$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209718.roa File: AS209718.roa (raw, json) Hash identifier: dLLVAkWAyroO/m32FTWmao6jwbvt5kBLk8P1vSynOIY= Subject key identifier: 08:67:F6:66:46:EE:A2:B6:CC:5E:FD:89:2D:08:39:C6:16:80:B4:B1 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 106A6945A2C32475094BE63EA192F830CF03B891 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209718.roa Signing time: Tue 19 Sep 2023 02:14:55 +0000 ROA not before: Tue 19 Sep 2023 02:09:55 +0000 ROA not after: Tue 17 Sep 2024 02:14:55 +0000 asID: 209718 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:6a:69:45:a2:c3:24:75:09:4b:e6:3e:a1:92:f8:30:cf:03:b8:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:55 2023 GMT Not After : Sep 17 02:14:55 2024 GMT Subject: CN=0867F66646EEA2B6CC5EFD892D0839C61680B4B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:83:18:46:e8:2f:dd:37:5f:7b:a4:1b:89:bf: a6:6b:9a:1c:5d:bb:4a:4d:63:fe:d5:b4:e4:20:bd: f6:98:2b:69:fe:47:e7:78:17:12:eb:1e:1f:c4:4a: cf:d2:37:4b:d1:eb:29:d5:f7:d3:05:3d:97:32:6c: 78:c4:73:59:bd:3f:7d:f1:84:d9:25:dc:9f:d8:e5: f4:56:60:33:ed:e6:d9:88:8b:ae:30:0b:4a:98:55: 05:87:ce:fa:9d:cc:92:b4:76:5d:9c:33:7f:c5:3f: 1b:c6:6c:e5:41:e6:eb:c1:5c:89:00:0b:3d:68:88: 31:11:be:90:7d:a8:68:aa:59:f2:54:5e:d4:d8:95: 1f:7f:94:09:35:de:76:15:86:c2:81:10:05:d1:9a: 25:ba:2e:f6:10:82:99:0e:c0:f7:d2:f4:40:6e:4d: bd:ba:07:5a:58:66:fd:63:db:d2:d5:b6:3e:61:e5: b0:dc:1b:08:8f:a1:0a:00:1f:ae:fa:06:32:07:d3: 4a:d8:1e:01:45:a6:59:c4:f4:7d:b0:ac:b0:8f:80: 14:93:eb:f7:0c:a1:4e:11:a1:44:a0:c3:38:aa:4d: f8:73:ec:32:d4:6f:08:43:7b:f8:2f:1c:60:eb:45: c1:75:8d:6a:20:10:20:4d:ba:0f:4d:9f:3e:23:1c: f6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:67:F6:66:46:EE:A2:B6:CC:5E:FD:89:2D:08:39:C6:16:80:B4:B1 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209718.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 73:80:47:ad:88:2e:28:33:ee:67:cb:68:22:dc:73:dc:32:32: 53:ee:16:a4:b8:35:db:95:24:48:68:66:44:05:1d:e5:24:2c: 3c:57:1d:09:08:48:5d:7e:fc:38:e1:d1:d3:f3:3f:f4:15:51: 09:81:e5:69:84:30:88:f1:8d:7e:be:11:62:36:1b:15:5c:02: 38:3a:6a:ef:53:f6:91:a6:ca:2f:5d:33:b8:00:7e:33:26:91: 27:5b:3f:b5:61:9f:63:b1:4d:91:6f:c8:c6:e4:3c:aa:4e:34: c3:fd:77:ba:4c:47:0b:3b:e8:64:3a:fc:66:6b:92:d8:67:12: 2d:28:bd:0f:95:0c:13:49:60:f1:e1:b2:1d:a4:ca:10:8a:f8: 2e:cc:c9:48:00:93:1e:83:08:b6:3f:fb:7c:9d:70:6a:92:8d: 86:26:67:f7:40:80:12:2f:5a:1f:f1:8c:13:09:bc:8a:42:4f: ec:8b:fe:1a:63:6f:49:d4:53:ae:e7:a9:1c:54:1a:3a:86:62: 6c:7f:f8:34:ba:20:68:7c:8e:be:2f:f4:5b:b9:45:a1:c1:c1: 23:18:a5:24:57:f4:95:02:49:f2:e6:88:73:c7:48:57:47:ae: 9f:27:07:d2:be:ea:4e:87:ab:29:a7:65:26:99:2c:5d:c1:0f: 1c:19:28:66 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEGppRaLDJHUJS+Y+oZL4MM8DuJEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTVaFw0yNDA5MTcwMjE0NTVaMDMxMTAvBgNV BAMTKDA4NjdGNjY2NDZFRUEyQjZDQzVFRkQ4OTJEMDgzOUM2MTY4MEI0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5gxhG6C/dN197pBuJv6Zrmhxd u0pNY/7VtOQgvfaYK2n+R+d4FxLrHh/ESs/SN0vR6ynV99MFPZcybHjEc1m9P33x hNkl3J/Y5fRWYDPt5tmIi64wC0qYVQWHzvqdzJK0dl2cM3/FPxvGbOVB5uvBXIkA Cz1oiDERvpB9qGiqWfJUXtTYlR9/lAk13nYVhsKBEAXRmiW6LvYQgpkOwPfS9EBu Tb26B1pYZv1j29LVtj5h5bDcGwiPoQoAH676BjIH00rYHgFFplnE9H2wrLCPgBST 6/cMoU4RoUSgwziqTfhz7DLUbwhDe/gvHGDrRcF1jWogECBNug9Nnz4jHPYDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCGf2ZkbuorbMXv2JLQg5xhaAtLEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5NzE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBzgEetiC4oM+5ny2gi3HPcMjJT7hakuDXb lSRIaGZEBR3lJCw8Vx0JCEhdfvw44dHT8z/0FVEJgeVphDCI8Y1+vhFiNhsVXAI4 OmrvU/aRpsovXTO4AH4zJpEnWz+1YZ9jsU2Rb8jG5DyqTjTD/Xe6TEcLO+hkOvxm a5LYZxItKL0PlQwTSWDx4bIdpMoQivguzMlIAJMegwi2P/t8nXBqko2GJmf3QIAS L1of8YwTCbyKQk/si/4aY29J1FOu56kcVBo6hmJsf/g0uiBofI6+L/RbuUWhwcEj GKUkV/SVAkny5ohzx0hXR66fJwfSvupOh6spp2UmmSxdwQ8cGShm -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:08 2024 by rpki-client on console-ams.rpki-client.org