$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208453.roa File: AS208453.roa (raw, json) Hash identifier: Di3cKCtrxi6UvyDu3KhYCRWvCbZj4yVK1JyGtnCWtx0= Subject key identifier: D2:39:99:07:5A:0E:62:22:90:D1:37:F6:1C:43:22:AB:09:6C:3E:2A Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 26E838AF59DCE1A5B57ED3177D1B90E5750FC8EF Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208453.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 208453 IP address blocks: 2a07:54c4:1761::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e8:38:af:59:dc:e1:a5:b5:7e:d3:17:7d:1b:90:e5:75:0f:c8:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=D23999075A0E622290D137F61C4322AB096C3E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:26:da:b7:84:c4:9b:9d:ca:62:21:12:b0: e3:f1:92:30:cb:52:01:c9:80:96:40:cc:c5:d1:e6: 33:c1:b8:14:86:c6:92:3b:1d:a4:3c:25:36:4b:c7: a3:75:97:68:c8:bf:28:6a:d2:f3:a2:50:e3:25:0a: 82:21:66:10:96:83:bc:a9:af:ac:b8:c9:e6:ab:e0: 55:88:11:60:ac:02:94:e5:41:01:d2:4b:b1:77:8f: be:1d:6f:ca:cf:0e:25:37:a7:1f:f8:1e:3c:40:c8: d7:c7:30:7c:a2:ec:d1:1a:39:56:31:30:9d:b5:9c: 30:23:56:fc:76:21:df:3f:32:bf:36:61:dc:71:a1: 08:6d:48:66:3c:58:6d:0b:07:81:06:c6:26:b1:84: fe:b6:17:1a:66:63:ca:87:0d:a7:7d:08:ae:00:ab: 2c:0c:f7:50:8b:b0:32:4a:6b:b7:fe:6a:e1:91:d5: ca:18:73:ab:d8:60:67:18:5b:8b:91:a8:db:e9:84: 23:ef:7d:50:e0:ec:e2:45:9e:a9:40:b6:bf:aa:82: 08:d3:39:43:61:f4:47:1d:96:92:22:87:3f:9d:f1: 38:61:0e:2d:0d:4b:dd:5f:16:bf:39:33:51:c5:9e: 83:dd:24:1d:19:70:ba:a3:76:05:f7:ae:65:0d:a2: ff:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:39:99:07:5A:0E:62:22:90:D1:37:F6:1C:43:22:AB:09:6C:3E:2A X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1761::/48 Signature Algorithm: sha256WithRSAEncryption 5d:9b:34:e5:55:0f:7c:00:92:32:46:c2:37:d2:e2:fe:67:8f: 20:aa:03:8d:b1:50:fc:03:d4:f7:76:89:40:15:a8:f8:ce:9e: a2:07:80:c9:dd:48:80:2a:07:8a:e6:f4:59:e4:cc:0b:03:d2: 72:af:08:2b:7f:5a:9e:c1:91:c5:a7:fb:19:9c:20:bf:6e:34: 96:f9:d4:ee:2e:f7:24:ec:00:eb:1f:51:49:96:38:a5:46:fc: 9b:f5:65:99:17:05:da:55:b7:5d:88:1c:1f:aa:c0:b3:30:27: 6a:87:07:f2:25:b9:a4:17:1d:58:9b:93:cf:a6:f9:00:22:77: 18:e9:a9:2f:b3:b2:fc:42:b9:85:19:97:9f:4b:77:bc:5f:4c: ab:1e:4d:3f:57:b7:87:72:e3:38:9d:7d:6b:e8:a6:6e:99:67: 12:22:ab:a5:6b:1a:40:78:31:2d:04:20:a1:95:a6:81:96:da: e7:e6:bc:36:4f:f9:7f:55:cd:f4:d7:e2:b3:f1:c3:be:a7:97: 4e:f8:11:70:41:ac:0c:59:9a:d5:b6:f3:f5:a5:52:2d:93:db: 9e:5c:97:f4:d8:ae:9b:08:59:d9:61:23:4c:ed:97:31:9f:db: 84:0e:ad:8a:31:15:42:4f:2f:7c:c1:0e:99:1e:8b:c7:9c:71: 05:a8:b7:e8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJug4r1nc4aW1ftMXfRuQ5XUPyO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKEQyMzk5OTA3NUEwRTYyMjI5MEQxMzdGNjFDNDMyMkFCMDk2QzNFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkiSbat4TEm53KYiESsOPxkjDL UgHJgJZAzMXR5jPBuBSGxpI7HaQ8JTZLx6N1l2jIvyhq0vOiUOMlCoIhZhCWg7yp r6y4year4FWIEWCsApTlQQHSS7F3j74db8rPDiU3px/4HjxAyNfHMHyi7NEaOVYx MJ21nDAjVvx2Id8/Mr82YdxxoQhtSGY8WG0LB4EGxiaxhP62FxpmY8qHDad9CK4A qywM91CLsDJKa7f+auGR1coYc6vYYGcYW4uRqNvphCPvfVDg7OJFnqlAtr+qggjT OUNh9EcdlpIihz+d8ThhDi0NS91fFr85M1HFnoPdJB0ZcLqjdgX3rmUNov9jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0jmZB1oOYiKQ0Tf2HEMiqwlsPiowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA4NDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdhMA0GCSqGSIb3DQEBCwUAA4IBAQBdmzTlVQ98AJIyRsI30uL+Z48gqgONsVD8 A9T3dolAFaj4zp6iB4DJ3UiAKgeK5vRZ5MwLA9Jyrwgrf1qewZHFp/sZnCC/bjSW +dTuLvck7ADrH1FJljilRvyb9WWZFwXaVbddiBwfqsCzMCdqhwfyJbmkFx1Ym5PP pvkAIncY6akvs7L8QrmFGZefS3e8X0yrHk0/V7eHcuM4nX1r6KZumWcSIqulaxpA eDEtBCChlaaBltrn5rw2T/l/Vc301+Kz8cO+p5dO+BFwQawMWZrVtvP1pVItk9ue XJf02K6bCFnZYSNM7Zcxn9uEDq2KMRVCTy98wQ6ZHovHnHEFqLfo -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org