$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209018.roa File: AS209018.roa (raw, json) Hash identifier: TURgBofZCKbclHfOdWH2kPYoLRNDxF9sNFLuhMqmj/o= Subject key identifier: E5:BC:6D:3E:81:EC:CE:38:A5:3D:DF:41:39:1C:68:74:6B:76:AE:9A Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 32B656123B748AFCA5A1C8B70C2A87725C986C92 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209018.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 209018 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b6:56:12:3b:74:8a:fc:a5:a1:c8:b7:0c:2a:87:72:5c:98:6c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=E5BC6D3E81ECCE38A53DDF41391C68746B76AE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6a:c8:5f:f6:b9:31:90:0a:ef:d0:3d:82:40: fa:01:32:73:57:66:76:32:d0:30:ba:e5:ef:d9:7f: f3:b1:6d:d8:ab:1b:dc:53:26:70:7f:d6:b3:55:bb: d1:da:71:f6:aa:26:90:47:57:cb:8c:a8:85:3d:a6: 97:eb:1c:cb:d2:ae:cd:78:b8:31:d0:af:23:da:fd: 8e:ed:6c:60:66:4d:d9:af:5d:df:86:93:7c:7c:ee: 88:1d:ad:a2:17:e1:08:70:f3:7f:cd:77:a5:24:9f: 02:b8:d0:68:08:25:aa:bc:9c:27:e1:cf:ce:74:9a: 6e:a8:2e:6b:3c:ff:ed:3b:e9:36:79:f2:ca:93:49: 3c:b5:31:40:53:31:19:c1:97:2e:49:55:22:50:89: 91:de:2a:74:51:dc:3a:dc:66:a6:b9:33:bd:0d:07: 62:35:59:31:68:9e:f1:c4:d5:70:63:73:d6:e7:13: 86:4b:ea:3e:2b:99:6a:2c:5c:cc:77:99:fd:ba:5c: 8b:43:fc:56:c4:7e:11:32:63:fb:5d:06:12:55:0e: de:17:b3:73:2a:b8:4b:a8:c8:55:98:fa:b9:7b:6e: 5b:15:a1:9f:1f:88:9a:32:85:de:e8:6f:8c:e4:e3: a0:1b:de:6b:3b:d8:94:75:da:1b:0b:14:9d:0f:b9: 27:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BC:6D:3E:81:EC:CE:38:A5:3D:DF:41:39:1C:68:74:6B:76:AE:9A X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 27:4e:73:5c:53:cd:68:4c:c2:f2:39:39:ee:86:dd:7f:fd:8e: 47:7f:b1:73:de:16:47:4f:4f:95:a5:d8:ad:5f:47:ab:b0:2d: 38:01:f6:cc:12:7b:09:83:dc:33:80:6a:48:6b:6e:60:a6:cd: 19:f0:8b:44:8a:ec:85:5f:2b:26:03:95:2f:3c:f0:ea:05:1d: d3:e3:f6:7e:d2:73:1a:03:b0:33:a0:3d:7c:57:a3:ea:8a:c3: 93:f4:4f:b5:54:78:6a:d1:26:b5:4a:f0:57:20:2c:1a:c8:b5: d6:1b:58:98:da:41:ed:74:f9:4b:28:5f:a8:3c:52:1d:22:50: af:e2:25:33:d2:f5:23:2e:05:60:8e:18:aa:bb:eb:29:48:c9: f0:ac:5e:ba:9c:1d:5f:8c:02:9a:75:fb:d0:43:44:ec:47:7e: 63:af:74:f8:35:6a:b9:d6:e3:35:a9:08:a3:ee:3d:98:0a:f3: b0:eb:54:bc:e2:d1:95:e7:4c:4c:05:20:e1:18:88:6c:af:38: 12:71:13:2e:e2:3e:fe:fc:4d:b8:75:79:9c:60:ee:17:2b:a5: 22:87:b3:f9:d5:9c:7f:9e:92:06:83:b0:df:bd:5c:76:b9:10: bf:62:09:59:ca:6a:b1:f7:af:2a:11:63:58:11:f2:59:4b:68: a6:3c:f7:b5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMrZWEjt0ivyloci3DCqHclyYbJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEU1QkM2RDNFODFFQ0NFMzhBNTNEREY0MTM5MUM2ODc0NkI3NkFFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyashf9rkxkArv0D2CQPoBMnNX ZnYy0DC65e/Zf/OxbdirG9xTJnB/1rNVu9HacfaqJpBHV8uMqIU9ppfrHMvSrs14 uDHQryPa/Y7tbGBmTdmvXd+Gk3x87ogdraIX4Qhw83/Nd6UknwK40GgIJaq8nCfh z850mm6oLms8/+076TZ58sqTSTy1MUBTMRnBly5JVSJQiZHeKnRR3DrcZqa5M70N B2I1WTFonvHE1XBjc9bnE4ZL6j4rmWosXMx3mf26XItD/FbEfhEyY/tdBhJVDt4X s3MquEuoyFWY+rl7blsVoZ8fiJoyhd7ob4zk46Ab3ms72JR12hsLFJ0PuSeFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5bxtPoHszjilPd9BORxodGt2rpowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5MDE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAnTnNcU81oTMLyOTnuht1//Y5Hf7Fz3hZH T0+VpditX0ersC04AfbMEnsJg9wzgGpIa25gps0Z8ItEiuyFXysmA5UvPPDqBR3T 4/Z+0nMaA7AzoD18V6PqisOT9E+1VHhq0Sa1SvBXICwayLXWG1iY2kHtdPlLKF+o PFIdIlCv4iUz0vUjLgVgjhiqu+spSMnwrF66nB1fjAKadfvQQ0TsR35jr3T4NWq5 1uM1qQij7j2YCvOw61S84tGV50xMBSDhGIhsrzgScRMu4j7+/E24dXmcYO4XK6Ui h7P51Zx/npIGg7DfvVx2uRC/YglZymqx968qEWNYEfJZS2imPPe1 -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:36 2024 by rpki-client on console-fra.rpki-client.org