$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209022.roa File: AS209022.roa (raw, json) Hash identifier: CsSoihj7GhRe+M+HTlg0aoJP/xKwEuanq06lMEYd67I= Subject key identifier: A0:0B:A0:B5:2D:99:7F:75:1D:94:C5:C3:BF:21:E7:AE:56:F6:44:BD Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 727882CEB3C1E5B6883886218F689B027CCB5E12 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209022.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 209022 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:174e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Sep 2024 02:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:78:82:ce:b3:c1:e5:b6:88:38:86:21:8f:68:9b:02:7c:cb:5e:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=A00BA0B52D997F751D94C5C3BF21E7AE56F644BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:6d:16:f6:03:f2:96:98:fc:a9:29:a2:ef: 03:08:0f:7f:c5:23:98:1a:6a:6d:79:ad:97:33:0d: 41:00:fd:87:05:53:e9:46:91:03:b9:0c:b6:81:a7: 2c:a2:b3:81:78:18:72:a0:b0:bf:2a:6b:09:a5:05: 64:35:8c:12:57:e6:97:b9:03:d8:ef:43:91:9a:4f: e1:6c:dc:92:6f:dc:7c:43:0f:b7:da:bb:2a:2e:af: 62:7e:4b:4b:07:d7:d6:b0:07:5c:45:81:be:b8:1a: ad:3e:65:16:b1:33:84:27:70:4e:f1:6d:0b:74:f8: de:77:e0:6e:7b:a0:65:e1:ac:14:0d:17:65:56:33: c8:0a:87:17:7a:05:66:6d:36:28:fb:19:03:86:a0: e6:15:b2:e1:17:de:7d:fe:61:32:98:e3:ac:ea:84: 85:61:e1:5e:ea:c0:22:df:68:fe:74:40:b8:bb:bd: cc:d9:f9:fa:0a:eb:56:ff:d8:26:38:dc:27:e7:43: 3f:60:d1:5b:25:9b:df:7b:f2:00:ab:f9:d4:ff:46: da:23:6f:ff:b2:4e:eb:b2:f0:3c:c2:df:77:45:50: d0:3a:f9:df:b8:b6:49:31:86:ac:3f:7d:3b:eb:3d: f5:bb:c1:8c:7b:f6:a5:0d:de:6e:27:68:bd:8c:fb: 7b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0B:A0:B5:2D:99:7F:75:1D:94:C5:C3:BF:21:E7:AE:56:F6:44:BD X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209022.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:174e::/48 Signature Algorithm: sha256WithRSAEncryption 7a:ef:82:a2:fa:4e:1f:9b:bf:5f:f0:e0:6b:00:50:9e:8a:31: 29:40:12:b4:95:38:ff:2a:ce:e2:0e:76:6d:7e:ed:d1:0f:69: 39:0d:1c:0d:18:3e:52:d0:f1:7f:32:c6:29:da:7e:99:93:77: 71:0e:f9:92:33:29:48:b0:67:89:78:5b:e6:03:0c:0f:6a:95: 48:d2:a7:7f:51:33:a0:3c:e5:3c:f1:06:65:88:a4:ca:d1:6f: fc:4c:9f:4b:dd:b4:13:9d:19:00:60:03:f3:b9:c4:c7:4b:9b: 58:24:10:0c:c1:80:59:4a:19:1b:94:bf:7e:fe:93:e1:5d:2a: 35:99:5b:d2:24:44:fe:34:b0:c1:69:68:27:3e:3a:de:ee:5f: 7e:1e:0b:76:e8:5f:b6:a7:f1:56:29:6e:05:c1:7e:af:bb:14: cc:0b:e8:11:80:ca:27:71:b2:e5:ee:c6:bd:54:c5:3c:8a:18: c9:32:14:0b:6c:f6:0c:6e:4c:f3:92:c7:58:d4:4a:21:d6:d6: 3e:c3:8f:e5:d8:d8:80:1e:cf:bd:68:ea:4f:43:73:e3:e5:4c: 78:56:46:7b:4b:33:14:01:a5:f8:40:1c:4e:0a:7d:60:3a:37: be:d8:12:c4:78:57:4a:40:9f:62:ca:e0:84:55:bf:7e:f8:9e: f0:1e:1e:38 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUcniCzrPB5baIOIYhj2ibAnzLXhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKEEwMEJBMEI1MkQ5OTdGNzUxRDk0QzVDM0JGMjFFN0FFNTZGNjQ0QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXG0W9gPylpj8qSmi7wMID3/F I5gaam15rZczDUEA/YcFU+lGkQO5DLaBpyyis4F4GHKgsL8qawmlBWQ1jBJX5pe5 A9jvQ5GaT+Fs3JJv3HxDD7fauyour2J+S0sH19awB1xFgb64Gq0+ZRaxM4QncE7x bQt0+N534G57oGXhrBQNF2VWM8gKhxd6BWZtNij7GQOGoOYVsuEX3n3+YTKY46zq hIVh4V7qwCLfaP50QLi7vczZ+foK61b/2CY43CfnQz9g0Vslm9978gCr+dT/Rtoj b/+yTuuy8DzC33dFUNA6+d+4tkkxhqw/fTvrPfW7wYx79qUN3m4naL2M+3vXAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUoAugtS2Zf3UdlMXDvyHnrlb2RL0wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5MDIyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdOMA0GCSqGSIb3DQEBCwUAA4IBAQB674Ki+k4fm79f8OBrAFCe ijEpQBK0lTj/Ks7iDnZtfu3RD2k5DRwNGD5S0PF/MsYp2n6Zk3dxDvmSMylIsGeJ eFvmAwwPapVI0qd/UTOgPOU88QZliKTK0W/8TJ9L3bQTnRkAYAPzucTHS5tYJBAM wYBZShkblL9+/pPhXSo1mVvSJET+NLDBaWgnPjre7l9+Hgt26F+2p/FWKW4FwX6v uxTMC+gRgMoncbLl7sa9VMU8ihjJMhQLbPYMbkzzksdY1Eoh1tY+w4/l2NiAHs+9 aOpPQ3Pj5Ux4VkZ7SzMUAaX4QBxOCn1gOje+2BLEeFdKQJ9iyuCEVb9++J7wHh44 -----END CERTIFICATE-----Generated at Sat Sep 7 07:42:46 2024 by rpki-client on console-fra.rpki-client.org