$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS197532.roa File: AS197532.roa (raw, json) Hash identifier: 18qKXXsmiJ2K9UlnncCPmcWAK06ZJHwh6JoKt0X+HCM= Subject key identifier: 3B:1B:AD:1D:C4:5E:E9:69:0F:52:25:C9:0F:C9:3D:5C:0B:B2:B8:4B Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 27CD1726D443C55BDE773170EEB1A83C06A7D928 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS197532.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 197532 IP address blocks: 2a07:54c1:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cd:17:26:d4:43:c5:5b:de:77:31:70:ee:b1:a8:3c:06:a7:d9:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=3B1BAD1DC45EE9690F5225C90FC93D5C0BB2B84B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c6:7f:b1:d6:42:55:15:7a:1a:90:b9:6b:9b: 52:f6:89:87:72:f7:65:de:9d:97:46:e4:f5:09:34: be:f0:d5:ad:7c:20:46:36:eb:c9:ef:a5:bf:c5:65: 64:6f:53:af:f7:ea:a3:02:7c:fc:98:69:d3:99:19: a1:55:04:94:eb:08:28:98:1c:d7:98:c5:b5:14:4d: 18:cb:cf:83:ab:fc:27:02:f3:0e:bb:58:89:08:90: 22:08:9c:68:2a:56:92:cc:21:bc:0a:3b:04:76:ab: c8:2d:4f:c0:bc:2b:23:2e:76:57:50:1b:e0:89:f9: c0:a1:5b:08:73:1b:74:34:50:9c:f9:4f:4a:fe:3a: 23:1d:af:b8:1b:96:67:e4:c3:83:52:c1:da:8b:69: fd:76:c9:90:d6:cd:11:17:fb:12:e5:5d:86:91:09: e9:77:23:b6:6e:3e:9a:49:18:9a:2e:f8:d6:55:84: ae:50:b0:ff:df:db:f5:a5:0a:15:3a:04:02:4e:32: 50:87:8c:80:da:3d:b0:92:84:6e:16:32:b3:c3:cb: 09:85:e0:40:47:20:3d:af:b6:6f:04:fe:0c:7e:ea: dd:70:ef:d1:8b:19:a8:4c:34:21:4d:ab:0c:68:0d: e6:16:28:20:a8:48:c1:e1:ae:c8:8b:44:ff:6c:18: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1B:AD:1D:C4:5E:E9:69:0F:52:25:C9:0F:C9:3D:5C:0B:B2:B8:4B X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS197532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3600::/40 Signature Algorithm: sha256WithRSAEncryption b7:0d:c0:3f:3d:ba:d1:cc:b3:46:96:61:8e:d6:93:63:a7:3f: fb:15:3a:ba:ef:a5:87:4c:a1:f3:c2:28:8f:82:97:9a:4b:57: ef:24:d7:14:6e:36:eb:95:84:f5:b5:ec:22:ae:94:ef:13:f9: fb:1f:de:82:8d:eb:ee:43:dc:a1:f8:39:07:52:54:b5:58:b0: 2b:25:cd:39:ad:b2:77:1a:35:c9:41:53:a4:b3:c7:61:01:31: 98:37:ba:0e:ed:fa:ca:54:09:f2:79:75:61:fc:f1:9c:0c:83: c8:0c:e4:87:d3:8d:b2:ed:23:44:37:8e:c1:80:91:8e:d3:74: bc:18:bf:13:70:fb:55:98:37:df:35:1f:40:23:f8:d6:a3:c8: 25:26:9b:b3:73:58:e8:d8:e0:a5:29:3b:27:cf:a9:13:ea:a4: bb:b3:ca:18:77:9e:c6:a7:4c:2a:b9:f0:c0:2c:59:fd:30:17: 61:a7:a9:e5:a2:09:fa:b4:72:7f:29:fe:88:0e:b3:94:f4:59: 9f:ed:c3:e3:14:99:65:7b:f2:a7:23:8c:22:0a:1c:74:1e:28: 6a:4c:bc:f2:3e:60:5b:2b:69:ac:e3:f3:19:1e:cf:3f:ca:6d: e8:c1:27:84:33:10:ad:4d:f4:b2:98:58:53:d2:8a:5c:26:96: 4f:83:29:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ80XJtRDxVvedzFw7rGoPAan2SgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKDNCMUJBRDFEQzQ1RUU5NjkwRjUyMjVDOTBGQzkzRDVDMEJCMkI4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/xn+x1kJVFXoakLlrm1L2iYdy 92XenZdG5PUJNL7w1a18IEY268nvpb/FZWRvU6/36qMCfPyYadOZGaFVBJTrCCiY HNeYxbUUTRjLz4Or/CcC8w67WIkIkCIInGgqVpLMIbwKOwR2q8gtT8C8KyMudldQ G+CJ+cChWwhzG3Q0UJz5T0r+OiMdr7gblmfkw4NSwdqLaf12yZDWzREX+xLlXYaR Cel3I7ZuPppJGJou+NZVhK5QsP/f2/WlChU6BAJOMlCHjIDaPbCShG4WMrPDywmF 4EBHID2vtm8E/gx+6t1w79GLGahMNCFNqwxoDeYWKCCoSMHhrsiLRP9sGOHDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOxutHcRe6WkPUiXJD8k9XAuyuEswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk3NTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTYwDQYJKoZIhvcNAQELBQADggEBALcNwD89utHMs0aWYY7Wk2OnP/sVOrrvpYdM ofPCKI+Cl5pLV+8k1xRuNuuVhPW17CKulO8T+fsf3oKN6+5D3KH4OQdSVLVYsCsl zTmtsncaNclBU6Szx2EBMZg3ug7t+spUCfJ5dWH88ZwMg8gM5IfTjbLtI0Q3jsGA kY7TdLwYvxNw+1WYN981H0Aj+NajyCUmm7NzWOjY4KUpOyfPqRPqpLuzyhh3nsan TCq58MAsWf0wF2GnqeWiCfq0cn8p/ogOs5T0WZ/tw+MUmWV78qcjjCIKHHQeKGpM vPI+YFsraazj8xkezz/KbejBJ4QzEK1N9LKYWFPSilwmlk+DKXE= -----END CERTIFICATE-----Generated at Sat Jul 5 08:25:20 2025 by rpki-client