$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: Cblz8OZEuwKC5SIHBlghcYXouUyItnPa1mOrODgftVY= Subject key identifier: B0:A4:9B:17:A2:52:BA:66:6E:C2:54:04:E3:09:72:ED:CF:15:1A:82 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0AA8532F4EE2774422582F0469851552507AB0D9 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 210475 IP address blocks: 2a07:54c1:3700::/40 maxlen: 48 2a07:54c7::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a8:53:2f:4e:e2:77:44:22:58:2f:04:69:85:15:52:50:7a:b0:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=B0A49B17A252BA666EC25404E30972EDCF151A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:fd:75:d7:01:9e:06:de:29:b9:03:5a:ac: 6b:88:70:36:43:41:43:7b:e7:0f:e3:9a:c1:d2:30: 7c:91:be:a0:cc:fe:4f:bd:a3:1d:8a:8f:43:c9:4d: 03:55:e3:b3:aa:58:db:2a:c1:20:d4:c6:ab:a3:2a: 44:00:a5:af:9e:e6:fe:a5:65:fa:98:a7:80:2a:bc: 1f:f0:0a:86:c7:41:b5:22:bb:88:b1:cb:19:23:57: 21:36:c2:cb:41:72:94:91:f1:eb:96:dc:73:36:f6: ce:61:39:ee:13:e8:52:94:a6:f9:13:d3:78:0f:86: 33:f3:7f:8a:a6:02:78:26:e1:bb:6d:2e:df:4f:fe: bb:a5:f0:a0:2b:13:5a:41:c6:51:4c:2f:db:64:b7: 7c:5d:84:69:59:b5:a0:a3:d6:2b:57:30:21:e3:99: d4:c7:47:b5:34:50:ba:12:6c:a0:5b:f8:e7:58:20: 0e:f9:35:8f:68:a9:58:4a:35:83:aa:32:78:4e:fe: a0:3b:81:b3:44:aa:32:50:53:09:ef:2f:3d:18:78: aa:0e:d6:0c:03:a2:c5:dc:f8:ce:55:bb:a1:4b:23: 15:ef:96:79:de:4e:5f:57:57:12:d0:f2:00:ae:4f: 55:fd:0b:cb:df:8a:72:50:96:68:76:05:0c:36:bd: 3d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A4:9B:17:A2:52:BA:66:6E:C2:54:04:E3:09:72:ED:CF:15:1A:82 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3700::/40 2a07:54c7::/36 Signature Algorithm: sha256WithRSAEncryption 23:3e:47:a3:a7:80:5e:80:0e:90:1c:96:f1:d8:9d:e8:6a:14: b1:8c:1c:88:f0:dc:d2:d6:a9:b0:30:d1:63:8d:f0:11:3b:f0: 92:18:46:3d:e8:1d:54:f5:84:b4:4c:bb:da:8b:d2:3c:b9:36: 50:44:85:90:19:31:c9:d8:f9:fc:2c:28:b2:3b:33:79:fe:44: 24:2c:f9:e9:62:f8:a1:c6:6e:6f:bc:90:ef:dd:2e:b9:ea:74: 52:e7:a0:7b:4c:68:0c:63:fc:80:2b:5e:08:20:ae:9e:c0:07: 93:30:aa:08:7a:80:a2:d0:d0:85:81:92:16:1b:59:18:2c:b0: 46:fd:34:eb:c1:54:48:ef:66:e1:22:c4:37:f9:96:54:24:1c: 04:e8:b7:59:33:a0:90:65:63:79:1b:12:14:5e:40:cb:13:1d: 0e:a9:70:02:ff:f0:5e:54:74:99:65:c0:46:04:e7:d0:a1:5a: 59:7f:f2:31:04:31:d1:43:dc:cd:35:3b:cd:f6:ba:04:b8:73: a6:47:46:2c:d2:e6:3f:39:0b:61:21:b5:1d:56:32:36:ba:aa: c0:bd:69:87:eb:74:48:3d:c6:aa:64:6c:aa:6c:7c:72:b4:02: 77:f1:e8:39:ba:1d:6b:71:f0:4d:08:7b:61:71:fa:7e:4a:c4: cd:5d:ed:5f -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUCqhTL07id0QiWC8EaYUVUlB6sNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKEIwQTQ5QjE3QTI1MkJBNjY2RUMyNTQwNEUzMDk3MkVEQ0YxNTFBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Ff111wGeBt4puQNarGuIcDZD QUN75w/jmsHSMHyRvqDM/k+9ox2Kj0PJTQNV47OqWNsqwSDUxqujKkQApa+e5v6l ZfqYp4AqvB/wCobHQbUiu4ixyxkjVyE2wstBcpSR8euW3HM29s5hOe4T6FKUpvkT 03gPhjPzf4qmAngm4bttLt9P/rul8KArE1pBxlFML9tkt3xdhGlZtaCj1itXMCHj mdTHR7U0ULoSbKBb+OdYIA75NY9oqVhKNYOqMnhO/qA7gbNEqjJQUwnvLz0YeKoO 1gwDosXc+M5Vu6FLIxXvlnneTl9XVxLQ8gCuT1X9C8vfinJQlmh2BQw2vT21AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUsKSbF6JSumZuwlQE4wly7c8VGoIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwYAKgdU wTcDBgQqB1THADANBgkqhkiG9w0BAQsFAAOCAQEAIz5Ho6eAXoAOkByW8did6GoU sYwciPDc0tapsDDRY43wETvwkhhGPegdVPWEtEy72ovSPLk2UESFkBkxydj5/Cwo sjszef5EJCz56WL4ocZub7yQ790uuep0Uuege0xoDGP8gCteCCCunsAHkzCqCHqA otDQhYGSFhtZGCywRv0068FUSO9m4SLEN/mWVCQcBOi3WTOgkGVjeRsSFF5AyxMd DqlwAv/wXlR0mWXARgTn0KFaWX/yMQQx0UPczTU7zfa6BLhzpkdGLNLmPzkLYSG1 HVYyNrqqwL1ph+t0SD3GqmRsqmx8crQCd/HoOboda3HwTQh7YXH6fkrEzV3tXw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:25:20 2025 by rpki-client