$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209806.roa File: AS209806.roa (raw, json) Hash identifier: pSTayPATI0q0FDN4SuZpvda19lcjEo+Yi5teM6RN+uI= Subject key identifier: 96:69:1C:4B:DE:FF:0A:0F:12:FF:38:D8:F8:D0:8B:F2:AF:2C:BB:C0 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2238D047FAA4425D9A3F2CC335B7F5EE9C65C06C Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209806.roa Signing time: Sat 13 Jan 2024 14:46:27 +0000 ROA not before: Sat 13 Jan 2024 14:41:27 +0000 ROA not after: Sat 11 Jan 2025 14:46:27 +0000 asID: 209806 IP address blocks: 2a07:54c4:d100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:38:d0:47:fa:a4:42:5d:9a:3f:2c:c3:35:b7:f5:ee:9c:65:c0:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 13 14:41:27 2024 GMT Not After : Jan 11 14:46:27 2025 GMT Subject: CN=96691C4BDEFF0A0F12FF38D8F8D08BF2AF2CBBC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:60:f2:2d:a7:84:4b:be:1e:ca:bc:22:52:e2: 8d:a2:7f:29:73:25:2b:67:77:19:80:ad:fb:1a:d9: cd:be:89:2c:c6:8b:72:f6:6a:29:f2:5e:0f:92:66: 80:d9:be:1e:2b:cb:5b:18:9a:2c:03:64:ad:3c:8c: 2f:8e:11:b3:0c:76:3e:d6:42:2d:d0:06:bb:ab:d3: 37:48:ac:45:8a:50:a5:99:4c:4c:09:98:7e:8d:fb: 80:fa:3a:70:c1:07:8f:c8:42:50:2f:15:7d:42:c7: 83:d8:c9:03:74:fc:f5:04:c4:b4:26:ac:31:df:27: 81:6f:d1:d2:b8:b7:64:cf:3c:43:a6:6f:6f:04:1a: 56:ec:06:e5:06:21:91:a6:73:69:a0:90:b5:81:52: f3:4d:ae:8a:8f:f8:87:d7:05:e5:7a:cb:72:44:3e: e1:d4:7c:59:eb:01:ac:a0:e4:5b:c7:61:c1:af:4f: 93:bc:30:d3:16:02:88:89:32:41:d0:c6:3e:98:7e: 13:7a:14:02:91:6b:93:32:a1:cf:25:b8:af:6c:a5: de:88:65:ab:7e:ca:76:2f:25:52:ae:eb:d0:4c:6a: 24:a2:7e:e5:d4:8a:41:48:df:26:cb:ff:d4:d7:12: 3f:ea:d0:7e:9b:eb:fa:2e:86:53:03:9c:bd:07:34: 88:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:69:1C:4B:DE:FF:0A:0F:12:FF:38:D8:F8:D0:8B:F2:AF:2C:BB:C0 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209806.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:d100::/40 Signature Algorithm: sha256WithRSAEncryption 02:10:3b:bc:c2:70:09:7c:35:68:5d:be:83:5b:67:a3:44:ea: 5d:42:e7:01:59:c1:a3:a0:2f:6f:87:e2:13:8a:87:b8:cf:43: 60:48:00:e3:b5:9c:e4:fe:ef:0c:f4:9d:eb:2f:43:ed:da:ea: 59:cf:7f:95:92:7e:ad:28:6a:83:2c:3b:24:81:d9:e4:33:ac: 85:f8:bc:7b:31:39:5a:dc:13:fc:87:3b:cf:cc:e4:67:f0:a6: 2a:e9:98:7c:5b:d6:b3:14:60:53:b2:08:96:e4:77:47:81:4c: b0:da:1c:68:7c:b5:fe:22:47:ff:86:19:38:a0:f5:62:ec:c1: 2e:ea:d9:d8:9b:15:b8:8f:51:52:53:ed:c7:f5:da:63:df:70: 58:47:d6:04:57:c6:bc:a6:b5:8b:a7:a4:a3:33:cf:cb:bd:d9: cf:27:51:69:00:44:18:82:a0:98:5f:bf:0e:ef:b1:6a:20:9c: 89:3e:52:99:80:a3:f9:6d:19:95:61:82:fd:18:65:c6:63:16: cd:40:d5:6e:0b:be:6c:06:39:13:16:4d:ca:b7:f8:4a:9e:b7: 57:e0:6c:35:7f:bf:ed:18:6c:bd:3c:01:2a:e7:f1:56:32:9a: 4f:48:de:73:de:c9:73:7c:58:4d:cc:c8:b9:99:ba:2c:d6:c5: 4b:e8:28:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIjjQR/qkQl2aPyzDNbf17pxlwGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAxMTMxNDQxMjdaFw0yNTAxMTExNDQ2MjdaMDMxMTAvBgNV BAMTKDk2NjkxQzRCREVGRjBBMEYxMkZGMzhEOEY4RDA4QkYyQUYyQ0JCQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaYPItp4RLvh7KvCJS4o2ifylz JStndxmArfsa2c2+iSzGi3L2ainyXg+SZoDZvh4ry1sYmiwDZK08jC+OEbMMdj7W Qi3QBrur0zdIrEWKUKWZTEwJmH6N+4D6OnDBB4/IQlAvFX1Cx4PYyQN0/PUExLQm rDHfJ4Fv0dK4t2TPPEOmb28EGlbsBuUGIZGmc2mgkLWBUvNNroqP+IfXBeV6y3JE PuHUfFnrAayg5FvHYcGvT5O8MNMWAoiJMkHQxj6YfhN6FAKRa5Myoc8luK9spd6I Zat+ynYvJVKu69BMaiSifuXUikFI3ybL/9TXEj/q0H6b6/ouhlMDnL0HNIgxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlmkcS97/Cg8S/zjY+NCL8q8su8AwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5ODA2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU xNEwDQYJKoZIhvcNAQELBQADggEBAAIQO7zCcAl8NWhdvoNbZ6NE6l1C5wFZwaOg L2+H4hOKh7jPQ2BIAOO1nOT+7wz0nesvQ+3a6lnPf5WSfq0oaoMsOySB2eQzrIX4 vHsxOVrcE/yHO8/M5GfwpirpmHxb1rMUYFOyCJbkd0eBTLDaHGh8tf4iR/+GGTig 9WLswS7q2dibFbiPUVJT7cf12mPfcFhH1gRXxrymtYunpKMzz8u92c8nUWkARBiC oJhfvw7vsWognIk+UpmAo/ltGZVhgv0YZcZjFs1A1W4LvmwGORMWTcq3+Eqet1fg bDV/v+0YbL08ASrn8VYymk9I3nPeyXN8WE3MyLmZuizWxUvoKMo= -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org