$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa File: AS207778.roa (raw, json) Hash identifier: m4jO3hKapfeOYmjpw75Ez6MFBeqPRhYlXsFG42uMYvs= Subject key identifier: 32:C6:CB:28:30:0F:08:B0:3D:DA:D3:42:B6:E2:2D:57:52:21:71:78 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2B50BDF93B9AABDC6E8CC3C17E7FA4EE3E24AEB9 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa Signing time: Thu 13 Feb 2025 00:06:18 +0000 ROA not before: Thu 13 Feb 2025 00:01:18 +0000 ROA not after: Thu 12 Feb 2026 00:06:18 +0000 asID: 207778 IP address blocks: 2a07:54c1:4931::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:50:bd:f9:3b:9a:ab:dc:6e:8c:c3:c1:7e:7f:a4:ee:3e:24:ae:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Feb 13 00:01:18 2025 GMT Not After : Feb 12 00:06:18 2026 GMT Subject: CN=32C6CB28300F08B03DDAD342B6E22D5752217178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:51:7b:51:2e:b9:1a:14:9b:91:d2:ec:c9:fa: 59:72:2f:fb:27:11:5a:4c:86:2d:e8:9f:94:54:5b: 46:02:27:37:c9:41:6a:8d:11:9b:05:e4:5d:4d:55: 3b:20:06:53:30:82:b3:74:24:a0:e9:55:e7:7c:88: 2b:3d:4e:b4:b5:47:42:c7:14:28:f1:c4:ef:01:a9: cc:38:50:2c:55:b1:84:c0:fc:b3:16:b0:c4:97:5d: c3:c5:f6:9b:7d:7f:fd:18:d3:52:95:08:03:e9:ac: 30:15:6e:59:bf:6c:c2:4a:1b:d9:5c:ec:dd:89:df: 58:a3:d3:d5:e0:88:27:e3:d9:8e:99:b1:24:22:61: a6:a8:79:85:d1:6b:72:3c:b8:fb:7b:65:ef:21:1c: db:18:38:9b:d4:84:4b:17:ec:d9:89:30:8f:9a:7c: e8:e8:01:72:76:53:8b:e4:e6:b1:d6:69:75:13:d1: e9:a5:e2:c0:55:d4:c9:48:3b:47:94:ea:e5:b1:ba: bf:d1:c1:3f:aa:69:57:a7:10:3e:f8:09:bf:02:ca: c3:0e:4a:bd:c5:b1:bf:ab:34:11:c3:1f:0c:23:4f: d9:33:33:05:a3:c8:26:07:3e:b1:48:81:dc:4b:98: 1b:59:14:04:f7:96:13:52:aa:a2:22:7e:5a:59:9a: 8e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C6:CB:28:30:0F:08:B0:3D:DA:D3:42:B6:E2:2D:57:52:21:71:78 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4931::/48 Signature Algorithm: sha256WithRSAEncryption 06:00:31:7e:1d:14:bb:5a:65:4c:fb:24:2b:0a:69:da:99:f9: 94:a2:23:ce:6b:2c:0b:b1:6b:c4:73:72:58:18:b7:ed:73:36: 6e:86:db:8b:7c:11:bd:a6:4c:75:0a:dc:be:87:fe:2f:72:c2: dd:54:94:48:f1:2c:9a:0f:64:1a:df:e4:b8:10:16:02:53:34: f2:25:8c:7f:0b:fa:ff:72:69:00:af:15:65:e0:b7:d5:59:f2: 31:4a:66:d6:db:b1:e1:b5:e9:4b:e8:53:4d:94:98:b7:87:c9: 61:27:97:26:15:db:81:2c:a6:77:eb:9e:76:13:74:81:5a:2a: 4e:51:f1:b5:cc:6e:0b:fc:fd:64:10:a7:c7:52:e1:28:8d:4e: 80:73:9a:e2:47:1a:78:69:80:f1:2f:d0:50:cb:1c:07:1f:aa: ff:24:e0:f6:82:65:5c:4c:62:ac:c9:b9:49:4d:98:84:54:2c: 36:b2:98:b8:dc:2a:0d:8b:09:a5:69:15:1f:9d:59:92:0c:52: 67:29:d1:29:92:9e:6b:d9:a7:d0:26:67:92:09:aa:bc:01:5c: c1:53:1e:84:6c:86:ff:5a:f1:09:62:b4:00:94:2d:ad:da:f7: ab:0a:64:64:f6:be:10:71:f4:26:54:35:04:c3:cc:8a:3e:d5: 2d:99:0a:f1 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUK1C9+Tuaq9xujMPBfn+k7j4krrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTAyMTMwMDAxMThaFw0yNjAyMTIwMDA2MThaMDMxMTAvBgNV BAMTKDMyQzZDQjI4MzAwRjA4QjAzRERBRDM0MkI2RTIyRDU3NTIyMTcxNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6UXtRLrkaFJuR0uzJ+llyL/sn EVpMhi3on5RUW0YCJzfJQWqNEZsF5F1NVTsgBlMwgrN0JKDpVed8iCs9TrS1R0LH FCjxxO8Bqcw4UCxVsYTA/LMWsMSXXcPF9pt9f/0Y01KVCAPprDAVblm/bMJKG9lc 7N2J31ij09XgiCfj2Y6ZsSQiYaaoeYXRa3I8uPt7Ze8hHNsYOJvUhEsX7NmJMI+a fOjoAXJ2U4vk5rHWaXUT0eml4sBV1MlIO0eU6uWxur/RwT+qaVenED74Cb8CysMO Sr3Fsb+rNBHDHwwjT9kzMwWjyCYHPrFIgdxLmBtZFAT3lhNSqqIiflpZmo7hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMsbLKDAPCLA92tNCtuItV1IhcXgwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3Nzc4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wUkxMA0GCSqGSIb3DQEBCwUAA4IBAQAGADF+HRS7WmVM+yQrCmnamfmUoiPOaywL sWvEc3JYGLftczZuhtuLfBG9pkx1Cty+h/4vcsLdVJRI8SyaD2Qa3+S4EBYCUzTy JYx/C/r/cmkArxVl4LfVWfIxSmbW27HhtelL6FNNlJi3h8lhJ5cmFduBLKZ36552 E3SBWipOUfG1zG4L/P1kEKfHUuEojU6Ac5riRxp4aYDxL9BQyxwHH6r/JOD2gmVc TGKsyblJTZiEVCw2spi43CoNiwmlaRUfnVmSDFJnKdEpkp5r2afQJmeSCaq8AVzB Ux6EbIb/WvEJYrQAlC2t2verCmRk9r4QcfQmVDUEw8yKPtUtmQrx -----END CERTIFICATE-----Generated at Fri Apr 4 17:05:54 2025 by rpki-client