$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206216.roa File: AS206216.roa (raw, json) Hash identifier: d8vbcoaCGOEx+11k9SQkwAKCpzMljfM/Le375xbbJ1U= Subject key identifier: 42:B2:93:F8:E5:E3:94:47:FF:3A:21:2A:38:45:07:E0:25:44:46:AB Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 7B775A6F0FA174810D7ACFDAD1D9E733106AA35A Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206216.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 206216 IP address blocks: 2a07:54c4:174f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:77:5a:6f:0f:a1:74:81:0d:7a:cf:da:d1:d9:e7:33:10:6a:a3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=42B293F8E5E39447FF3A212A384507E0254446AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d5:ab:e1:06:32:7c:2b:3b:be:32:25:bf:e9: b6:87:e0:9a:91:88:87:d2:3b:3f:1f:96:5d:4e:2d: fe:57:f9:a5:ea:74:be:16:4d:b7:ff:23:84:9e:ff: 54:d3:76:91:03:dc:88:1d:79:9d:c2:88:69:e8:f8: a4:00:ee:51:02:02:98:a1:f9:9d:be:4b:33:82:55: 59:4c:aa:8d:93:e1:85:0d:29:c5:ab:b0:f8:46:86: 8f:51:47:9e:bb:3c:f0:d7:3a:a9:d9:21:09:fc:fb: f7:44:c2:ea:8a:b6:91:9c:34:8e:ff:a0:fe:3e:d7: e6:07:ae:1c:f1:7a:a2:a7:a8:a1:7b:4b:d6:ab:40: 2f:0f:3e:d1:5f:82:87:8b:66:28:7a:25:17:30:99: f3:b4:2f:d5:1a:0f:0a:36:57:7a:80:cf:f7:d4:be: 9f:99:d0:8d:14:5c:b1:36:e5:69:0a:32:12:d7:2c: 58:1b:88:4d:14:9a:58:03:dc:71:7f:f2:70:4f:48: d3:42:a0:0e:57:2a:54:3f:72:bb:1e:26:20:dc:f0: 21:db:92:3c:00:9f:b3:52:dd:7c:a8:24:8a:c8:6a: 94:63:67:25:65:fa:9f:47:ac:dd:75:8e:e0:b1:3e: 90:78:51:97:e1:8f:8e:20:38:35:ed:c3:58:e4:79: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B2:93:F8:E5:E3:94:47:FF:3A:21:2A:38:45:07:E0:25:44:46:AB X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174f::/48 Signature Algorithm: sha256WithRSAEncryption 7f:00:07:2b:2f:9e:09:c6:d2:36:db:6e:2e:3c:84:61:17:c6: 79:e6:72:98:f2:d8:70:6f:08:f4:ce:c4:3a:4a:d8:48:a7:53: 95:74:3a:03:ef:b0:c8:64:ad:e3:32:f0:05:4e:80:57:86:cd: 23:54:70:72:aa:83:a9:fe:9a:7c:90:05:94:ac:dc:b6:a3:58: b8:55:ab:bf:86:2b:ae:84:94:62:d1:b4:69:80:41:d2:e4:99: b0:4a:d1:6e:27:90:de:57:e5:9d:b2:ae:2b:58:7e:ac:66:5a: c0:9e:be:1e:7e:22:ef:8c:6f:04:4d:d0:95:c5:56:a4:60:f2: 05:a7:da:6f:93:3e:ed:e8:82:da:bc:91:c0:87:73:f9:94:f8: ad:05:ca:9d:30:4e:aa:42:79:34:33:a3:4f:77:7e:9d:d3:b8: 83:eb:2a:be:3a:05:b5:07:bc:17:af:64:25:0c:b1:c0:c5:0c: 31:c1:23:6c:20:f2:91:e1:05:a9:97:3e:b8:d9:bb:83:d9:f2: 4d:d2:d8:2c:57:71:87:5c:86:2f:ae:f2:4a:1a:ea:ce:0c:72: 44:69:44:44:fc:9c:de:86:48:94:3d:5c:ce:74:14:66:93:59: 9d:86:6b:c5:8c:16:76:f5:91:36:49:83:95:ff:89:64:ab:da: ef:88:c6:b7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUe3dabw+hdIENes/a0dnnMxBqo1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDQyQjI5M0Y4RTVFMzk0NDdGRjNBMjEyQTM4NDUwN0UwMjU0NDQ2QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz1avhBjJ8Kzu+MiW/6baH4JqR iIfSOz8fll1OLf5X+aXqdL4WTbf/I4Se/1TTdpED3IgdeZ3CiGno+KQA7lECApih +Z2+SzOCVVlMqo2T4YUNKcWrsPhGho9RR567PPDXOqnZIQn8+/dEwuqKtpGcNI7/ oP4+1+YHrhzxeqKnqKF7S9arQC8PPtFfgoeLZih6JRcwmfO0L9UaDwo2V3qAz/fU vp+Z0I0UXLE25WkKMhLXLFgbiE0UmlgD3HF/8nBPSNNCoA5XKlQ/crseJiDc8CHb kjwAn7NS3XyoJIrIapRjZyVl+p9HrN11juCxPpB4UZfhj44gODXtw1jkeSsbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQrKT+OXjlEf/OiEqOEUH4CVERqswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2MjE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdPMA0GCSqGSIb3DQEBCwUAA4IBAQB/AAcrL54JxtI2224uPIRhF8Z55nKY8thw bwj0zsQ6SthIp1OVdDoD77DIZK3jMvAFToBXhs0jVHByqoOp/pp8kAWUrNy2o1i4 Vau/hiuuhJRi0bRpgEHS5JmwStFuJ5DeV+Wdsq4rWH6sZlrAnr4efiLvjG8ETdCV xVakYPIFp9pvkz7t6ILavJHAh3P5lPitBcqdME6qQnk0M6NPd36d07iD6yq+OgW1 B7wXr2QlDLHAxQwxwSNsIPKR4QWplz642buD2fJN0tgsV3GHXIYvrvJKGurODHJE aURE/JzehkiUPVzOdBRmk1mdhmvFjBZ29ZE2SYOV/4lkq9rviMa3 -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org