$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203232.roa File: AS203232.roa (raw, json) Hash identifier: wSkfx7P/DEZHVaNw6yvm3BrLuAuf7hlm4+waNyqYlGA= Subject key identifier: 6F:9D:A6:00:5F:9A:5C:BD:A3:77:C5:8E:25:A9:F3:A2:44:83:72:D5 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 66F4A98F8E05C347342CC1ABDC40055BEB557BE0 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203232.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 203232 IP address blocks: 2a07:54c1:1000::/36 maxlen: 48 2a07:54c4:1754::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:f4:a9:8f:8e:05:c3:47:34:2c:c1:ab:dc:40:05:5b:eb:55:7b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=6F9DA6005F9A5CBDA377C58E25A9F3A2448372D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:cd:c6:ba:8e:bc:e8:6c:2d:2d:22:84:ed: a4:7f:bd:24:b0:7b:39:45:fc:18:de:92:40:0f:83: a7:0a:40:63:f7:6b:40:38:26:b7:cf:2f:49:04:be: 53:2d:3c:69:77:15:b2:d6:08:fa:5d:6e:97:33:62: d9:c5:f9:df:19:19:41:44:99:f9:ed:63:9e:bd:ae: 8d:2d:23:76:f7:23:ae:7b:88:a4:83:bc:56:ed:a5: 06:8a:99:dd:fe:99:36:25:9b:fd:a2:b8:86:b3:81: 68:76:3b:47:3c:2c:78:04:97:da:5f:72:e5:31:e1: cf:61:11:fc:7c:95:c3:71:00:d5:fc:7d:5a:1d:61: c0:79:88:21:6e:19:b4:8d:34:64:b0:64:ed:7e:2d: 5c:70:86:51:e4:72:06:1e:84:29:17:a5:0f:2e:99: 70:f1:2a:ec:fa:fc:03:10:d3:32:ec:8d:17:b2:aa: d2:e7:04:1d:74:57:d3:92:fd:c4:bc:3b:a2:dd:47: 33:5b:df:92:d1:5b:b9:d3:13:37:1b:aa:d4:97:47: e0:82:25:e5:80:16:9f:e7:74:86:2b:52:b5:a0:54: 77:9e:08:ae:1c:1a:5c:22:f3:ee:10:84:60:0e:12: be:71:46:cf:fd:bf:f0:42:81:a9:71:39:86:73:e3: d5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9D:A6:00:5F:9A:5C:BD:A3:77:C5:8E:25:A9:F3:A2:44:83:72:D5 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:1000::/36 2a07:54c4:1754::/48 Signature Algorithm: sha256WithRSAEncryption 46:05:53:6e:58:16:a9:06:0a:5a:c7:b1:4a:80:66:d5:82:65: a1:d4:2d:3a:fe:4f:3f:76:54:ad:0c:ef:15:99:18:55:1b:04: de:3e:62:c3:90:8b:24:b4:46:de:89:8d:98:e2:91:4a:f5:a7: a3:b0:6e:6a:c3:e6:78:ba:ba:bf:8d:4a:c9:35:59:33:6e:54: 3e:7e:42:95:86:2e:8a:5e:4a:64:db:91:06:b0:6e:f3:53:77: 7d:aa:e5:77:81:1e:fd:b2:ef:64:4d:6f:bf:24:0d:b8:ac:1d: ea:c2:90:d1:b6:76:ad:99:1f:01:84:ac:99:0c:bf:bc:dc:3e: f5:5a:6c:35:48:7a:21:27:74:e9:51:92:70:d6:f9:13:58:5a: 11:d8:4c:d4:c7:6b:42:15:e5:eb:bb:17:94:3a:d9:24:4e:81: 87:25:c0:f1:cd:9e:79:2e:4f:f4:c3:b6:b2:4c:4b:36:55:e4: c5:bd:7f:68:52:38:b2:5e:24:bb:e5:ec:e7:eb:8b:6a:32:8b: cc:b2:ea:c3:2c:0b:0d:55:24:1d:56:04:ed:d4:2e:97:56:83: 1b:8d:8e:89:1c:95:10:be:3c:fe:b7:20:a4:6e:9b:5f:2d:51: 94:d7:47:da:2d:65:c5:3d:b2:ca:e1:a5:91:1f:c1:97:da:29: 00:ff:a4:b7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUZvSpj44Fw0c0LMGr3EAFW+tVe+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDZGOURBNjAwNUY5QTVDQkRBMzc3QzU4RTI1QTlGM0EyNDQ4MzcyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Kc3Guo686GwtLSKE7aR/vSSw ezlF/BjekkAPg6cKQGP3a0A4JrfPL0kEvlMtPGl3FbLWCPpdbpczYtnF+d8ZGUFE mfntY569ro0tI3b3I657iKSDvFbtpQaKmd3+mTYlm/2iuIazgWh2O0c8LHgEl9pf cuUx4c9hEfx8lcNxANX8fVodYcB5iCFuGbSNNGSwZO1+LVxwhlHkcgYehCkXpQ8u mXDxKuz6/AMQ0zLsjReyqtLnBB10V9OS/cS8O6LdRzNb35LRW7nTEzcbqtSXR+CC JeWAFp/ndIYrUrWgVHeeCK4cGlwi8+4QhGAOEr5xRs/9v/BCgalxOYZz49X1AgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUb52mAF+aXL2jd8WOJanzokSDctUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzMjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwYEKgdU wRADBwAqB1TEF1QwDQYJKoZIhvcNAQELBQADggEBAEYFU25YFqkGClrHsUqAZtWC ZaHULTr+Tz92VK0M7xWZGFUbBN4+YsOQiyS0Rt6JjZjikUr1p6OwbmrD5ni6ur+N Ssk1WTNuVD5+QpWGLopeSmTbkQawbvNTd32q5XeBHv2y72RNb78kDbisHerCkNG2 dq2ZHwGErJkMv7zcPvVabDVIeiEndOlRknDW+RNYWhHYTNTHa0IV5eu7F5Q62SRO gYclwPHNnnkuT/TDtrJMSzZV5MW9f2hSOLJeJLvl7Ofri2oyi8yy6sMsCw1VJB1W BO3ULpdWgxuNjokclRC+PP63IKRum18tUZTXR9otZcU9ssrhpZEfwZfaKQD/pLc= -----END CERTIFICATE-----Generated at Sat Jul 5 08:14:21 2025 by rpki-client