$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa File: AS206216.roa (raw, json) Hash identifier: b9PA1Ja38FpmGRyyxbzSDj+cHwuudiT6j59ESvGUfl4= Subject key identifier: 44:BF:05:75:99:7C:48:49:AB:75:57:64:0F:7B:B8:CE:B7:2E:3D:EB Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 188410C5D813BDA3E36D2D04771A9576297A1D62 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 206216 IP address blocks: 2a07:54c4:174f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:84:10:c5:d8:13:bd:a3:e3:6d:2d:04:77:1a:95:76:29:7a:1d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=44BF0575997C4849AB7557640F7BB8CEB72E3DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:35:74:99:08:76:d9:f5:5c:b6:7e:cb:fb:34: c4:dc:0f:09:d5:44:66:26:46:79:21:dc:26:ce:06: 91:6d:c9:a4:d4:15:36:1a:1f:3d:60:4a:f5:dc:30: d4:94:a4:b8:9f:d8:6e:a8:92:ef:75:35:49:b7:fa: d2:ba:d0:56:d3:69:08:31:a5:8e:14:25:7f:3f:b7: d9:80:70:b9:aa:05:47:5a:31:78:c6:0a:3a:cb:6e: 15:7a:ae:e6:69:69:aa:98:2f:12:f2:de:0d:f9:cd: 60:a8:45:61:79:e6:fb:07:e5:ce:64:67:9d:4c:5d: 73:ed:a8:5e:61:e4:f9:18:7e:27:3f:d3:da:b6:04: d1:87:c4:a1:a6:35:1c:53:b2:fe:1e:25:22:a4:00: a5:5d:cb:c4:e1:3b:2e:7b:0b:cc:e5:bc:3d:e1:63: 36:e7:75:c3:1f:bd:df:12:d6:d5:75:ea:c6:4c:15: 12:60:ee:69:4f:ed:aa:5e:45:ca:05:1f:8c:d3:dc: 32:2f:48:46:7d:b8:7d:4c:34:45:e0:44:a8:4a:97: df:de:77:bc:62:15:ff:40:6a:3e:5e:a6:25:bf:9d: bd:8f:45:c2:32:fd:fe:7b:c5:3d:5b:a5:5f:c1:c6: bc:84:69:b2:b1:74:f3:dd:22:1d:57:e4:25:44:f2: 41:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BF:05:75:99:7C:48:49:AB:75:57:64:0F:7B:B8:CE:B7:2E:3D:EB X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174f::/48 Signature Algorithm: sha256WithRSAEncryption a8:7d:db:5e:55:86:39:09:02:12:fc:69:e8:52:f8:18:84:f2: a6:33:cf:7c:9a:e6:3a:2f:e4:5b:1e:85:45:6c:90:9d:15:59: bb:fb:53:bc:84:35:81:73:91:92:96:34:27:d5:2e:f9:16:1a: 7a:b1:6a:2f:0c:8b:da:60:4b:9e:98:08:6a:ad:20:84:4f:79: cf:9a:75:6e:6b:c5:ad:97:f8:07:50:76:5e:7a:be:51:b5:d4: 52:50:ba:e2:05:c5:50:3a:bc:01:49:f9:1b:60:e4:1f:13:cf: dd:1b:be:4e:88:28:fb:26:64:f4:f3:d3:b6:d0:1a:71:57:47: cc:eb:9f:c5:38:15:02:00:99:53:ae:88:77:5a:46:8e:25:0d: 0b:13:c2:b1:3a:e8:52:2e:c0:df:4a:f5:8f:eb:d8:3a:d6:16: a6:6c:00:61:b3:b2:ce:10:3a:af:f7:d8:eb:ef:da:77:b3:de: 14:38:dc:eb:75:90:11:10:ed:c7:95:ed:48:2b:01:d6:1c:85: 8b:ce:c0:ee:eb:24:db:31:dd:85:00:48:ca:41:fe:3b:1f:26: 39:22:b2:6a:4d:6c:21:4a:97:68:9c:19:1c:4b:8c:f9:b0:99: 89:76:73:b6:a1:c7:71:8f:b5:11:07:ea:a5:50:63:6f:08:50: 52:f7:04:f8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGIQQxdgTvaPjbS0EdxqVdil6HWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKDQ0QkYwNTc1OTk3QzQ4NDlBQjc1NTc2NDBGN0JCOENFQjcyRTNERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+NXSZCHbZ9Vy2fsv7NMTcDwnV RGYmRnkh3CbOBpFtyaTUFTYaHz1gSvXcMNSUpLif2G6oku91NUm3+tK60FbTaQgx pY4UJX8/t9mAcLmqBUdaMXjGCjrLbhV6ruZpaaqYLxLy3g35zWCoRWF55vsH5c5k Z51MXXPtqF5h5PkYfic/09q2BNGHxKGmNRxTsv4eJSKkAKVdy8ThOy57C8zlvD3h YzbndcMfvd8S1tV16sZMFRJg7mlP7apeRcoFH4zT3DIvSEZ9uH1MNEXgRKhKl9/e d7xiFf9Aaj5epiW/nb2PRcIy/f57xT1bpV/BxryEabKxdPPdIh1X5CVE8kHLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURL8FdZl8SEmrdVdkD3u4zrcuPeswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA2MjE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdPMA0GCSqGSIb3DQEBCwUAA4IBAQCofdteVYY5CQIS/GnoUvgYhPKmM898muY6 L+RbHoVFbJCdFVm7+1O8hDWBc5GSljQn1S75Fhp6sWovDIvaYEuemAhqrSCET3nP mnVua8Wtl/gHUHZeer5RtdRSULriBcVQOrwBSfkbYOQfE8/dG75OiCj7JmT089O2 0BpxV0fM65/FOBUCAJlTroh3WkaOJQ0LE8KxOuhSLsDfSvWP69g61hambABhs7LO EDqv99jr79p3s94UONzrdZAREO3Hle1IKwHWHIWLzsDu6yTbMd2FAEjKQf47HyY5 IrJqTWwhSpdonBkcS4z5sJmJdnO2ocdxj7URB+qlUGNvCFBS9wT4 -----END CERTIFICATE-----Generated at Sat Jul 5 08:27:59 2025 by rpki-client