$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: dVVYM4/895xCbwS0iT7migJ2kVjz1zjxW8ZFheRTJiw= Subject key identifier: 34:7F:2D:9B:D8:A8:FD:63:A6:51:A9:44:70:C3:62:FB:9D:27:4F:D2 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 1D1BF6B1832586ED1E91F87D6ACD44340DE69D81 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa Signing time: Mon 12 Aug 2024 19:29:07 +0000 ROA not before: Mon 12 Aug 2024 19:24:07 +0000 ROA not after: Mon 11 Aug 2025 19:29:07 +0000 asID: 208548 IP address blocks: 2a07:54c0::/32 maxlen: 32 2a07:54c2::/32 maxlen: 40 2a07:54c4:a60::/44 maxlen: 48 2a07:54c4:13f0::/44 maxlen: 44 2a07:54c5::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1b:f6:b1:83:25:86:ed:1e:91:f8:7d:6a:cd:44:34:0d:e6:9d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 12 19:24:07 2024 GMT Not After : Aug 11 19:29:07 2025 GMT Subject: CN=347F2D9BD8A8FD63A651A94470C362FB9D274FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:bc:51:0a:1b:65:54:79:e0:4d:03:63:ef: 99:ac:7b:91:c1:58:6c:2c:53:db:63:58:f3:77:fd: 44:2b:54:46:53:38:3c:77:d1:9a:bd:dc:f0:7b:6a: 34:3e:49:3b:cf:b8:bf:28:e3:3b:bf:fe:3b:a6:bb: 31:71:9d:7c:e1:73:84:4f:f9:30:9f:24:65:6f:e4: ab:26:33:7b:cc:5f:48:61:e7:0d:e1:96:2f:ba:ab: b6:2f:ce:4e:db:9b:03:7c:d9:8c:53:8c:7c:f5:83: ae:1d:16:8e:45:ab:b2:c0:0e:95:72:13:ed:90:d7: 75:48:d6:d5:5b:12:38:03:90:58:d8:3f:25:95:1f: b9:de:3b:89:98:30:e3:4e:41:a5:05:52:10:78:e9: 5b:ca:0a:e3:29:24:21:27:7b:fc:a6:0a:02:bf:6a: 8d:6d:86:d0:e2:cb:69:6b:48:d9:aa:91:8d:dd:45: 9a:3a:9f:bf:04:cc:c7:3f:64:94:2e:9c:5b:49:6f: e2:f3:6c:5e:a9:76:cb:e5:18:4e:3a:9c:72:4f:26: a6:6d:36:ba:1a:f4:56:58:79:30:ec:26:d8:b2:2f: f6:28:64:68:2a:85:5c:f3:06:01:aa:a2:d7:5b:c4: be:14:34:c7:d5:a6:4d:12:f2:fc:51:8a:0a:1d:18: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7F:2D:9B:D8:A8:FD:63:A6:51:A9:44:70:C3:62:FB:9D:27:4F:D2 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0::/32 2a07:54c2::/32 2a07:54c4:a60::/44 2a07:54c4:13f0::/44 2a07:54c5::/32 Signature Algorithm: sha256WithRSAEncryption 52:e2:56:49:eb:47:35:e6:e2:83:6f:51:5f:b4:05:cb:3f:56: 85:da:5b:c8:2f:ae:23:fd:40:69:b5:e6:89:01:e8:de:40:16: ea:f4:c6:68:68:fe:0b:5b:7c:4c:d7:69:6a:13:95:95:4d:ca: 00:6c:47:13:84:5e:ff:12:51:ca:d5:d1:a6:5e:4d:6c:b7:34: d7:97:e3:af:37:28:60:3d:94:74:40:f2:9a:19:36:99:99:4c: ab:4f:9e:69:31:c9:f8:e7:eb:a8:c5:9f:42:aa:e5:4f:8e:b6: 61:53:26:a6:bd:a4:ae:d7:77:49:5d:24:2b:44:a6:45:61:39: 7d:26:5e:40:c2:25:ad:4c:20:40:ca:87:e9:28:5d:a7:c8:33: 76:ea:30:4e:27:16:23:c4:e1:73:23:55:a0:ae:02:56:71:3d: 77:f8:51:10:7a:64:3a:e1:03:c4:db:2a:ef:1d:b6:18:dd:2f: 0a:31:56:98:82:9b:3f:e8:f7:40:b2:8c:3e:03:ca:ef:e0:76: 4b:84:ee:e3:f6:3f:23:22:28:2d:ca:26:bf:9f:5e:29:c8:75: 4d:8e:de:65:39:57:5a:72:04:79:29:ca:15:e1:49:de:47:13: d2:8c:39:c2:3f:6a:9e:fb:06:4a:9a:0e:26:ae:05:4c:8b:42: 60:a5:6b:78 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUHRv2sYMlhu0ekfh9as1ENA3mnYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MTIxOTI0MDdaFw0yNTA4MTExOTI5MDdaMDMxMTAvBgNV BAMTKDM0N0YyRDlCRDhBOEZENjNBNjUxQTk0NDcwQzM2MkZCOUQyNzRGRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAObxRChtlVHngTQNj75mse5HB WGwsU9tjWPN3/UQrVEZTODx30Zq93PB7ajQ+STvPuL8o4zu//jumuzFxnXzhc4RP +TCfJGVv5KsmM3vMX0hh5w3hli+6q7Yvzk7bmwN82YxTjHz1g64dFo5Fq7LADpVy E+2Q13VI1tVbEjgDkFjYPyWVH7neO4mYMONOQaUFUhB46VvKCuMpJCEne/ymCgK/ ao1thtDiy2lrSNmqkY3dRZo6n78EzMc/ZJQunFtJb+LzbF6pdsvlGE46nHJPJqZt Nroa9FZYeTDsJtiyL/YoZGgqhVzzBgGqotdbxL4UNMfVpk0S8vxRigodGCb3AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUNH8tm9io/WOmUalEcMNi+50nT9IwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAtBAIAAjAnAwUAKgdU wAMFACoHVMIDBwQqB1TECmADBwQqB1TEE/ADBQAqB1TFMA0GCSqGSIb3DQEBCwUA A4IBAQBS4lZJ60c15uKDb1FftAXLP1aF2lvIL64j/UBpteaJAejeQBbq9MZoaP4L W3xM12lqE5WVTcoAbEcThF7/ElHK1dGmXk1stzTXl+OvNyhgPZR0QPKaGTaZmUyr T55pMcn45+uoxZ9CquVPjrZhUyamvaSu13dJXSQrRKZFYTl9Jl5AwiWtTCBAyofp KF2nyDN26jBOJxYjxOFzI1WgrgJWcT13+FEQemQ64QPE2yrvHbYY3S8KMVaYgps/ 6PdAsow+A8rv4HZLhO7j9j8jIigtyia/n14pyHVNjt5lOVdacgR5KcoV4UneRxPS jDnCP2qe+wZKmg4mrgVMi0JgpWt4 -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org