$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208181.roa File: AS208181.roa (raw, json) Hash identifier: dqUlL+B+9l+QwkG7BgCMTkEW3JKTZlpVCjQk7FjdWc0= Subject key identifier: 70:70:2D:78:FE:B3:8F:CC:1B:00:DF:1E:11:4C:E2:00:5C:1F:6B:81 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 68229A7229FD045615B8DCFA8ABFCDDADA71EE30 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208181.roa Signing time: Mon 01 Sep 2025 14:15:40 +0000 ROA not before: Mon 01 Sep 2025 14:10:40 +0000 ROA not after: Mon 31 Aug 2026 14:15:40 +0000 asID: 208181 IP address blocks: 2a07:54c7::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:22:9a:72:29:fd:04:56:15:b8:dc:fa:8a:bf:cd:da:da:71:ee:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Sep 1 14:10:40 2025 GMT Not After : Aug 31 14:15:40 2026 GMT Subject: CN=70702D78FEB38FCC1B00DF1E114CE2005C1F6B81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6b:ad:77:23:31:bf:8b:55:cb:bc:32:76:7f: e4:2e:23:ef:0c:04:37:d3:fa:e5:05:1c:53:58:80: e4:61:2e:10:20:78:35:c0:b9:f7:78:aa:88:55:ec: a0:35:d8:48:52:06:57:60:c6:af:92:d4:a9:5c:c9: c0:43:ca:5f:d2:94:db:e6:d0:fb:a3:bb:1c:f5:a0: dc:f3:30:90:9a:98:1e:b4:73:c4:af:eb:2e:98:e8: e2:83:a4:17:2c:f7:e3:38:9d:cc:d1:81:29:6f:8a: 5d:ba:28:67:b8:21:e0:62:a5:9f:e1:59:57:24:e9: 32:b3:2e:76:61:2e:25:a6:c7:63:76:15:c4:de:15: ab:a3:37:d6:f4:b0:05:7f:ee:df:9c:fd:e0:af:9f: 82:1b:2c:32:e6:71:61:53:e5:4b:e1:f1:4a:f2:5c: 5d:63:b7:57:49:ff:35:40:77:7b:f3:e7:0a:f7:2e: 0f:98:af:ff:96:c4:51:69:e6:fc:9d:68:5c:83:9d: 66:e3:fa:e0:7d:b4:15:ad:7a:a3:05:c9:03:f8:c4: 7b:bd:0a:2f:a3:24:56:23:c5:c3:1d:f0:7c:0f:2a: 9c:00:c0:a6:b7:10:aa:9d:6d:e7:65:51:5d:80:cb: 6c:0f:e1:07:bf:ef:da:d9:e5:d9:3c:db:66:72:f0: d6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:70:2D:78:FE:B3:8F:CC:1B:00:DF:1E:11:4C:E2:00:5C:1F:6B:81 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208181.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 6b:8f:7e:e2:f0:c3:11:3f:5f:4c:4b:5e:5d:44:b3:7a:10:71: 5b:fd:9d:35:83:92:ec:e1:12:0e:85:8d:0a:e0:5f:1c:1b:9e: 49:b9:44:e8:91:e2:68:08:d0:2d:d8:fb:b9:e3:37:ba:a6:69: 6e:92:ae:0c:eb:9a:64:9a:9e:b7:cd:6a:b3:2a:94:93:8b:44: 7e:4c:c2:e6:16:37:8f:e8:1e:a5:3f:15:26:d8:d7:e3:cb:e3: af:49:97:a5:39:4e:83:e6:03:e4:17:46:cd:cd:f4:05:27:ec: 05:5c:ac:4f:fe:9a:11:0f:d9:45:0c:e0:f0:d0:62:10:33:a6: c4:e9:fb:80:58:37:a4:b5:3d:65:c5:50:d1:cd:df:f7:6d:4d: 3c:cb:c5:46:2d:cd:eb:95:4a:0d:3e:fc:57:4b:3b:84:43:d6: ff:5a:5c:e7:e9:7b:12:20:8c:87:ec:03:29:de:23:ea:25:e9: d2:27:0d:69:0d:2a:ed:31:cc:53:dc:87:d2:28:11:d5:87:fb: de:83:00:6c:c1:d0:57:0b:6e:c4:49:6b:93:ab:94:c6:bc:e9: 18:6a:8e:da:e7:53:d5:77:8c:48:bf:e9:fd:51:45:c7:f9:63: f7:72:6e:64:b3:c5:b8:12:2c:96:63:6b:6e:df:c4:c3:0a:4b: 40:9a:1e:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaCKacin9BFYVuNz6ir/N2tpx7jAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA5MDExNDEwNDBaFw0yNjA4MzExNDE1NDBaMDMxMTAvBgNV BAMTKDcwNzAyRDc4RkVCMzhGQ0MxQjAwREYxRTExNENFMjAwNUMxRjZCODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqa613IzG/i1XLvDJ2f+QuI+8M BDfT+uUFHFNYgORhLhAgeDXAufd4qohV7KA12EhSBldgxq+S1KlcycBDyl/SlNvm 0Pujuxz1oNzzMJCamB60c8Sv6y6Y6OKDpBcs9+M4nczRgSlvil26KGe4IeBipZ/h WVck6TKzLnZhLiWmx2N2FcTeFaujN9b0sAV/7t+c/eCvn4IbLDLmcWFT5Uvh8Ury XF1jt1dJ/zVAd3vz5wr3Lg+Yr/+WxFFp5vydaFyDnWbj+uB9tBWteqMFyQP4xHu9 Ci+jJFYjxcMd8HwPKpwAwKa3EKqdbedlUV2Ay2wP4Qe/79rZ5dk822Zy8NYtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcHAteP6zj8wbAN8eEUziAFwfa4EwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA4MTgxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdU xwAwDQYJKoZIhvcNAQELBQADggEBAGuPfuLwwxE/X0xLXl1Es3oQcVv9nTWDkuzh Eg6FjQrgXxwbnkm5ROiR4mgI0C3Y+7njN7qmaW6SrgzrmmSanrfNarMqlJOLRH5M wuYWN4/oHqU/FSbY1+PL469Jl6U5ToPmA+QXRs3N9AUn7AVcrE/+mhEP2UUM4PDQ YhAzpsTp+4BYN6S1PWXFUNHN3/dtTTzLxUYtzeuVSg0+/FdLO4RD1v9aXOfpexIg jIfsAyneI+ol6dInDWkNKu0xzFPch9IoEdWH+96DAGzB0FcLbsRJa5OrlMa86Rhq jtrnU9V3jEi/6f1RRcf5Y/dybmSzxbgSLJZja27fxMMKS0CaHnU= -----END CERTIFICATE-----Generated at Wed Oct 8 19:37:08 2025 by rpki-client