$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa File: AS207556.roa (raw, json) Hash identifier: OIOk4U549ar+2UzRyAnCYqlO0KnC+p/8oYOziegI6CE= Subject key identifier: 20:8D:60:8E:DE:AF:2A:FE:D4:D4:18:F0:8D:85:56:E7:51:7B:B0:39 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 05CF4FE8A4FCE99F2588FAF553E46BDC5EF4335F Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa Signing time: Tue 20 Aug 2024 02:31:53 +0000 ROA not before: Tue 20 Aug 2024 02:26:53 +0000 ROA not after: Tue 19 Aug 2025 02:31:53 +0000 asID: 207556 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1753::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cf:4f:e8:a4:fc:e9:9f:25:88:fa:f5:53:e4:6b:dc:5e:f4:33:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:53 2024 GMT Not After : Aug 19 02:31:53 2025 GMT Subject: CN=208D608EDEAF2AFED4D418F08D8556E7517BB039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:05:bd:d8:ff:7e:5f:63:e2:73:12:c0:88: ff:83:05:92:7c:6f:c0:2d:13:db:5d:f8:d5:43:20: c2:29:38:e9:34:ef:19:4e:63:a4:67:79:21:62:dd: 21:fc:ab:ea:75:c5:6a:21:22:7a:64:79:23:2b:0e: fe:95:7b:43:cf:20:4d:20:37:c0:d1:27:70:80:79: c1:24:5e:50:97:60:d9:1c:6c:22:4b:13:25:da:69: 77:f0:e8:64:f0:c5:56:7d:61:75:c9:6f:12:d0:55: 15:81:02:5c:c9:e7:43:06:b8:bc:76:3c:48:33:92: 8e:20:a3:0f:c8:84:59:43:69:e5:80:7f:f9:61:6b: e5:a4:af:e2:6e:31:3f:65:07:00:e8:61:c1:f0:89: 57:e2:d9:14:b5:38:dc:e3:53:ee:19:24:27:07:08: 2f:f9:07:82:54:2e:85:02:86:8f:6c:ed:35:41:9e: 62:e4:1d:ce:42:1e:ef:cb:dc:0b:7a:e3:48:f8:06: 68:3a:cb:42:45:78:f8:ad:ac:94:d1:4c:6e:d8:bc: fa:1e:31:a5:f9:08:4b:12:0d:29:bf:80:88:ce:71: 3d:56:e5:79:9d:17:d5:78:e9:1b:33:46:ca:39:97: 11:71:13:79:37:ff:a6:78:da:cc:de:05:ca:9a:68: 3d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:8D:60:8E:DE:AF:2A:FE:D4:D4:18:F0:8D:85:56:E7:51:7B:B0:39 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207556.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1753::/48 Signature Algorithm: sha256WithRSAEncryption 71:8b:50:bc:21:ca:5a:b7:7a:23:43:ed:db:7d:5c:db:9d:b8: 2d:9b:a5:58:8d:48:27:1e:0d:c5:46:fe:0a:61:79:cf:d2:4a: 4b:14:57:95:68:5f:0f:27:0f:77:92:ba:17:b0:f1:92:b7:90: ba:16:bd:f2:6c:a5:f5:dc:6b:1b:dc:9e:d6:c8:da:1e:f0:72: 61:3b:91:97:55:51:1a:26:fb:24:8f:3b:b5:b8:d6:32:a8:9d: 5c:3e:ca:de:03:5f:72:0c:0c:ec:6a:cd:41:86:5b:60:d9:87: c6:49:77:ee:ef:1c:fb:cc:05:4f:5e:00:97:f6:50:ef:72:e4: 0a:99:fd:d8:a0:4f:84:00:27:37:f4:79:b7:fc:70:96:c5:f1: 34:b8:a2:32:ac:a0:fd:04:b9:ad:71:cc:ff:53:0b:ea:e4:e0: 00:41:e3:c8:82:36:39:48:04:a1:d0:0f:01:ff:f8:36:d6:97: 63:80:11:d7:50:ce:19:d4:a2:1d:43:fa:65:32:96:ad:be:fb: c6:e8:ad:a6:0d:37:0a:b0:1d:17:92:25:44:dc:84:1b:20:66: 76:0d:3e:c8:a1:ec:17:54:24:26:0b:a7:1c:a6:4a:97:d6:2c: eb:3f:b0:89:6b:37:a7:a5:f3:85:cd:f9:39:71:37:2f:30:12: fb:bd:b2:56 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUBc9P6KT86Z8liPr1U+Rr3F70M18wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTNaFw0yNTA4MTkwMjMxNTNaMDMxMTAvBgNV BAMTKDIwOEQ2MDhFREVBRjJBRkVENEQ0MThGMDhEODU1NkU3NTE3QkIwMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmUgW92P9+X2PicxLAiP+DBZJ8 b8AtE9td+NVDIMIpOOk07xlOY6RneSFi3SH8q+p1xWohInpkeSMrDv6Ve0PPIE0g N8DRJ3CAecEkXlCXYNkcbCJLEyXaaXfw6GTwxVZ9YXXJbxLQVRWBAlzJ50MGuLx2 PEgzko4gow/IhFlDaeWAf/lha+Wkr+JuMT9lBwDoYcHwiVfi2RS1ONzjU+4ZJCcH CC/5B4JULoUCho9s7TVBnmLkHc5CHu/L3At640j4Bmg6y0JFePitrJTRTG7YvPoe MaX5CEsSDSm/gIjOcT1W5XmdF9V46RszRso5lxFxE3k3/6Z42szeBcqaaD0lAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUII1gjt6vKv7U1BjwjYVW51F7sDkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3NTU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdTMA0GCSqGSIb3DQEBCwUAA4IBAQBxi1C8Icpat3ojQ+3bfVzb nbgtm6VYjUgnHg3FRv4KYXnP0kpLFFeVaF8PJw93kroXsPGSt5C6Fr3ybKX13Gsb 3J7WyNoe8HJhO5GXVVEaJvskjzu1uNYyqJ1cPsreA19yDAzsas1Bhltg2YfGSXfu 7xz7zAVPXgCX9lDvcuQKmf3YoE+EACc39Hm3/HCWxfE0uKIyrKD9BLmtccz/Uwvq 5OAAQePIgjY5SASh0A8B//g21pdjgBHXUM4Z1KIdQ/plMpatvvvG6K2mDTcKsB0X kiVE3IQbIGZ2DT7IoewXVCQmC6ccpkqX1izrP7CJazenpfOFzfk5cTcvMBL7vbJW -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org