$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa File: AS209018.roa (raw, json) Hash identifier: kOhxz/g5NwWvD0D6wvYae+uo69G/W9WX2G1f2I1xJIc= Subject key identifier: B8:7A:58:CD:6C:62:1F:3F:9A:F4:5C:17:01:81:CE:0A:AF:58:6A:39 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 28C1327713C453E57D80E1585AD7915298BE43AC Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 209018 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c1:32:77:13:c4:53:e5:7d:80:e1:58:5a:d7:91:52:98:be:43:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=B87A58CD6C621F3F9AF45C170181CE0AAF586A39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:c9:b1:03:1d:97:b6:0b:96:a8:60:cd:d9:d9: c1:92:38:62:9f:ed:51:82:bc:9a:2d:88:89:f5:fb: 92:06:f6:dc:9c:b2:14:95:6e:96:7d:08:4e:21:68: 23:25:6d:5f:ec:fa:65:c0:15:f7:01:86:2c:fa:ea: ff:8b:49:84:86:37:4b:0b:dd:32:6c:57:4b:54:5e: 3f:01:a7:7b:68:24:0a:b9:4b:61:e0:45:bf:2c:b9: 87:cd:2f:9e:6c:a9:0b:be:b5:47:dd:3d:3f:92:9d: 98:6f:ee:6a:bf:64:6e:e7:05:ea:8d:17:e0:38:c0: 90:b0:31:69:df:d3:d4:4f:75:bd:77:fd:09:be:5e: 0b:ab:ae:fa:9a:7a:0b:87:89:cd:36:f1:97:c4:d6: db:9b:fb:10:c4:a6:33:fa:57:c5:c0:a3:5c:93:5a: 3e:18:54:4e:68:07:b1:f6:6f:7c:0f:1b:2a:b0:31: b2:d4:99:6f:a6:2e:a5:19:3c:5b:c1:28:0a:95:f1: 08:f2:2c:c6:52:5c:8e:aa:01:84:85:c2:23:73:ac: 8d:09:24:ce:fb:9d:6b:bf:5e:42:08:7d:95:be:cd: b4:6d:11:75:40:bd:8b:fc:4a:03:77:c4:48:2c:5f: c5:1b:4f:99:58:2d:de:9b:a3:85:ff:a6:52:5a:cd: c2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7A:58:CD:6C:62:1F:3F:9A:F4:5C:17:01:81:CE:0A:AF:58:6A:39 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a2:64:00:de:ca:3c:23:77:b4:a6:6d:bc:f2:61:72:0b:d2:ec: 68:da:9e:9f:9d:25:fa:e5:44:dc:32:34:24:d3:b7:87:fb:56: 82:f5:fe:74:c9:67:24:59:3e:93:26:97:6a:78:7c:5d:1a:cb: a7:5f:e7:3a:1e:66:8b:be:c9:09:93:a5:83:dd:f5:d5:a0:15: 3f:31:4b:d5:d8:9e:22:f9:ca:57:fe:20:a8:7e:4d:c3:b4:fc: 6c:a6:6a:c2:94:81:5f:8d:0b:ca:0f:96:37:82:ff:68:ef:10: 32:26:41:ab:eb:b5:98:5a:54:79:55:e1:1d:d3:bc:c1:9a:81: 07:c9:47:70:6b:85:49:29:e8:9a:c5:fd:f0:d2:da:34:76:91: cd:5f:d2:fb:1e:25:50:5a:89:2e:52:73:b6:0f:ee:25:82:7f: d9:c4:63:f0:3c:02:6b:06:93:5c:06:bc:62:ea:23:bb:86:0d: fe:2f:4b:0c:e7:22:e5:f8:7e:92:1e:8b:7c:26:d1:de:b9:e1: c1:ba:bc:69:85:2c:55:d1:bf:2d:fd:83:03:87:57:d4:a7:65: 38:fd:63:09:2a:95:1d:ec:8c:9c:ef:49:3d:b4:58:6e:86:40: 3b:d3:55:9b:dc:ed:c3:5a:70:d7:3c:f0:1d:e1:27:75:08:4e: 7e:ea:7e:11 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKMEydxPEU+V9gOFYWteRUpi+Q6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKEI4N0E1OENENkM2MjFGM0Y5QUY0NUMxNzAxODFDRTBBQUY1ODZBMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyybEDHZe2C5aoYM3Z2cGSOGKf 7VGCvJotiIn1+5IG9tycshSVbpZ9CE4haCMlbV/s+mXAFfcBhiz66v+LSYSGN0sL 3TJsV0tUXj8Bp3toJAq5S2HgRb8suYfNL55sqQu+tUfdPT+SnZhv7mq/ZG7nBeqN F+A4wJCwMWnf09RPdb13/Qm+XgurrvqaeguHic028ZfE1tub+xDEpjP6V8XAo1yT Wj4YVE5oB7H2b3wPGyqwMbLUmW+mLqUZPFvBKAqV8QjyLMZSXI6qAYSFwiNzrI0J JM77nWu/XkIIfZW+zbRtEXVAvYv8SgN3xEgsX8UbT5lYLd6bo4X/plJazcIVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUuHpYzWxiHz+a9FwXAYHOCq9YajkwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA5MDE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCiZADeyjwjd7SmbbzyYXIL0uxo2p6fnSX6 5UTcMjQk07eH+1aC9f50yWckWT6TJpdqeHxdGsunX+c6HmaLvskJk6WD3fXVoBU/ MUvV2J4i+cpX/iCofk3DtPxspmrClIFfjQvKD5Y3gv9o7xAyJkGr67WYWlR5VeEd 07zBmoEHyUdwa4VJKeiaxf3w0to0dpHNX9L7HiVQWokuUnO2D+4lgn/ZxGPwPAJr BpNcBrxi6iO7hg3+L0sM5yLl+H6SHot8JtHeueHBurxphSxV0b8t/YMDh1fUp2U4 /WMJKpUd7Iyc70k9tFhuhkA701Wb3O3DWnDXPPAd4Sd1CE5+6n4R -----END CERTIFICATE-----Generated at Sat Jul 5 08:26:50 2025 by rpki-client