$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205848.roa File: AS205848.roa (raw, json) Hash identifier: zjIvgQEPQ7/BQqOERPsSqgyH7zdQJ10sQG0m/QT+ho0= Subject key identifier: 68:42:4E:4E:A4:26:43:F8:EA:49:7D:81:66:FD:14:80:15:63:2B:9E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3E8BBD3D7F69EE39070A1734C03FE98BE8E5730B Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205848.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 205848 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 17:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8b:bd:3d:7f:69:ee:39:07:0a:17:34:c0:3f:e9:8b:e8:e5:73:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=68424E4EA42643F8EA497D8166FD148015632B9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:38:5f:a5:5d:ab:ca:af:fd:6f:b3:2f:24:fa: b4:54:1e:8e:2f:65:ee:2b:92:43:eb:5e:cc:4e:f4: f1:ce:c4:d7:88:58:52:e2:22:7d:3b:83:da:4c:e9: 6a:8d:22:83:b7:a3:12:76:3a:13:0b:0e:ff:5d:71: 30:96:c9:ed:e4:49:a5:3a:aa:9f:65:6a:c3:ee:7f: df:2d:8f:e1:38:f4:ad:a6:7b:f8:6d:e0:01:b5:52: 92:d6:d5:47:04:8a:49:c1:c6:99:07:e5:d7:cd:a3: a3:63:19:9c:e8:1a:1e:c3:d7:f3:60:45:77:23:bb: 90:e9:45:98:db:b7:ed:a0:14:cc:71:09:35:21:9e: 07:30:b8:80:75:8a:f4:64:f6:6a:c8:01:00:66:36: d1:bd:11:fc:ba:6e:fd:26:8a:f3:a6:ee:1b:e4:8b: c3:ae:35:86:ee:c6:5c:9a:18:e3:44:82:58:8c:44: 77:66:33:0c:62:74:72:c3:fd:52:43:19:30:28:c0: 22:f7:ba:84:f6:5a:f7:5a:48:1e:3a:59:67:60:ab: a7:bb:bf:80:0f:7a:e9:56:9a:d5:d2:2e:34:f8:d9: 34:1b:13:b0:fc:73:f1:ac:fa:3d:e3:00:b2:a0:db: 58:43:f9:7a:63:8d:a4:f8:ee:81:2b:0f:fe:2f:d6: 62:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:42:4E:4E:A4:26:43:F8:EA:49:7D:81:66:FD:14:80:15:63:2B:9E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205848.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3d:11:3e:05:40:a1:8f:5c:69:d9:0c:fa:90:20:38:24:81:34: 29:92:1a:2c:d4:c0:1e:a0:f4:de:c2:d5:48:2c:f7:91:4d:28: 34:30:e2:33:20:53:1b:48:0c:98:d2:32:e2:6f:0a:06:0f:d2: fa:76:ba:67:c8:d5:34:21:26:71:cd:6c:a3:93:80:81:f6:be: 44:52:59:41:b7:fd:c2:50:b3:7a:83:57:16:11:ce:4b:ca:e4: 3f:d5:07:54:2f:fd:be:73:a4:de:fa:c6:43:99:fe:77:58:54: 8b:d8:e7:86:63:ff:13:0d:12:11:7a:88:7f:21:6f:df:43:98: fe:05:cb:c8:d7:35:d7:0b:27:59:67:54:24:35:02:41:fd:7b: dd:3c:a8:5d:77:8d:e9:af:dc:5e:a7:2b:63:a4:12:25:df:6c: 1a:b8:fa:f6:88:e2:8d:69:89:b1:d8:fb:9a:78:90:6d:a6:c2: 87:eb:08:8d:db:ae:97:6a:96:34:4f:74:8c:40:5e:95:9d:50: cf:f7:f0:cd:f6:86:90:83:00:c9:08:0f:d5:18:06:b7:c8:dc: 1d:8d:4c:c4:9a:76:b9:76:92:0b:9c:95:0f:c4:52:6f:80:57: 96:cc:4e:b8:47:94:a3:9e:f5:09:f6:12:a4:46:f4:21:6b:2b: f2:9b:29:79 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPou9PX9p7jkHChc0wD/pi+jlcwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDY4NDI0RTRFQTQyNjQzRjhFQTQ5N0Q4MTY2RkQxNDgwMTU2MzJCOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBOF+lXavKr/1vsy8k+rRUHo4v Ze4rkkPrXsxO9PHOxNeIWFLiIn07g9pM6WqNIoO3oxJ2OhMLDv9dcTCWye3kSaU6 qp9lasPuf98tj+E49K2me/ht4AG1UpLW1UcEiknBxpkH5dfNo6NjGZzoGh7D1/Ng RXcju5DpRZjbt+2gFMxxCTUhngcwuIB1ivRk9mrIAQBmNtG9Efy6bv0mivOm7hvk i8OuNYbuxlyaGONEgliMRHdmMwxidHLD/VJDGTAowCL3uoT2WvdaSB46WWdgq6e7 v4APeulWmtXSLjT42TQbE7D8c/Gs+j3jALKg21hD+XpjjaT47oErD/4v1mK1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaEJOTqQmQ/jqSX2BZv0UgBVjK54wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA1ODQ4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA9ET4FQKGPXGnZDPqQIDgkgTQpkhos1MAe oPTewtVILPeRTSg0MOIzIFMbSAyY0jLibwoGD9L6drpnyNU0ISZxzWyjk4CB9r5E UllBt/3CULN6g1cWEc5LyuQ/1QdUL/2+c6Te+sZDmf53WFSL2OeGY/8TDRIReoh/ IW/fQ5j+BcvI1zXXCydZZ1QkNQJB/XvdPKhdd43pr9xepytjpBIl32wauPr2iOKN aYmx2PuaeJBtpsKH6wiN266XapY0T3SMQF6VnVDP9/DN9oaQgwDJCA/VGAa3yNwd jUzEmna5dpILnJUPxFJvgFeWzE64R5SjnvUJ9hKkRvQhayvymyl5 -----END CERTIFICATE-----Generated at Sat May 18 03:19:24 2024 by rpki-client on console-ams.rpki-client.org