$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209861.roa File: AS209861.roa (raw, json) Hash identifier: WtLBMufcAjMRv32pw5tzfszy5BpBMNdXRatOo/BBSVg= Subject key identifier: 3C:49:95:0C:B5:43:94:88:4E:77:A3:39:2F:38:A6:F8:36:5F:9A:FC Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 343E6EA994E9AE42D00673F9F9B43D04338AF283 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209861.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 209861 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 13:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:3e:6e:a9:94:e9:ae:42:d0:06:73:f9:f9:b4:3d:04:33:8a:f2:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=3C49950CB54394884E77A3392F38A6F8365F9AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:49:35:54:33:56:bc:97:9c:59:28:ca:49:1e: a8:f9:b6:cb:e2:11:bb:f2:58:da:f6:50:35:f4:02: 76:0d:6f:42:f8:69:ee:0a:6b:5f:0f:d1:80:04:dc: 57:ca:f9:f8:c2:9e:bc:2a:6f:9a:b8:d3:89:a7:88: 41:42:37:0e:6e:80:6b:03:4e:ac:7b:c9:cc:de:b8: 88:86:0b:e6:55:1a:1e:29:6c:22:bd:0d:15:d3:37: bb:23:c8:64:4e:df:61:9b:a2:79:be:4b:3e:85:9f: cf:bd:49:21:1c:74:fb:09:3f:c7:bd:03:c2:c0:e2: c1:df:b7:41:b6:fa:c6:08:46:65:9a:55:1c:c1:a6: 0b:29:2f:a0:cb:68:05:31:6d:2c:5e:91:85:9f:de: 48:fa:ad:d3:b3:ff:c7:8b:af:ba:69:ef:50:74:5e: b4:b9:05:87:16:4b:58:69:f4:56:6c:93:9c:be:e8: 68:97:3d:25:76:bc:9c:f2:9d:23:28:52:ed:f7:92: 5a:4a:d8:08:ab:17:32:02:56:1e:4a:b2:96:a7:56: 7b:29:3c:89:71:06:51:e2:5a:06:9f:4c:59:fa:1b: b3:fd:6b:d3:6c:6d:92:76:00:7f:00:e0:df:1f:35: 96:33:23:3e:f5:dd:02:78:cb:c9:b4:04:31:b6:9d: 8a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:49:95:0C:B5:43:94:88:4E:77:A3:39:2F:38:A6:F8:36:5F:9A:FC X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209861.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 17:09:0a:9e:12:92:a8:ae:f2:d4:01:07:c8:b6:fd:8d:12:e8: 9b:7d:8c:6f:36:85:91:a3:c3:17:6d:d4:2b:c5:6f:f9:48:35: a1:a3:83:96:84:39:96:d9:bb:fa:b8:0c:68:b2:a2:67:6f:ea: 27:57:c7:d4:47:3a:72:ef:f9:c4:86:5d:37:46:2b:17:5d:6c: 52:26:56:81:d4:5c:67:0b:01:f5:be:20:4c:52:6e:fa:4c:cd: ef:c9:96:9d:c6:5a:ee:19:df:0c:30:62:6a:28:d3:c9:9a:c2: 07:90:ba:d6:8a:f6:a7:bd:10:79:30:85:46:af:11:28:ec:19: 12:d1:1f:39:c1:ed:b0:21:39:5b:39:24:13:07:80:8e:8e:5b: 7e:1f:49:65:d0:bf:9b:ec:28:4b:9b:71:a5:21:ea:45:c6:fc: b4:5f:b4:74:b7:ab:a8:a2:f2:73:ff:c0:ae:ae:89:05:a5:cf: 2f:bc:1d:83:89:d7:95:ba:ca:17:9e:02:7c:ff:78:04:8b:93: 50:40:a3:e8:87:fa:01:bd:d9:85:65:cc:c4:ab:3e:07:20:ad: a6:64:4f:1a:81:78:44:27:7b:02:36:dc:e5:9d:4a:34:4b:30: 4b:33:97:cc:44:0f:f0:83:33:6c:61:b9:27:39:f2:6c:c0:99: 44:89:8c:d8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUND5uqZTprkLQBnP5+bQ9BDOK8oMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKDNDNDk5NTBDQjU0Mzk0ODg0RTc3QTMzOTJGMzhBNkY4MzY1RjlBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeSTVUM1a8l5xZKMpJHqj5tsvi EbvyWNr2UDX0AnYNb0L4ae4Ka18P0YAE3FfK+fjCnrwqb5q404mniEFCNw5ugGsD Tqx7yczeuIiGC+ZVGh4pbCK9DRXTN7sjyGRO32Gbonm+Sz6Fn8+9SSEcdPsJP8e9 A8LA4sHft0G2+sYIRmWaVRzBpgspL6DLaAUxbSxekYWf3kj6rdOz/8eLr7pp71B0 XrS5BYcWS1hp9FZsk5y+6GiXPSV2vJzynSMoUu33klpK2AirFzICVh5KspanVnsp PIlxBlHiWgafTFn6G7P9a9NsbZJ2AH8A4N8fNZYzIz713QJ4y8m0BDG2nYqvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPEmVDLVDlIhOd6M5Lzim+DZfmvwwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5ODYxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAXCQqeEpKorvLUAQfItv2NEuibfYxvNoWR o8MXbdQrxW/5SDWho4OWhDmW2bv6uAxosqJnb+onV8fURzpy7/nEhl03RisXXWxS JlaB1FxnCwH1viBMUm76TM3vyZadxlruGd8MMGJqKNPJmsIHkLrWivanvRB5MIVG rxEo7BkS0R85we2wITlbOSQTB4COjlt+H0ll0L+b7ChLm3GlIepFxvy0X7R0t6uo ovJz/8CurokFpc8vvB2DideVusoXngJ8/3gEi5NQQKPoh/oBvdmFZczEqz4HIK2m ZE8agXhEJ3sCNtzlnUo0SzBLM5fMRA/wgzNsYbknOfJswJlEiYzY -----END CERTIFICATE-----Generated at Sat Jun 1 04:19:26 2024 by rpki-client on console-fra.rpki-client.org