$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa File: AS209263.roa (raw, json) Hash identifier: 1aXPcl/1axA4fpJ+3JdqB7cSg0vlOMURnYLrmh1Pf4o= Subject key identifier: F5:78:25:E3:E4:3A:F1:DD:3A:E4:7C:DC:C4:24:91:81:86:7D:B9:16 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 19AC4A2F49363ECF6C42DEFE56DC1E6306CDFE51 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa Signing time: Tue 19 Sep 2023 02:14:58 +0000 ROA not before: Tue 19 Sep 2023 02:09:58 +0000 ROA not after: Tue 17 Sep 2024 02:14:58 +0000 asID: 209263 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ac:4a:2f:49:36:3e:cf:6c:42:de:fe:56:dc:1e:63:06:cd:fe:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:58 2023 GMT Not After : Sep 17 02:14:58 2024 GMT Subject: CN=F57825E3E43AF1DD3AE47CDCC4249181867DB916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9b:66:60:4f:da:84:4f:bb:f3:c2:d6:d6:95: 7d:3a:91:57:12:85:32:6c:84:59:87:f1:1b:b1:b8: 7d:a4:fe:68:73:f0:b3:29:7a:74:84:d8:66:57:a5: d9:ab:5f:38:c0:8b:74:09:95:7d:5a:f3:76:8a:d1: 68:c1:63:fd:5a:e9:c5:7b:74:df:01:21:42:20:73: 7c:7d:fa:70:98:4a:df:b6:53:93:90:54:b8:11:06: db:47:be:fa:24:a6:a9:b7:41:ee:70:36:ae:e5:1d: 9e:46:cb:d6:be:44:c3:5a:ea:d8:89:79:2f:1a:63: 82:ec:ca:64:a8:09:ae:d4:4a:aa:8d:83:d7:c4:82: 40:7b:c1:97:f5:04:39:1d:95:c7:95:01:3d:e3:04: 09:87:45:1c:66:81:b9:7b:c1:47:84:27:e3:4b:75: a4:85:94:72:b1:ba:87:b2:2f:0d:33:c7:9d:a1:5c: 71:50:5e:68:71:41:29:46:bc:3d:9b:00:cd:c0:29: 06:6f:02:d6:fb:07:b7:33:74:d6:c9:e8:05:f2:e1: 5f:b7:7f:6b:c7:17:9a:e1:10:d3:c0:0a:ad:44:84: e1:ac:28:55:a1:5d:ad:79:4e:43:b8:6f:9d:a7:cd: 61:d3:50:15:be:b1:43:40:96:a2:03:46:23:74:ae: e3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:25:E3:E4:3A:F1:DD:3A:E4:7C:DC:C4:24:91:81:86:7D:B9:16 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 5b:19:a2:57:3f:6a:d0:52:35:22:f7:7e:45:9b:24:a7:64:ec: 9f:62:fc:72:f0:d2:2f:2a:f8:94:5f:ae:46:08:29:94:19:9c: f8:8b:fa:b0:26:65:22:38:ca:90:1e:ba:63:cf:da:e8:b3:e3: 9e:49:3b:2f:74:86:b5:3e:32:fc:4a:a8:d8:00:6d:ce:21:46: f7:6d:3b:81:73:d5:c0:e7:ac:eb:26:79:50:f8:38:90:f6:fe: 9b:92:42:8d:1f:2f:50:83:81:b0:07:4f:8c:e7:e6:19:42:bf: 37:43:8f:2b:fb:28:7a:ab:84:fa:91:7a:05:77:9b:e8:b3:b8: 1d:1c:91:31:2d:e5:60:8c:33:21:f2:34:c6:07:1b:db:ed:7f: 4d:e7:a2:fc:12:51:a3:b9:df:f9:88:d3:da:4d:5d:3e:2f:c4: f5:97:cb:50:02:68:a3:0b:ad:96:f0:3d:7e:37:23:4c:43:eb: 63:e5:2c:d3:54:c7:3d:b8:c1:7c:9c:d9:d5:46:12:90:f4:9b: d4:c5:bb:a2:13:7b:76:9b:94:e6:7c:df:ce:bc:1c:1b:a9:95: e1:f9:51:ad:1d:61:9e:b8:50:b4:a4:2d:7f:b4:37:97:2b:04: 0d:ca:79:9d:26:7e:dd:0b:db:a5:f9:fc:8a:2c:e5:c6:15:8b: de:ef:2d:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGaxKL0k2Ps9sQt7+VtweYwbN/lEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NThaFw0yNDA5MTcwMjE0NThaMDMxMTAvBgNV BAMTKEY1NzgyNUUzRTQzQUYxREQzQUU0N0NEQ0M0MjQ5MTgxODY3REI5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpm2ZgT9qET7vzwtbWlX06kVcS hTJshFmH8RuxuH2k/mhz8LMpenSE2GZXpdmrXzjAi3QJlX1a83aK0WjBY/1a6cV7 dN8BIUIgc3x9+nCYSt+2U5OQVLgRBttHvvokpqm3Qe5wNq7lHZ5Gy9a+RMNa6tiJ eS8aY4LsymSoCa7USqqNg9fEgkB7wZf1BDkdlceVAT3jBAmHRRxmgbl7wUeEJ+NL daSFlHKxuoeyLw0zx52hXHFQXmhxQSlGvD2bAM3AKQZvAtb7B7czdNbJ6AXy4V+3 f2vHF5rhENPACq1EhOGsKFWhXa15TkO4b52nzWHTUBW+sUNAlqIDRiN0ruO/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9Xgl4+Q68d065HzcxCSRgYZ9uRYwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5MjYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBbGaJXP2rQUjUi935FmySnZOyfYvxy8NIv KviUX65GCCmUGZz4i/qwJmUiOMqQHrpjz9ros+OeSTsvdIa1PjL8SqjYAG3OIUb3 bTuBc9XA56zrJnlQ+DiQ9v6bkkKNHy9Qg4GwB0+M5+YZQr83Q48r+yh6q4T6kXoF d5vos7gdHJExLeVgjDMh8jTGBxvb7X9N56L8ElGjud/5iNPaTV0+L8T1l8tQAmij C62W8D1+NyNMQ+tj5SzTVMc9uMF8nNnVRhKQ9JvUxbuiE3t2m5TmfN/OvBwbqZXh +VGtHWGeuFC0pC1/tDeXKwQNynmdJn7dC9ul+fyKLOXGFYve7y2m -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org