$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa File: AS206271.roa (raw, json) Hash identifier: F3QBY9n3Fxc6Ls229MpF2I0maw9uunRNVp2sXIH3hMI= Subject key identifier: 2A:00:2B:39:3F:84:BF:72:E5:EF:E2:E6:A8:47:75:73:6D:B6:AA:49 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 592F214C8405288FF27B99CE84AD019EB050A829 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 206271 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:2f:21:4c:84:05:28:8f:f2:7b:99:ce:84:ad:01:9e:b0:50:a8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=2A002B393F84BF72E5EFE2E6A84775736DB6AA49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:01:bc:c7:8f:43:a3:c4:7f:6f:89:89:96:d6: c0:18:74:ce:44:22:8e:9b:10:1e:ca:71:df:c5:4b: 52:7f:65:ea:23:3c:15:0d:5b:70:60:cc:ad:b7:19: f7:01:38:a6:48:ae:2e:ce:3c:70:32:89:99:60:82: eb:c6:44:51:b8:fc:13:ec:63:ab:42:69:62:27:12: be:c7:f6:5c:60:23:6b:f8:b7:de:67:35:9e:8f:ea: 07:47:bf:58:c1:b0:ac:14:d0:85:85:e0:ef:06:aa: 6a:23:5f:bf:bd:3e:dc:6a:77:31:56:2e:31:a9:63: d4:5a:90:92:5f:1b:a4:82:f4:7c:75:92:68:5c:31: da:f0:22:82:57:58:63:63:8d:65:44:7a:84:d8:8d: 8d:b0:fa:93:73:61:18:1a:26:9a:77:b3:61:c7:90: 3d:75:6b:85:8f:1c:fc:64:8c:6a:27:f9:2e:b5:6a: 34:8e:06:eb:f1:6c:a1:ed:9c:22:0d:57:b2:5d:d0: bd:29:51:da:c6:40:58:39:b6:1f:df:3e:f2:53:8a: fd:4a:82:31:1d:f9:cc:d9:7c:2d:29:bf:6a:71:2b: c7:c2:bf:d3:cf:6f:48:b3:e3:7b:fd:16:5a:7b:4d: 9a:7a:15:d7:a1:07:3d:76:b0:8d:bb:25:3a:f4:f1: 03:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:00:2B:39:3F:84:BF:72:E5:EF:E2:E6:A8:47:75:73:6D:B6:AA:49 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 10:11:00:e3:c4:df:51:f1:ec:87:7a:9d:49:f1:73:6a:03:db: 19:c7:48:73:6f:3e:bd:3b:3f:78:e4:82:ba:99:15:7f:b5:d6: 8e:ea:42:3a:0e:07:e9:1c:9e:54:ee:ad:ef:d4:e4:85:7f:c8: df:2e:31:f5:a7:71:e5:f2:55:f4:a7:bb:58:0c:c7:10:c0:fe: 29:a0:6f:c9:75:cd:3e:2f:04:21:1f:6b:d1:9f:95:72:ad:0d: 73:ef:db:dc:ce:6d:5a:01:5b:0d:9d:d5:5c:fd:46:e2:aa:a6: 7b:d5:99:ea:86:24:87:05:fd:12:c4:50:ce:fe:fc:69:1b:1d: 3b:89:5d:97:af:5d:d9:02:53:d5:a7:40:b5:10:c9:72:a4:6a: fe:d3:ff:ac:29:0c:23:8b:77:a5:cb:11:81:b5:a0:10:f0:3e: 16:02:20:48:57:f5:ad:e6:94:82:83:ad:69:44:8a:7a:71:cf: 2e:a2:3f:b8:09:bb:aa:d7:07:48:b7:5a:f3:9a:7e:e1:38:d3: 41:4b:08:bf:78:93:aa:61:be:46:94:4b:78:fc:12:a3:9e:a5: c6:5d:b2:d5:0d:96:96:15:7e:60:64:11:94:d8:c1:00:d3:b2: 4b:0a:3e:4e:e8:4d:a4:3b:73:af:4a:b2:97:d8:7e:4a:a0:71: 01:d0:20:bf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWS8hTIQFKI/ye5nOhK0BnrBQqCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKDJBMDAyQjM5M0Y4NEJGNzJFNUVGRTJFNkE4NDc3NTczNkRCNkFBNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAbzHj0OjxH9viYmW1sAYdM5E Io6bEB7Kcd/FS1J/ZeojPBUNW3BgzK23GfcBOKZIri7OPHAyiZlgguvGRFG4/BPs Y6tCaWInEr7H9lxgI2v4t95nNZ6P6gdHv1jBsKwU0IWF4O8GqmojX7+9PtxqdzFW LjGpY9RakJJfG6SC9Hx1kmhcMdrwIoJXWGNjjWVEeoTYjY2w+pNzYRgaJpp3s2HH kD11a4WPHPxkjGon+S61ajSOBuvxbKHtnCINV7Jd0L0pUdrGQFg5th/fPvJTiv1K gjEd+czZfC0pv2pxK8fCv9PPb0iz43v9Flp7TZp6FdehBz12sI27JTr08QNvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKgArOT+Ev3Ll7+LmqEd1c222qkkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2MjcxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAQEQDjxN9R8eyHep1J8XNqA9sZx0hzbz69 Oz945IK6mRV/tdaO6kI6DgfpHJ5U7q3v1OSFf8jfLjH1p3Hl8lX0p7tYDMcQwP4p oG/Jdc0+LwQhH2vRn5VyrQ1z79vczm1aAVsNndVc/UbiqqZ71ZnqhiSHBf0SxFDO /vxpGx07iV2Xr13ZAlPVp0C1EMlypGr+0/+sKQwji3elyxGBtaAQ8D4WAiBIV/Wt 5pSCg61pRIp6cc8uoj+4Cbuq1wdIt1rzmn7hONNBSwi/eJOqYb5GlEt4/BKjnqXG XbLVDZaWFX5gZBGU2MEA07JLCj5O6E2kO3OvSrKX2H5KoHEB0CC/ -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org