$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa File: AS206444.roa (raw, json) Hash identifier: Z0UUw8pJk4lC2fhy5G5u1wWkaym334cQRQ9e2F72odU= Subject key identifier: 1D:94:D2:74:10:50:EC:3B:C3:DC:10:A9:AD:6B:E6:64:A9:10:CF:27 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 290D86E61AB46B9FE1BDC0E000E5441C533F899E Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 206444 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:9800::/37 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:0d:86:e6:1a:b4:6b:9f:e1:bd:c0:e0:00:e5:44:1c:53:3f:89:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=1D94D2741050EC3BC3DC10A9AD6BE664A910CF27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a9:c7:e7:29:1c:24:ee:32:d5:db:3c:18:fa: 9b:9e:d0:57:6c:72:e2:47:ac:2d:4e:f6:40:f5:69: a1:a2:56:45:cf:10:16:25:32:b7:d0:d8:66:fc:31: 56:3b:2b:95:da:3c:4e:e7:2f:fb:35:06:3b:29:2a: a8:61:ef:b6:30:ad:2b:91:e1:d6:f4:25:e6:0c:2b: ab:04:56:27:67:59:b8:6b:e4:c6:09:fc:85:bf:af: fd:fb:07:00:38:cb:dd:40:b3:b5:dc:28:78:10:ef: 34:bd:53:95:1c:47:f7:a1:68:85:cc:44:b8:d3:e7: 3c:99:70:1d:95:e5:26:71:10:3e:5b:bf:6b:a1:30: 88:b0:33:ad:21:d4:82:4c:33:dc:09:fd:b3:e8:f6: 98:a0:19:d1:24:04:d0:3d:f0:30:92:8e:0f:7a:49: 0f:9e:a8:06:37:4e:13:a9:4b:d3:8b:56:82:2d:b2: 6c:29:8e:84:9c:eb:5f:bb:52:dc:9c:9e:1a:65:6a: 84:05:bf:6b:26:80:57:f1:d2:20:27:4c:ca:96:59: 5b:aa:a6:4c:de:1f:60:5c:8a:03:ab:ab:06:af:54: 8a:32:e0:6c:f9:3d:ed:b2:57:19:74:4d:51:b7:04: 9f:f4:a8:e0:e4:4e:7a:08:ea:eb:de:4d:e0:05:f5: 87:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:94:D2:74:10:50:EC:3B:C3:DC:10:A9:AD:6B:E6:64:A9:10:CF:27 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:9800::/37 Signature Algorithm: sha256WithRSAEncryption a8:d8:48:a4:c0:be:46:53:0c:84:48:2c:5a:e5:37:97:23:2f: 20:d1:b5:cf:b1:a3:c2:27:63:dc:f5:08:31:32:d6:e6:2c:1d: 74:57:48:55:a9:4a:27:eb:e2:fd:ca:4a:e6:2f:04:5b:b5:1a: 48:02:60:03:f2:e6:82:b0:b1:db:af:9d:07:af:42:fa:92:41: a8:19:fe:40:98:54:8c:1a:93:52:fa:58:63:59:c8:ce:99:ab: 36:b5:71:e5:da:2a:8c:ad:e5:c4:e4:e2:01:13:fd:cc:98:2b: 70:b1:77:f9:95:4f:00:41:e3:be:40:83:2f:0a:11:89:52:26: e6:8a:25:d8:c0:2b:28:1c:07:f0:d8:17:4d:11:59:f4:d2:c8: 7e:e1:96:c2:49:66:ed:ee:46:df:6b:c9:0d:22:5d:57:8e:a1: ef:01:78:08:fc:a1:09:74:91:3c:bd:68:e4:c4:57:76:1d:77: 67:f4:0c:a6:6b:e8:b1:3f:2a:4a:80:d8:91:a0:08:5e:70:f3: 3f:3a:59:ec:69:2c:8e:98:2d:43:75:9d:77:8d:27:1e:35:7c: 19:7e:80:42:2b:22:da:55:f2:fd:e3:17:6b:8d:be:8c:e1:0e: 60:15:1b:d9:b5:44:9a:14:ef:9c:b4:a4:44:6d:ee:f9:ac:c1: f2:2e:ab:95 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUKQ2G5hq0a5/hvcDgAOVEHFM/iZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKDFEOTREMjc0MTA1MEVDM0JDM0RDMTBBOUFENkJFNjY0QTkxMENGMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqcfnKRwk7jLV2zwY+pue0Fds cuJHrC1O9kD1aaGiVkXPEBYlMrfQ2Gb8MVY7K5XaPE7nL/s1BjspKqhh77YwrSuR 4db0JeYMK6sEVidnWbhr5MYJ/IW/r/37BwA4y91As7XcKHgQ7zS9U5UcR/ehaIXM RLjT5zyZcB2V5SZxED5bv2uhMIiwM60h1IJMM9wJ/bPo9pigGdEkBNA98DCSjg96 SQ+eqAY3ThOpS9OLVoItsmwpjoSc61+7UtycnhplaoQFv2smgFfx0iAnTMqWWVuq pkzeH2BcigOrqwavVIoy4Gz5Pe2yVxl0TVG3BJ/0qODkTnoI6uveTeAF9YeHAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUHZTSdBBQ7DvD3BCprWvmZKkQzycwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2NDQ0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgdU wrALAwYDKgdUxJgwDQYJKoZIhvcNAQELBQADggEBAKjYSKTAvkZTDIRILFrlN5cj LyDRtc+xo8InY9z1CDEy1uYsHXRXSFWpSifr4v3KSuYvBFu1GkgCYAPy5oKwsduv nQevQvqSQagZ/kCYVIwak1L6WGNZyM6Zqza1ceXaKoyt5cTk4gET/cyYK3Cxd/mV TwBB475Agy8KEYlSJuaKJdjAKygcB/DYF00RWfTSyH7hlsJJZu3uRt9ryQ0iXVeO oe8BeAj8oQl0kTy9aOTEV3Ydd2f0DKZr6LE/KkqA2JGgCF5w8z86WexpLI6YLUN1 nXeNJx41fBl+gEIrItpV8v3jF2uNvozhDmAVG9m1RJoU75y0pERt7vmswfIuq5U= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org