$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: Xb7waWqBV7RCu4GsQbqXhATAHin8xpae16MVzXcbmag= Subject key identifier: A6:1D:F1:F3:AB:9E:64:8E:57:F1:36:EE:C5:15:DC:B9:0E:16:E6:48 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4BDDE38733951CE4AF3E4A7AD5D298A3B94CEE7F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 208548 IP address blocks: 2a07:54c0::/32 maxlen: 32 2a07:54c2::/32 maxlen: 40 2a07:54c4:a60::/44 maxlen: 48 2a07:54c4:13f0::/44 maxlen: 44 2a07:54c5::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:dd:e3:87:33:95:1c:e4:af:3e:4a:7a:d5:d2:98:a3:b9:4c:ee:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=A61DF1F3AB9E648E57F136EEC515DCB90E16E648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6e:7b:a0:09:f5:92:b6:ea:89:c2:fa:73:f7: bc:ef:f0:f4:4a:9a:b5:2c:09:de:90:2c:73:c3:fc: d2:ed:cc:f7:4e:63:2e:06:6c:e8:c6:25:b8:35:64: 15:01:9d:ee:c0:d1:ab:51:79:a8:45:12:52:d3:9e: 6a:6c:02:3a:1d:cc:64:58:70:79:25:fb:7a:96:2d: 78:1c:07:76:cb:da:2c:5a:9c:1b:65:c3:e7:95:e7: 58:a5:c4:3e:04:01:3f:c4:e4:d9:52:fe:31:66:02: fb:4c:8e:df:07:e5:1a:c9:06:fd:bb:6f:b6:45:9d: fa:c5:c5:3a:a5:4c:18:a0:91:c8:da:50:c2:9c:9f: 50:98:49:7c:9d:d1:d5:52:9a:f2:36:39:ec:17:f9: be:33:37:e3:fc:80:57:e6:b6:ed:eb:27:38:bd:79: e7:6e:dd:8b:3d:1f:d6:72:e0:f3:fc:00:6c:a3:a1: 26:92:64:8e:ae:c9:c5:33:2e:3a:27:21:68:3d:c9: ed:9a:09:60:49:b4:00:a4:b1:1f:70:0c:38:d7:12: 9d:ae:54:03:34:61:cd:34:ea:99:f5:d0:99:24:b2: 7f:a4:77:52:f4:b3:55:0a:68:11:51:a0:14:ad:b2: 92:9a:9b:f6:11:4f:72:39:50:92:f6:1a:2d:ae:39: 0d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1D:F1:F3:AB:9E:64:8E:57:F1:36:EE:C5:15:DC:B9:0E:16:E6:48 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0::/32 2a07:54c2::/32 2a07:54c4:a60::/44 2a07:54c4:13f0::/44 2a07:54c5::/32 Signature Algorithm: sha256WithRSAEncryption 32:1a:ba:74:c1:28:ff:bb:48:69:53:bd:69:0a:9b:e6:7d:74: 0a:a0:ba:aa:e4:3f:97:03:0c:6f:9c:65:19:ac:65:72:65:fc: df:6b:71:2a:99:0b:36:1f:e2:34:c7:82:27:1e:e9:f5:68:bb: af:b9:b1:2a:e5:64:34:bc:7c:fb:72:e9:aa:9c:76:fc:dd:31: 8f:72:f4:ee:b3:9a:6e:dd:63:bc:16:ce:a8:7c:3f:7f:8b:2c: 29:bf:19:f5:7b:63:66:56:cf:c9:7d:b3:d5:54:9e:fc:73:c8: 48:24:5c:f8:ac:bb:62:9d:e6:73:51:ed:c0:b2:ec:f5:f8:1c: 67:b1:ef:e9:14:a5:2e:a9:9c:72:0a:b4:65:38:4c:2c:01:07: 6b:f0:8a:18:a4:46:7e:20:8c:4d:f0:54:b8:1e:cf:7a:e0:3b: 8a:b0:21:60:c6:ec:e6:7d:2e:d2:18:be:81:55:2f:ba:fc:5e: 86:20:5f:fe:4b:f8:eb:ef:f7:3d:df:2a:45:e6:fb:03:83:cf: 4a:c2:c8:60:a6:e7:56:0d:63:8c:9a:81:a4:af:82:d3:4f:88: 7f:51:a8:b9:f6:e6:4d:57:ab:b5:62:6e:88:ba:23:27:e5:3d: bf:e3:95:e1:6a:8a:4e:12:b2:5a:1b:98:eb:74:ba:ba:a7:5a: 50:ba:a3:73 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgIUS93jhzOVHOSvPkp61dKYo7lM7n8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEE2MURGMUYzQUI5RTY0OEU1N0YxMzZFRUM1MTVEQ0I5MEUxNkU2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgbnugCfWStuqJwvpz97zv8PRK mrUsCd6QLHPD/NLtzPdOYy4GbOjGJbg1ZBUBne7A0atReahFElLTnmpsAjodzGRY cHkl+3qWLXgcB3bL2ixanBtlw+eV51ilxD4EAT/E5NlS/jFmAvtMjt8H5RrJBv27 b7ZFnfrFxTqlTBigkcjaUMKcn1CYSXyd0dVSmvI2OewX+b4zN+P8gFfmtu3rJzi9 eedu3Ys9H9Zy4PP8AGyjoSaSZI6uycUzLjonIWg9ye2aCWBJtACksR9wDDjXEp2u VAM0Yc006pn10Jkksn+kd1L0s1UKaBFRoBStspKam/YRT3I5UJL2Gi2uOQ07AgMB AAGjggJbMIICVzAdBgNVHQ4EFgQUph3x86ueZI5X8TbuxRXcuQ4W5kgwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAtBAIAAjAnAwUAKgdU wAMFACoHVMIDBwQqB1TECmADBwQqB1TEE/ADBQAqB1TFMA0GCSqGSIb3DQEBCwUA A4IBAQAyGrp0wSj/u0hpU71pCpvmfXQKoLqq5D+XAwxvnGUZrGVyZfzfa3EqmQs2 H+I0x4InHun1aLuvubEq5WQ0vHz7cumqnHb83TGPcvTus5pu3WO8Fs6ofD9/iywp vxn1e2NmVs/JfbPVVJ78c8hIJFz4rLtineZzUe3Asuz1+Bxnse/pFKUuqZxyCrRl OEwsAQdr8IoYpEZ+IIxN8FS4Hs964DuKsCFgxuzmfS7SGL6BVS+6/F6GIF/+S/jr 7/c93ypF5vsDg89KwshgpudWDWOMmoGkr4LTT4h/Uai59uZNV6u1Ym6IuiMn5T2/ 45XhaopOErJaG5jrdLq6p1pQuqNz -----END CERTIFICATE-----Generated at Sat Jul 5 08:15:13 2025 by rpki-client