$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207341.roa File: AS207341.roa (raw, json) Hash identifier: XlRCCdVRETBOw0KnuwZlWZS++Qq7PMAlVNt6QIsBIaI= Subject key identifier: 5C:EA:73:1D:DC:D1:72:46:6D:03:01:9D:A9:5F:F6:19:DD:57:88:06 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 02C82E3D76BFB83C4A33758AFCF051A6C6FF6555 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207341.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 207341 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c8:2e:3d:76:bf:b8:3c:4a:33:75:8a:fc:f0:51:a6:c6:ff:65:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=5CEA731DDCD172466D03019DA95FF619DD578806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c4:9f:83:16:24:39:0d:d8:88:ac:02:cd:1a: 53:e6:84:49:2a:15:1f:de:14:97:40:c3:8e:e4:ba: ed:d1:9a:44:0b:25:88:71:67:86:83:a8:b2:cc:47: e4:ad:66:85:9b:4c:a9:96:5b:cb:72:cb:42:41:f8: fd:51:54:1e:0e:fb:cc:10:19:5a:90:01:78:3c:c9: e9:6e:e5:f8:07:0a:bc:ea:9f:17:54:0f:8e:39:db: b9:8e:48:b0:7f:38:98:55:75:c6:fb:3d:ff:93:ef: f0:e3:56:ec:95:e3:6e:7d:ed:25:8c:b6:8b:b3:17: 72:76:12:39:70:f1:b3:12:6d:97:35:73:19:43:ef: 4a:94:74:b8:b7:66:f4:51:7c:e6:db:d6:74:26:e2: 3c:9f:e0:7a:32:75:bf:6f:ae:15:a6:ea:66:8a:23: ab:ce:88:47:fe:f1:dc:38:7b:8a:11:09:8f:7b:75: 47:6c:f6:81:5d:43:3d:6c:0c:ac:e9:35:ad:d8:42: 9c:a4:0d:9f:17:72:40:16:7b:12:29:7f:10:73:81: a6:d2:19:17:a6:9f:1e:60:d8:13:7d:68:31:93:1a: 43:62:58:61:1b:7e:f5:11:c8:7a:d5:1f:d6:ae:e8: 7b:5e:74:59:02:81:6d:25:6b:75:8a:f9:05:a3:9d: c7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EA:73:1D:DC:D1:72:46:6D:03:01:9D:A9:5F:F6:19:DD:57:88:06 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207341.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 02:27:b0:4d:e3:a9:36:7a:ef:d2:12:20:0a:a7:f9:cd:e1:0f: 88:93:bc:22:a4:9c:79:03:bb:01:22:fa:ab:ee:d1:a7:63:21: 2b:f7:02:4e:49:e2:7a:68:ea:ae:bf:8b:c8:0e:6e:d4:94:bb: 21:ef:7f:16:78:a8:ce:9c:1b:11:d8:44:90:77:71:8f:9c:54: fd:a6:bc:f2:77:cd:ec:21:66:8d:ad:b0:d0:4d:a5:98:b5:c8: 14:e4:75:f4:6b:bd:7c:c7:73:26:7b:52:6f:45:20:db:6a:82: d5:f0:84:e3:5a:90:bc:df:5b:e1:8d:b6:80:14:c1:1e:6d:67: 62:45:cb:b7:f6:ca:0c:03:65:64:8a:d8:4f:e8:13:6e:63:6e: a9:82:c9:31:be:4e:3d:84:45:00:27:6c:a5:79:91:9e:0c:33: c5:8e:05:58:39:14:0c:87:fd:76:bc:ad:e8:59:17:c6:6b:61: 5e:1d:04:2c:c3:1a:e8:9d:42:92:e5:26:c2:fc:a6:1f:2f:d8: 04:53:cd:44:89:25:1a:d2:fd:3d:a6:db:8a:6d:d8:79:6f:39: e6:ae:57:83:a6:5f:aa:99:96:e4:b9:a8:d8:0f:c9:25:f9:a7: 6f:3a:2f:bf:70:92:d3:40:e5:04:52:d2:20:40:32:e4:37:88: a8:5b:ed:da -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAsguPXa/uDxKM3WK/PBRpsb/ZVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKDVDRUE3MzFERENEMTcyNDY2RDAzMDE5REE5NUZGNjE5REQ1Nzg4MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzxJ+DFiQ5DdiIrALNGlPmhEkq FR/eFJdAw47kuu3RmkQLJYhxZ4aDqLLMR+StZoWbTKmWW8tyy0JB+P1RVB4O+8wQ GVqQAXg8yelu5fgHCrzqnxdUD44527mOSLB/OJhVdcb7Pf+T7/DjVuyV42597SWM touzF3J2Ejlw8bMSbZc1cxlD70qUdLi3ZvRRfObb1nQm4jyf4Hoydb9vrhWm6maK I6vOiEf+8dw4e4oRCY97dUds9oFdQz1sDKzpNa3YQpykDZ8XckAWexIpfxBzgabS GRemnx5g2BN9aDGTGkNiWGEbfvURyHrVH9au6HtedFkCgW0la3WK+QWjncebAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXOpzHdzRckZtAwGdqV/2Gd1XiAYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3MzQxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQACJ7BN46k2eu/SEiAKp/nN4Q+Ik7wipJx5 A7sBIvqr7tGnYyEr9wJOSeJ6aOquv4vIDm7UlLsh738WeKjOnBsR2ESQd3GPnFT9 przyd83sIWaNrbDQTaWYtcgU5HX0a718x3Mme1JvRSDbaoLV8ITjWpC831vhjbaA FMEebWdiRcu39soMA2VkithP6BNuY26pgskxvk49hEUAJ2yleZGeDDPFjgVYORQM h/12vK3oWRfGa2FeHQQswxronUKS5SbC/KYfL9gEU81EiSUa0v09ptuKbdh5bznm rleDpl+qmZbkuajYD8kl+advOi+/cJLTQOUEUtIgQDLkN4ioW+3a -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org