$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206125.roa File: AS206125.roa (raw, json) Hash identifier: E73kGLny9A1dvYd9NTaFJIuANT8ifZ7KntplZdkJ/zw= Subject key identifier: EE:58:9B:F9:32:A3:D8:C3:23:00:0E:D2:74:A0:BD:D3:62:D4:44:6F Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 580A1E733651D3A27CA1778FB0788549A88A2A85 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206125.roa Signing time: Wed 28 May 2025 18:20:52 +0000 ROA not before: Wed 28 May 2025 18:15:52 +0000 ROA not after: Wed 27 May 2026 18:20:52 +0000 asID: 206125 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Jun 2025 01:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0a:1e:73:36:51:d3:a2:7c:a1:77:8f:b0:78:85:49:a8:8a:2a:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: May 28 18:15:52 2025 GMT Not After : May 27 18:20:52 2026 GMT Subject: CN=EE589BF932A3D8C323000ED274A0BDD362D4446F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1d:ab:4b:f5:a8:d7:02:52:b4:e5:b2:d4:99: b1:94:3b:37:2c:c5:0a:ee:62:93:01:19:30:e4:07: dc:d0:4a:47:0c:18:ae:36:5a:76:99:7b:5f:3e:ed: 0f:f0:65:63:f5:f8:20:66:7c:1f:6e:a8:37:5b:22: c0:55:45:d5:f3:ef:c1:c9:a1:fe:c8:f6:3f:3d:98: 84:dc:03:0a:08:79:65:17:39:1b:2e:24:15:f3:4d: e4:fe:9f:85:3f:89:83:05:4f:0a:db:e8:ac:fd:42: 43:8f:a6:54:37:69:3b:86:8f:50:ce:b0:0a:11:ed: b9:c5:a8:b5:52:e8:f7:d3:62:5e:37:e9:37:b4:66: 1d:ec:cc:b9:76:17:da:40:cd:4b:97:62:35:70:8d: 97:38:1b:90:5c:4c:8f:19:7b:77:c4:4f:f1:e1:a4: 31:35:90:c9:3d:49:2a:0d:59:25:fa:e1:6c:73:28: 69:98:c3:83:51:19:14:77:85:f3:39:60:41:69:ab: 3c:3b:c5:51:d2:8c:8a:2c:34:8e:c7:31:91:81:b9: 34:53:49:56:25:63:6e:f0:f7:e5:3c:de:e4:08:19: ff:dd:ad:b4:a7:d9:8a:bc:38:c6:e4:bf:10:df:ee: 90:10:e6:5a:fa:38:01:a1:c2:bd:4f:d5:9c:91:5e: 70:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:58:9B:F9:32:A3:D8:C3:23:00:0E:D2:74:A0:BD:D3:62:D4:44:6F X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS206125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2c:57:ef:3c:b2:a7:c8:b5:60:66:e8:de:f6:bc:91:b2:1b:5e: 53:51:31:4b:7b:c5:8b:f0:70:92:be:c0:35:05:a2:ff:53:f6: 83:8c:2a:dc:5a:08:0c:f4:44:e0:d6:74:de:cf:5a:19:a1:3a: 75:77:f9:f9:6c:05:23:d2:56:a5:78:45:40:b6:47:e0:85:21: be:46:1c:94:92:58:11:7d:43:0d:de:34:c5:de:7d:0c:58:47: df:69:94:ec:86:6a:a1:d3:ae:98:2c:46:14:38:c7:20:43:2c: cb:06:4c:15:ff:c2:8c:a8:65:33:28:2e:75:3d:f1:6c:bc:47: 8a:ef:22:37:59:12:6d:9e:1f:07:88:48:7e:59:45:6c:d2:76: e4:52:1e:06:e6:83:0e:11:de:c8:91:f2:1f:f4:12:c7:af:a4: 2f:1f:13:5a:8b:50:4a:41:03:2a:15:6d:44:ac:8f:8b:53:68: 67:8b:72:23:34:75:59:7a:76:ae:7d:35:ff:bc:70:62:bc:3b: 56:be:71:9d:8a:ae:43:44:85:9c:a3:19:37:f5:5d:4c:0b:8d: e9:0f:e2:81:e3:59:69:d4:41:02:f7:97:38:aa:5c:2b:6d:a0: 4a:48:13:c1:83:6e:cc:5a:b4:15:78:d7:95:bb:c0:dc:cd:f6: e2:4b:38:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWAoeczZR06J8oXePsHiFSaiKKoUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTA1MjgxODE1NTJaFw0yNjA1MjcxODIwNTJaMDMxMTAvBgNV BAMTKEVFNTg5QkY5MzJBM0Q4QzMyMzAwMEVEMjc0QTBCREQzNjJENDQ0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbHatL9ajXAlK05bLUmbGUOzcs xQruYpMBGTDkB9zQSkcMGK42WnaZe18+7Q/wZWP1+CBmfB9uqDdbIsBVRdXz78HJ of7I9j89mITcAwoIeWUXORsuJBXzTeT+n4U/iYMFTwrb6Kz9QkOPplQ3aTuGj1DO sAoR7bnFqLVS6PfTYl436Te0Zh3szLl2F9pAzUuXYjVwjZc4G5BcTI8Ze3fET/Hh pDE1kMk9SSoNWSX64WxzKGmYw4NRGRR3hfM5YEFpqzw7xVHSjIosNI7HMZGBuTRT SVYlY27w9+U83uQIGf/drbSn2Yq8OMbkvxDf7pAQ5lr6OAGhwr1P1ZyRXnCxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU7lib+TKj2MMjAA7SdKC902LURG8wHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA2MTI1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAsV+88sqfItWBm6N72vJGyG15TUTFLe8WL 8HCSvsA1BaL/U/aDjCrcWggM9ETg1nTez1oZoTp1d/n5bAUj0laleEVAtkfghSG+ RhyUklgRfUMN3jTF3n0MWEffaZTshmqh066YLEYUOMcgQyzLBkwV/8KMqGUzKC51 PfFsvEeK7yI3WRJtnh8HiEh+WUVs0nbkUh4G5oMOEd7IkfIf9BLHr6QvHxNai1BK QQMqFW1ErI+LU2hni3IjNHVZenaufTX/vHBivDtWvnGdiq5DRIWcoxk39V1MC43p D+KB41lp1EEC95c4qlwrbaBKSBPBg27MWrQVeNeVu8DczfbiSziB -----END CERTIFICATE-----Generated at Sun Jun 1 10:19:50 2025 by rpki-client