$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: D6dk5Q50/010OY6CvWAqNfD9j/cTDX4LGuTDWCVyzvg= Subject key identifier: 52:D5:1A:2A:01:E8:DC:53:6E:69:EB:EA:79:7F:76:C9:A5:29:79:99 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 202888AB7737C3E6531ED33B61C37D23948D5C55 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa Signing time: Tue 20 Aug 2024 02:31:56 +0000 ROA not before: Tue 20 Aug 2024 02:26:56 +0000 ROA not after: Tue 19 Aug 2025 02:31:56 +0000 asID: 210475 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:28:88:ab:77:37:c3:e6:53:1e:d3:3b:61:c3:7d:23:94:8d:5c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Aug 20 02:26:56 2024 GMT Not After : Aug 19 02:31:56 2025 GMT Subject: CN=52D51A2A01E8DC536E69EBEA797F76C9A5297999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4c:c8:5a:e5:51:01:94:eb:e3:46:4c:b6:45: 4b:6f:6f:9e:d8:c1:b4:a8:bb:dd:0e:7d:77:ef:42: c6:93:b0:0f:13:81:a7:09:69:8c:db:5e:ce:a8:e5: c6:e8:25:0e:66:72:cb:09:48:a5:26:d4:d5:65:15: b3:41:a2:df:7d:12:47:77:4a:14:36:7a:9d:da:e0: 95:14:f6:3a:67:3d:20:e9:99:05:7e:07:65:87:db: 55:b6:60:57:71:8a:71:eb:ab:b6:4f:79:56:e2:6b: 75:6a:1f:f2:ee:b0:87:2a:3f:80:a4:a8:00:2b:10: 3a:89:4d:43:c1:7c:b9:c7:8f:43:25:7c:89:c8:09: 6b:cb:14:96:42:b0:f4:61:cb:02:41:b9:90:90:d5: 6a:fa:2a:23:ff:23:55:a9:3b:0c:63:79:8c:8f:13: 74:fd:f5:18:19:b5:4a:fd:8d:15:f1:a5:94:f1:68: 25:54:ba:56:da:d3:6d:61:40:36:84:ce:aa:d2:e1: 6c:1a:f1:86:8b:45:0d:b6:b6:3e:7d:b8:ac:13:e8: 07:22:3e:68:47:84:5b:bf:0f:96:44:9b:8c:92:8f: 05:7c:a3:26:6e:db:8a:1a:30:0b:84:de:78:b6:53: c0:f8:87:e1:df:92:65:1f:2d:f1:32:7d:44:19:5f: 07:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D5:1A:2A:01:E8:DC:53:6E:69:EB:EA:79:7F:76:C9:A5:29:79:99 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 00:9b:c7:b8:c1:64:aa:5b:52:cc:61:28:6a:33:21:ca:4c:c0: fb:6c:04:33:2a:2c:35:75:2f:17:d1:16:55:1d:cc:f8:22:e6: 4b:26:b4:ee:e0:77:76:cc:4b:9c:e2:b9:1e:bd:5e:aa:d2:4e: af:43:df:ed:33:08:9c:eb:7c:04:6a:c0:24:19:c2:d0:b2:cf: 8d:e3:8e:8b:e1:1d:cd:0b:87:97:f7:89:30:15:d5:38:2d:f0: 26:6b:17:33:ec:57:9b:ff:28:f4:06:63:3d:72:ab:b2:0d:2c: 39:a0:f7:93:86:ed:7a:11:ba:1e:04:dd:a9:a3:39:b7:90:ac: 83:6a:9c:72:43:66:8c:08:6a:7d:12:c2:9d:51:59:74:9d:42: cc:6a:2f:99:4f:2b:73:7c:40:89:51:da:3a:bb:a2:68:62:bb: da:65:d9:c2:6d:f8:cf:16:55:ff:1d:bf:0e:5e:fe:5b:60:a7: 5f:a9:7d:ff:7b:1d:44:05:76:c7:b5:b1:f0:07:0d:2d:96:79: e5:de:01:bf:67:01:cd:82:40:f1:8f:de:15:1e:31:8c:16:db: a8:76:74:1c:1e:1c:fa:29:94:4b:f5:af:d6:a6:11:23:bf:1d: f3:08:9a:6e:59:e0:81:71:88:c8:c4:07:e2:f5:2a:0c:ca:d9: 98:65:53:83 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUICiIq3c3w+ZTHtM7YcN9I5SNXFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDA4MjAwMjI2NTZaFw0yNTA4MTkwMjMxNTZaMDMxMTAvBgNV BAMTKDUyRDUxQTJBMDFFOERDNTM2RTY5RUJFQTc5N0Y3NkM5QTUyOTc5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTMha5VEBlOvjRky2RUtvb57Y wbSou90OfXfvQsaTsA8TgacJaYzbXs6o5cboJQ5mcssJSKUm1NVlFbNBot99Ekd3 ShQ2ep3a4JUU9jpnPSDpmQV+B2WH21W2YFdxinHrq7ZPeVbia3VqH/LusIcqP4Ck qAArEDqJTUPBfLnHj0MlfInICWvLFJZCsPRhywJBuZCQ1Wr6KiP/I1WpOwxjeYyP E3T99RgZtUr9jRXxpZTxaCVUulba021hQDaEzqrS4Wwa8YaLRQ22tj59uKwT6Aci PmhHhFu/D5ZEm4ySjwV8oyZu24oaMAuE3ni2U8D4h+HfkmUfLfEyfUQZXwfJAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUUtUaKgHo3FNuaevqeX92yaUpeZkwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEwNDc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgdU wTcDBgQqB1THADANBgkqhkiG9w0BAQsFAAOCAQEAAJvHuMFkqltSzGEoajMhykzA +2wEMyosNXUvF9EWVR3M+CLmSya07uB3dsxLnOK5Hr1eqtJOr0Pf7TMInOt8BGrA JBnC0LLPjeOOi+EdzQuHl/eJMBXVOC3wJmsXM+xXm/8o9AZjPXKrsg0sOaD3k4bt ehG6HgTdqaM5t5Csg2qcckNmjAhqfRLCnVFZdJ1CzGovmU8rc3xAiVHaOruiaGK7 2mXZwm34zxZV/x2/Dl7+W2CnX6l9/3sdRAV2x7Wx8AcNLZZ55d4Bv2cBzYJA8Y/e FR4xjBbbqHZ0HB4c+imUS/Wv1qYRI78d8wiablnggXGIyMQH4vUqDMrZmGVTgw== -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org