$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa File: AS205980.roa (raw, json) Hash identifier: 3NEtQIR8JOlacHeI5J+EAh7E1mIjKWO1AINiN/wXh5Y= Subject key identifier: 4D:28:89:C1:71:76:D4:BF:C0:80:AA:39:99:2E:FD:AD:02:64:F7:E1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 4D052B54D993D7D42E84311363F6460B4C88F407 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa Signing time: Sat 04 Jan 2025 17:30:34 +0000 ROA not before: Sat 04 Jan 2025 17:25:34 +0000 ROA not after: Sat 03 Jan 2026 17:30:34 +0000 asID: 205980 IP address blocks: 2a07:54c1:44e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:05:2b:54:d9:93:d7:d4:2e:84:31:13:63:f6:46:0b:4c:88:f4:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 4 17:25:34 2025 GMT Not After : Jan 3 17:30:34 2026 GMT Subject: CN=4D2889C17176D4BFC080AA39992EFDAD0264F7E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:13:32:24:bf:4f:f7:50:d3:47:bc:55:14:82: fb:fc:69:91:42:3c:be:11:57:f3:de:3d:f6:d4:01: 2e:17:fb:e8:74:57:d2:e4:82:90:8a:e1:e1:da:09: 22:4d:d9:71:13:8f:53:41:17:c3:19:24:02:e3:48: c3:21:ce:2a:72:92:dc:47:00:b0:92:f4:12:66:61: 81:d0:5b:23:93:34:dd:ee:06:30:71:68:1f:ae:dd: 59:8b:a8:ba:64:1e:35:a1:ee:be:2e:72:a4:14:73: ae:f6:0c:d3:c0:7a:fa:11:da:01:45:7e:f6:d4:35: 31:5d:23:76:7a:dc:81:59:ef:07:8c:d6:dc:20:4a: f9:72:70:e8:ad:04:01:c3:2a:1f:89:35:5d:ed:8d: 52:1e:32:06:18:2c:28:27:b8:b7:16:55:eb:f4:47: f3:79:3f:ab:fa:9a:dc:b9:0a:81:b7:09:b9:40:31: e9:55:4a:8c:85:b0:47:06:4f:f8:0a:cb:ad:23:dd: 05:e0:54:4a:f5:fa:a2:9b:f6:05:4f:62:47:29:4c: 51:ce:0b:c2:e2:84:66:ed:b4:88:c2:2e:d7:75:ae: 48:82:14:5c:18:c4:ef:29:42:17:e5:47:ac:15:9f: 55:76:d4:dd:13:3d:83:35:2e:45:1f:61:70:b2:6e: 92:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:28:89:C1:71:76:D4:BF:C0:80:AA:39:99:2E:FD:AD:02:64:F7:E1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:44e0::/44 Signature Algorithm: sha256WithRSAEncryption 5a:5c:97:40:7d:65:60:4f:be:fb:03:05:be:51:52:43:c4:49: 9d:2f:6e:91:18:2a:cb:a2:28:bb:22:c0:75:cb:ce:38:f8:da: 86:c4:43:70:d1:38:e8:cb:25:07:c8:db:05:f3:4e:45:d4:6b: a9:cc:2f:a3:82:3f:36:e2:69:a6:cd:90:bf:ed:0e:23:12:0a: a6:64:47:8e:d3:46:4f:4a:28:6f:67:fc:d7:45:1a:f7:fa:1f: b2:d5:59:e9:ee:a1:99:a9:b7:62:d5:c0:2d:b4:53:66:8e:3b: 95:a8:78:29:75:fd:d6:b1:75:20:49:02:7f:0a:a6:8b:f8:e5: 29:d2:dc:aa:b3:47:0b:2b:78:8e:32:ee:06:bd:9d:fd:5c:aa: 77:7a:c3:e6:53:52:a6:be:4f:67:ce:3b:51:f3:2e:30:02:dc: c8:8c:01:6d:87:b3:8f:82:21:fe:66:24:62:c1:8c:bd:f2:cf: 7f:ba:06:0a:d5:4c:f2:70:e6:23:d9:2d:a1:f7:2b:c9:51:ea: 99:e1:14:36:a3:b0:48:32:88:d6:45:f3:b2:09:2a:3a:07:0e: a9:c1:c6:bf:68:e0:15:9b:6e:08:d8:81:61:06:2c:ec:0b:0a: cc:ed:f7:a5:34:a1:e7:58:83:b0:5d:7c:e9:31:e5:d6:64:62: 2b:d0:ab:33 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTQUrVNmT19QuhDETY/ZGC0yI9AcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAxMDQxNzI1MzRaFw0yNjAxMDMxNzMwMzRaMDMxMTAvBgNV BAMTKDREMjg4OUMxNzE3NkQ0QkZDMDgwQUEzOTk5MkVGREFEMDI2NEY3RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhEzIkv0/3UNNHvFUUgvv8aZFC PL4RV/PePfbUAS4X++h0V9LkgpCK4eHaCSJN2XETj1NBF8MZJALjSMMhzipyktxH ALCS9BJmYYHQWyOTNN3uBjBxaB+u3VmLqLpkHjWh7r4ucqQUc672DNPAevoR2gFF fvbUNTFdI3Z63IFZ7weM1twgSvlycOitBAHDKh+JNV3tjVIeMgYYLCgnuLcWVev0 R/N5P6v6mty5CoG3CblAMelVSoyFsEcGT/gKy60j3QXgVEr1+qKb9gVPYkcpTFHO C8LihGbttIjCLtd1rkiCFFwYxO8pQhflR6wVn1V21N0TPYM1LkUfYXCybpIVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTSiJwXF21L/AgKo5mS79rQJk9+EwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA1OTgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU wUTgMA0GCSqGSIb3DQEBCwUAA4IBAQBaXJdAfWVgT777AwW+UVJDxEmdL26RGCrL oii7IsB1y844+NqGxENw0TjoyyUHyNsF805F1GupzC+jgj824mmmzZC/7Q4jEgqm ZEeO00ZPSihvZ/zXRRr3+h+y1Vnp7qGZqbdi1cAttFNmjjuVqHgpdf3WsXUgSQJ/ CqaL+OUp0tyqs0cLK3iOMu4GvZ39XKp3esPmU1Kmvk9nzjtR8y4wAtzIjAFth7OP giH+ZiRiwYy98s9/ugYK1UzycOYj2S2h9yvJUeqZ4RQ2o7BIMojWRfOyCSo6Bw6p wca/aOAVm24I2IFhBizsCwrM7felNKHnWIOwXXzpMeXWZGIr0Ksz -----END CERTIFICATE-----Generated at Fri Apr 4 17:05:54 2025 by rpki-client