$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa File: AS207778.roa (raw, json) Hash identifier: 0kBSTzG4RUk56D9mLpnOyGT5xEgLVzt1YJf9VDIreG0= Subject key identifier: 61:4B:5D:9B:B6:2A:62:E8:04:38:52:25:FD:66:92:43:40:75:DA:FD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 3284675B8E1EE24AB3284A15191D227E464F8E60 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa Signing time: Wed 13 Mar 2024 23:54:06 +0000 ROA not before: Wed 13 Mar 2024 23:49:06 +0000 ROA not after: Wed 12 Mar 2025 23:54:06 +0000 asID: 207778 IP address blocks: 2a07:54c1:4931::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:84:67:5b:8e:1e:e2:4a:b3:28:4a:15:19:1d:22:7e:46:4f:8e:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Mar 13 23:49:06 2024 GMT Not After : Mar 12 23:54:06 2025 GMT Subject: CN=614B5D9BB62A62E804385225FD6692434075DAFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:34:f7:39:cb:61:f4:1b:11:76:a3:e1:31: cc:89:80:3b:c7:3f:f2:dc:dc:3b:89:a4:e4:da:94: 73:65:a5:e1:c5:31:32:76:5d:ac:29:a4:78:02:d8: e3:de:86:14:69:f1:16:a6:9a:e0:05:f3:cc:b0:36: 5e:62:af:e3:a8:52:82:ef:a4:d2:f1:ad:0f:b9:0a: 02:35:b1:8e:6f:0e:7e:b6:28:ba:de:d8:cb:2e:be: a0:b8:13:c3:9b:71:34:ba:3b:35:d0:fd:1d:7f:45: 80:e1:b8:96:28:ac:61:ef:0a:4e:c6:30:fc:a5:bb: d1:dc:3c:59:cb:dd:a0:f8:33:61:13:58:29:fa:2b: e5:e3:47:28:e2:f5:f2:c3:37:84:7c:62:28:4b:7b: 63:6e:65:b2:82:5e:b2:e3:2b:27:8c:c3:5d:72:45: 69:a7:70:1c:b3:19:bf:28:d7:38:6c:97:44:a8:48: c1:00:21:35:80:e2:7b:78:2b:c0:04:fb:2f:ff:57: a7:9c:f8:36:29:8b:e6:6b:93:c5:cd:a0:73:4c:6e: 73:63:13:4b:65:65:bf:ab:99:5c:be:00:e8:b9:d8: fa:96:bf:8b:65:f0:c1:b0:97:0e:81:4f:98:ee:51: 49:1c:c5:9c:05:bb:ba:74:ad:0f:fa:bf:b6:ae:06: ba:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:4B:5D:9B:B6:2A:62:E8:04:38:52:25:FD:66:92:43:40:75:DA:FD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4931::/48 Signature Algorithm: sha256WithRSAEncryption 10:8c:5e:ab:4b:1e:5d:a6:a0:b3:a1:b2:47:91:e7:13:ce:11: b0:05:1c:b6:44:2b:4c:75:ee:7a:73:56:0a:37:11:d1:5b:a6: 28:2e:e3:c9:1b:40:e7:d5:4a:95:d8:a3:ed:ff:75:6f:63:e0: fa:38:42:b9:f3:6e:af:c5:b7:9b:c2:d6:2c:55:7f:c5:e8:eb: 53:63:eb:73:b8:a9:f8:f5:64:ed:52:46:91:17:1e:84:b1:02: 69:e5:dc:64:51:2b:9f:56:aa:05:b0:e9:5a:cb:01:d5:49:54: 52:a4:a8:54:69:09:89:9e:05:eb:ba:97:dc:c0:7e:f5:d3:7d: c2:75:4e:b6:0c:e5:ed:87:2c:f7:09:d9:e2:fc:95:6a:d4:a3: bc:c7:66:d7:c6:e4:30:7c:c2:d3:af:15:c5:69:48:f0:56:a5: 9e:6f:63:f1:85:3d:ea:2c:51:0a:f7:d3:e8:09:92:43:f0:ca: d0:16:f2:52:41:ee:1d:9d:6f:43:b9:a8:4f:ae:18:29:57:77: 30:7f:41:35:8f:9e:7d:0c:b4:1f:42:aa:47:9c:8d:19:a9:1c: 31:41:d8:94:14:aa:31:e8:9f:df:14:4b:e5:d7:1a:74:f4:96: 6f:0f:35:02:70:4a:61:d5:55:79:54:54:3d:77:39:fa:db:b5: d7:32:37:f5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMoRnW44e4kqzKEoVGR0ifkZPjmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAzMTMyMzQ5MDZaFw0yNTAzMTIyMzU0MDZaMDMxMTAvBgNV BAMTKDYxNEI1RDlCQjYyQTYyRTgwNDM4NTIyNUZENjY5MjQzNDA3NURBRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC15TT3Octh9BsRdqPhMcyJgDvH P/Lc3DuJpOTalHNlpeHFMTJ2XawppHgC2OPehhRp8RammuAF88ywNl5ir+OoUoLv pNLxrQ+5CgI1sY5vDn62KLre2MsuvqC4E8ObcTS6OzXQ/R1/RYDhuJYorGHvCk7G MPylu9HcPFnL3aD4M2ETWCn6K+XjRyji9fLDN4R8YihLe2NuZbKCXrLjKyeMw11y RWmncByzGb8o1zhsl0SoSMEAITWA4nt4K8AE+y//V6ec+DYpi+Zrk8XNoHNMbnNj E0tlZb+rmVy+AOi52PqWv4tl8MGwlw6BT5juUUkcxZwFu7p0rQ/6v7auBrr1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUYUtdm7YqYugEOFIl/WaSQ0B12v0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3Nzc4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wUkxMA0GCSqGSIb3DQEBCwUAA4IBAQAQjF6rSx5dpqCzobJHkecTzhGwBRy2RCtM de56c1YKNxHRW6YoLuPJG0Dn1UqV2KPt/3VvY+D6OEK5826vxbebwtYsVX/F6OtT Y+tzuKn49WTtUkaRFx6EsQJp5dxkUSufVqoFsOlaywHVSVRSpKhUaQmJngXrupfc wH71033CdU62DOXthyz3Cdni/JVq1KO8x2bXxuQwfMLTrxXFaUjwVqWeb2PxhT3q LFEK99PoCZJD8MrQFvJSQe4dnW9DuahPrhgpV3cwf0E1j559DLQfQqpHnI0ZqRwx QdiUFKox6J/fFEvl1xp09JZvDzUCcEph1VV5VFQ9dzn627XXMjf1 -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org