$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200975.roa File: AS200975.roa (raw, json) Hash identifier: xznMPVeaa4K+aMUzlFip1ZNuu2Wd7SfauKNbqmulsDg= Subject key identifier: 31:C8:83:04:F9:56:14:BB:03:85:73:B0:FB:27:57:A6:B0:5B:8F:F2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4BB886BFD026312D143B6900B7156BFEBAFEFD3C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200975.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 200975 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b8:86:bf:d0:26:31:2d:14:3b:69:00:b7:15:6b:fe:ba:fe:fd:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=31C88304F95614BB038573B0FB2757A6B05B8FF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5d:ca:e5:da:85:8c:56:5f:2a:a8:66:7b:13: 0c:2b:4e:30:27:09:2d:59:99:b0:6e:4a:8d:ba:01: d9:30:64:77:5a:7e:7d:76:bd:88:f6:31:54:b2:27: ac:cf:a1:98:2c:9a:11:a9:a4:c0:75:41:74:e0:6e: a5:a0:ff:a1:ef:3e:97:8e:6d:a1:4e:12:a8:32:8a: 19:96:15:ca:20:2f:ab:56:fd:d5:e1:d2:a2:d0:4e: 9b:6d:ae:1a:79:4b:f9:ea:7b:51:3c:49:11:a8:01: e8:11:7f:30:8a:7a:ee:b5:70:d4:34:1d:1c:aa:a7: a9:c3:9e:62:63:96:d9:4e:7b:44:be:23:4b:77:5b: c7:c8:83:66:78:be:7d:19:82:23:05:89:91:28:8c: 4b:61:b5:af:bf:7f:60:cb:53:7a:e4:c8:49:69:2a: b4:2b:f1:ff:fb:06:e2:ed:ce:ad:8a:33:4f:e0:fe: d9:f7:73:8e:e7:45:bd:34:8a:c1:9b:57:22:63:89: e5:62:c6:f0:06:6f:ae:0c:c1:99:3f:35:c8:dd:6d: 8b:3f:f0:b2:6e:1b:a3:aa:bb:d2:4f:ad:ad:a1:a6: 47:80:4f:01:0c:c3:9b:62:b3:1d:c3:b6:cd:94:b0: b6:d9:3b:fa:90:f5:86:80:00:4e:67:dc:e2:61:2e: dd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C8:83:04:F9:56:14:BB:03:85:73:B0:FB:27:57:A6:B0:5B:8F:F2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200975.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 43:d0:a0:c7:2c:fe:3e:49:2e:9b:da:d5:b9:7f:0d:45:54:7d: 18:9b:e6:89:c3:58:9c:b9:49:a9:2c:ca:c5:43:da:9b:fe:c6: a0:00:7f:e3:9a:2b:da:ad:43:eb:3a:3f:8c:c9:9b:7b:4e:e3: cb:99:80:5b:ed:da:e3:43:45:e0:34:53:d4:bf:f0:7c:0b:55: 19:0d:d0:b5:4f:78:14:36:0a:a0:9d:ff:19:67:67:60:34:a2: d8:d2:e3:8c:e2:b4:9d:0a:3d:b9:65:4e:74:55:01:89:e0:1b: e5:91:9d:a0:c1:d3:eb:b1:7d:0e:dd:0f:c0:37:57:53:0f:57: c7:54:4a:aa:38:b3:2c:49:a4:5e:fc:6d:6e:ad:e2:dc:ef:d5: 24:78:36:92:54:67:cb:31:5b:56:37:c2:52:41:e9:b2:76:b6: 04:be:6e:6c:1c:6f:e9:92:5e:34:74:74:9d:0d:96:10:4f:7f: af:a1:16:1c:a6:fe:41:ae:a3:a7:bf:de:c1:b4:81:49:5d:b4: f2:9f:4d:af:5b:e5:c8:5d:63:df:16:5d:03:af:65:ce:db:00: a2:07:76:fe:2d:98:89:2e:9b:b0:a4:7e:19:9e:e3:5e:ed:ee: 18:12:4c:42:19:1f:ab:47:a0:df:ea:0b:4e:27:f4:85:04:1f: f5:95:9f:b7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUS7iGv9AmMS0UO2kAtxVr/rr+/TwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKDMxQzg4MzA0Rjk1NjE0QkIwMzg1NzNCMEZCMjc1N0E2QjA1QjhGRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDXcrl2oWMVl8qqGZ7EwwrTjAn CS1ZmbBuSo26AdkwZHdafn12vYj2MVSyJ6zPoZgsmhGppMB1QXTgbqWg/6HvPpeO baFOEqgyihmWFcogL6tW/dXh0qLQTpttrhp5S/nqe1E8SRGoAegRfzCKeu61cNQ0 HRyqp6nDnmJjltlOe0S+I0t3W8fIg2Z4vn0ZgiMFiZEojEthta+/f2DLU3rkyElp KrQr8f/7BuLtzq2KM0/g/tn3c47nRb00isGbVyJjieVixvAGb64MwZk/NcjdbYs/ 8LJuG6Oqu9JPra2hpkeATwEMw5tisx3Dts2UsLbZO/qQ9YaAAE5n3OJhLt1PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMciDBPlWFLsDhXOw+ydXprBbj/IwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAwOTc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBD0KDHLP4+SS6b2tW5fw1FVH0Ym+aJw1ic uUmpLMrFQ9qb/sagAH/jmivarUPrOj+MyZt7TuPLmYBb7drjQ0XgNFPUv/B8C1UZ DdC1T3gUNgqgnf8ZZ2dgNKLY0uOM4rSdCj25ZU50VQGJ4BvlkZ2gwdPrsX0O3Q/A N1dTD1fHVEqqOLMsSaRe/G1ureLc79UkeDaSVGfLMVtWN8JSQemydrYEvm5sHG/p kl40dHSdDZYQT3+voRYcpv5BrqOnv97BtIFJXbTyn02vW+XIXWPfFl0Dr2XO2wCi B3b+LZiJLpuwpH4ZnuNe7e4YEkxCGR+rR6Df6gtOJ/SFBB/1lZ+3 -----END CERTIFICATE-----Generated at Sat Jul 5 08:15:13 2025 by rpki-client