$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199765.roa File: AS199765.roa (raw, json) Hash identifier: ni7RZx/6Wrxdy+reY/67DaWaPrchHuC8J0bxWrv0OnA= Subject key identifier: 11:53:78:FA:77:36:B0:F0:73:E8:21:60:62:F4:DB:40:B3:E2:5C:24 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1A944096279D01FA35BD323B2B8D698C8C3A7EDB Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199765.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 199765 IP address blocks: 2a07:54c4:1757::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:94:40:96:27:9d:01:fa:35:bd:32:3b:2b:8d:69:8c:8c:3a:7e:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=115378FA7736B0F073E8216062F4DB40B3E25C24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:25:04:76:ab:c3:14:aa:52:d0:23:0c:7a:1d: f5:1e:9c:1a:1d:2d:3c:c6:6c:4d:8c:b4:eb:c5:8a: fb:85:41:1f:94:66:9d:71:61:49:be:d0:b1:63:87: 2f:4f:a5:de:fc:1b:7f:5e:32:d8:d6:85:2a:36:a1: db:3a:82:8c:cc:94:78:4f:ca:94:a5:5a:87:17:06: e6:48:5c:6e:b1:99:e5:2d:9e:9c:29:79:84:2f:3e: 5e:50:32:a4:c8:cc:19:c3:c4:e0:ea:7e:8e:a1:c7: c0:87:ed:0d:2b:a4:e0:ac:e1:3d:ff:84:ee:2d:7e: 3d:e8:54:c8:0b:e6:b5:30:53:80:a5:f4:fe:05:f5: 4f:29:2b:45:f0:06:bb:f5:43:5d:5f:6b:34:22:42: e7:d2:a7:22:ee:94:14:46:50:8e:27:3a:4e:a6:58: e0:59:7f:10:49:33:96:12:64:f7:6d:09:29:89:85: f9:de:96:36:b7:ec:a9:87:ca:a1:6f:aa:49:4c:59: 2b:85:96:74:c1:60:e1:9d:a2:5e:d6:75:f9:6c:b9: af:3f:1c:35:12:fb:6e:bd:32:d7:b8:a2:b2:4a:e6: 41:64:35:d1:a1:e9:b1:a4:5d:b4:95:9c:00:7d:ce: ca:38:1e:1e:ae:85:1e:f2:81:cf:a5:f1:a4:49:d2: 5b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:53:78:FA:77:36:B0:F0:73:E8:21:60:62:F4:DB:40:B3:E2:5C:24 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199765.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1757::/48 Signature Algorithm: sha256WithRSAEncryption 73:70:b8:79:0f:fb:e1:c3:b7:33:c1:fd:45:49:03:17:c4:28: b5:5b:04:e1:40:be:de:56:23:75:aa:6e:12:33:74:3f:25:09: c9:9e:4e:6c:dc:19:53:e4:c1:0b:d4:be:0f:8a:52:6e:0f:3b: c6:64:3f:06:44:42:b8:3a:36:10:d0:8f:76:f6:47:09:00:48: 4d:b7:d4:8b:44:fa:81:6b:49:ce:12:48:b7:3d:24:50:75:35: 4a:53:b2:2d:09:08:24:c2:40:c6:35:83:f9:4e:1f:be:d2:a0: a9:e1:e6:1d:4d:6c:ed:37:3b:18:16:af:3b:ee:ee:70:1d:dc: 7d:24:c1:fa:86:55:82:54:7f:f8:bc:c3:80:20:ea:c1:c2:b8: 95:19:d4:38:8a:87:36:a6:a6:86:43:70:b6:49:83:23:a0:45: dd:aa:ff:25:1d:15:69:0b:85:21:ec:5e:44:e0:c9:06:04:42: 89:c5:95:9d:a1:00:bf:dd:39:f8:2b:51:07:74:37:61:65:3b: 78:97:7c:b8:07:eb:f7:15:77:30:23:1d:5b:b7:15:2d:cd:bc: 02:c9:42:d5:81:fa:23:d3:79:7d:a5:42:41:f2:8d:52:af:2c: 34:f6:e3:b2:81:a2:9e:d4:a9:05:b6:5b:f8:56:d9:18:e9:57: a5:63:78:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGpRAliedAfo1vTI7K41pjIw6ftswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKDExNTM3OEZBNzczNkIwRjA3M0U4MjE2MDYyRjREQjQwQjNFMjVDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/JQR2q8MUqlLQIwx6HfUenBod LTzGbE2MtOvFivuFQR+UZp1xYUm+0LFjhy9Ppd78G39eMtjWhSo2ods6gozMlHhP ypSlWocXBuZIXG6xmeUtnpwpeYQvPl5QMqTIzBnDxODqfo6hx8CH7Q0rpOCs4T3/ hO4tfj3oVMgL5rUwU4Cl9P4F9U8pK0XwBrv1Q11fazQiQufSpyLulBRGUI4nOk6m WOBZfxBJM5YSZPdtCSmJhfnelja37KmHyqFvqklMWSuFlnTBYOGdol7Wdflsua8/ HDUS+269Mte4orJK5kFkNdGh6bGkXbSVnAB9zso4Hh6uhR7ygc+l8aRJ0lvNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEVN4+nc2sPBz6CFgYvTbQLPiXCQwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk5NzY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdXMA0GCSqGSIb3DQEBCwUAA4IBAQBzcLh5D/vhw7czwf1FSQMXxCi1WwThQL7e ViN1qm4SM3Q/JQnJnk5s3BlT5MEL1L4PilJuDzvGZD8GREK4OjYQ0I929kcJAEhN t9SLRPqBa0nOEki3PSRQdTVKU7ItCQgkwkDGNYP5Th++0qCp4eYdTWztNzsYFq87 7u5wHdx9JMH6hlWCVH/4vMOAIOrBwriVGdQ4ioc2pqaGQ3C2SYMjoEXdqv8lHRVp C4Uh7F5E4MkGBEKJxZWdoQC/3Tn4K1EHdDdhZTt4l3y4B+v3FXcwIx1btxUtzbwC yULVgfoj03l9pUJB8o1Sryw09uOygaKe1KkFtlv4VtkY6VelY3hw -----END CERTIFICATE-----Generated at Sat Jul 5 08:21:25 2025 by rpki-client