$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa File: AS209870.roa (raw, json) Hash identifier: PIHx009pNwHVUKsGDNmJgvUBJuhVb5EuTHbBcZ5SFjI= Subject key identifier: E0:F8:E7:FB:9D:2C:E9:22:50:B3:1F:C4:B0:AB:2B:81:05:F2:86:CA Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 72C2AD4E494A5B058B3C6F3DAF6703C0290D1CDE Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa Signing time: Tue 19 Sep 2023 02:14:56 +0000 ROA not before: Tue 19 Sep 2023 02:09:56 +0000 ROA not after: Tue 17 Sep 2024 02:14:56 +0000 asID: 209870 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 06:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:c2:ad:4e:49:4a:5b:05:8b:3c:6f:3d:af:67:03:c0:29:0d:1c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Sep 19 02:09:56 2023 GMT Not After : Sep 17 02:14:56 2024 GMT Subject: CN=E0F8E7FB9D2CE92250B31FC4B0AB2B8105F286CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ec:bb:9d:32:73:f9:2e:b5:14:28:9c:89:a5: 63:ec:ea:30:f4:76:12:d3:ac:21:a6:11:6a:dd:dc: 6c:a7:c7:65:42:d1:e6:32:5a:25:2a:99:32:78:eb: 75:4b:12:c5:6f:92:ea:f1:24:3a:7b:6e:08:99:fc: 63:96:e9:32:3c:16:69:ab:3b:4d:b3:c5:9d:2c:04: c4:20:14:1c:83:6a:b5:9f:01:15:e4:cd:7e:eb:94: a6:32:ec:03:64:7c:ec:4b:d0:56:2e:15:4c:90:e1: c8:a6:83:56:43:4e:13:f4:db:10:3c:51:6d:33:d8: e4:93:26:47:41:48:ed:65:e9:a7:1b:88:ec:f2:63: fe:6a:d4:b8:48:2a:22:38:5c:4b:9c:85:fe:3e:a9: cd:0e:a2:b1:af:77:1b:a4:bb:c3:43:88:cd:46:4a: f8:b2:64:2c:fc:ab:9c:e8:5c:e2:33:bc:ca:c9:7b: 7f:2c:9b:49:80:13:0a:07:71:08:67:81:d5:43:04: 49:88:03:3e:31:9b:4f:f7:82:f3:85:97:9d:37:89: 73:4c:ff:90:84:c9:0f:24:0f:4b:d6:4e:84:4f:5a: f5:51:bc:44:87:1e:6a:55:40:c1:32:62:e3:25:9e: cf:98:1a:69:8e:64:e9:f2:e5:56:d9:e5:68:be:f9: d6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F8:E7:FB:9D:2C:E9:22:50:B3:1F:C4:B0:AB:2B:81:05:F2:86:CA X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2a:d5:19:21:78:c7:e3:8b:30:e2:e9:f9:f0:ae:d0:45:c4:68: 80:07:cb:11:90:dc:19:61:9c:5d:e3:4d:06:11:c5:49:82:c0: 07:c2:8b:0d:fa:2f:b2:b1:3c:a3:07:06:11:5a:d6:58:0e:e5: b1:ee:93:a8:66:ed:b5:a4:13:07:8a:ce:c1:16:bc:bd:0d:3e: ed:0b:48:92:72:ba:4c:8e:2c:04:d7:c5:65:af:b9:e8:49:f3: ab:2c:3e:89:48:71:c1:0a:b9:f8:ce:e0:98:0a:2b:75:45:8e: 5f:69:e9:b6:cf:9a:c4:fc:13:77:c2:00:9b:97:87:70:89:d6: 5b:37:5b:03:c9:8c:45:fd:a7:3c:da:d5:ec:91:70:f7:e5:96: ff:6b:89:c8:46:4f:46:d3:12:c0:42:a8:f2:8b:75:20:81:69: 64:6e:23:af:7b:d1:46:dd:ce:20:e6:22:7d:de:5d:71:8b:67: 05:96:51:86:d6:6d:12:e6:e6:2f:8a:b3:cd:f7:87:f1:77:6b: 9f:55:4a:d9:7e:ce:6f:d8:a3:b4:8f:bf:5d:46:d1:ab:22:ab: 9a:e0:db:a9:61:5c:a9:15:4c:39:39:c9:9f:a4:bf:a3:97:01: 92:e8:24:a8:83:05:ed:74:f9:17:c0:2b:49:09:1b:9a:a2:4d: 47:b1:36:12 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcsKtTklKWwWLPG89r2cDwCkNHN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yMzA5MTkwMjA5NTZaFw0yNDA5MTcwMjE0NTZaMDMxMTAvBgNV BAMTKEUwRjhFN0ZCOUQyQ0U5MjI1MEIzMUZDNEIwQUIyQjgxMDVGMjg2Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc7LudMnP5LrUUKJyJpWPs6jD0 dhLTrCGmEWrd3Gynx2VC0eYyWiUqmTJ463VLEsVvkurxJDp7bgiZ/GOW6TI8Fmmr O02zxZ0sBMQgFByDarWfARXkzX7rlKYy7ANkfOxL0FYuFUyQ4cimg1ZDThP02xA8 UW0z2OSTJkdBSO1l6acbiOzyY/5q1LhIKiI4XEuchf4+qc0OorGvdxuku8NDiM1G SviyZCz8q5zoXOIzvMrJe38sm0mAEwoHcQhngdVDBEmIAz4xm0/3gvOFl503iXNM /5CEyQ8kD0vWToRPWvVRvESHHmpVQMEyYuMlns+YGmmOZOny5VbZ5Wi++danAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4Pjn+50s6SJQsx/EsKsrgQXyhsowHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5ODcwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAq1RkheMfjizDi6fnwrtBFxGiAB8sRkNwZ YZxd400GEcVJgsAHwosN+i+ysTyjBwYRWtZYDuWx7pOoZu21pBMHis7BFry9DT7t C0iScrpMjiwE18Vlr7noSfOrLD6JSHHBCrn4zuCYCit1RY5faem2z5rE/BN3wgCb l4dwidZbN1sDyYxF/ac82tXskXD35Zb/a4nIRk9G0xLAQqjyi3UggWlkbiOve9FG 3c4g5iJ93l1xi2cFllGG1m0S5uYvirPN94fxd2ufVUrZfs5v2KO0j79dRtGrIqua 4NupYVypFUw5OcmfpL+jlwGS6CSogwXtdPkXwCtJCRuaok1HsTYS -----END CERTIFICATE-----Generated at Fri May 31 10:02:31 2024 by rpki-client on console-fra.rpki-client.org