$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS205980.roa File: AS205980.roa (raw, json) Hash identifier: VzfIcJ3nz2bfFDcKlJSPt43bS1LM2QQaqPbBheu0HFw= Subject key identifier: A3:D8:DE:77:F8:21:B7:5A:5B:3A:35:DC:37:0F:A1:C1:E6:D7:7A:10 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3E7B97F472A6022AA599153ABCF0BE9D190C72D8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS205980.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 205980 IP address blocks: 2a07:54c1:44e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:7b:97:f4:72:a6:02:2a:a5:99:15:3a:bc:f0:be:9d:19:0c:72:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=A3D8DE77F821B75A5B3A35DC370FA1C1E6D77A10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:be:79:cf:27:18:44:52:a3:23:e5:ac:8e: b4:bd:5d:25:d6:81:4f:5d:64:22:3e:ce:79:51:d2: 49:35:cf:44:50:05:74:67:f3:e1:03:8f:3d:33:86: 48:62:86:4d:4e:a8:25:02:af:fd:38:26:fb:d6:06: e1:13:55:5c:79:23:34:48:36:4f:18:35:32:57:2c: 70:d6:50:f1:b7:d6:a6:a0:9b:b9:9f:16:b5:c5:b1: b6:8a:74:fe:5f:16:8b:95:5f:17:98:4a:8c:a8:ea: 6a:3b:9d:8b:25:1c:76:0a:c1:f7:72:3a:dc:7c:23: 21:17:29:a3:cb:db:c5:c9:39:d1:90:73:71:df:9e: 4e:45:70:98:f9:bc:18:e4:65:06:a2:11:70:1b:3a: dc:f9:84:9f:c0:fa:7d:3b:ef:a0:2e:96:3b:b6:21: 5f:17:81:19:b3:bd:01:50:bc:51:91:8e:cb:4d:a2: a9:82:b3:c7:3b:58:3d:75:5e:4e:cc:3f:f0:b2:8e: ae:2b:b6:74:fb:fe:95:26:a5:ad:7e:ff:2e:d6:79: 45:a5:4e:d8:61:3e:d3:ee:ba:04:54:78:ba:97:1a: 25:c0:12:b4:96:8a:1a:3e:55:f6:5e:69:29:e1:0e: 2f:ab:7f:5f:f7:61:5d:d2:dc:29:16:a5:64:d9:f5: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D8:DE:77:F8:21:B7:5A:5B:3A:35:DC:37:0F:A1:C1:E6:D7:7A:10 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS205980.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:44e0::/44 Signature Algorithm: sha256WithRSAEncryption 71:c8:8e:88:9b:f8:25:e4:45:20:68:90:9a:e5:08:68:a6:23: 2d:70:53:cb:56:93:c4:a2:e6:8a:e4:ec:da:ee:f3:65:53:77: 43:87:5e:85:81:d3:d9:87:9e:97:0c:cb:11:a0:f4:1e:f7:b9: 06:8e:fc:0f:c4:24:fe:98:48:78:db:2e:2a:ec:fc:f7:a7:17: 27:cd:7a:a6:fa:5f:08:1e:52:69:c3:15:75:11:ea:24:31:1f: 01:77:29:93:a7:cc:6d:44:09:b6:b5:d6:46:bb:fa:f1:0b:0e: 4a:47:38:5d:78:b5:88:9a:57:79:8b:47:a9:3c:6a:73:4a:95: ab:70:b1:34:cf:5f:3d:69:b9:97:fc:d7:2d:eb:72:c9:d3:ae: 7a:99:22:c7:fc:a1:4a:64:f1:d6:b3:2f:32:00:61:4a:2b:3a: 24:7d:d9:fa:49:45:ed:e3:ff:62:97:96:0f:74:83:17:71:a3: 05:be:e7:9e:a1:52:0a:92:e7:be:79:1e:e4:34:3f:d2:f9:f2: 80:56:18:d7:f5:3e:87:5c:ad:01:e2:51:de:0d:eb:c4:d6:94: 09:76:95:03:8f:87:4c:98:af:c4:11:28:5b:83:b5:68:db:8a: 5e:24:af:46:fe:4a:40:1b:44:5d:fb:21:94:e1:dd:a0:2e:9f: 4c:1f:e0:4e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPnuX9HKmAiqlmRU6vPC+nRkMctgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKEEzRDhERTc3RjgyMUI3NUE1QjNBMzVEQzM3MEZBMUMxRTZENzdBMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Q755zycYRFKjI+WsjrS9XSXW gU9dZCI+znlR0kk1z0RQBXRn8+EDjz0zhkhihk1OqCUCr/04JvvWBuETVVx5IzRI Nk8YNTJXLHDWUPG31qagm7mfFrXFsbaKdP5fFouVXxeYSoyo6mo7nYslHHYKwfdy Otx8IyEXKaPL28XJOdGQc3Hfnk5FcJj5vBjkZQaiEXAbOtz5hJ/A+n0776Aulju2 IV8XgRmzvQFQvFGRjstNoqmCs8c7WD11Xk7MP/Cyjq4rtnT7/pUmpa1+/y7WeUWl TthhPtPuugRUeLqXGiXAErSWiho+VfZeaSnhDi+rf1/3YV3S3CkWpWTZ9aCjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUo9jed/ght1pbOjXcNw+hwebXehAwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA1OTgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU wUTgMA0GCSqGSIb3DQEBCwUAA4IBAQBxyI6Im/gl5EUgaJCa5QhopiMtcFPLVpPE ouaK5Oza7vNlU3dDh16FgdPZh56XDMsRoPQe97kGjvwPxCT+mEh42y4q7Pz3pxcn zXqm+l8IHlJpwxV1EeokMR8BdymTp8xtRAm2tdZGu/rxCw5KRzhdeLWImld5i0ep PGpzSpWrcLE0z189abmX/Nct63LJ0656mSLH/KFKZPHWsy8yAGFKKzokfdn6SUXt 4/9il5YPdIMXcaMFvueeoVIKkue+eR7kND/S+fKAVhjX9T6HXK0B4lHeDevE1pQJ dpUDj4dMmK/EEShbg7Vo24peJK9G/kpAG0Rd+yGU4d2gLp9MH+BO -----END CERTIFICATE-----Generated at Sat Jul 5 08:24:21 2025 by rpki-client