$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa File: AS203619.roa (raw, json) Hash identifier: 0ZQIkvogau/4fyVdjI+7ueyNodhYPVxmFnun3vykur8= Subject key identifier: B9:94:DE:B2:25:F9:2B:FD:FC:4D:33:A4:38:48:03:4B:B6:3B:00:AF Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 715A7633F76006A624CCBB01D27F83D393C4EFB7 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 203619 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5a:76:33:f7:60:06:a6:24:cc:bb:01:d2:7f:83:d3:93:c4:ef:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=B994DEB225F92BFDFC4D33A43848034BB63B00AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cf:3e:88:86:06:26:a0:f6:2c:03:b5:6b:18: 4f:59:74:a6:96:19:61:c1:00:30:13:76:30:1e:87: a1:d1:bf:76:50:4e:d3:ee:52:40:8d:a9:fa:68:69: b5:6b:fe:3a:30:c5:81:aa:aa:1e:c0:3e:e5:fb:b8: 7c:d0:48:ef:c3:60:87:99:07:da:ba:c2:42:a0:33: c1:79:6b:bf:36:49:8b:bd:2a:b0:97:20:2f:8e:02: 87:b3:c3:38:c9:fe:e9:f6:e4:99:a6:33:20:63:89: 3e:b6:78:d2:6f:b0:48:3e:01:5b:d0:15:5e:22:8d: 11:a0:a6:82:2e:b0:f6:53:1c:c9:34:6b:58:fb:e0: d1:06:f7:ca:ca:20:73:bf:6d:19:07:b2:a7:2c:79: 4d:9e:7d:52:13:b8:81:3c:19:54:fc:d7:e9:c9:32: 2b:af:44:48:c8:1e:58:ef:1a:1a:3c:0f:23:da:73: 22:6d:a5:7a:46:8c:a9:9c:87:95:25:df:92:7a:1a: ac:e0:d8:23:7e:01:b6:12:ea:ca:ea:18:1c:68:0d: bb:c5:2e:5e:c8:d3:51:c6:7c:92:bd:f0:b3:da:5e: 36:d4:50:28:2f:5a:12:df:ea:ea:38:82:a5:bb:86: 3c:96:0c:fe:3b:67:7f:57:9e:34:8f:5a:da:f1:9e: b9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:94:DE:B2:25:F9:2B:FD:FC:4D:33:A4:38:48:03:4B:B6:3B:00:AF X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 70:fd:97:61:d7:81:62:31:e8:fd:bc:86:aa:28:5b:96:85:87: 3f:93:64:b6:8c:64:40:5f:e7:50:ac:88:1d:3a:0e:d4:fb:cc: 44:35:74:5d:55:bc:6c:6f:a3:e6:0c:2a:93:7d:c9:04:30:54: 57:11:59:42:83:39:ea:4f:19:05:99:7b:fa:de:7c:af:5e:8e: 7f:c3:0b:ea:6b:93:00:b6:be:58:2f:48:9d:26:5a:1f:c2:1b: 1d:ca:a2:e2:7c:b9:57:9e:89:98:43:92:15:c2:8c:e5:0c:5d: f9:48:61:02:0a:83:98:da:2f:84:d5:d2:e4:b3:34:fb:15:69: 12:f3:b7:af:96:ed:5f:8c:f2:ff:af:e1:06:74:57:e5:83:fe: 2b:05:1e:76:54:fa:e1:3e:d8:c1:2a:f6:00:46:48:7d:73:15: d9:3d:80:14:5e:cb:d4:fa:da:7e:80:84:e8:63:ce:9a:cc:b6: 6c:b6:a2:ff:c5:9e:01:eb:43:4f:61:5e:82:0f:0f:03:4f:e4: 00:be:23:d6:c0:37:7c:d5:c0:cb:11:30:bb:ef:62:cb:0b:4c: 3c:13:3b:de:89:39:98:69:6b:0f:38:41:04:d8:e3:1a:3d:63: e5:ed:13:2a:13:9d:97:f8:88:9e:a9:a6:81:09:79:6a:e9:f5: 6e:68:d4:37 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcVp2M/dgBqYkzLsB0n+D05PE77cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEI5OTRERUIyMjVGOTJCRkRGQzREMzNBNDM4NDgwMzRCQjYzQjAwQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGzz6IhgYmoPYsA7VrGE9ZdKaW GWHBADATdjAeh6HRv3ZQTtPuUkCNqfpoabVr/jowxYGqqh7APuX7uHzQSO/DYIeZ B9q6wkKgM8F5a782SYu9KrCXIC+OAoezwzjJ/un25JmmMyBjiT62eNJvsEg+AVvQ FV4ijRGgpoIusPZTHMk0a1j74NEG98rKIHO/bRkHsqcseU2efVITuIE8GVT81+nJ MiuvREjIHljvGho8DyPacyJtpXpGjKmch5Ul35J6Gqzg2CN+AbYS6srqGBxoDbvF Ll7I01HGfJK98LPaXjbUUCgvWhLf6uo4gqW7hjyWDP47Z39XnjSPWtrxnrkfAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuZTesiX5K/38TTOkOEgDS7Y7AK8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNjE5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBw/Zdh14FiMej9vIaqKFuWhYc/k2S2jGRA X+dQrIgdOg7U+8xENXRdVbxsb6PmDCqTfckEMFRXEVlCgznqTxkFmXv63nyvXo5/ wwvqa5MAtr5YL0idJlofwhsdyqLifLlXnomYQ5IVwozlDF35SGECCoOY2i+E1dLk szT7FWkS87evlu1fjPL/r+EGdFflg/4rBR52VPrhPtjBKvYARkh9cxXZPYAUXsvU +tp+gIToY86azLZstqL/xZ4B60NPYV6CDw8DT+QAviPWwDd81cDLETC772LLC0w8 EzveiTmYaWsPOEEE2OMaPWPl7RMqE52X+IieqaaBCXlq6fVuaNQ3 -----END CERTIFICATE-----Generated at Sat Jul 5 08:24:22 2025 by rpki-client