$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa File: AS204857.roa (raw, json) Hash identifier: e5j2y1QVsEmR7fBb3EMSjT8x0k94c0qkDCog0SN6cu4= Subject key identifier: 75:39:CD:38:22:90:AC:7E:DA:2D:0A:AA:8D:61:32:4B:3A:D6:16:D7 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 6E39674B8E896DE3931013839CC88750B4C5ECE4 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa Signing time: Tue 19 Sep 2023 02:14:59 +0000 ROA not before: Tue 19 Sep 2023 02:09:59 +0000 ROA not after: Tue 17 Sep 2024 02:14:59 +0000 asID: 204857 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:39:67:4b:8e:89:6d:e3:93:10:13:83:9c:c8:87:50:b4:c5:ec:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:59 2023 GMT Not After : Sep 17 02:14:59 2024 GMT Subject: CN=7539CD382290AC7EDA2D0AAA8D61324B3AD616D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9e:db:07:5a:6d:2a:02:3f:1a:03:4e:94:90: 74:05:0e:01:94:02:3a:17:1e:cf:6b:6b:5a:2e:bb: 12:0a:83:8d:03:9b:a7:8a:0f:f3:96:97:58:e5:0a: d5:80:6c:1f:2c:44:58:76:4a:0a:12:6a:4b:27:f9: 84:c4:cc:0d:f1:90:7a:75:41:0c:62:97:80:9a:9d: a4:ba:f8:00:6e:d2:c4:6b:9b:64:15:43:4f:ef:21: 59:8c:ae:e3:49:89:41:f0:0d:2c:a7:99:a2:54:4f: de:2d:bb:a5:4b:56:70:94:2f:1a:38:da:7b:74:60: e6:05:0e:89:46:37:73:a6:c3:b9:77:d1:1b:49:91: a0:be:27:92:4d:13:63:ad:76:cb:4d:26:55:10:d7: f5:c1:78:79:e9:18:4e:fd:f5:e7:be:0c:23:2f:b1: c1:46:8d:1f:ac:1a:9c:85:bf:78:ef:14:07:22:cd: ab:9e:6a:8d:0f:b8:69:4e:7c:0e:15:d6:e0:46:71: c7:00:d1:6f:00:a4:6c:03:53:74:14:17:d3:72:cf: 28:db:0b:ac:c1:21:7a:16:56:b4:9a:ef:0b:b9:35: ce:60:0c:79:3b:13:bc:6f:75:ba:87:30:1a:b2:3f: f0:cd:63:2a:22:32:03:01:20:fd:4e:2f:85:51:cb: 5a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:39:CD:38:22:90:AC:7E:DA:2D:0A:AA:8D:61:32:4B:3A:D6:16:D7 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a0:48:81:70:9f:f3:66:70:f8:8e:23:fd:6c:08:4c:b0:d4:74: 84:29:22:a3:ab:87:b5:45:be:65:cc:00:8b:03:f2:56:38:31: 9f:fd:9f:65:33:11:95:95:e1:eb:5d:a7:64:e2:4e:97:32:bf: 04:7e:89:00:da:6b:9d:a5:fd:ea:28:d0:9d:c9:61:e8:a5:51: 27:de:c4:03:4f:bc:a0:f4:ef:e2:17:3c:43:56:c0:15:dd:91: 76:89:69:61:9d:d4:e7:38:a2:a2:c7:99:d4:1d:78:81:fb:88: 2d:67:44:c2:37:cf:a5:4d:b9:f0:48:98:84:e2:0c:a3:fc:f7: e1:17:86:2b:3e:7e:e9:3d:0e:e3:e5:a9:d0:6e:1f:38:8d:0d: 3b:5c:f0:5e:cf:53:9b:44:b0:e0:cf:5f:18:13:97:b6:61:6d: 4d:cc:67:15:0d:38:fa:26:1f:7a:f6:81:ec:6d:73:5b:57:01: 64:94:b2:fc:e4:5a:af:ed:18:f2:5a:07:11:82:9d:1a:f6:76: 76:80:89:a0:54:7a:8f:7c:b6:df:ae:5c:52:3f:3d:c6:9f:0c: 31:ba:65:5d:1b:3a:74:5a:38:35:d8:c0:ad:71:85:80:8c:76: 9e:17:ef:96:fc:c9:bd:9e:b7:86:d4:0f:d7:9f:90:c1:2e:04: a4:22:b1:56 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbjlnS46JbeOTEBODnMiHULTF7OQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTlaFw0yNDA5MTcwMjE0NTlaMDMxMTAvBgNV BAMTKDc1MzlDRDM4MjI5MEFDN0VEQTJEMEFBQThENjEzMjRCM0FENjE2RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTntsHWm0qAj8aA06UkHQFDgGU AjoXHs9ra1ouuxIKg40Dm6eKD/OWl1jlCtWAbB8sRFh2SgoSaksn+YTEzA3xkHp1 QQxil4CanaS6+ABu0sRrm2QVQ0/vIVmMruNJiUHwDSynmaJUT94tu6VLVnCULxo4 2nt0YOYFDolGN3Omw7l30RtJkaC+J5JNE2OtdstNJlUQ1/XBeHnpGE799ee+DCMv scFGjR+sGpyFv3jvFAcizaueao0PuGlOfA4V1uBGcccA0W8ApGwDU3QUF9Nyzyjb C6zBIXoWVrSa7wu5Nc5gDHk7E7xvdbqHMBqyP/DNYyoiMgMBIP1OL4VRy1pfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdTnNOCKQrH7aLQqqjWEySzrWFtcwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0ODU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCgSIFwn/NmcPiOI/1sCEyw1HSEKSKjq4e1 Rb5lzACLA/JWODGf/Z9lMxGVleHrXadk4k6XMr8EfokA2mudpf3qKNCdyWHopVEn 3sQDT7yg9O/iFzxDVsAV3ZF2iWlhndTnOKKix5nUHXiB+4gtZ0TCN8+lTbnwSJiE 4gyj/PfhF4YrPn7pPQ7j5anQbh84jQ07XPBez1ObRLDgz18YE5e2YW1NzGcVDTj6 Jh969oHsbXNbVwFklLL85Fqv7RjyWgcRgp0a9nZ2gImgVHqPfLbfrlxSPz3Gnwwx umVdGzp0Wjg12MCtcYWAjHaeF++W/Mm9nreG1A/Xn5DBLgSkIrFW -----END CERTIFICATE-----Generated at Fri May 31 12:10:15 2024 by rpki-client on console-ams.rpki-client.org