$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204857.roa File: AS204857.roa (raw, json) Hash identifier: 4B4zjEJ2zgJGMINfSzkftA7dcRK4AJIBHIaomopzStI= Subject key identifier: 38:1F:7F:09:C9:09:6B:E7:56:F6:20:F2:E6:A5:F9:91:F9:D0:78:CB Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 26D6CC9D7237E3B4E0588439DC94B543FE8940E5 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204857.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 204857 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d6:cc:9d:72:37:e3:b4:e0:58:84:39:dc:94:b5:43:fe:89:40:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=381F7F09C9096BE756F620F2E6A5F991F9D078CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a0:e5:dc:79:7e:9b:04:fb:75:2a:d0:54:6f: 71:13:a2:73:5a:da:79:5e:74:fa:70:08:f1:45:df: 8b:d2:c4:de:df:41:53:4c:0d:47:b2:53:e1:42:87: cb:c2:9e:73:62:09:54:07:a7:68:ad:10:63:48:1f: da:61:f1:e8:28:41:3b:08:56:65:54:66:2c:95:20: 20:20:bc:bc:d3:4c:78:fe:e3:02:9d:ad:fb:d4:e7: f9:66:cf:0e:0c:53:d4:e6:99:e4:fb:42:73:b0:f4: 8b:ab:29:7c:48:e6:98:c3:f6:aa:c8:4b:3a:4c:3a: f3:15:e0:3a:1d:d6:50:d3:09:fa:e9:ba:55:c0:9f: a0:95:db:97:89:ba:9e:e8:3b:c8:96:66:5a:b5:94: 33:90:5c:92:b8:4c:f9:7b:87:01:f9:bd:7a:36:18: af:ba:64:dc:ec:06:16:13:d2:94:24:89:4d:7e:a9: 40:2d:62:96:cf:17:2a:e0:bb:c2:88:b7:9d:97:93: 68:45:95:96:30:81:4d:d6:a4:7a:f3:cc:8c:49:05: 31:cd:01:4e:a1:4a:0f:f9:d7:42:f1:10:c1:eb:49: 34:44:a5:ef:89:86:23:4a:59:90:09:52:94:db:63: ec:36:16:60:f6:89:bd:d8:8f:d6:0a:c1:3c:31:6e: 7a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1F:7F:09:C9:09:6B:E7:56:F6:20:F2:E6:A5:F9:91:F9:D0:78:CB X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204857.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 64:fd:72:9b:79:da:95:45:b7:ed:67:9d:3d:75:85:37:82:af: 6b:17:98:a3:a6:df:4f:a8:78:e2:a3:a0:cd:74:fb:af:4c:b4: df:20:ef:99:c5:75:2e:99:49:f3:c3:f9:e3:49:44:61:d0:5b: 3b:80:ad:ce:f1:76:59:eb:85:9c:4b:e9:db:17:4c:66:ae:89: 44:49:b4:f5:d2:80:1b:3f:57:95:6f:b1:36:da:fb:67:50:d0: 6d:cf:8e:01:d8:86:49:59:90:52:04:f8:81:61:3f:2d:50:f3: 93:fc:c2:4f:07:01:72:5c:07:e8:33:97:b7:2c:05:38:84:5c: 42:99:05:79:c9:75:2a:1d:d6:42:94:74:de:89:d9:35:2b:2f: d9:4f:db:ea:3d:09:17:ea:2e:12:ff:b6:bd:25:b2:ad:9a:ca: 41:18:f8:2a:d0:05:79:f6:0e:ba:bb:ce:63:80:47:ce:dc:74: 78:c5:36:9d:f7:30:e2:48:3c:9f:76:32:45:9e:f4:7d:db:d6: 9a:c9:61:59:58:0c:fb:19:d1:47:7d:d6:e7:0a:c4:77:b4:6f: 6a:a1:01:dd:93:93:ae:54:42:c0:16:a7:95:c6:6e:25:a8:af: 07:23:03:72:1f:0a:59:77:65:06:63:c6:e1:b2:60:b1:ec:42: 64:8a:0c:57 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJtbMnXI347TgWIQ53JS1Q/6JQOUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKDM4MUY3RjA5QzkwOTZCRTc1NkY2MjBGMkU2QTVGOTkxRjlEMDc4Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8oOXceX6bBPt1KtBUb3ETonNa 2nledPpwCPFF34vSxN7fQVNMDUeyU+FCh8vCnnNiCVQHp2itEGNIH9ph8egoQTsI VmVUZiyVICAgvLzTTHj+4wKdrfvU5/lmzw4MU9TmmeT7QnOw9IurKXxI5pjD9qrI SzpMOvMV4Dod1lDTCfrpulXAn6CV25eJup7oO8iWZlq1lDOQXJK4TPl7hwH5vXo2 GK+6ZNzsBhYT0pQkiU1+qUAtYpbPFyrgu8KIt52Xk2hFlZYwgU3WpHrzzIxJBTHN AU6hSg/510LxEMHrSTREpe+JhiNKWZAJUpTbY+w2FmD2ib3Yj9YKwTwxbnrxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOB9/CckJa+dW9iDy5qX5kfnQeMswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA0ODU3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBk/XKbedqVRbftZ509dYU3gq9rF5ijpt9P qHjio6DNdPuvTLTfIO+ZxXUumUnzw/njSURh0Fs7gK3O8XZZ64WcS+nbF0xmrolE SbT10oAbP1eVb7E22vtnUNBtz44B2IZJWZBSBPiBYT8tUPOT/MJPBwFyXAfoM5e3 LAU4hFxCmQV5yXUqHdZClHTeidk1Ky/ZT9vqPQkX6i4S/7a9JbKtmspBGPgq0AV5 9g66u85jgEfO3HR4xTad9zDiSDyfdjJFnvR929aayWFZWAz7GdFHfdbnCsR3tG9q oQHdk5OuVELAFqeVxm4lqK8HIwNyHwpZd2UGY8bhsmCx7EJkigxX -----END CERTIFICATE-----Generated at Sat Jul 5 08:16:40 2025 by rpki-client