$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa File: AS209870.roa (raw, json) Hash identifier: VIsiw6LvhUJMF/KNWXlK9Svbv+D1UpxpnWyOz3uCbNo= Subject key identifier: A2:2A:3B:48:7C:FD:27:3E:BC:27:AB:09:8C:D5:A8:B3:DA:05:2B:C3 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 2552E648FAC29C2EB4CDAE3173293064D7960998 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa Signing time: Tue 20 Aug 2024 02:31:52 +0000 ROA not before: Tue 20 Aug 2024 02:26:52 +0000 ROA not after: Tue 19 Aug 2025 02:31:52 +0000 asID: 209870 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:52:e6:48:fa:c2:9c:2e:b4:cd:ae:31:73:29:30:64:d7:96:09:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:52 2024 GMT Not After : Aug 19 02:31:52 2025 GMT Subject: CN=A22A3B487CFD273EBC27AB098CD5A8B3DA052BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7a:7a:eb:35:5b:c2:fd:20:b6:35:d3:b0:29: b0:36:66:71:30:23:75:86:c4:4b:7f:e4:78:87:a3: 70:60:29:4f:e9:1b:36:9c:fa:a6:bf:3e:b3:a9:67: 1e:9d:1d:d5:08:ce:bd:7a:e0:af:00:70:69:89:82: 95:d5:cc:b9:72:fa:ff:58:5f:a2:aa:e1:67:33:9a: bd:73:47:5d:e7:0d:ae:d7:2d:6d:54:d3:d5:4e:26: 3f:1b:bd:19:a4:43:e0:a1:9e:0f:cd:ce:28:76:f5: 65:41:74:38:49:d2:e5:13:dd:3b:da:8f:db:65:60: a4:b2:7e:21:4b:ef:73:b4:8c:14:15:d1:07:61:96: 56:d2:2d:73:15:20:c1:8e:17:de:da:a4:32:6a:32: bb:cd:2d:4c:d7:64:31:61:5c:73:51:73:a6:96:0f: 76:61:33:c9:00:f3:3d:a9:ed:13:42:49:0e:5b:0f: a2:00:af:e3:b1:98:1a:f1:c4:97:ff:e5:aa:ef:d2: 9d:cb:80:7a:99:f0:58:3e:66:77:58:43:f0:85:4f: bb:38:36:8f:de:fa:29:8f:cc:1e:f2:c6:d8:0d:7b: 63:a5:a3:93:62:51:7f:ad:4d:18:4e:3b:40:45:fa: 58:d6:e7:61:ae:28:ac:3b:9d:d8:f6:3a:26:48:53: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2A:3B:48:7C:FD:27:3E:BC:27:AB:09:8C:D5:A8:B3:DA:05:2B:C3 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS209870.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2f:89:31:14:5f:75:de:ae:11:fe:63:41:d4:34:29:28:e0:d1: 8a:26:7e:b1:8a:03:77:32:5f:1f:c3:b9:6a:cf:42:86:4b:05: 8e:4d:44:c4:d1:0d:87:92:5b:2a:47:3c:1e:99:15:bf:d3:77: c0:1b:f7:4a:45:c2:0f:fd:d6:e5:5c:3f:e9:11:2f:51:c9:6a: 01:a7:0f:c3:ed:0a:05:af:0c:d2:5d:ce:f8:60:fb:2e:af:ae: 34:7c:a6:38:4e:51:be:d2:80:ce:2c:ff:dc:a4:cf:af:4c:0f: 04:1d:d6:34:17:a3:12:ff:5b:4a:20:09:fc:7b:7d:94:7f:de: 91:0f:59:e2:3e:18:de:ad:57:95:f6:ed:2e:4c:5b:f7:75:b8: d3:58:95:9a:2b:61:44:22:1a:2d:e2:31:10:5b:47:f5:1f:d4: 8d:e3:33:30:82:d2:35:83:ab:54:ad:ba:26:95:32:72:94:4e: e5:72:3a:4f:43:e7:74:22:eb:94:fb:82:9e:9f:54:54:49:22: 46:60:e2:14:86:72:44:41:73:84:4c:7d:33:16:bc:2b:0a:f1: d2:1c:f0:86:a0:8e:d3:8c:c4:8f:4b:6c:d8:f1:b3:a3:f7:5b: 9d:dd:59:16:a0:6d:43:8b:54:6c:a8:28:b7:1e:33:b2:e7:f2: 59:2e:79:7e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJVLmSPrCnC60za4xcykwZNeWCZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTJaFw0yNTA4MTkwMjMxNTJaMDMxMTAvBgNV BAMTKEEyMkEzQjQ4N0NGRDI3M0VCQzI3QUIwOThDRDVBOEIzREEwNTJCQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfenrrNVvC/SC2NdOwKbA2ZnEw I3WGxEt/5HiHo3BgKU/pGzac+qa/PrOpZx6dHdUIzr164K8AcGmJgpXVzLly+v9Y X6Kq4Wczmr1zR13nDa7XLW1U09VOJj8bvRmkQ+Chng/Nzih29WVBdDhJ0uUT3Tva j9tlYKSyfiFL73O0jBQV0QdhllbSLXMVIMGOF97apDJqMrvNLUzXZDFhXHNRc6aW D3ZhM8kA8z2p7RNCSQ5bD6IAr+OxmBrxxJf/5arv0p3LgHqZ8Fg+ZndYQ/CFT7s4 No/e+imPzB7yxtgNe2Olo5NiUX+tTRhOO0BF+ljW52GuKKw7ndj2OiZIU7dlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoio7SHz9Jz68J6sJjNWos9oFK8MwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA5ODcwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAviTEUX3XerhH+Y0HUNCko4NGKJn6xigN3 Ml8fw7lqz0KGSwWOTUTE0Q2HklsqRzwemRW/03fAG/dKRcIP/dblXD/pES9RyWoB pw/D7QoFrwzSXc74YPsur640fKY4TlG+0oDOLP/cpM+vTA8EHdY0F6MS/1tKIAn8 e32Uf96RD1niPhjerVeV9u0uTFv3dbjTWJWaK2FEIhot4jEQW0f1H9SN4zMwgtI1 g6tUrbomlTJylE7lcjpPQ+d0IuuU+4Ken1RUSSJGYOIUhnJEQXOETH0zFrwrCvHS HPCGoI7TjMSPS2zY8bOj91ud3VkWoG1Di1RsqCi3HjOy5/JZLnl+ -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:36 2024 by rpki-client on console-ams.rpki-client.org