$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: fSbd4khWKtmlWZTlKEJRVlCA16JgVyYf9PVQU+iO1P4= Subject key identifier: 74:D6:8B:34:0E:00:0B:8C:95:24:EC:A5:EF:E5:D1:83:35:AE:DA:87 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 0B9F0D8630102B7F0ABDDACF85AF6DF9D99CA039 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa Signing time: Fri 19 Jan 2024 18:20:21 +0000 ROA not before: Fri 19 Jan 2024 18:15:21 +0000 ROA not after: Fri 17 Jan 2025 18:20:21 +0000 asID: 210667 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:9f:0d:86:30:10:2b:7f:0a:bd:da:cf:85:af:6d:f9:d9:9c:a0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Jan 19 18:15:21 2024 GMT Not After : Jan 17 18:20:21 2025 GMT Subject: CN=74D68B340E000B8C9524ECA5EFE5D18335AEDA87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:7f:06:91:98:54:02:14:c4:ae:02:d2:3f: 0c:20:a0:87:82:00:0e:cd:52:96:77:4f:38:2b:7b: c6:d9:e9:22:78:84:fd:b0:52:78:a9:6e:e5:bf:49: bc:ef:dc:2d:33:b4:08:a8:a4:1e:82:a9:2c:0d:d9: 81:06:be:81:5a:1b:68:7f:23:00:86:3f:cb:e8:7c: 79:86:0d:56:7d:0e:0d:17:c9:c8:d2:f1:fe:75:15: ec:03:54:61:5c:5e:a6:dd:de:6c:2d:d1:e1:f2:c5: c1:87:5f:28:7a:f9:08:02:03:0c:e7:06:b8:8e:c1: c3:c1:4d:f4:25:12:93:4d:57:d7:54:9d:5c:0d:7d: 53:a3:85:a1:85:e0:b3:35:61:87:45:56:99:97:e0: a5:a0:38:d4:a9:e9:9c:0e:7c:3e:3c:59:2e:2a:bc: 19:c0:95:55:49:b9:fe:11:b4:49:d9:27:de:59:72: 62:d1:b8:df:d3:e1:23:dc:2f:8d:2c:9d:e6:d6:e7: f8:17:44:72:a6:41:f4:45:05:58:f3:50:db:9e:3a: 0b:4c:53:5f:eb:1c:06:36:64:03:15:fa:a3:e1:e3: b3:8b:68:28:ba:29:69:9d:b8:2e:58:d3:b8:36:35: db:a6:8f:b7:84:0b:e4:f7:b4:3f:65:58:cf:7b:e8: 99:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D6:8B:34:0E:00:0B:8C:95:24:EC:A5:EF:E5:D1:83:35:AE:DA:87 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 26:23:31:2b:27:ed:08:a3:3a:19:35:49:d4:55:21:61:42:07: e3:e9:77:6d:46:49:e1:97:87:77:44:2c:aa:92:29:01:b7:d2: 35:f1:10:ba:e5:cb:3d:2b:3f:24:9b:20:b9:16:f1:99:bc:16: 2b:33:dd:4f:af:4f:61:98:51:7b:86:06:8d:79:16:50:4f:85: b2:d9:a4:aa:4a:a2:bc:a2:59:7b:69:54:e1:75:a2:27:3a:87: 68:da:cf:3f:7c:80:b4:97:5f:11:f9:78:00:aa:f4:11:fa:c1: 93:0f:4a:45:e1:87:f5:87:f5:dc:80:39:b2:a7:2a:88:fd:1a: 8b:08:a6:3a:61:eb:0a:d1:24:0f:ee:f0:3c:90:97:00:3a:51: 5b:ab:4f:3d:55:0e:a2:13:72:8f:66:31:f9:d4:cc:10:9e:f5: fb:44:02:1a:72:fb:9b:74:1a:5d:5e:7a:c0:5b:2b:68:a1:c5: 8b:fc:07:f6:50:cf:c7:8d:33:bd:11:c5:3c:dc:46:b6:3e:b5: a8:ca:c3:d7:95:bf:54:95:b2:79:eb:cb:24:35:7a:87:42:4a: 97:46:a7:b6:b2:3f:5b:be:f4:40:62:2c:77:12:be:20:94:a7: c8:21:1a:46:f9:c4:ff:52:02:36:0a:8f:9a:ae:5e:ef:04:d9: 40:f4:9b:11 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC58NhjAQK38KvdrPha9t+dmcoDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDAxMTkxODE1MjFaFw0yNTAxMTcxODIwMjFaMDMxMTAvBgNV BAMTKDc0RDY4QjM0MEUwMDBCOEM5NTI0RUNBNUVGRTVEMTgzMzVBRURBODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiPH8GkZhUAhTErgLSPwwgoIeC AA7NUpZ3Tzgre8bZ6SJ4hP2wUnipbuW/Sbzv3C0ztAiopB6CqSwN2YEGvoFaG2h/ IwCGP8vofHmGDVZ9Dg0XycjS8f51FewDVGFcXqbd3mwt0eHyxcGHXyh6+QgCAwzn BriOwcPBTfQlEpNNV9dUnVwNfVOjhaGF4LM1YYdFVpmX4KWgONSp6ZwOfD48WS4q vBnAlVVJuf4RtEnZJ95ZcmLRuN/T4SPcL40snebW5/gXRHKmQfRFBVjzUNueOgtM U1/rHAY2ZAMV+qPh47OLaCi6KWmduC5Y07g2Ndumj7eEC+T3tD9lWM976JmfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdNaLNA4AC4yVJOyl7+XRgzWu2ocwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEwNjY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAmIzErJ+0IozoZNUnUVSFhQgfj6XdtRknh l4d3RCyqkikBt9I18RC65cs9Kz8kmyC5FvGZvBYrM91Pr09hmFF7hgaNeRZQT4Wy 2aSqSqK8oll7aVThdaInOodo2s8/fIC0l18R+XgAqvQR+sGTD0pF4Yf1h/XcgDmy pyqI/RqLCKY6YesK0SQP7vA8kJcAOlFbq089VQ6iE3KPZjH51MwQnvX7RAIacvub dBpdXnrAWytoocWL/Af2UM/HjTO9EcU83Ea2PrWoysPXlb9UlbJ568skNXqHQkqX Rqe2sj9bvvRAYix3Er4glKfIIRpG+cT/UgI2Co+arl7vBNlA9JsR -----END CERTIFICATE-----Generated at Thu Nov 21 12:08:37 2024 by rpki-client on console-fra.rpki-client.org