$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200227.roa File: AS200227.roa (raw, json) Hash identifier: O8BjDJSFHj1bHhCQ7gk4hzPyoYhPrNuncftxu3L4l7Y= Subject key identifier: E6:A8:44:F4:47:2B:93:35:11:57:A1:48:82:CC:0D:AD:8F:23:8B:E6 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2005F661265F26EBE918E3024ED223919F03824C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200227.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 200227 IP address blocks: 2a07:54c1:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:05:f6:61:26:5f:26:eb:e9:18:e3:02:4e:d2:23:91:9f:03:82:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=E6A844F4472B93351157A14882CC0DAD8F238BE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:82:ab:77:c3:34:45:cb:28:80:30:74:30: e3:52:b0:69:fb:0f:d4:e5:a1:72:40:32:ff:6d:6c: 66:e0:a7:a2:3a:d6:0c:7e:9b:98:43:96:a4:67:d6: e5:65:46:84:ce:0b:2c:a3:5f:fc:5e:cf:30:e2:20: 93:3c:3d:7b:4d:92:dd:70:21:7a:97:7d:80:aa:f5: 7b:d0:ca:f2:c2:e3:20:b7:92:e7:49:e0:c2:63:40: c9:fa:35:d2:33:f2:15:8c:91:cf:9f:80:05:1c:6c: 97:54:56:00:39:f0:47:06:10:03:93:f4:7b:8e:6a: ec:4e:24:d0:49:2f:1f:0a:79:f8:8b:d5:f3:dd:41: 23:e7:a3:db:22:39:4f:97:54:79:b2:8e:f7:9f:7a: 0e:46:64:bb:f5:6a:2e:d1:66:df:8b:bf:94:7f:fa: 9f:34:be:a4:89:9e:b5:b5:d9:50:95:8a:a1:e1:cf: a5:d5:6d:ed:a4:e9:6b:27:bc:3e:cb:4f:78:ba:7b: 08:8a:9a:82:1e:eb:db:97:c5:62:92:1a:19:d9:fa: b1:93:5c:ec:42:07:18:b5:ab:5c:93:7d:b6:28:b8: b7:06:64:12:5a:29:a8:13:a1:95:f9:76:51:72:ff: ad:2c:ea:8a:98:5a:b5:2c:88:fb:4d:7b:1b:24:66: 1b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A8:44:F4:47:2B:93:35:11:57:A1:48:82:CC:0D:AD:8F:23:8B:E6 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200227.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4500::/40 Signature Algorithm: sha256WithRSAEncryption 99:60:65:3a:32:ba:ee:c4:c9:c4:d3:30:c5:94:6d:d6:d8:ac: c9:64:bf:77:5e:ad:e7:e9:0e:7f:72:d6:1f:d0:a4:d0:3c:23: 0c:8a:25:9c:ff:58:14:de:d1:82:53:c5:5c:df:44:74:ad:f8: 5d:f0:7d:a5:5d:ae:d4:07:8a:00:b2:1f:17:61:f1:ed:e6:e7: ad:c2:31:e5:f8:dc:2d:f9:17:b6:02:42:4e:8c:d7:7e:4a:11: d8:51:6a:f0:bb:d6:58:b1:9e:70:12:ef:6d:9b:09:bf:9a:ad: 3a:69:8d:55:b0:e7:ff:12:89:b8:68:e2:21:bb:16:b4:87:a3: 07:2f:46:34:d1:84:e3:7c:f3:4f:de:1d:ca:ed:4b:52:89:c1: 1c:f9:a2:c4:60:f3:a4:71:9e:bf:e5:1a:c4:a3:a2:d9:7a:fc: 7e:fc:01:65:c4:9e:fc:d2:25:b2:24:97:f8:e0:15:93:4c:e3: 60:4c:63:e7:b6:75:77:9b:5f:a5:df:0a:4a:06:31:75:9b:3b: c1:83:2a:f3:9b:23:0c:b0:0c:40:94:16:9c:60:10:1a:73:c9: 73:4a:e9:de:99:e9:c9:4c:64:54:d3:c9:00:2b:96:3c:91:29: e1:70:f2:44:2c:2a:37:cb:22:1f:c7:bf:c3:fd:8f:09:be:b4: 99:91:1e:0a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIAX2YSZfJuvpGOMCTtIjkZ8DgkwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKEU2QTg0NEY0NDcyQjkzMzUxMTU3QTE0ODgyQ0MwREFEOEYyMzhCRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIFoKrd8M0RcsogDB0MONSsGn7 D9TloXJAMv9tbGbgp6I61gx+m5hDlqRn1uVlRoTOCyyjX/xezzDiIJM8PXtNkt1w IXqXfYCq9XvQyvLC4yC3kudJ4MJjQMn6NdIz8hWMkc+fgAUcbJdUVgA58EcGEAOT 9HuOauxOJNBJLx8KefiL1fPdQSPno9siOU+XVHmyjvefeg5GZLv1ai7RZt+Lv5R/ +p80vqSJnrW12VCViqHhz6XVbe2k6WsnvD7LT3i6ewiKmoIe69uXxWKSGhnZ+rGT XOxCBxi1q1yTfbYouLcGZBJaKagToZX5dlFy/60s6oqYWrUsiPtNexskZhupAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5qhE9EcrkzURV6FIgswNrY8ji+YwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAwMjI3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUUwDQYJKoZIhvcNAQELBQADggEBAJlgZToyuu7EycTTMMWUbdbYrMlkv3derefp Dn9y1h/QpNA8IwyKJZz/WBTe0YJTxVzfRHSt+F3wfaVdrtQHigCyHxdh8e3m563C MeX43C35F7YCQk6M135KEdhRavC71lixnnAS722bCb+arTppjVWw5/8Sibho4iG7 FrSHowcvRjTRhON880/eHcrtS1KJwRz5osRg86Rxnr/lGsSjotl6/H78AWXEnvzS JbIkl/jgFZNM42BMY+e2dXebX6XfCkoGMXWbO8GDKvObIwywDECUFpxgEBpzyXNK 6d6Z6clMZFTTyQArljyRKeFw8kQsKjfLIh/Hv8P9jwm+tJmRHgo= -----END CERTIFICATE-----Generated at Sat Jul 5 08:19:42 2025 by rpki-client