$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa File: AS206271.roa (raw, json) Hash identifier: lOrCCG3im0WL8Q9U7XwbSKAN8uxsJc/7ofP03yC/m0c= Subject key identifier: 34:8D:2E:BC:B3:41:46:2A:39:89:82:60:A1:ED:FE:ED:E2:B6:AE:86 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1FD99B87F6A775929512F29222A49E66A6A3DA24 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 206271 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d9:9b:87:f6:a7:75:92:95:12:f2:92:22:a4:9e:66:a6:a3:da:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=348D2EBCB341462A39898260A1EDFEEDE2B6AE86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:83:fd:9f:10:d3:ca:af:a1:8d:6b:2b:5f: fb:97:64:a9:6d:a4:dd:b5:48:03:f5:52:f0:db:7d: 1f:0e:38:59:97:96:ba:07:2a:6d:e2:bf:7b:be:7c: 6d:a0:d7:d7:a0:5f:44:be:30:02:32:f2:37:62:86: 00:da:92:ad:eb:77:03:1c:21:7c:68:b0:d1:83:d7: 1c:d4:ab:00:06:f0:84:c7:9e:3b:59:3c:df:b8:84: ef:34:da:86:1d:a4:a3:87:15:c6:14:d4:3a:e6:1c: 65:d4:9a:1d:be:12:04:cb:26:22:c9:14:36:5d:7b: ef:0c:d7:6b:50:89:42:18:15:97:be:c8:32:a4:24: 89:1c:32:a6:3c:61:73:c5:19:cd:05:62:7f:e7:df: 8e:9a:47:38:82:04:15:d2:a0:cb:8d:b9:e8:3a:45: 66:a2:8f:62:26:0a:2b:71:6c:3a:f2:b6:8c:01:9e: df:ac:4f:3f:93:9e:0d:c2:54:bb:d3:0c:bc:ce:fb: ee:52:bc:33:94:01:f1:7f:ef:11:52:31:ff:80:65: 1a:b1:b7:04:7e:20:10:c5:23:82:b1:bc:f5:b5:8b: 8d:41:a9:c9:fd:1d:3d:7f:aa:05:02:95:c3:11:e6: d0:37:05:9d:fc:b2:fc:3b:d8:4c:88:5a:71:3c:0e: 9d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:8D:2E:BC:B3:41:46:2A:39:89:82:60:A1:ED:FE:ED:E2:B6:AE:86 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206271.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 44:7c:38:f8:69:97:1e:21:0e:97:a0:9b:e6:ad:c2:21:6f:ad: 01:51:04:55:b8:96:4d:45:5e:58:16:6c:2e:da:92:52:5b:b6: 9a:92:a0:37:d5:a5:7b:de:ea:15:30:17:9a:5e:c8:8c:c7:89: 59:50:36:76:fc:19:10:5b:ad:4e:7a:79:f1:49:d0:2f:31:be: d6:22:08:e2:8e:81:bc:df:d0:52:63:73:6c:18:21:e7:28:90: 3d:45:88:2a:8d:76:ea:40:42:08:93:7c:11:38:43:a2:1c:44: bb:83:39:7d:8c:5a:d3:9d:6b:e3:a0:68:1c:36:c0:8f:d6:ae: 81:68:af:51:bb:35:10:a2:2b:23:01:3c:99:d8:c7:28:ca:04: 11:d9:e4:9b:12:d9:ea:d6:c5:d1:6c:ec:c3:44:ef:ac:c2:52: 98:f0:81:6e:11:71:8a:5c:70:fd:b8:ec:4f:1c:be:d9:ba:6d: b8:b7:ea:c2:6b:81:9d:bd:d0:ea:40:81:fa:d9:e3:2f:c0:86: 72:9e:47:73:6e:d0:f9:99:0d:2f:6c:44:8c:0e:7c:40:ba:a1: 10:85:e4:db:e8:bc:27:9d:de:74:ab:a1:13:df:ee:28:f9:85: e3:0d:46:d8:ea:b9:48:5d:bd:c7:4e:77:a6:1e:48:15:f0:72: f0:79:9f:2d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUH9mbh/andZKVEvKSIqSeZqaj2iQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDM0OEQyRUJDQjM0MTQ2MkEzOTg5ODI2MEExRURGRUVERTJCNkFFODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW/4P9nxDTyq+hjWsrX/uXZKlt pN21SAP1UvDbfR8OOFmXlroHKm3iv3u+fG2g19egX0S+MAIy8jdihgDakq3rdwMc IXxosNGD1xzUqwAG8ITHnjtZPN+4hO802oYdpKOHFcYU1DrmHGXUmh2+EgTLJiLJ FDZde+8M12tQiUIYFZe+yDKkJIkcMqY8YXPFGc0FYn/n346aRziCBBXSoMuNueg6 RWaij2ImCitxbDrytowBnt+sTz+Tng3CVLvTDLzO++5SvDOUAfF/7xFSMf+AZRqx twR+IBDFI4KxvPW1i41Bqcn9HT1/qgUClcMR5tA3BZ38svw72EyIWnE8Dp1/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNI0uvLNBRio5iYJgoe3+7eK2roYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2MjcxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBEfDj4aZceIQ6XoJvmrcIhb60BUQRVuJZN RV5YFmwu2pJSW7aakqA31aV73uoVMBeaXsiMx4lZUDZ2/BkQW61OennxSdAvMb7W IgjijoG839BSY3NsGCHnKJA9RYgqjXbqQEIIk3wROEOiHES7gzl9jFrTnWvjoGgc NsCP1q6BaK9RuzUQoisjATyZ2McoygQR2eSbEtnq1sXRbOzDRO+swlKY8IFuEXGK XHD9uOxPHL7Zum24t+rCa4GdvdDqQIH62eMvwIZynkdzbtD5mQ0vbESMDnxAuqEQ heTb6Lwnnd50q6ET3+4o+YXjDUbY6rlIXb3HTnemHkgV8HLweZ8t -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org