$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210152.roa File: AS210152.roa (raw, json) Hash identifier: azyWoJpL39F2dLSJrRqqohB+OAqxrh1QCwdFA0c/x38= Subject key identifier: 82:B6:9D:A9:AE:9B:1B:EE:71:D0:7D:0C:57:D8:FB:64:CC:B5:F9:2F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 31B54F0CC881BF59259008A8D0A7BC53D6D1371A Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210152.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 210152 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b5:4f:0c:c8:81:bf:59:25:90:08:a8:d0:a7:bc:53:d6:d1:37:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=82B69DA9AE9B1BEE71D07D0C57D8FB64CCB5F92F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:dc:a2:31:54:43:0a:bc:88:26:3f:f7:eb: 2b:3e:d4:20:8c:28:b6:1b:d0:0a:98:5b:2c:b3:b4: fd:42:6a:3c:e9:32:b1:08:f0:97:ec:c9:80:ae:aa: 53:9e:58:81:c5:e0:12:81:63:00:29:83:35:fe:5b: 84:e3:d6:a4:d7:81:be:59:c0:15:dc:b0:1f:54:31: 8b:3e:a4:a3:7c:22:39:d9:94:65:b1:54:19:ea:6d: 3b:a3:07:0f:62:e3:b2:da:f5:2b:c3:6f:88:ba:4e: cd:7c:b1:13:47:58:5a:7e:84:be:cb:4d:89:0b:90: 9e:54:6f:d7:75:90:8f:2c:48:ca:b0:d4:dc:aa:ba: 6c:8a:d6:4c:0e:40:38:7a:d2:28:27:45:2f:f8:0e: a4:d9:02:d5:b8:3e:28:4e:c3:bb:bf:e4:09:5b:af: c3:e8:3e:70:42:fa:32:77:8d:76:e5:5f:ff:56:25: cf:56:bb:83:b9:f6:25:0a:d9:0d:3e:00:1e:b9:f3: a3:54:9f:99:6f:0a:dd:1a:9d:bf:f3:4e:76:90:b5: 83:b2:d9:68:18:a4:fe:a1:62:46:5c:cf:4a:6b:64: 77:ce:2d:59:23:8c:e3:53:6f:99:95:da:f0:3a:93: 32:6b:6e:4a:cc:d5:12:a4:54:ba:8d:0c:46:e7:9b: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B6:9D:A9:AE:9B:1B:EE:71:D0:7D:0C:57:D8:FB:64:CC:B5:F9:2F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210152.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c2:b00b::/48 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 59:f8:1b:6f:11:1d:57:f8:6f:53:be:c3:4f:ac:f4:31:12:55: 24:db:a2:90:91:db:e2:10:c1:be:44:2f:98:72:17:4a:19:9a: 25:db:ab:a9:23:40:57:a4:ff:c0:b0:91:5f:64:d2:45:52:82: 6e:62:be:d6:1f:ee:51:9c:1e:84:d4:8b:0d:5f:9d:fa:be:20: f5:14:37:1a:39:d7:a4:4d:4e:e2:8b:6d:1f:39:81:e4:84:3e: 98:d0:cd:d0:52:f4:84:35:54:bd:cc:e0:56:92:42:e2:74:2d: 92:e5:84:55:7d:6b:67:41:ae:04:5f:d8:09:41:16:12:d9:d6: c7:2b:c3:ef:56:3c:2e:f7:ca:aa:5c:94:3f:30:fc:ad:8e:13: be:fd:ed:53:8c:f1:c6:ab:6d:0f:66:d5:ac:ef:7d:a0:40:97: 7e:87:78:cd:d8:fc:a4:dd:0c:d0:8c:26:f1:f7:8d:f5:a8:28: 8f:57:0e:13:16:c8:30:4f:12:d3:6e:41:d8:ab:b2:a2:12:39: b9:22:53:98:12:d3:09:84:7f:d6:f2:89:d3:69:c9:b5:06:19: 50:7a:75:2d:49:42:fe:21:53:c0:1e:ab:54:6f:f2:4f:a6:84: a0:04:30:1c:d2:f7:44:e5:15:3c:95:4f:8e:e8:f7:42:e7:b8: 60:26:26:b9 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgIUMbVPDMiBv1klkAio0Ke8U9bRNxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDgyQjY5REE5QUU5QjFCRUU3MUQwN0QwQzU3RDhGQjY0Q0NCNUY5MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKq9yiMVRDCryIJj/36ys+1CCM KLYb0AqYWyyztP1CajzpMrEI8JfsyYCuqlOeWIHF4BKBYwApgzX+W4Tj1qTXgb5Z wBXcsB9UMYs+pKN8IjnZlGWxVBnqbTujBw9i47La9SvDb4i6Ts18sRNHWFp+hL7L TYkLkJ5Ub9d1kI8sSMqw1NyqumyK1kwOQDh60ignRS/4DqTZAtW4PihOw7u/5Alb r8PoPnBC+jJ3jXblX/9WJc9Wu4O59iUK2Q0+AB6586NUn5lvCt0anb/zTnaQtYOy 2WgYpP6hYkZcz0prZHfOLVkjjONTb5mV2vA6kzJrbkrM1RKkVLqNDEbnm57/AgMB AAGjggJNMIICSTAdBgNVHQ4EFgQUgradqa6bG+5x0H0MV9j7ZMy1+S8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwMTUyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAAjAZAwYAKgdU wTcDBwAqB1TCsAsDBgQqB1THADANBgkqhkiG9w0BAQsFAAOCAQEAWfgbbxEdV/hv U77DT6z0MRJVJNuikJHb4hDBvkQvmHIXShmaJdurqSNAV6T/wLCRX2TSRVKCbmK+ 1h/uUZwehNSLDV+d+r4g9RQ3GjnXpE1O4ottHzmB5IQ+mNDN0FL0hDVUvczgVpJC 4nQtkuWEVX1rZ0GuBF/YCUEWEtnWxyvD71Y8LvfKqlyUPzD8rY4Tvv3tU4zxxqtt D2bVrO99oECXfod4zdj8pN0M0Iwm8feN9agoj1cOExbIME8S025B2KuyohI5uSJT mBLTCYR/1vKJ02nJtQYZUHp1LUlC/iFTwB6rVG/yT6aEoAQwHNL3ROUVPJVPjuj3 Que4YCYmuQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:28:53 2025 by rpki-client