$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203069.roa File: AS203069.roa (raw, json) Hash identifier: 7yuVUk9Gk/RIWB9bDagcXP8hqlo3fKPwSIEUTsTAc3w= Subject key identifier: BC:94:68:66:12:90:23:77:42:86:E3:70:36:47:F0:B9:C4:6C:44:BE Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3EE5EF62DE3C2A4515093AC5AA9E36BE8B902A39 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203069.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 203069 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e5:ef:62:de:3c:2a:45:15:09:3a:c5:aa:9e:36:be:8b:90:2a:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=BC946866129023774286E3703647F0B9C46C44BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:e4:af:b5:de:fb:03:99:22:10:ee:28:16: d4:d4:b7:bd:e4:dd:2f:8a:0f:93:47:4a:f1:eb:23: df:3d:81:e5:4a:f8:a7:69:cb:39:a1:f2:f1:3c:44: bc:b6:45:94:6e:38:fa:2b:ef:b5:b2:48:70:5b:aa: 21:8d:26:7a:ff:9e:6b:b9:54:f2:a6:fd:11:b6:71: 7b:b8:d0:9a:97:b8:91:61:06:32:52:c7:e4:3d:e8: 56:be:93:48:ec:dc:48:ef:09:93:17:18:27:ed:43: f0:f5:fa:67:ea:71:bd:55:5a:f6:78:71:79:8a:06: bd:b1:47:04:d7:51:83:84:43:f2:83:71:75:c9:f1: b8:d9:14:96:72:83:c6:58:48:d0:94:68:e6:2e:74: 77:90:e3:65:cf:f4:27:ec:6a:67:83:62:58:ec:51: f2:9a:1e:f7:5d:6a:5a:5b:3a:a8:23:73:1c:17:33: f5:ca:e0:06:64:ef:aa:07:32:a8:f0:8d:41:4f:f9: e4:be:1d:b3:91:c6:e8:6b:c9:81:ef:51:d6:26:e5: ea:3b:dc:0d:c8:97:41:03:43:78:86:eb:c1:53:48: 52:1a:9d:49:58:76:a5:bd:38:8d:48:0f:af:8e:58: ae:64:98:a1:af:a2:f2:5f:27:24:cb:3f:c9:a5:8d: 68:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:94:68:66:12:90:23:77:42:86:E3:70:36:47:F0:B9:C4:6C:44:BE X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203069.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3c:30:0e:b9:a8:13:e3:6e:f3:89:3c:b6:ae:75:12:91:be:48: 79:35:f4:89:53:8f:a8:87:d2:f4:8e:19:e3:41:fc:2d:dd:d3: 0c:62:b9:e5:db:a4:0b:8e:8b:9a:c5:bc:80:21:8b:17:a0:29: bb:98:31:02:25:6f:6a:16:0b:a4:af:73:1f:d7:2c:3c:aa:06: 2b:be:f7:e4:5f:15:ca:a3:bd:d8:43:10:60:58:6f:df:a2:cd: de:23:c4:2b:0a:04:cb:25:6c:34:42:72:8c:a3:ce:4f:f8:d7: 70:94:c0:c3:9b:89:91:9a:bc:dd:41:90:5c:d4:51:49:6f:cc: 56:01:1b:a1:87:6f:e7:bc:76:18:76:39:d9:f4:62:b1:a9:a7: 7f:89:a5:05:ea:2b:17:a5:c2:b1:03:fb:21:fa:ec:cc:46:26: c5:17:07:4f:a3:61:b7:0d:42:ed:d4:9a:44:93:b0:a9:d9:b9: 08:82:48:40:b4:55:2f:27:3d:18:3a:f5:c6:d3:bb:3f:72:85: d2:54:54:6b:a0:61:98:84:17:ca:74:40:ef:7b:25:a0:50:57: 0d:b3:b1:04:87:1f:e0:9c:46:73:9b:7f:2a:78:1b:aa:5b:1a: cf:1d:b1:0a:7d:a3:eb:11:0c:3c:c8:85:ea:b8:10:b8:06:69: 0f:07:0c:04 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPuXvYt48KkUVCTrFqp42vouQKjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKEJDOTQ2ODY2MTI5MDIzNzc0Mjg2RTM3MDM2NDdGMEI5QzQ2QzQ0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFguSvtd77A5kiEO4oFtTUt73k 3S+KD5NHSvHrI989geVK+Kdpyzmh8vE8RLy2RZRuOPor77WySHBbqiGNJnr/nmu5 VPKm/RG2cXu40JqXuJFhBjJSx+Q96Fa+k0js3EjvCZMXGCftQ/D1+mfqcb1VWvZ4 cXmKBr2xRwTXUYOEQ/KDcXXJ8bjZFJZyg8ZYSNCUaOYudHeQ42XP9CfsameDYljs UfKaHvddalpbOqgjcxwXM/XK4AZk76oHMqjwjUFP+eS+HbORxuhryYHvUdYm5eo7 3A3Il0EDQ3iG68FTSFIanUlYdqW9OI1ID6+OWK5kmKGvovJfJyTLP8mljWhjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvJRoZhKQI3dChuNwNkfwucRsRL4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzMDY5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA8MA65qBPjbvOJPLaudRKRvkh5NfSJU4+o h9L0jhnjQfwt3dMMYrnl26QLjouaxbyAIYsXoCm7mDECJW9qFgukr3Mf1yw8qgYr vvfkXxXKo73YQxBgWG/fos3eI8QrCgTLJWw0QnKMo85P+NdwlMDDm4mRmrzdQZBc 1FFJb8xWARuhh2/nvHYYdjnZ9GKxqad/iaUF6isXpcKxA/sh+uzMRibFFwdPo2G3 DULt1JpEk7Cp2bkIgkhAtFUvJz0YOvXG07s/coXSVFRroGGYhBfKdEDveyWgUFcN s7EEhx/gnEZzm38qeBuqWxrPHbEKfaPrEQw8yIXquBC4BmkPBwwE -----END CERTIFICATE-----Generated at Sat Jul 5 08:26:08 2025 by rpki-client