$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa File: AS204508.roa (raw, json) Hash identifier: pTVi8p/4E+eRLGo9BkIh7ELh5bSLRYEItk+qnlWV+UU= Subject key identifier: 02:8A:68:0C:1A:87:5E:5B:96:05:21:E1:D2:5C:55:72:A8:09:CD:03 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4CD41D4DB6DA422C79A33174C5A2395A1A39FAA6 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 204508 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d4:1d:4d:b6:da:42:2c:79:a3:31:74:c5:a2:39:5a:1a:39:fa:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=028A680C1A875E5B960521E1D25C5572A809CD03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:bf:79:e6:fe:c9:8c:72:dd:ee:98:9e:92: 66:e9:a1:0e:b3:e0:86:e2:0f:82:8a:e1:31:b6:e2: dc:88:db:b9:d5:11:b6:6c:4a:21:1b:b5:63:51:c4: 58:61:3a:0e:90:b4:86:8d:f0:52:47:5e:f9:20:c3: d1:96:f9:67:ab:79:31:cf:a0:f4:23:c2:1f:ee:dc: 68:e7:44:2c:5c:f6:7f:12:c7:bf:95:55:c7:42:ae: d9:bf:ad:3a:dd:ba:58:34:e9:da:93:86:65:a8:48: 86:1a:79:bd:17:74:72:63:7b:4b:ba:aa:fa:e9:dc: cf:d9:c3:53:fd:c4:e8:b4:fe:f2:d8:dd:4a:43:ff: a8:c2:58:dd:43:7a:1c:91:07:6b:33:32:92:c8:dc: e9:43:d3:dd:f9:52:3d:04:4a:19:db:2d:2f:9f:39: d6:9b:80:1f:b7:aa:fa:e5:83:dd:3c:7f:99:d8:d4: 35:8e:86:2b:0f:87:8a:be:05:c4:87:ce:0e:7d:53: b8:30:7c:25:4f:7c:79:92:f2:80:9d:b8:6a:8e:20: 2e:b6:00:38:1a:e1:5f:1f:79:eb:e7:c2:99:57:ca: a7:26:f8:85:ff:bc:5d:1a:a9:9c:a9:f6:5b:c8:8c: d7:e4:b6:f9:c9:b2:45:8f:68:03:05:e8:aa:95:eb: 98:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8A:68:0C:1A:87:5E:5B:96:05:21:E1:D2:5C:55:72:A8:09:CD:03 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 85:21:71:43:3f:aa:22:cc:91:f3:03:bb:ad:85:b6:13:dc:b4: 30:de:5b:ec:90:b6:1e:5c:b9:13:38:ee:4d:63:6c:dc:d5:60: ed:b7:28:68:c4:61:54:c6:0c:a4:8c:69:20:c2:1f:47:dd:ed: 69:4b:59:f4:0c:cf:56:ba:99:bb:28:b3:cc:62:b3:ab:93:56: 85:e4:4b:95:1f:30:d0:0a:9b:c0:24:85:b9:a4:ab:7a:c6:25: c3:22:03:a6:d0:b4:45:fb:da:4c:4e:0d:06:3a:28:70:10:c9: 26:84:1d:32:e1:b0:b2:37:b3:99:13:a1:c2:5c:46:5a:67:ea: e6:9d:e6:00:1d:85:3f:fe:11:59:05:95:e5:41:15:bb:0f:47: 06:57:d0:ca:08:76:2d:a8:30:40:97:bc:47:45:56:dc:d0:a3: 71:70:46:eb:ef:e8:1a:66:44:d1:f0:0c:20:61:47:47:25:16: e1:7d:5d:04:ea:e5:2f:2d:7b:db:75:4e:4d:8d:45:b3:80:73: 6d:76:49:e6:4b:f6:96:6f:92:04:f0:82:c4:a4:ec:f2:b0:ee: 04:9b:c1:f8:7d:b5:4f:30:9f:92:6c:2c:d8:da:df:46:d6:57: 92:d9:8d:05:2e:0d:cd:83:2b:cf:1f:ff:f1:dd:ad:d0:c8:15: f6:a5:ff:fe -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTNQdTbbaQix5ozF0xaI5Who5+qYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKDAyOEE2ODBDMUE4NzVFNUI5NjA1MjFFMUQyNUM1NTcyQTgwOUNEMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTgr955v7JjHLd7piekmbpoQ6z 4IbiD4KK4TG24tyI27nVEbZsSiEbtWNRxFhhOg6QtIaN8FJHXvkgw9GW+WereTHP oPQjwh/u3GjnRCxc9n8Sx7+VVcdCrtm/rTrdulg06dqThmWoSIYaeb0XdHJje0u6 qvrp3M/Zw1P9xOi0/vLY3UpD/6jCWN1DehyRB2szMpLI3OlD0935Uj0EShnbLS+f OdabgB+3qvrlg908f5nY1DWOhisPh4q+BcSHzg59U7gwfCVPfHmS8oCduGqOIC62 ADga4V8feevnwplXyqcm+IX/vF0aqZyp9lvIjNfktvnJskWPaAMF6KqV65hvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAopoDBqHXluWBSHh0lxVcqgJzQMwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0NTA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCFIXFDP6oizJHzA7uthbYT3LQw3lvskLYe XLkTOO5NY2zc1WDttyhoxGFUxgykjGkgwh9H3e1pS1n0DM9Wupm7KLPMYrOrk1aF 5EuVHzDQCpvAJIW5pKt6xiXDIgOm0LRF+9pMTg0GOihwEMkmhB0y4bCyN7OZE6HC XEZaZ+rmneYAHYU//hFZBZXlQRW7D0cGV9DKCHYtqDBAl7xHRVbc0KNxcEbr7+ga ZkTR8AwgYUdHJRbhfV0E6uUvLXvbdU5NjUWzgHNtdknmS/aWb5IE8ILEpOzysO4E m8H4fbVPMJ+SbCzY2t9G1leS2Y0FLg3NgyvPH//x3a3QyBX2pf/+ -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org