$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa File: AS204857.roa (raw, json) Hash identifier: Tqe0gHd93GDLlUi54JUXb5Q0hzIlX49gu3pb49nqWYY= Subject key identifier: EF:74:C0:F5:FA:34:F5:C2:AE:0D:E3:02:EC:EF:29:9A:22:5A:2C:EA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 097AD6C12F111989E666B4B1F6511A2EC77CB148 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 204857 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 17:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7a:d6:c1:2f:11:19:89:e6:66:b4:b1:f6:51:1a:2e:c7:7c:b1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=EF74C0F5FA34F5C2AE0DE302ECEF299A225A2CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6b:19:63:ac:be:41:cf:cb:2c:e5:55:76:d7: fc:e5:19:21:2c:ea:6b:d6:82:cf:57:b8:0d:57:cb: d8:11:72:5f:27:6e:52:9a:2a:99:26:f5:7f:6b:fc: 50:12:f4:ae:58:55:a3:1a:c0:4c:ec:2e:bb:fd:9d: 22:8c:5a:c9:14:44:aa:6f:6d:af:dd:d9:29:30:45: c0:e5:80:2d:53:45:6a:99:3f:a7:97:66:46:e3:2d: b8:65:73:3a:69:24:0e:50:7a:3c:ef:83:01:1f:c0: 2a:1c:5d:ed:a3:f5:67:f5:44:d5:b1:bc:65:22:b1: 29:71:f2:81:a4:09:f4:eb:8b:17:64:af:b3:33:ed: 4f:8b:2e:7a:87:58:b9:41:81:46:4b:00:cb:41:ab: ef:7e:45:95:7a:c4:12:61:9e:8c:7c:0c:ad:80:fd: a2:98:66:6a:4d:d4:d0:a5:3d:8c:d2:8e:39:13:b2: 50:0d:e6:39:0f:e9:d8:b1:c6:22:f2:cf:ab:72:9a: 1a:3d:9a:47:88:0f:8e:bf:b3:31:00:28:48:0f:02: f0:a4:ed:b7:c6:54:19:ea:dd:e2:51:67:73:fd:6e: b6:57:00:e5:9b:a1:ca:a6:45:a5:a3:ae:88:18:6b: 49:1b:02:51:10:19:7a:25:db:93:5e:20:66:82:e4: e3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:74:C0:F5:FA:34:F5:C2:AE:0D:E3:02:EC:EF:29:9A:22:5A:2C:EA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS204857.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 72:8c:67:05:c5:1f:9b:32:7e:72:eb:af:96:bf:7a:bc:63:6e: 82:16:87:92:7d:5f:8b:c3:95:f9:c5:f5:72:38:3c:70:78:07: 01:91:b0:af:ca:bf:93:d9:90:54:3e:0f:d5:b9:70:3a:d0:2f: 8d:a2:e6:b7:db:2b:92:94:35:44:15:78:f9:31:b9:ea:23:e2: d5:8e:da:ff:24:5b:c9:28:d5:b8:1b:c3:7c:72:0c:9c:e8:35: c7:66:ab:8b:48:06:9c:66:c9:2f:1f:b2:0f:08:98:7a:3a:79: 68:51:46:70:ff:e7:02:18:e7:91:a7:d2:af:b6:94:64:07:de: 09:ec:31:f1:50:7e:05:c5:38:7c:c9:52:c8:15:76:b8:25:37: bb:5f:e5:d6:26:d2:b3:f9:52:12:92:27:fa:47:03:f4:22:c0: 35:e0:8d:96:fa:4b:c9:1f:a6:71:dd:07:d8:48:91:2d:13:99: 57:76:64:b7:72:d7:e5:ac:46:af:a9:15:61:f5:e1:24:f7:eb: ab:2a:20:b8:89:b0:db:5d:95:af:52:93:0d:a5:67:d3:16:fc: 2c:57:5d:e9:64:20:40:dd:62:20:b2:b6:ce:95:d0:51:4a:38: 3c:c3:e9:b1:04:d3:d7:44:c2:48:fc:13:36:bc:ab:71:a7:6d: 4f:ed:4a:1c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCXrWwS8RGYnmZrSx9lEaLsd8sUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKEVGNzRDMEY1RkEzNEY1QzJBRTBERTMwMkVDRUYyOTlBMjI1QTJDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXaxljrL5Bz8ss5VV21/zlGSEs 6mvWgs9XuA1Xy9gRcl8nblKaKpkm9X9r/FAS9K5YVaMawEzsLrv9nSKMWskURKpv ba/d2SkwRcDlgC1TRWqZP6eXZkbjLbhlczppJA5QejzvgwEfwCocXe2j9Wf1RNWx vGUisSlx8oGkCfTrixdkr7Mz7U+LLnqHWLlBgUZLAMtBq+9+RZV6xBJhnox8DK2A /aKYZmpN1NClPYzSjjkTslAN5jkP6dixxiLyz6tymho9mkeID46/szEAKEgPAvCk 7bfGVBnq3eJRZ3P9brZXAOWbocqmRaWjrogYa0kbAlEQGXol25NeIGaC5OOxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU73TA9fo09cKuDeMC7O8pmiJaLOowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA0ODU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQByjGcFxR+bMn5y66+Wv3q8Y26CFoeSfV+L w5X5xfVyODxweAcBkbCvyr+T2ZBUPg/VuXA60C+Noua32yuSlDVEFXj5MbnqI+LV jtr/JFvJKNW4G8N8cgyc6DXHZquLSAacZskvH7IPCJh6OnloUUZw/+cCGOeRp9Kv tpRkB94J7DHxUH4FxTh8yVLIFXa4JTe7X+XWJtKz+VISkif6RwP0IsA14I2W+kvJ H6Zx3QfYSJEtE5lXdmS3ctflrEavqRVh9eEk9+urKiC4ibDbXZWvUpMNpWfTFvws V13pZCBA3WIgsrbOldBRSjg8w+mxBNPXRMJI/BM2vKtxp21P7Uoc -----END CERTIFICATE-----Generated at Fri Nov 22 23:43:15 2024 by rpki-client on console-fra.rpki-client.org