$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa File: AS204508.roa (raw, json) Hash identifier: TQZwxd06WLC7uiRTKlyh51L3YMX1ylMoqG3BWyes8PY= Subject key identifier: 9A:23:F6:93:16:5C:0D:2F:BC:7C:D6:88:2A:49:A8:DF:3A:B9:5F:6B Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 19DF5080DB94B05396CA895CC7B050E307DCF650 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 204508 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:df:50:80:db:94:b0:53:96:ca:89:5c:c7:b0:50:e3:07:dc:f6:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=9A23F693165C0D2FBC7CD6882A49A8DF3AB95F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:38:90:32:d5:56:3d:da:48:17:fe:fb:e6:65: ca:ff:88:99:bb:f0:fa:07:be:2a:fa:99:8b:66:e0: 5f:b1:48:e6:79:ea:6d:ec:79:4e:a9:dd:6a:b5:41: 38:a6:d8:50:6c:a9:0a:be:4d:4d:ec:69:71:43:7f: ee:55:1e:82:f2:ae:0c:b8:2b:e8:b3:1a:bc:46:cc: cd:2d:1b:34:e9:ba:d5:cb:60:90:44:c0:cb:7a:1d: b0:e5:a5:bf:35:c3:1e:dc:2b:77:0a:b5:88:e3:8f: 13:8d:78:9e:17:c1:65:4a:e8:d8:3e:e5:47:90:1d: 44:e0:66:03:38:77:d0:44:4d:b0:b7:0b:81:a7:b2: 37:93:ff:d6:f2:3c:74:35:1a:c2:76:d5:49:dd:64: 47:4c:ff:ce:eb:c6:04:01:df:5e:ca:af:63:6b:43: 53:a8:18:93:a4:79:74:4c:eb:f7:1e:af:a7:d4:f9: ef:b1:11:19:c8:07:0a:a0:90:e4:a5:69:43:11:4a: ed:11:7e:9d:a4:64:93:96:3a:15:a9:90:31:7d:c2: 68:78:d7:31:83:36:9e:36:73:d1:9a:42:24:c2:01: 1b:76:0c:d6:96:4e:c2:f8:64:fe:5e:d0:0a:59:ce: bc:7f:9d:89:f1:73:7e:2f:2c:cd:76:91:b0:f5:db: ce:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:23:F6:93:16:5C:0D:2F:BC:7C:D6:88:2A:49:A8:DF:3A:B9:5F:6B X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 6a:e7:d7:35:b1:c4:56:57:53:2d:52:a4:32:be:70:0f:c3:dd: ec:e0:b7:87:cc:79:07:85:03:ee:b9:e4:74:de:b3:41:ca:87: a7:52:85:fb:b9:13:27:bd:d0:89:1c:3b:71:37:26:7e:56:52: f6:fe:0b:73:2a:ff:01:78:21:47:5d:38:72:b7:31:cc:c6:71: c5:45:e4:a8:c7:29:99:71:d6:f0:be:1b:c2:b5:6a:1a:88:ff: 52:41:39:33:e9:f7:8b:c1:2a:b1:8c:ff:44:0b:df:0a:79:9b: 90:1b:52:9a:23:a4:6d:2a:e7:88:5b:fe:96:16:14:e0:b3:2f: 07:9c:f3:54:94:b2:fb:54:00:a5:31:ad:26:2b:2c:aa:fc:ab: 9c:2d:d8:6b:5a:e5:26:21:21:ad:ae:20:2d:ba:99:6f:e7:ae: 48:2e:65:e8:5c:c8:7b:d0:ab:bf:b8:87:cb:80:5e:63:1f:b7: 91:af:66:fc:4d:0b:30:af:fb:1c:46:aa:01:79:8d:fb:94:a2: 97:87:8b:97:cb:62:eb:81:ef:17:6c:1a:25:54:d9:0b:3e:08: 3b:ef:4e:c5:c3:d5:d9:5e:4b:f2:b4:5a:60:bf:ff:f9:83:9b: a5:fd:0e:03:62:e2:d3:65:eb:4d:2c:40:42:7b:d2:57:04:2c: 08:21:b8:cc -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGd9QgNuUsFOWyolcx7BQ4wfc9lAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKDlBMjNGNjkzMTY1QzBEMkZCQzdDRDY4ODJBNDlBOERGM0FCOTVGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOJAy1VY92kgX/vvmZcr/iJm7 8PoHvir6mYtm4F+xSOZ56m3seU6p3Wq1QTim2FBsqQq+TU3saXFDf+5VHoLyrgy4 K+izGrxGzM0tGzTputXLYJBEwMt6HbDlpb81wx7cK3cKtYjjjxONeJ4XwWVK6Ng+ 5UeQHUTgZgM4d9BETbC3C4GnsjeT/9byPHQ1GsJ21UndZEdM/87rxgQB317Kr2Nr Q1OoGJOkeXRM6/cer6fU+e+xERnIBwqgkOSlaUMRSu0Rfp2kZJOWOhWpkDF9wmh4 1zGDNp42c9GaQiTCARt2DNaWTsL4ZP5e0ApZzrx/nYnxc34vLM12kbD1285jAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUmiP2kxZcDS+8fNaIKkmo3zq5X2swHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA0NTA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBq59c1scRWV1MtUqQyvnAPw93s4LeHzHkH hQPuueR03rNByoenUoX7uRMnvdCJHDtxNyZ+VlL2/gtzKv8BeCFHXThytzHMxnHF ReSoxymZcdbwvhvCtWoaiP9SQTkz6feLwSqxjP9EC98KeZuQG1KaI6RtKueIW/6W FhTgsy8HnPNUlLL7VAClMa0mKyyq/KucLdhrWuUmISGtriAtuplv565ILmXoXMh7 0Ku/uIfLgF5jH7eRr2b8TQswr/scRqoBeY37lKKXh4uXy2Lrge8XbBolVNkLPgg7 707Fw9XZXkvytFpgv//5g5ul/Q4DYuLTZetNLEBCe9JXBCwIIbjM -----END CERTIFICATE-----Generated at Sat Jul 5 08:26:50 2025 by rpki-client