$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa File: AS205980.roa (raw, json) Hash identifier: dSj3F4ZMRGf2IXLPYDvBr9V3PaMh5DfnqjCCrOynMFI= Subject key identifier: AB:97:23:8E:7E:70:53:DB:3C:37:78:CE:5D:D2:53:52:82:43:05:79 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 147F167DA25834FCF381A1BA56804D243E537EB8 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa Signing time: Sat 03 Feb 2024 17:12:32 +0000 ROA not before: Sat 03 Feb 2024 17:07:32 +0000 ROA not after: Sat 01 Feb 2025 17:12:32 +0000 asID: 205980 IP address blocks: 2a07:54c1:44e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7f:16:7d:a2:58:34:fc:f3:81:a1:ba:56:80:4d:24:3e:53:7e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 3 17:07:32 2024 GMT Not After : Feb 1 17:12:32 2025 GMT Subject: CN=AB97238E7E7053DB3C3778CE5DD2535282430579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:45:f9:be:96:58:cc:75:52:7e:2e:1f:45: 0a:2b:e9:ec:d8:fb:89:72:5f:88:82:89:f8:b9:3b: a1:38:7b:cd:a7:7c:57:98:0f:03:60:04:ea:19:76: d6:a8:11:78:96:79:9e:74:09:76:5f:61:98:3a:df: 5b:6a:7d:b5:5f:34:59:16:76:1b:d3:c0:3a:ef:e2: 7d:92:92:c3:2c:74:65:72:19:01:c0:57:a4:55:dd: df:a1:32:aa:9f:b6:2e:a5:05:a5:7b:84:46:a0:cf: f5:76:b3:d3:56:78:f3:77:96:86:96:ee:0a:1c:e1: e8:74:14:77:6b:28:79:51:ec:3a:9f:ae:06:d9:b2: 10:73:66:28:aa:29:c3:89:e6:a2:75:32:79:c7:34: 17:75:1a:2d:1c:a6:06:83:5d:10:26:a9:70:0b:fc: a0:d5:75:02:b1:04:c4:aa:b6:28:4a:70:0f:87:24: ad:70:ca:e2:1d:c9:da:23:6c:e8:d5:28:47:02:7e: 0b:46:18:89:e1:cd:6f:66:3a:b7:7c:93:11:ce:0c: 4b:28:68:aa:b3:44:5d:1a:e4:e4:86:8d:8c:59:f9: 61:3b:45:ef:24:e9:e7:65:28:7d:bc:70:68:bd:e4: 76:58:db:a1:ce:9e:3d:22:88:de:38:18:48:45:a6: 20:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:97:23:8E:7E:70:53:DB:3C:37:78:CE:5D:D2:53:52:82:43:05:79 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS205980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:44e0::/44 Signature Algorithm: sha256WithRSAEncryption 7d:84:66:90:5f:30:fb:6b:4d:68:c4:17:cc:6c:bb:f5:ed:cd: ec:5f:0f:60:61:e3:bd:e3:11:4c:86:1c:e5:fb:1b:81:d4:ba: ce:93:9b:80:fe:5f:86:3e:a9:ae:21:ea:d5:5a:33:bf:23:5f: 38:d2:11:4a:7f:08:f0:9d:4f:61:54:86:3d:61:55:15:a4:5a: 8b:46:2f:e8:c1:97:a4:63:f5:42:ff:e4:37:c8:4c:0d:81:ce: cf:5b:17:03:6c:c3:d7:a8:d3:f6:bd:1e:57:f8:32:1c:f7:fd: a5:95:a8:eb:b4:dc:76:72:7e:03:a7:0c:4c:54:1e:c2:b2:d7: e7:7d:ae:69:c2:76:c6:ea:58:d6:4a:8b:bc:19:8a:06:ce:03: 6b:a9:9d:ec:44:65:d5:4a:bb:38:0c:26:9a:01:df:15:22:4d: 4e:39:22:c4:3e:2a:f5:c6:5d:90:d7:25:8d:9c:e4:d3:c3:37: 3a:9a:dc:19:6e:24:17:aa:61:46:ac:a0:75:6f:c6:c2:37:f4: 15:2c:d9:34:87:cc:50:05:8b:9c:df:58:82:48:4d:50:3e:6c: ae:cc:c0:ce:32:83:fc:c1:20:37:25:9d:cf:b9:0e:5b:33:e7: 77:a2:5c:bc:53:e3:e3:9c:26:fb:37:df:d8:e5:5a:e4:90:7b: 13:8a:0d:1f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFH8WfaJYNPzzgaG6VoBNJD5TfrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAyMDMxNzA3MzJaFw0yNTAyMDExNzEyMzJaMDMxMTAvBgNV BAMTKEFCOTcyMzhFN0U3MDUzREIzQzM3NzhDRTVERDI1MzUyODI0MzA1NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcBkX5vpZYzHVSfi4fRQor6ezY +4lyX4iCifi5O6E4e82nfFeYDwNgBOoZdtaoEXiWeZ50CXZfYZg631tqfbVfNFkW dhvTwDrv4n2SksMsdGVyGQHAV6RV3d+hMqqfti6lBaV7hEagz/V2s9NWePN3loaW 7goc4eh0FHdrKHlR7DqfrgbZshBzZiiqKcOJ5qJ1MnnHNBd1Gi0cpgaDXRAmqXAL /KDVdQKxBMSqtihKcA+HJK1wyuIdydojbOjVKEcCfgtGGInhzW9mOrd8kxHODEso aKqzRF0a5OSGjYxZ+WE7Re8k6edlKH28cGi95HZY26HOnj0iiN44GEhFpiCFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUq5cjjn5wU9s8N3jOXdJTUoJDBXkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA1OTgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU wUTgMA0GCSqGSIb3DQEBCwUAA4IBAQB9hGaQXzD7a01oxBfMbLv17c3sXw9gYeO9 4xFMhhzl+xuB1LrOk5uA/l+GPqmuIerVWjO/I1840hFKfwjwnU9hVIY9YVUVpFqL Ri/owZekY/VC/+Q3yEwNgc7PWxcDbMPXqNP2vR5X+DIc9/2llajrtNx2cn4DpwxM VB7Cstfnfa5pwnbG6ljWSou8GYoGzgNrqZ3sRGXVSrs4DCaaAd8VIk1OOSLEPir1 xl2Q1yWNnOTTwzc6mtwZbiQXqmFGrKB1b8bCN/QVLNk0h8xQBYuc31iCSE1QPmyu zMDOMoP8wSA3JZ3PuQ5bM+d3oly8U+PjnCb7N9/Y5VrkkHsTig0f -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org