$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: eriyv5tVc4xd8it6SSvG9gTiaDS9H9dfwj/fRYUk5vw= Subject key identifier: 4D:F9:87:B6:3A:52:D5:E7:19:EF:18:F5:4C:C4:B5:D2:4C:95:7D:2F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 781DC74EFB56D5F458F0897EFBB310BA170FFB67 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa Signing time: Fri 20 Dec 2024 18:30:34 +0000 ROA not before: Fri 20 Dec 2024 18:25:34 +0000 ROA not after: Fri 19 Dec 2025 18:30:34 +0000 asID: 210667 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 03:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:1d:c7:4e:fb:56:d5:f4:58:f0:89:7e:fb:b3:10:ba:17:0f:fb:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: Dec 20 18:25:34 2024 GMT Not After : Dec 19 18:30:34 2025 GMT Subject: CN=4DF987B63A52D5E719EF18F54CC4B5D24C957D2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:69:7b:86:e9:b9:c7:f6:1f:7d:4a:a5:64:5f: 1d:90:b5:e3:34:13:cb:9a:1b:26:ed:b8:38:2e:13: 2c:00:1f:b8:82:b6:73:3e:2a:99:f6:3a:66:1b:8d: 0a:ab:eb:7d:d2:0b:2c:cc:fb:c4:23:a1:8c:55:7f: a9:54:e7:f3:90:d9:bb:b0:4f:13:c4:c6:a8:13:86: 67:8f:47:2c:db:cc:12:e3:cb:34:65:3b:3d:74:f2: 18:34:43:58:6b:f6:38:e6:f9:e7:b7:8c:10:77:65: 57:73:5f:d4:94:89:57:df:98:3a:61:27:ed:51:88: 44:2d:30:79:3f:e1:be:82:8a:96:0a:bc:a8:12:95: e6:f6:4b:85:bb:20:53:30:a2:59:86:d1:df:6d:48: 0b:08:80:f9:47:62:a8:ce:9e:2e:92:59:a8:50:27: f6:8b:fb:e0:2f:53:4b:e2:2a:22:99:03:a5:03:2a: 61:78:12:9e:ed:5a:c2:79:3b:2e:1e:47:4a:d7:1e: ed:9e:75:af:01:92:d9:78:8e:44:57:61:aa:a9:ea: bd:00:c1:11:96:c9:e8:99:c3:67:14:96:85:05:fa: 70:62:bc:61:b7:cf:23:61:b2:68:e5:e0:60:3e:5e: 38:88:98:21:aa:be:bc:d6:b2:b8:84:11:4d:94:7f: 36:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F9:87:B6:3A:52:D5:E7:19:EF:18:F5:4C:C4:B5:D2:4C:95:7D:2F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 29:42:be:6b:b5:c6:70:90:0b:25:c5:e3:91:a7:a8:05:31:63: 6f:79:de:0f:6e:36:a3:79:6c:c0:79:5d:c9:77:5f:af:89:b1: 2f:a0:f7:1a:1c:91:00:8b:83:89:69:e4:20:b1:35:65:eb:93: 0d:eb:a8:ee:20:93:d7:53:23:03:26:77:9d:09:44:e0:1e:75: b8:7f:0d:03:ce:56:2d:c7:d4:9b:dc:ce:b7:d8:e6:a1:22:75: 6b:f9:7e:4b:8e:74:d8:54:c7:94:29:81:69:62:da:df:f7:01: de:c8:36:7e:f7:cd:d7:2d:96:b6:1e:55:ba:f6:fd:cd:23:63: 48:90:0e:89:40:13:d2:c9:0b:37:78:17:4b:9d:8b:55:29:13: d5:72:d0:7a:26:17:e8:9c:f5:5d:63:b7:ce:c7:81:bf:9e:fa: 37:af:91:b4:3a:71:07:63:87:80:59:0a:03:0e:41:91:f9:b8: 25:2c:37:43:0d:3b:14:f1:49:14:20:b0:d3:55:d5:20:62:08: 2b:38:a5:0c:89:67:dd:3a:2a:46:08:4d:dc:1e:81:9d:4f:65: d4:7a:c1:10:0d:84:59:12:9f:0c:6c:7f:d3:3b:79:4e:ea:09: c6:b7:0c:0f:4d:3c:dd:94:46:de:d8:a5:81:82:bd:c9:35:24: 5a:67:c3:ce -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeB3HTvtW1fRY8Il++7MQuhcP+2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNDEyMjAxODI1MzRaFw0yNTEyMTkxODMwMzRaMDMxMTAvBgNV BAMTKDRERjk4N0I2M0E1MkQ1RTcxOUVGMThGNTRDQzRCNUQyNEM5NTdEMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0aXuG6bnH9h99SqVkXx2QteM0 E8uaGybtuDguEywAH7iCtnM+Kpn2OmYbjQqr633SCyzM+8QjoYxVf6lU5/OQ2buw TxPExqgThmePRyzbzBLjyzRlOz108hg0Q1hr9jjm+ee3jBB3ZVdzX9SUiVffmDph J+1RiEQtMHk/4b6CipYKvKgSleb2S4W7IFMwolmG0d9tSAsIgPlHYqjOni6SWahQ J/aL++AvU0viKiKZA6UDKmF4Ep7tWsJ5Oy4eR0rXHu2eda8Bktl4jkRXYaqp6r0A wRGWyeiZw2cUloUF+nBivGG3zyNhsmjl4GA+XjiImCGqvrzWsriEEU2UfzZRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTfmHtjpS1ecZ7xj1TMS10kyVfS8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjEwNjY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQApQr5rtcZwkAslxeORp6gFMWNved4Pbjaj eWzAeV3Jd1+vibEvoPcaHJEAi4OJaeQgsTVl65MN66juIJPXUyMDJnedCUTgHnW4 fw0DzlYtx9Sb3M632OahInVr+X5LjnTYVMeUKYFpYtrf9wHeyDZ+983XLZa2HlW6 9v3NI2NIkA6JQBPSyQs3eBdLnYtVKRPVctB6JhfonPVdY7fOx4G/nvo3r5G0OnEH Y4eAWQoDDkGR+bglLDdDDTsU8UkUILDTVdUgYggrOKUMiWfdOipGCE3cHoGdT2XU esEQDYRZEp8MbH/TO3lO6gnGtwwPTTzdlEbe2KWBgr3JNSRaZ8PO -----END CERTIFICATE-----Generated at Fri Apr 4 17:05:56 2025 by rpki-client