$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: kX2EgBZQ+i5q0Uwdxr9H+749rawsm809Cqq3HYKiwDo= Subject key identifier: FD:F2:BE:CD:46:88:F5:CB:F0:DC:9F:33:2A:BE:20:61:0F:06:4C:24 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 713978C24819D9C8A5F5CD4ADBAA1258554580FE Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa Signing time: Mon 01 Sep 2025 14:15:25 +0000 ROA not before: Mon 01 Sep 2025 14:10:25 +0000 ROA not after: Mon 31 Aug 2026 14:15:25 +0000 asID: 210475 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:39:78:c2:48:19:d9:c8:a5:f5:cd:4a:db:aa:12:58:55:45:80:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Sep 1 14:10:25 2025 GMT Not After : Aug 31 14:15:25 2026 GMT Subject: CN=FDF2BECD4688F5CBF0DC9F332ABE20610F064C24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:2d:29:34:bc:71:31:5f:92:22:92:25:56: 86:2e:44:d4:a7:69:37:c5:33:e1:b4:84:9f:5d:6d: d2:5d:52:da:14:96:59:f4:35:3e:88:07:2e:05:4d: 53:b2:d5:7e:55:57:bb:26:9f:a3:cd:32:eb:c4:5a: 44:96:0a:1e:2a:a6:dd:bd:1a:e3:b5:81:fd:52:5a: df:54:e0:ab:67:2d:46:49:15:28:46:c9:ed:85:6f: 77:ce:ea:40:63:62:45:9c:8b:b5:2b:70:a8:22:f9: b8:0f:39:27:e3:9b:5b:3d:f6:ff:6a:bf:e7:73:2b: f6:ae:72:62:3c:29:61:49:ea:c5:5d:0f:bb:7d:b9: 11:45:cd:9f:0e:67:8a:7c:81:ca:de:1c:b0:f5:fc: 14:84:3c:fa:cf:f9:30:07:ca:00:02:c6:a0:6b:e1: f5:f1:af:cf:7d:3f:b1:a2:48:32:55:02:60:c0:8f: df:2f:41:ed:c9:b7:96:b1:27:b4:ad:ea:6e:fb:37: bd:13:83:b2:91:f6:b6:31:b0:dd:c8:30:ab:4c:22: 70:8e:43:0c:43:b9:fa:b1:e6:53:f7:38:fb:8d:7b: f0:90:7c:f0:60:64:a8:f5:31:c4:58:77:1f:3e:65: a6:89:9a:9d:10:85:cf:a4:ca:ad:36:27:e7:40:e2: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F2:BE:CD:46:88:F5:CB:F0:DC:9F:33:2A:BE:20:61:0F:06:4C:24 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 Signature Algorithm: sha256WithRSAEncryption 4b:19:36:9d:d2:f4:a7:de:3a:ce:d9:fa:c6:64:1a:62:01:ff: 8f:28:fd:8f:98:bf:39:40:64:98:1e:09:03:5e:00:02:5f:73: 0c:b3:98:cf:16:97:70:09:3e:ff:79:36:f1:74:c4:69:29:fb: a4:1a:60:8c:8b:ff:7c:e6:37:db:31:92:d3:26:52:38:21:b3: ef:47:95:e0:fc:e6:9f:7b:7d:16:f7:13:5f:84:61:36:15:b5: b2:d0:eb:4c:b8:b1:5d:7b:95:0e:bf:cc:f2:fa:48:a7:09:d5: 02:89:08:43:e7:26:db:63:41:e4:f8:0c:21:20:a3:b3:24:00: dc:c5:7d:05:c9:6d:ff:7b:dc:23:42:44:93:8f:aa:52:26:c2: 2f:61:b5:81:05:e6:3c:f7:85:94:13:4a:ef:49:5b:d2:d6:73: 0f:f4:94:d8:25:65:9b:2a:d0:eb:cc:4e:8c:ee:14:6a:35:68: 6d:f5:38:17:1d:79:76:aa:fb:f3:55:58:82:fc:d2:4d:0d:33: 7f:1c:43:78:f1:14:a1:12:79:88:bd:05:b2:0d:d8:38:32:8b: de:af:ec:06:ca:09:ce:ef:6f:36:2a:fc:94:a0:75:7e:79:29: 01:3c:4d:c5:39:e4:24:49:6e:e6:9a:89:2e:dc:c3:f2:3c:a5: bc:7a:ba:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcTl4wkgZ2cil9c1K26oSWFVFgP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA5MDExNDEwMjVaFw0yNjA4MzExNDE1MjVaMDMxMTAvBgNV BAMTKEZERjJCRUNENDY4OEY1Q0JGMERDOUYzMzJBQkUyMDYxMEYwNjRDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCypC0pNLxxMV+SIpIlVoYuRNSn aTfFM+G0hJ9dbdJdUtoUlln0NT6IBy4FTVOy1X5VV7smn6PNMuvEWkSWCh4qpt29 GuO1gf1SWt9U4KtnLUZJFShGye2Fb3fO6kBjYkWci7UrcKgi+bgPOSfjm1s99v9q v+dzK/aucmI8KWFJ6sVdD7t9uRFFzZ8OZ4p8gcreHLD1/BSEPPrP+TAHygACxqBr 4fXxr899P7GiSDJVAmDAj98vQe3Jt5axJ7St6m77N70Tg7KR9rYxsN3IMKtMInCO QwxDufqx5lP3OPuNe/CQfPBgZKj1McRYdx8+ZaaJmp0Qhc+kyq02J+dA4uRfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/fK+zUaI9cvw3J8zKr4gYQ8GTCQwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTcwDQYJKoZIhvcNAQELBQADggEBAEsZNp3S9KfeOs7Z+sZkGmIB/48o/Y+YvzlA ZJgeCQNeAAJfcwyzmM8Wl3AJPv95NvF0xGkp+6QaYIyL/3zmN9sxktMmUjghs+9H leD85p97fRb3E1+EYTYVtbLQ60y4sV17lQ6/zPL6SKcJ1QKJCEPnJttjQeT4DCEg o7MkANzFfQXJbf973CNCRJOPqlImwi9htYEF5jz3hZQTSu9JW9LWcw/0lNglZZsq 0OvMTozuFGo1aG31OBcdeXaq+/NVWIL80k0NM38cQ3jxFKESeYi9BbIN2Dgyi96v 7AbKCc7vbzYq/JSgdX55KQE8TcU55CRJbuaaiS7cw/I8pbx6uqQ= -----END CERTIFICATE-----Generated at Wed Oct 8 19:34:47 2025 by rpki-client