$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: V4uoJrPs55ZAjAbVdneNyezze0cZo6PTxFZleovIXW0= Subject key identifier: AA:A9:A8:F0:6F:33:32:00:A6:FF:2D:05:70:6D:C5:51:BD:BD:51:5D Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0A740C39434AD97E87B84251024ED48DC3542B0F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa Signing time: Wed 08 Oct 2025 16:19:07 +0000 ROA not before: Wed 08 Oct 2025 16:14:07 +0000 ROA not after: Wed 07 Oct 2026 16:19:07 +0000 asID: 208548 IP address blocks: 2a07:54c0::/32 maxlen: 32 2a07:54c2::/32 maxlen: 40 2a07:54c4:a60::/44 maxlen: 48 2a07:54c4:13f0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:74:0c:39:43:4a:d9:7e:87:b8:42:51:02:4e:d4:8d:c3:54:2b:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Oct 8 16:14:07 2025 GMT Not After : Oct 7 16:19:07 2026 GMT Subject: CN=AAA9A8F06F333200A6FF2D05706DC551BDBD515D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e2:c0:c5:a4:ef:cc:a6:89:26:6b:99:8f:60: 2c:3a:42:2b:4b:4b:87:57:5a:df:b7:ea:81:19:c0: c2:db:62:3e:09:46:19:8e:08:32:38:d2:56:19:3e: e8:3d:57:25:28:84:c6:f2:79:77:9e:42:04:b6:0c: e4:6f:0a:89:4d:8f:70:43:18:ff:55:b0:04:2c:c0: b3:6d:2e:24:0c:ac:3d:b8:a6:e6:34:f8:bc:7b:de: f0:fb:66:fb:8f:c1:43:09:f3:b3:32:a4:2b:05:8a: 2c:56:c3:e0:e3:77:31:39:9f:98:5c:e5:d7:ac:73: 1b:2a:30:a1:9b:99:be:04:84:28:fb:55:a1:44:6d: 4c:a9:26:69:53:f8:4f:29:21:12:5b:bd:79:aa:6d: 90:55:f8:ef:5f:16:5a:fb:aa:dc:3d:53:3c:35:21: a7:8c:df:77:9f:46:0b:fc:b1:70:1b:5f:5c:8f:03: 7c:8f:79:53:12:52:03:c6:58:9c:05:76:96:77:f2: 28:0d:a9:e0:a1:5b:e9:01:06:11:ea:bf:68:e6:0f: d5:93:8d:73:6a:b6:ff:ba:7a:ba:3f:f5:1c:58:7c: 8c:57:a5:b6:66:4d:58:49:e5:e0:3f:0e:74:b5:37: 88:83:12:86:c6:7f:d3:78:fd:f2:44:94:e7:5c:79: 69:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:A8:F0:6F:33:32:00:A6:FF:2D:05:70:6D:C5:51:BD:BD:51:5D X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0::/32 2a07:54c2::/32 2a07:54c4:a60::/44 2a07:54c4:13f0::/44 Signature Algorithm: sha256WithRSAEncryption 6b:91:bc:bd:8c:fb:c3:20:a6:bd:ce:cd:2a:30:8f:5b:70:28: 2d:b0:43:c2:92:d7:db:c4:ea:74:f1:ba:e6:d5:65:48:70:69: ab:2c:b4:0d:5a:0c:34:d6:31:44:82:29:df:a6:1d:a8:c1:82: 25:39:19:2b:3f:6f:aa:a5:fa:50:ff:48:65:ac:6b:84:46:96: e2:b4:d5:3d:6b:03:8e:12:3a:e1:20:8f:20:8b:76:59:41:36: db:56:e1:e9:a8:ea:1f:08:89:c3:31:2f:1d:d6:ab:0d:48:f0: a5:77:7b:15:8a:d1:14:f1:54:1d:6b:c7:6f:bb:33:15:ab:7b: 9e:6d:12:e4:a8:2b:5a:b0:b2:5b:ab:d6:91:85:ec:a0:a2:f2: 1a:8c:a2:20:ff:f4:74:07:f6:e3:a3:13:45:4e:d5:28:29:a1: fa:a9:1b:ed:ed:4c:e0:32:a8:9f:45:72:81:5a:1d:00:d1:58: 6c:47:cb:0b:38:81:b1:01:72:75:2e:c9:39:58:54:6f:2c:17: c1:4c:8a:d2:8c:f2:58:8f:45:75:cd:6f:0b:18:ca:ad:43:54: 9a:59:76:35:4d:e4:be:51:6f:2a:d1:61:1a:db:60:26:13:86: 72:c4:fb:6e:32:54:89:cb:18:0c:c7:1b:90:6b:4f:e7:b0:f6: fd:10:29:ef -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIUCnQMOUNK2X6HuEJRAk7UjcNUKw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTEwMDgxNjE0MDdaFw0yNjEwMDcxNjE5MDdaMDMxMTAvBgNV BAMTKEFBQTlBOEYwNkYzMzMyMDBBNkZGMkQwNTcwNkRDNTUxQkRCRDUxNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx4sDFpO/Mpokma5mPYCw6QitL S4dXWt+36oEZwMLbYj4JRhmOCDI40lYZPug9VyUohMbyeXeeQgS2DORvColNj3BD GP9VsAQswLNtLiQMrD24puY0+Lx73vD7ZvuPwUMJ87MypCsFiixWw+DjdzE5n5hc 5descxsqMKGbmb4EhCj7VaFEbUypJmlT+E8pIRJbvXmqbZBV+O9fFlr7qtw9Uzw1 IaeM33efRgv8sXAbX1yPA3yPeVMSUgPGWJwFdpZ38igNqeChW+kBBhHqv2jmD9WT jXNqtv+6ero/9RxYfIxXpbZmTVhJ5eA/DnS1N4iDEobGf9N4/fJElOdceWk/AgMB AAGjggJUMIICUDAdBgNVHQ4EFgQUqqmo8G8zMgCm/y0FcG3FUb29UV0wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAAjAgAwUAKgdU wAMFACoHVMIDBwQqB1TECmADBwQqB1TEE/AwDQYJKoZIhvcNAQELBQADggEBAGuR vL2M+8Mgpr3OzSowj1twKC2wQ8KS19vE6nTxuubVZUhwaasstA1aDDTWMUSCKd+m HajBgiU5GSs/b6ql+lD/SGWsa4RGluK01T1rA44SOuEgjyCLdllBNttW4emo6h8I icMxLx3Wqw1I8KV3exWK0RTxVB1rx2+7MxWre55tEuSoK1qwslur1pGF7KCi8hqM oiD/9HQH9uOjE0VO1SgpofqpG+3tTOAyqJ9FcoFaHQDRWGxHyws4gbEBcnUuyTlY VG8sF8FMitKM8liPRXXNbwsYyq1DVJpZdjVN5L5RbyrRYRrbYCYThnLE+24yVInL GAzHG5BrT+ew9v0QKe8= -----END CERTIFICATE-----Generated at Wed Oct 8 19:34:54 2025 by rpki-client