$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198342.roa File: AS198342.roa (raw, json) Hash identifier: 1aKuVe6bZZyd7vBMX+OjwZ3Z+MRCfZIb8yjO/9ys7hk= Subject key identifier: E2:92:50:6D:A4:06:A3:9D:AB:9E:57:8C:77:63:4D:32:A3:BE:96:B2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 56122A90F9CF4AB3DD2CFEF5B98CC4AE563F9D32 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198342.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 198342 IP address blocks: 2a07:54c1:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:12:2a:90:f9:cf:4a:b3:dd:2c:fe:f5:b9:8c:c4:ae:56:3f:9d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=E292506DA406A39DAB9E578C77634D32A3BE96B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c4:a2:d6:39:b8:82:a0:1d:16:0c:87:e8:5d: 49:21:96:64:3a:6c:b3:53:5b:cb:52:3b:97:e7:02: 74:2f:f6:47:15:ff:a7:78:cd:57:56:e6:0f:b2:8a: 32:b5:b8:8d:cf:0a:fe:34:d6:0d:33:40:8f:52:49: 0d:a1:2b:57:73:15:b0:28:5a:eb:05:7b:c2:c5:39: ac:34:d6:65:de:c8:18:df:31:51:c8:79:0c:74:05: 66:87:53:ff:7c:69:44:5c:e3:ec:79:23:cc:28:45: a1:37:56:c3:29:71:cc:86:c8:99:0a:31:2b:88:af: e3:43:1e:91:be:5c:2c:c8:57:11:ae:4f:7f:8c:8a: 3a:17:de:5c:27:d3:07:ba:28:3b:9a:96:20:cd:7a: 28:3a:da:89:c0:23:3b:e5:f5:cd:5c:fd:d8:46:d6: bf:dd:f8:05:50:62:b9:fc:28:55:e8:49:b6:ae:08: 50:fd:e6:20:c1:c3:c3:f5:b9:a9:2f:ed:de:66:3d: 80:c5:e5:e7:64:1c:3a:95:d3:f7:f5:43:e4:02:e8: 93:fb:2d:b7:ff:fe:a0:a0:a6:23:2a:50:81:11:d0: e1:ff:05:31:9b:b8:68:0f:f6:fc:75:b7:20:af:a5: ea:8c:28:bd:4f:d1:d3:73:90:a6:61:9c:55:58:1e: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:92:50:6D:A4:06:A3:9D:AB:9E:57:8C:77:63:4D:32:A3:BE:96:B2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198342.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 78:01:f7:93:7d:5e:79:46:34:f3:d9:a6:55:00:1c:d6:88:61: 50:de:44:67:a5:d9:7c:3d:1b:d2:ac:1f:58:65:e3:1d:d6:1d: c9:56:b3:8d:50:4c:ed:57:8e:da:8c:5b:c0:aa:e6:84:14:8d: 61:25:47:c9:86:96:88:e4:f5:c9:2e:bb:b2:34:7f:af:5c:0b: c0:0c:4a:c2:56:1a:59:37:93:2a:2b:27:00:0a:e3:52:9a:0e: c8:83:37:1b:16:b5:39:38:fd:7b:39:3a:89:91:bd:14:0f:71: d1:05:1a:f4:e3:e8:59:9b:89:67:a0:fa:67:ea:62:0f:b1:4a: 19:b3:91:4b:da:c1:c6:e9:c9:4c:33:91:3d:04:ec:6e:05:82: 87:d6:e7:f1:56:5f:38:db:b1:c0:59:78:33:c1:e1:52:6b:47: 51:8e:71:13:7d:37:56:28:a0:f9:be:a7:91:53:94:d6:f6:de: 9a:4a:52:fa:a9:c6:96:12:11:a0:d7:b0:c2:a7:17:86:c6:60: 32:e7:af:2a:b0:1a:1d:55:33:62:6b:29:69:38:d0:5f:e6:d1: 4d:8e:72:89:55:ef:5e:1c:4c:b3:f0:bc:a7:58:27:34:e4:ee: 60:58:4e:29:52:d0:87:e3:58:b9:0c:ad:7c:91:ce:fc:23:92: 07:f4:c9:52 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVhIqkPnPSrPdLP71uYzErlY/nTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKEUyOTI1MDZEQTQwNkEzOURBQjlFNTc4Qzc3NjM0RDMyQTNCRTk2QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyxKLWObiCoB0WDIfoXUkhlmQ6 bLNTW8tSO5fnAnQv9kcV/6d4zVdW5g+yijK1uI3PCv401g0zQI9SSQ2hK1dzFbAo WusFe8LFOaw01mXeyBjfMVHIeQx0BWaHU/98aURc4+x5I8woRaE3VsMpccyGyJkK MSuIr+NDHpG+XCzIVxGuT3+MijoX3lwn0we6KDualiDNeig62onAIzvl9c1c/dhG 1r/d+AVQYrn8KFXoSbauCFD95iDBw8P1uakv7d5mPYDF5edkHDqV0/f1Q+QC6JP7 Lbf//qCgpiMqUIER0OH/BTGbuGgP9vx1tyCvpeqMKL1P0dNzkKZhnFVYHuxxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU4pJQbaQGo52rnleMd2NNMqO+lrIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk4MzQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wbALMA0GCSqGSIb3DQEBCwUAA4IBAQB4AfeTfV55RjTz2aZVABzWiGFQ3kRnpdl8 PRvSrB9YZeMd1h3JVrONUEztV47ajFvAquaEFI1hJUfJhpaI5PXJLruyNH+vXAvA DErCVhpZN5MqKycACuNSmg7IgzcbFrU5OP17OTqJkb0UD3HRBRr04+hZm4lnoPpn 6mIPsUoZs5FL2sHG6clMM5E9BOxuBYKH1ufxVl8427HAWXgzweFSa0dRjnETfTdW KKD5vqeRU5TW9t6aSlL6qcaWEhGg17DCpxeGxmAy568qsBodVTNiaylpONBf5tFN jnKJVe9eHEyz8LynWCc05O5gWE4pUtCH41i5DK18kc78I5IH9MlS -----END CERTIFICATE-----Generated at Sat Jul 5 08:18:07 2025 by rpki-client