$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208453.roa File: AS208453.roa (raw, json) Hash identifier: illGjO1VU8SUeETmecdTAkuquUVIqDzIy4sc6L/CbIo= Subject key identifier: AF:59:90:1A:33:D6:C2:3C:35:7A:AD:81:72:FB:B0:1B:EA:C1:BA:95 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6EAF159AF1D630C4529258B9ED9E502EA91B460B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208453.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 208453 IP address blocks: 2a07:54c4:1761::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:af:15:9a:f1:d6:30:c4:52:92:58:b9:ed:9e:50:2e:a9:1b:46:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=AF59901A33D6C23C357AAD8172FBB01BEAC1BA95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:20:c4:01:02:f6:5b:74:85:09:58:33:a7: a7:13:3b:a7:dc:2e:0b:10:38:2a:34:5b:01:f4:2a: 5f:e0:e7:ac:b1:28:63:a5:90:5f:8b:bd:7f:fd:6f: 3f:3e:1e:b8:d7:d7:58:50:40:2b:13:86:51:7c:25: be:4a:d7:9d:3c:46:dd:56:83:06:7d:b6:08:38:c2: f1:08:5e:0f:72:3a:25:b8:f4:31:8f:e7:9e:d0:b2: 2b:11:d0:64:47:69:26:46:ef:ba:3d:92:32:0e:ac: e7:26:14:b1:3f:e5:bd:5e:51:a0:e8:03:0f:8f:62: 38:7d:6a:d8:92:4f:db:8b:29:51:dd:93:db:64:d4: 0c:8f:19:09:94:74:76:fb:b5:e8:09:3a:21:9b:39: 18:b0:d4:10:71:58:31:20:b7:7d:be:40:ff:f2:e9: 64:e9:5b:aa:04:22:e0:ee:b7:40:e0:cd:76:31:51: 74:18:85:98:5f:92:78:41:26:46:e1:fd:bb:bb:28: 9e:ef:a8:a9:27:3e:91:2d:16:5b:3c:66:5b:6f:20: c8:15:5e:1a:e2:6e:8a:da:8a:d4:cf:f8:a2:5f:3d: 66:fb:4d:36:ec:dd:69:ee:c3:02:37:f0:e8:3f:cc: 04:d8:d2:c8:36:02:d2:be:aa:78:36:5c:d2:ed:fc: 7d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:59:90:1A:33:D6:C2:3C:35:7A:AD:81:72:FB:B0:1B:EA:C1:BA:95 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1761::/48 Signature Algorithm: sha256WithRSAEncryption 94:b4:a3:49:48:78:25:91:09:2f:2d:fc:54:3c:11:98:60:7b: 31:81:ab:0a:8f:b8:1e:e1:26:a0:70:56:c9:44:b4:14:dd:af: 0f:3e:4a:02:78:02:06:36:4b:a2:de:f8:48:77:c9:43:fd:cb: c1:39:fe:b1:09:4f:22:0c:54:58:2e:85:20:fc:86:10:2b:f8: 95:3b:7f:0e:1c:76:a2:a4:b5:22:c1:d7:43:21:16:e5:4a:d5: 7c:d2:a5:cb:65:af:e7:e7:2f:ed:87:2b:d6:f7:e5:b2:6c:6d: eb:10:3d:18:c0:28:f7:49:66:bc:04:3d:92:06:8d:0c:d4:5b: d0:00:fa:b3:91:9d:aa:56:94:b5:58:a9:ff:4b:8f:34:d6:99: 41:e4:6f:ba:a7:c2:24:98:e9:c6:21:33:e2:4f:fe:a0:f6:7d: 51:25:94:44:d3:5c:cd:f3:ef:b1:43:c7:8d:9f:2b:87:74:76: 66:4b:e3:bb:36:be:2f:aa:8f:ee:68:f7:81:cb:83:95:98:a9: ce:b5:04:94:43:8a:e3:f1:27:cf:81:b1:49:f9:5f:4a:b5:b2: 27:50:35:62:0f:e2:cd:f2:21:40:83:67:51:ca:f3:d5:e9:2d: d1:26:3c:55:b6:dd:24:4d:23:6e:24:6e:bc:1a:c4:44:f5:fc: b4:ac:cd:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbq8VmvHWMMRSkli57Z5QLqkbRgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKEFGNTk5MDFBMzNENkMyM0MzNTdBQUQ4MTcyRkJCMDFCRUFDMUJBOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1TyDEAQL2W3SFCVgzp6cTO6fc LgsQOCo0WwH0Kl/g56yxKGOlkF+LvX/9bz8+HrjX11hQQCsThlF8Jb5K1508Rt1W gwZ9tgg4wvEIXg9yOiW49DGP557QsisR0GRHaSZG77o9kjIOrOcmFLE/5b1eUaDo Aw+PYjh9atiST9uLKVHdk9tk1AyPGQmUdHb7tegJOiGbORiw1BBxWDEgt32+QP/y 6WTpW6oEIuDut0DgzXYxUXQYhZhfknhBJkbh/bu7KJ7vqKknPpEtFls8ZltvIMgV XhriboraitTP+KJfPWb7TTbs3WnuwwI38Og/zATY0sg2AtK+qng2XNLt/H1JAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUr1mQGjPWwjw1eq2BcvuwG+rBupUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA4NDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdhMA0GCSqGSIb3DQEBCwUAA4IBAQCUtKNJSHglkQkvLfxUPBGYYHsxgasKj7ge 4SagcFbJRLQU3a8PPkoCeAIGNkui3vhId8lD/cvBOf6xCU8iDFRYLoUg/IYQK/iV O38OHHaipLUiwddDIRblStV80qXLZa/n5y/thyvW9+WybG3rED0YwCj3SWa8BD2S Bo0M1FvQAPqzkZ2qVpS1WKn/S4801plB5G+6p8IkmOnGITPiT/6g9n1RJZRE01zN 8++xQ8eNnyuHdHZmS+O7Nr4vqo/uaPeBy4OVmKnOtQSUQ4rj8SfPgbFJ+V9KtbIn UDViD+LN8iFAg2dRyvPV6S3RJjxVtt0kTSNuJG68GsRE9fy0rM0k -----END CERTIFICATE-----Generated at Sat Jul 5 08:23:47 2025 by rpki-client