$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa File: AS207556.roa (raw, json) Hash identifier: Cq20roPw2peFjCu2CKAz28xj4NZtvfyfFwf+i/xep+U= Subject key identifier: B6:FE:84:08:DC:69:E6:7E:99:67:DD:17:85:EE:D6:A5:08:D9:72:2B Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 39023E703B77ADEA456907BBAC0E62F4F4CD0786 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa Signing time: Tue 19 Sep 2023 02:14:57 +0000 ROA not before: Tue 19 Sep 2023 02:09:57 +0000 ROA not after: Tue 17 Sep 2024 02:14:57 +0000 asID: 207556 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1753::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:02:3e:70:3b:77:ad:ea:45:69:07:bb:ac:0e:62:f4:f4:cd:07:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:57 2023 GMT Not After : Sep 17 02:14:57 2024 GMT Subject: CN=B6FE8408DC69E67E9967DD1785EED6A508D9722B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:51:86:65:32:d8:09:19:e6:82:a5:2f:88: 81:fb:78:9a:dd:7f:27:4b:6e:37:45:b8:33:bd:d3: cf:4d:82:a2:55:b0:90:ed:29:30:f7:7f:8c:02:06: f1:e2:a6:9c:f2:40:f1:c0:4b:06:3e:23:b9:27:f9: 3d:3c:5b:c0:84:fa:9f:b5:b4:de:d7:1f:85:38:95: 6b:c6:61:4f:f3:1e:53:95:6b:09:68:53:ea:f2:29: 20:95:92:1b:03:63:f6:e8:f5:0c:f0:75:5e:15:39: fd:19:08:2b:1b:67:3c:40:a5:24:90:aa:8d:50:34: 22:89:29:cf:46:8d:5d:6d:e2:19:2b:80:84:e6:3d: 56:1c:f5:7c:72:2a:87:d0:2e:fc:5b:84:00:c9:f7: 41:11:77:53:fb:3a:f1:8f:0c:d8:60:fc:ff:38:4c: 16:88:3a:0b:c2:69:ff:ce:7e:aa:ce:dc:b1:10:ee: f4:da:82:bd:05:fb:4a:7a:9d:8f:7a:46:5e:dc:fa: 77:8c:ab:b7:c2:a6:8b:30:22:01:c8:9d:56:d6:fb: 5d:89:dd:13:3a:d5:c1:53:fb:d6:a7:5d:01:b0:a6: 10:b2:d7:10:88:99:c3:74:aa:43:ac:59:2a:ae:74: 39:c4:64:f3:99:25:d8:25:52:71:f7:b6:84:d2:db: f2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FE:84:08:DC:69:E6:7E:99:67:DD:17:85:EE:D6:A5:08:D9:72:2B X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1753::/48 Signature Algorithm: sha256WithRSAEncryption 16:65:22:0f:9c:b7:57:b3:79:a3:dd:66:b7:00:28:9d:fc:79: 67:ad:41:8d:4f:1b:00:fe:9d:2f:4b:6f:1b:30:04:3f:a2:d7: 6f:b6:2d:b5:d1:66:b5:9a:f9:e4:84:62:3a:2f:c8:ae:a7:6e: 3c:d9:16:7f:f6:20:49:73:83:11:e8:62:0a:8e:f0:d2:c4:f4: 00:1e:c2:f4:6b:bb:cc:11:f1:58:88:19:bc:8e:3e:9a:74:35: 6c:21:60:69:cd:ae:da:f1:4c:30:6f:c4:cb:57:3e:69:6d:03: 39:67:0e:77:e7:9d:8f:2c:96:58:34:6f:a6:3d:26:d0:c2:64: bc:8d:8c:6b:87:0d:55:ad:22:41:16:be:b4:f0:82:10:30:a6: 82:e1:3d:fd:7a:71:1d:61:7f:59:05:e9:87:49:30:5b:7d:35: 06:b6:c6:72:8e:db:41:a2:5a:90:3c:7c:a3:10:21:3b:ba:e1: 08:c2:c4:e0:cc:14:0e:39:db:5c:f5:7b:ef:ab:06:19:e4:5c: 50:20:b9:1f:ce:3a:86:90:1f:4a:a9:99:2f:35:f1:c4:5a:a8: a9:de:80:33:5c:b5:79:48:6f:f2:26:4f:d2:07:77:9c:ef:6b: ca:5c:7d:aa:ce:56:b5:3c:39:08:07:fd:b2:3e:94:3d:d5:28: 62:60:97:8e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUOQI+cDt3repFaQe7rA5i9PTNB4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTdaFw0yNDA5MTcwMjE0NTdaMDMxMTAvBgNV BAMTKEI2RkU4NDA4REM2OUU2N0U5OTY3REQxNzg1RUVENkE1MDhEOTcyMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+olGGZTLYCRnmgqUviIH7eJrd fydLbjdFuDO9089NgqJVsJDtKTD3f4wCBvHippzyQPHASwY+I7kn+T08W8CE+p+1 tN7XH4U4lWvGYU/zHlOVawloU+ryKSCVkhsDY/bo9QzwdV4VOf0ZCCsbZzxApSSQ qo1QNCKJKc9GjV1t4hkrgITmPVYc9XxyKofQLvxbhADJ90ERd1P7OvGPDNhg/P84 TBaIOgvCaf/OfqrO3LEQ7vTagr0F+0p6nY96Rl7c+neMq7fCposwIgHInVbW+12J 3RM61cFT+9anXQGwphCy1xCImcN0qkOsWSqudDnEZPOZJdglUnH3toTS2/InAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUtv6ECNxp5n6ZZ90Xhe7WpQjZciswHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3NTU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdTMA0GCSqGSIb3DQEBCwUAA4IBAQAWZSIPnLdXs3mj3Wa3ACid /HlnrUGNTxsA/p0vS28bMAQ/otdvti210Wa1mvnkhGI6L8iup2482RZ/9iBJc4MR 6GIKjvDSxPQAHsL0a7vMEfFYiBm8jj6adDVsIWBpza7a8Uwwb8TLVz5pbQM5Zw53 552PLJZYNG+mPSbQwmS8jYxrhw1VrSJBFr608IIQMKaC4T39enEdYX9ZBemHSTBb fTUGtsZyjttBolqQPHyjECE7uuEIwsTgzBQOOdtc9XvvqwYZ5FxQILkfzjqGkB9K qZkvNfHEWqip3oAzXLV5SG/yJk/SB3ec72vKXH2qzla1PDkIB/2yPpQ91ShiYJeO -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org