d:7d:b1:40: 12:6b:78:9f:4b:64:7c:70:1c:dd:9d:37:fd:43:06: ef:59:a7:b8:a7:61:25:b6:a2:6b:0f:31:5c:6c:7f: 94:85:47:2b:4d:86:92:2e:c5:ae:f8:bb:dd:f5:18: 9a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8B:53:39:59:CF:83:4C:6A:8E:B0:5F:05:90:4E:E0:23:14:46:30 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 24:ce:43:d6:43:66:9d:7a:67:13:2f:6e:f7:d7:0a:62:49:45: 1a:dc:34:7a:08:e6:1b:b5:62:46:fc:9a:81:28:53:76:66:7c: aa:45:71:d0:4b:c0:92:88:94:f0:79:71:4b:95:84:6a:cb:d8: 12:4e:45:4a:af:27:69:c2:75:93:3f:1e:3c:3d:cb:e9:26:32: 59:38:4c:87:20:e6:ff:49:56:f4:ac:9d:59:5f:55:8b:4d:ba: 84:ea:f9:1d:12:29:12:6c:b5:1e:62:fd:b5:df:01:c0:a5:fe: ee:85:48:1d:2b:2c:c0:f6:3c:82:5d:1d:3d:cb:03:98:90:41: de:b7:d1:c3:20:08:3f:6a:cd:43:24:39:70:e2:42:d4:2c:e9: a3:42:19:b7:2d:54:09:18:58:bd:f3:7f:d9:69:6d:c1:7a:cc: cb:47:89:6c:d2:7c:8c:2c:e9:60:24:0a:b8:91:bb:48:33:20: a9:ec:c0:8c:03:4b:b8:32:4e:49:2a:35:a0:b5:ce:43:1c:87: b9:26:91:88:3f:ed:4f:5d:e4:4e:8d:a2:4a:1f:c3:b9:1d:24: 34:cf:4d:b7:a2:7a:d1:0a:e6:0b:77:88:35:59:68:63:11:ed: 7f:af:68:67:33:35:89:07:03:b2:b4:ea:08:8b:55:cb:19:ac: 34:8f:37:9d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHteIu9tL3KInWSE1ywQ6pMwWOQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKEVEOEI1MzM5NTlDRjgzNEM2QThFQjA1RjA1OTA0RUUwMjMxNDQ2MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClNrNbAAz8X38f+yJzab0BWPN3 USs/kBFzuMh71at+53y+5IpXz7uoILeqM+VGYH/GLY2LGtQtLK153uJr2gea8w1q 2H0ecSTmaHrSoyRWoXrqbeWDSogWrKIlz1oF8sWOpnhREJdy0P6H7WAUamzjKqs0 9XXjDbxPG+uJN8QT5Uh31c1VD/qlbGMm/T25IfaUmv5DchhVJknq6FXwTKJTKscF hFeS/UANgEbY9qppc5pHpnMeHnsnUdVlT7ATmOwlX0KFpgEsQjPKxsV6TX2xQBJr eJ9LZHxwHN2dN/1DBu9Zp7inYSW2omsPMVxsf5SFRytNhpIuxa74u931GJoxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7YtTOVnPg0xqjrBfBZBO4CMURjAwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0NTA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAkzkPWQ2ademcTL2731wpiSUUa3DR6COYb tWJG/JqBKFN2ZnyqRXHQS8CSiJTweXFLlYRqy9gSTkVKrydpwnWTPx48PcvpJjJZ OEyHIOb/SVb0rJ1ZX1WLTbqE6vkdEikSbLUeYv213wHApf7uhUgdKyzA9jyCXR09 ywOYkEHet9HDIAg/as1DJDlw4kLULOmjQhm3LVQJGFi983/ZaW3BeszLR4ls0nyM LOlgJAq4kbtIMyCp7MCMA0u4Mk5JKjWgtc5DHIe5JpGIP+1PXeROjaJKH8O5HSQ0 z023onrRCuYLd4g1WWhjEe1/r2hnMzWJBwOytOoIi1XLGaw0jzed -----END CERTIFICATE-----Generated at Fri May 3 03:44:58 2024 by rpki-client on console-ams.rpki-client.org