$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa File: AS209263.roa (raw, json) Hash identifier: LgxVaUDrJoLNeyTGBzgGykFbeZ9w+Uas3jqzkytFpBw= Subject key identifier: C2:43:34:1B:68:99:EA:A6:2C:87:BC:35:4E:29:91:97:B7:47:03:3C Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 33C72A463117104F9B5A22F226567F6821103F20 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa Signing time: Tue 20 Aug 2024 02:31:54 +0000 ROA not before: Tue 20 Aug 2024 02:26:54 +0000 ROA not after: Tue 19 Aug 2025 02:31:54 +0000 asID: 209263 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c7:2a:46:31:17:10:4f:9b:5a:22:f2:26:56:7f:68:21:10:3f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:54 2024 GMT Not After : Aug 19 02:31:54 2025 GMT Subject: CN=C243341B6899EAA62C87BC354E299197B747033C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ba:4d:88:6f:7e:5e:3b:1e:b5:e9:ee:08:d7: 35:b0:26:6e:ad:2e:46:c3:e7:f7:21:fe:c6:8a:ac: c9:4e:ad:58:10:68:8f:f5:27:4e:6d:fe:d3:f9:45: 93:9b:c0:6b:92:ba:f6:9f:76:3f:5d:98:34:c8:38: 60:d2:b3:a8:f2:25:0c:6a:7c:15:f4:ff:47:a3:00: ae:ab:70:5d:7b:f1:8e:7d:f0:dc:e3:9c:75:1d:f7: 17:f7:99:7d:7f:f9:29:b9:96:16:ee:57:25:62:32: ec:69:ec:32:f0:2c:53:f1:1b:1e:65:c6:f2:ce:c6: cd:4a:a3:9e:0b:3a:9c:ed:b8:b0:93:1a:7a:03:5e: 2f:fd:69:97:5b:ef:8f:d2:3a:a6:52:bc:d0:78:5f: a8:0f:0d:18:ae:e6:e0:b1:6a:7d:33:6d:ae:b4:b1: 4b:25:a5:3b:69:b5:6b:8e:09:98:bb:98:70:84:02: 8c:a5:df:f1:09:06:08:e4:42:7e:eb:98:09:69:25: b3:e7:a5:f6:91:52:0a:e7:86:70:b7:2a:75:70:8d: 60:b4:81:a7:2f:9a:d2:d2:98:34:ae:03:48:44:6c: f2:8a:5f:1d:7f:24:42:df:a0:97:34:71:10:4f:76: 9e:51:64:8d:e4:a3:bb:1a:24:21:88:9a:a5:28:d5: cb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:43:34:1B:68:99:EA:A6:2C:87:BC:35:4E:29:91:97:B7:47:03:3C X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption b7:02:d2:c9:d9:08:ca:45:04:fb:7e:ce:eb:23:72:7f:07:fa: 83:f0:c4:79:05:63:87:9b:b7:c9:a3:d9:6e:3f:82:64:a3:af: 3a:a4:eb:83:f9:4d:49:57:9c:56:07:fd:84:1a:44:c9:25:ef: ba:7b:3b:cb:04:00:21:c3:5d:e6:e5:2d:4c:d0:8d:fb:41:e8: 0c:43:4b:f9:b6:fc:9e:c5:3d:05:f1:12:c0:88:d8:0d:2c:52: d0:85:8f:33:67:29:8b:6d:e4:d2:93:a0:8d:26:3e:57:1b:7d: 10:7c:f5:09:a2:8c:1d:71:b9:f2:8a:59:f1:ae:0a:c9:6a:7a: 8f:12:b9:59:a2:0b:73:ff:0c:1e:83:eb:b7:3b:c6:24:a9:bd: 72:e2:64:61:62:61:a2:71:de:9c:12:e2:d6:ab:9c:ac:a3:4c: eb:74:da:92:c6:cc:ca:eb:48:b2:df:ca:c3:b3:0c:bd:46:5e: 1d:22:2b:8c:3e:5f:b7:00:6a:c8:17:98:08:af:96:d7:32:d5: d4:7c:1b:68:c3:25:95:f7:c2:d4:4e:d2:b6:5a:ed:ac:33:58: 6f:57:02:e3:c8:fe:89:ea:13:dd:09:b1:99:bd:83:2e:e0:2b: 88:ea:20:a7:b5:54:3b:e7:37:55:d6:f9:a6:e4:62:de:b6:82: 31:72:12:4d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUM8cqRjEXEE+bWiLyJlZ/aCEQPyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTRaFw0yNTA4MTkwMjMxNTRaMDMxMTAvBgNV BAMTKEMyNDMzNDFCNjg5OUVBQTYyQzg3QkMzNTRFMjk5MTk3Qjc0NzAzM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7uk2Ib35eOx616e4I1zWwJm6t LkbD5/ch/saKrMlOrVgQaI/1J05t/tP5RZObwGuSuvafdj9dmDTIOGDSs6jyJQxq fBX0/0ejAK6rcF178Y598NzjnHUd9xf3mX1/+Sm5lhbuVyViMuxp7DLwLFPxGx5l xvLOxs1Ko54LOpztuLCTGnoDXi/9aZdb74/SOqZSvNB4X6gPDRiu5uCxan0zba60 sUslpTtptWuOCZi7mHCEAoyl3/EJBgjkQn7rmAlpJbPnpfaRUgrnhnC3KnVwjWC0 gacvmtLSmDSuA0hEbPKKXx1/JELfoJc0cRBPdp5RZI3ko7saJCGImqUo1ctFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwkM0G2iZ6qYsh7w1TimRl7dHAzwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5MjYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQC3AtLJ2QjKRQT7fs7rI3J/B/qD8MR5BWOH m7fJo9luP4Jko686pOuD+U1JV5xWB/2EGkTJJe+6ezvLBAAhw13m5S1M0I37QegM Q0v5tvyexT0F8RLAiNgNLFLQhY8zZymLbeTSk6CNJj5XG30QfPUJoowdcbnyilnx rgrJanqPErlZogtz/wweg+u3O8Ykqb1y4mRhYmGicd6cEuLWq5yso0zrdNqSxszK 60iy38rDswy9Rl4dIiuMPl+3AGrIF5gIr5bXMtXUfBtowyWV98LUTtK2Wu2sM1hv VwLjyP6J6hPdCbGZvYMu4CuI6iCntVQ75zdV1vmm5GLetoIxchJN -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org