$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: RYkT9oxe6ozFnPcf9qv9NhGTFR0dBie+o/5otjHde3c= Subject key identifier: D1:6E:30:A4:46:40:7D:0D:F2:8B:1E:4F:2F:88:FE:A6:7D:0D:85:8E Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 5DF26CDBC731DB446237FF67189B432CDCA48986 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa Signing time: Sat 30 Dec 2023 06:02:18 +0000 ROA not before: Sat 30 Dec 2023 05:57:18 +0000 ROA not after: Sat 28 Dec 2024 06:02:18 +0000 asID: 208548 IP address blocks: 2a07:54c2::/32 maxlen: 40 2a07:54c2:1000::/36 maxlen: 40 2a07:54c2:2000::/36 maxlen: 36 2a07:54c2:3000::/36 maxlen: 36 2a07:54c2:4000::/36 maxlen: 36 2a07:54c2:5000::/36 maxlen: 36 2a07:54c2:6000::/36 maxlen: 36 2a07:54c2:7000::/36 maxlen: 36 2a07:54c2:8000::/36 maxlen: 36 2a07:54c2:9000::/36 maxlen: 36 2a07:54c2:a000::/36 maxlen: 36 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c2:c000::/36 maxlen: 36 2a07:54c2:d000::/36 maxlen: 36 2a07:54c2:e000::/36 maxlen: 36 2a07:54c2:f000::/36 maxlen: 36 2a07:54c4:a60::/44 maxlen: 48 2a07:54c4:cc0::/44 maxlen: 44 2a07:54c4:13f0::/44 maxlen: 44 2a07:54c4:1890::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 May 2024 04:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:f2:6c:db:c7:31:db:44:62:37:ff:67:18:9b:43:2c:dc:a4:89:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 30 05:57:18 2023 GMT Not After : Dec 28 06:02:18 2024 GMT Subject: CN=D16E30A446407D0DF28B1E4F2F88FEA67D0D858E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c5:f2:39:2a:38:a4:d3:93:92:47:c4:c4:21: 3f:5c:6b:76:9e:03:83:34:db:72:f9:65:9f:e4:e6: 96:57:40:be:58:ee:48:20:11:4d:cc:b8:5f:54:c9: 2b:74:7c:8c:43:f9:e8:c4:4b:21:8f:03:cc:f6:3a: 52:0d:0b:4a:f1:83:ca:30:67:be:01:a3:08:c9:fa: dd:06:1b:c9:3c:a3:6d:45:e0:b2:fa:48:15:88:5b: 8a:70:9b:40:af:84:2d:41:06:97:64:4d:96:2a:25: bf:56:5c:1a:ea:66:9d:06:ff:91:90:e2:6e:5c:02: c4:b6:c4:58:47:dd:45:54:d9:e1:44:c0:b4:55:9c: dc:82:65:e8:22:ca:00:6b:3a:8b:36:af:86:94:ba: 1e:c6:c9:d5:26:4d:f3:4b:29:2e:09:3e:ea:5f:cf: ab:ec:f8:29:19:7e:06:39:89:dd:7c:36:85:44:40: 24:40:07:74:1f:46:ff:18:95:d0:e6:70:b1:a6:ed: f1:88:28:ca:f1:94:e4:a9:01:b9:54:76:f7:19:da: 7a:14:1f:1c:9b:c5:b1:47:31:e5:5d:dc:c2:bf:04: 9a:bb:6e:75:f6:27:d9:de:ce:37:0b:3f:a7:7d:05: db:02:77:d2:cd:00:53:a2:1c:5a:87:39:f1:0c:b6: 44:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6E:30:A4:46:40:7D:0D:F2:8B:1E:4F:2F:88:FE:A6:7D:0D:85:8E X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2::/32 2a07:54c4:a60::/44 2a07:54c4:cc0::/44 2a07:54c4:13f0::/44 2a07:54c4:1890::/44 Signature Algorithm: sha256WithRSAEncryption 4d:e4:45:65:e1:e8:3f:41:8b:90:e6:63:d4:fa:ce:ab:01:f3: bb:47:fd:10:5e:b3:ac:45:81:97:d0:93:f6:24:66:d9:c6:70: 6d:3a:ef:6e:21:f0:b4:6d:b0:4c:51:7c:1f:93:9f:bb:2b:8e: 36:17:a3:ca:61:fb:56:52:49:db:6e:2a:e2:30:f5:9b:2a:d9: 7a:07:b4:ea:2b:b6:ec:56:cd:5f:0c:e6:b2:ac:57:9d:e8:37: 4a:d6:38:f7:24:64:48:74:01:d5:d6:2a:8b:00:6d:c4:04:08: f1:fc:69:d3:af:c5:ef:05:40:ea:60:3f:e1:dd:89:0c:8f:80: 61:de:bf:79:55:58:e2:75:9b:aa:55:1b:a9:a6:5f:06:a8:31: e0:ca:e3:3c:4f:39:3b:e7:d6:86:37:f8:61:7f:97:82:db:1a: 0c:12:11:7b:7a:67:13:bb:52:61:a0:c4:56:b6:fb:d7:1f:9a: b8:c8:d9:c5:3c:f8:57:91:52:27:fc:f2:92:aa:78:5a:c3:77: 8b:d9:7a:be:2a:f8:c1:d1:ca:ef:0f:bd:6b:de:ac:f0:6f:00: 47:0f:7f:7d:3f:62:bd:44:16:ef:05:3f:1a:3e:84:36:d8:25: 94:64:7b:7d:8e:ff:fc:6c:eb:7e:c7:cb:08:53:02:3b:95:6f: 83:a7:ef:50 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIUXfJs28cx20RiN/9nGJtDLNykiYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzEyMzAwNTU3MThaFw0yNDEyMjgwNjAyMThaMDMxMTAvBgNV BAMTKEQxNkUzMEE0NDY0MDdEMERGMjhCMUU0RjJGODhGRUE2N0QwRDg1OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwxfI5Kjik05OSR8TEIT9ca3ae A4M023L5ZZ/k5pZXQL5Y7kggEU3MuF9UySt0fIxD+ejESyGPA8z2OlINC0rxg8ow Z74BowjJ+t0GG8k8o21F4LL6SBWIW4pwm0CvhC1BBpdkTZYqJb9WXBrqZp0G/5GQ 4m5cAsS2xFhH3UVU2eFEwLRVnNyCZegiygBrOos2r4aUuh7GydUmTfNLKS4JPupf z6vs+CkZfgY5id18NoVEQCRAB3QfRv8YldDmcLGm7fGIKMrxlOSpAblUdvcZ2noU HxybxbFHMeVd3MK/BJq7bnX2J9nezjcLP6d9BdsCd9LNAFOiHFqHOfEMtkQnAgMB AAGjggJfMIICWzAdBgNVHQ4EFgQU0W4wpEZAfQ3yix5PL4j+pn0NhY4wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAxBAIAAjArAwUAKgdU wgMHBCoHVMQKYAMHBCoHVMQMwAMHBCoHVMQT8AMHBCoHVMQYkDANBgkqhkiG9w0B AQsFAAOCAQEATeRFZeHoP0GLkOZj1PrOqwHzu0f9EF6zrEWBl9CT9iRm2cZwbTrv biHwtG2wTFF8H5OfuyuONhejymH7VlJJ224q4jD1myrZege06iu27FbNXwzmsqxX neg3StY49yRkSHQB1dYqiwBtxAQI8fxp06/F7wVA6mA/4d2JDI+AYd6/eVVY4nWb qlUbqaZfBqgx4MrjPE85O+fWhjf4YX+XgtsaDBIRe3pnE7tSYaDEVrb71x+auMjZ xTz4V5FSJ/zykqp4WsN3i9l6vir4wdHK7w+9a96s8G8ARw9/fT9ivUQW7wU/Gj6E NtgllGR7fY7//GzrfsfLCFMCO5Vvg6fvUA== -----END CERTIFICATE-----Generated at Sun May 19 13:18:32 2024 by rpki-client on console-fra.rpki-client.org