$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209263.roa File: AS209263.roa (raw, json) Hash identifier: 9X25HYf2cns/GKdFgKMW29pZsz2h3JsZ2Ls4F4v3NLY= Subject key identifier: 36:E3:B7:45:54:9F:6B:DB:5D:69:9E:C9:98:C4:DD:1D:4D:F7:26:3F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4ADF7AACD43A458405321DF9179AFB9D7B6759AB Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209263.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 209263 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:df:7a:ac:d4:3a:45:84:05:32:1d:f9:17:9a:fb:9d:7b:67:59:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=36E3B745549F6BDB5D699EC998C4DD1D4DF7263F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4c:2b:9a:ac:05:e6:ac:b7:e0:c6:84:8f:45: a1:e7:c4:b2:60:72:b3:c8:08:c1:05:02:3c:22:bb: 72:27:b3:25:45:d3:19:97:4d:56:fd:86:ec:bc:f7: b0:7e:d8:a9:b8:1f:30:61:60:56:fc:03:fd:a7:49: 13:0d:4e:47:85:b3:f8:b9:cc:9b:c8:99:96:63:88: e2:dd:51:e9:de:cd:41:16:2e:9d:0c:24:91:67:8b: 6a:a5:0c:3c:62:97:94:16:ce:02:b1:ce:45:d1:bb: b8:af:8f:b9:2d:46:4c:7e:2d:ae:07:16:f6:4a:00: b3:0a:59:85:4e:66:c4:77:c2:ee:56:cf:51:7b:da: 61:3a:27:ab:f6:a0:47:b5:75:d8:f2:4b:aa:46:07: b2:09:a7:e8:19:80:74:7d:7e:ce:47:c4:73:a9:22: 1c:94:1e:c6:e2:41:b2:2d:15:41:37:93:c1:de:5c: 5c:a6:90:8d:21:b6:61:5f:35:c7:d5:f6:fa:03:b9: 38:43:e9:1c:cf:73:0f:ce:5a:1e:9f:85:58:27:16: f9:d6:b4:98:9b:66:8d:a3:15:6a:3f:17:8e:9c:41: 84:b0:4c:f5:05:d0:33:e8:3e:3b:3c:39:2d:b5:20: 16:ae:71:57:bf:25:f2:27:28:20:12:f5:91:e6:1d: 01:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E3:B7:45:54:9F:6B:DB:5D:69:9E:C9:98:C4:DD:1D:4D:F7:26:3F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 1f:be:a8:00:0d:2d:b2:e9:81:de:4b:18:79:da:a9:ae:44:e5: bd:29:43:b4:49:27:ee:df:d4:4f:8b:2b:56:7f:99:0a:9c:4a: 55:7f:dc:6f:b2:58:b7:d1:da:3f:fd:23:74:ae:61:21:7d:2f: df:29:f4:24:18:b0:7b:03:8a:2f:f5:95:79:99:df:8c:f2:b4: 9d:73:b3:ed:80:c2:21:78:5a:ba:b6:06:c5:a8:b9:41:e2:00: b9:0b:4a:f9:49:7e:ee:ed:0d:b9:8c:dd:62:a7:13:61:30:26: 9a:a7:b5:f6:f6:81:7b:79:3e:09:71:d8:8d:ef:7d:af:89:b4: eb:85:c5:91:8f:08:88:cd:79:c1:bc:4b:b7:fd:a6:40:03:57: 6f:99:00:62:dc:b6:9e:f2:65:ed:32:c9:50:10:ad:19:35:b7: 81:f8:a7:c2:1c:93:72:73:5b:fd:71:41:9f:a9:a3:4f:ad:73: 79:56:f7:e1:eb:e9:15:a2:dc:76:a1:95:e4:c0:bd:9a:69:70: 87:8d:73:4e:c0:ee:30:72:87:05:a1:11:ca:57:13:2c:d3:1b: be:23:4f:53:29:d5:b7:5e:8e:93:8a:77:55:d5:b5:46:a8:13: 62:a6:d0:e4:6f:0e:96:d1:05:7e:37:32:ff:e2:a5:c8:61:f7: 87:af:11:5e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSt96rNQ6RYQFMh35F5r7nXtnWaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKDM2RTNCNzQ1NTQ5RjZCREI1RDY5OUVDOTk4QzRERDFENERGNzI2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJTCuarAXmrLfgxoSPRaHnxLJg crPICMEFAjwiu3InsyVF0xmXTVb9huy897B+2Km4HzBhYFb8A/2nSRMNTkeFs/i5 zJvImZZjiOLdUenezUEWLp0MJJFni2qlDDxil5QWzgKxzkXRu7ivj7ktRkx+La4H FvZKALMKWYVOZsR3wu5Wz1F72mE6J6v2oEe1ddjyS6pGB7IJp+gZgHR9fs5HxHOp IhyUHsbiQbItFUE3k8HeXFymkI0htmFfNcfV9voDuThD6RzPcw/OWh6fhVgnFvnW tJibZo2jFWo/F46cQYSwTPUF0DPoPjs8OS21IBaucVe/JfInKCAS9ZHmHQGLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUNuO3RVSfa9tdaZ7JmMTdHU33Jj8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA5MjYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAfvqgADS2y6YHeSxh52qmuROW9KUO0SSfu 39RPiytWf5kKnEpVf9xvsli30do//SN0rmEhfS/fKfQkGLB7A4ov9ZV5md+M8rSd c7PtgMIheFq6tgbFqLlB4gC5C0r5SX7u7Q25jN1ipxNhMCaap7X29oF7eT4JcdiN 732vibTrhcWRjwiIzXnBvEu3/aZAA1dvmQBi3Lae8mXtMslQEK0ZNbeB+KfCHJNy c1v9cUGfqaNPrXN5Vvfh6+kVotx2oZXkwL2aaXCHjXNOwO4wcocFoRHKVxMs0xu+ I09TKdW3Xo6TindV1bVGqBNiptDkbw6W0QV+NzL/4qXIYfeHrxFe -----END CERTIFICATE-----Generated at Sat Jul 5 08:20:30 2025 by rpki-client