$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204005.roa File: AS204005.roa (raw, json) Hash identifier: H0A3Qwdm1idhMlUAnWrInlbm03TRZL/xO2xQPlBCyug= Subject key identifier: 1E:EE:F3:14:18:C1:56:91:34:4D:19:C1:F0:F5:1F:16:B6:0E:AE:9F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0284808F7D864FC2500C6B2BC42799C95B9C499C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204005.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 204005 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:84:80:8f:7d:86:4f:c2:50:0c:6b:2b:c4:27:99:c9:5b:9c:49:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=1EEEF31418C15691344D19C1F0F51F16B60EAE9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e2:a3:3a:25:2a:ed:45:9d:05:17:66:aa:1b: 97:d0:f0:22:6f:97:c1:17:45:f9:0c:cc:0d:72:0b: b8:ae:1d:ef:2c:ba:fd:f5:b4:f9:32:a5:b0:17:e7: 70:4a:f4:69:69:21:c6:94:ad:4f:13:eb:d8:9a:17: c1:1c:d1:6a:e4:63:98:27:95:88:54:5c:17:bc:cb: 5f:49:65:b6:1c:b1:e8:11:be:a9:1c:6e:04:ef:e8: 79:c9:eb:75:14:aa:3d:f3:07:e9:61:d7:c3:9a:5d: 83:2a:0b:00:96:14:9e:c6:e1:17:fb:4c:a8:43:4b: 20:ad:6c:ea:fd:d4:94:0e:e0:23:e9:0d:aa:7e:be: 58:92:6a:2f:59:f8:74:de:17:c2:d7:c8:ce:8b:df: 6a:e2:6b:e0:f7:0c:ee:e7:bb:9d:f4:8d:85:3d:8c: 54:a5:66:34:24:c8:cd:37:14:b3:cb:cd:56:b5:ed: ce:b6:c7:b9:e9:f5:a4:a7:2a:52:db:4f:43:53:98: 15:bb:70:47:60:28:94:42:f2:c2:22:61:a8:c4:f6: 1c:c1:ed:98:89:58:db:4e:19:e7:8b:2d:1e:46:ff: 3d:5b:5f:71:fe:c2:dc:3e:2a:75:31:4c:98:8e:32: a6:e5:da:10:6d:9b:52:38:ad:17:e5:a3:8a:f8:14: b2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EE:F3:14:18:C1:56:91:34:4D:19:C1:F0:F5:1F:16:B6:0E:AE:9F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3f:17:0e:99:40:e6:ba:69:9d:1b:ea:71:a1:38:ac:1b:64:32: 6c:a7:14:43:de:62:d1:6c:fb:b6:a6:8b:ff:28:96:6e:73:20: 65:21:93:28:54:b8:84:15:a2:77:38:c9:4c:e4:5e:18:fc:72: 8d:82:cd:aa:4f:85:73:1c:c2:f9:99:87:e3:8c:66:14:38:49: 1a:4f:b5:14:9c:23:93:fe:44:b9:ce:72:e2:36:d5:24:df:1a: 7a:c4:f4:85:8a:ae:57:06:b6:16:a6:a6:58:45:d4:f8:95:b3: 65:08:b7:34:81:0f:74:94:0e:f6:44:92:89:c0:38:93:d4:2a: f1:b6:79:8d:20:13:8b:78:9f:02:50:98:63:12:99:4e:be:bc: ff:82:c4:3d:f6:cc:54:97:72:e5:f5:c3:aa:fb:77:c5:cd:d4: 3e:a5:8e:ce:6d:85:01:cb:1b:d7:5f:17:75:7b:b4:2b:76:76: 14:7c:fa:5b:34:51:5f:ae:6f:46:64:bf:8c:7a:bf:63:45:fa: 9b:e9:35:7e:9b:fc:0b:9c:4c:aa:7a:49:86:f1:ef:a5:d7:f1: 07:7f:28:d2:37:d0:8e:e0:9e:4a:7a:b9:c4:81:35:44:e2:13: ac:e1:0e:db:1b:bc:af:f0:17:b5:d1:50:7d:3e:5b:97:14:41: e0:7a:8c:8a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAoSAj32GT8JQDGsrxCeZyVucSZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKDFFRUVGMzE0MThDMTU2OTEzNDREMTlDMUYwRjUxRjE2QjYwRUFFOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw4qM6JSrtRZ0FF2aqG5fQ8CJv l8EXRfkMzA1yC7iuHe8suv31tPkypbAX53BK9GlpIcaUrU8T69iaF8Ec0WrkY5gn lYhUXBe8y19JZbYcsegRvqkcbgTv6HnJ63UUqj3zB+lh18OaXYMqCwCWFJ7G4Rf7 TKhDSyCtbOr91JQO4CPpDap+vliSai9Z+HTeF8LXyM6L32ria+D3DO7nu530jYU9 jFSlZjQkyM03FLPLzVa17c62x7np9aSnKlLbT0NTmBW7cEdgKJRC8sIiYajE9hzB 7ZiJWNtOGeeLLR5G/z1bX3H+wtw+KnUxTJiOMqbl2hBtm1I4rRflo4r4FLJRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUHu7zFBjBVpE0TRnB8PUfFrYOrp8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA0MDA1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA/Fw6ZQOa6aZ0b6nGhOKwbZDJspxRD3mLR bPu2pov/KJZucyBlIZMoVLiEFaJ3OMlM5F4Y/HKNgs2qT4VzHML5mYfjjGYUOEka T7UUnCOT/kS5znLiNtUk3xp6xPSFiq5XBrYWpqZYRdT4lbNlCLc0gQ90lA72RJKJ wDiT1CrxtnmNIBOLeJ8CUJhjEplOvrz/gsQ99sxUl3Ll9cOq+3fFzdQ+pY7ObYUB yxvXXxd1e7QrdnYUfPpbNFFfrm9GZL+Mer9jRfqb6TV+m/wLnEyqekmG8e+l1/EH fyjSN9CO4J5KernEgTVE4hOs4Q7bG7yv8Be10VB9PluXFEHgeoyK -----END CERTIFICATE-----Generated at Sat Jul 5 08:18:06 2025 by rpki-client