$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa File: AS203458.roa (raw, json) Hash identifier: F7xB84d/u7qHNQ09gnl6/YxxVk+oTu9Soe68pGI3qz4= Subject key identifier: AE:5C:03:86:CA:B4:D6:1C:54:7F:56:BE:92:C4:40:72:BF:29:D4:C4 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2E2B033D9A557BE70715F5FDC7CECDD38D2B5B14 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 203458 IP address blocks: 2a07:54c1:3300::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:175a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:2b:03:3d:9a:55:7b:e7:07:15:f5:fd:c7:ce:cd:d3:8d:2b:5b:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=AE5C0386CAB4D61C547F56BE92C44072BF29D4C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:52:06:23:98:7a:d0:12:2b:a9:86:c1:e4:c1: f3:7f:ab:b8:93:b5:bd:79:fc:4b:ba:7e:cf:9b:d7: 3b:a4:42:fa:6c:f7:9f:05:3d:8d:14:a7:72:e7:53: 7f:bc:28:90:43:bc:08:01:14:0a:7f:7e:01:6b:b3: a6:54:0e:d2:3b:28:f5:06:f0:89:2c:6d:86:6b:ff: 8b:b2:54:fb:28:79:a3:56:3a:ce:97:49:1e:9a:dc: a8:3e:cc:25:3f:33:8b:ce:04:f8:2d:30:c9:0d:90: b9:1d:69:c5:72:1a:5a:af:c0:52:2f:dc:89:cc:04: 15:85:7e:a5:e1:69:75:4c:89:88:e3:09:55:0c:5b: b6:7f:a5:fc:fc:4d:9b:10:77:8e:3e:c6:c1:87:80: 96:78:30:a3:0c:45:2b:ae:8f:ab:e8:1d:93:25:e8: dc:2b:0d:f3:4b:f1:30:62:dd:09:8b:6d:ef:00:38: 65:88:07:41:92:b0:c6:2e:a5:fc:25:6e:53:0b:08: d1:55:bd:c2:2d:5f:38:a2:e8:42:f3:6a:a0:35:93: c5:eb:2b:90:21:ba:ef:8c:39:b7:ed:7d:f7:ad:70: 31:bf:e6:b7:96:ef:35:2d:f3:bb:bd:9a:35:07:da: 27:95:6c:16:dd:ef:43:4f:43:95:63:4f:09:e0:26: 6c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5C:03:86:CA:B4:D6:1C:54:7F:56:BE:92:C4:40:72:BF:29:D4:C4 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3300::/40 2a07:54c2:b00b::/48 2a07:54c4:175a::/48 Signature Algorithm: sha256WithRSAEncryption 44:7b:5a:b7:9e:93:4b:e8:bb:7f:09:73:93:31:16:31:45:6f: 10:69:00:8c:45:ac:58:af:e1:3c:65:39:84:c5:5c:c6:48:69: 71:6b:b6:2b:14:35:41:3e:ae:29:ca:97:87:64:22:24:b8:d1: 8d:5c:60:1d:1c:43:8d:22:3c:65:a5:72:b1:2f:7a:39:99:64: 15:24:95:ba:32:81:e5:8f:bb:1b:27:7d:fd:01:82:8b:b6:39: 29:e6:ea:7c:72:b2:77:d1:bd:69:37:11:aa:44:67:0a:0a:f5: 19:e5:06:02:82:5f:30:56:30:b3:03:25:5d:0a:d6:39:83:cc: bf:f0:46:d8:d8:8e:22:cd:62:2f:24:57:af:5c:22:77:b6:72: 07:28:71:fd:8a:fa:48:3f:bd:35:2e:b2:e1:9d:b8:f2:24:cf: 68:46:ea:e9:9a:18:f9:cc:69:44:4e:82:20:4d:48:d5:ad:2e: 26:8e:69:22:f6:cd:89:26:2c:4b:9b:fa:cc:0b:14:17:65:5a: f5:9d:e8:99:58:d9:64:61:31:94:0f:fb:72:f5:2f:01:7b:a4: 8b:c2:6f:2b:aa:8b:92:ec:4b:f7:8d:2d:57:38:24:32:2e:6c: 93:a3:bf:eb:04:32:88:47:d0:aa:7a:c2:53:07:eb:c4:4b:83: d8:eb:2e:09 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIULisDPZpVe+cHFfX9x87N040rWxQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKEFFNUMwMzg2Q0FCNEQ2MUM1NDdGNTZCRTkyQzQ0MDcyQkYyOUQ0QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxUgYjmHrQEiuphsHkwfN/q7iT tb15/Eu6fs+b1zukQvps958FPY0Up3LnU3+8KJBDvAgBFAp/fgFrs6ZUDtI7KPUG 8IksbYZr/4uyVPsoeaNWOs6XSR6a3Kg+zCU/M4vOBPgtMMkNkLkdacVyGlqvwFIv 3InMBBWFfqXhaXVMiYjjCVUMW7Z/pfz8TZsQd44+xsGHgJZ4MKMMRSuuj6voHZMl 6NwrDfNL8TBi3QmLbe8AOGWIB0GSsMYupfwlblMLCNFVvcItXzii6ELzaqA1k8Xr K5Ahuu+MObftffetcDG/5reW7zUt87u9mjUH2ieVbBbd70NPQ5VjTwngJmyxAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUrlwDhsq01hxUf1a+ksRAcr8p1MQwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNDU4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAAjAaAwYAKgdU wTMDBwAqB1TCsAsDBwAqB1TEF1owDQYJKoZIhvcNAQELBQADggEBAER7Wreek0vo u38Jc5MxFjFFbxBpAIxFrFiv4TxlOYTFXMZIaXFrtisUNUE+rinKl4dkIiS40Y1c YB0cQ40iPGWlcrEvejmZZBUklboygeWPuxsnff0Bgou2OSnm6nxysnfRvWk3EapE ZwoK9RnlBgKCXzBWMLMDJV0K1jmDzL/wRtjYjiLNYi8kV69cIne2cgcocf2K+kg/ vTUusuGduPIkz2hG6umaGPnMaUROgiBNSNWtLiaOaSL2zYkmLEub+swLFBdlWvWd 6JlY2WRhMZQP+3L1LwF7pIvCbyuqi5LsS/eNLVc4JDIubJOjv+sEMohH0Kp6wlMH 68RLg9jrLgk= -----END CERTIFICATE-----Generated at Sat Jul 5 08:16:00 2025 by rpki-client