$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa File: AS210645.roa (raw, json) Hash identifier: OIlR7p48g3mQnq03rx38aJDrwhZJP8m2+AFdI0RcXAY= Subject key identifier: 82:CE:66:1F:75:B2:47:27:CF:73:6C:FE:80:AF:E5:AF:1F:20:53:E3 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 49F59EFF7D7DBEDC0FCD4E1AB133913DF063EE52 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 210645 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f5:9e:ff:7d:7d:be:dc:0f:cd:4e:1a:b1:33:91:3d:f0:63:ee:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=82CE661F75B24727CF736CFE80AFE5AF1F2053E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8e:d8:a3:43:82:84:68:da:08:86:a8:02:a6: 81:42:75:95:11:90:8d:f0:8b:d8:6c:41:d1:a8:cb: 7f:84:23:30:19:f7:78:67:f1:97:23:4e:25:5b:e4: e0:1a:49:a9:c3:d1:ae:af:6d:83:fb:16:cd:a7:3c: 5d:19:74:d4:60:91:46:78:21:e1:ec:bf:83:da:8c: e1:25:2f:31:c2:e3:0e:3c:70:e8:85:d1:20:43:b3: ec:cf:b9:79:9b:b3:05:32:51:e5:a1:44:24:13:dc: 27:94:c4:6f:61:2d:44:36:92:7f:34:31:e0:de:d5: 53:ca:ff:4e:23:49:5b:b1:6b:68:32:bc:c7:b1:02: 3e:6c:4a:68:f9:c9:f6:08:5e:05:64:3c:94:d4:d8: 32:59:28:84:74:e2:9f:8e:9f:a1:88:d5:0d:25:ac: 6e:54:b8:ec:0e:1e:84:44:e3:4e:4f:c3:50:2d:6d: c8:0a:a1:4a:05:81:19:68:9b:00:25:79:ee:24:95: 79:ec:ea:98:dd:af:b5:ae:a1:34:2a:c7:b7:2d:65: 1a:e3:17:3b:7b:ea:77:99:94:cf:73:5d:8a:a2:bc: 0e:f5:56:f9:f5:ad:f4:78:27:ca:bc:ff:e0:98:3c: 14:25:30:ee:8f:15:31:87:56:42:65:1f:9e:91:4d: fe:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:CE:66:1F:75:B2:47:27:CF:73:6C:FE:80:AF:E5:AF:1F:20:53:E3 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 5a:cf:ed:a0:b3:98:39:a5:c1:80:b8:e0:52:0d:99:fe:68:e4: b2:e6:bc:18:31:ca:ef:1d:2d:20:a8:8d:f6:cb:ea:58:13:3c: a6:ed:00:6c:66:76:4c:02:9f:16:9a:68:51:62:c2:2c:63:05: 03:32:b5:f8:dc:22:8e:e2:0d:09:73:35:30:b7:ec:d4:5d:38: 00:fb:65:bb:60:c4:d0:69:1a:13:8b:85:c9:8c:73:7c:9c:7a: c0:28:40:80:63:09:67:68:d5:0c:e5:f3:b7:d7:1b:00:75:dc: c2:c9:2a:5e:cf:80:24:78:d3:cd:00:da:b9:dd:57:9c:53:36: ea:2f:86:bc:29:3f:0e:46:10:d9:8c:85:10:01:2b:86:e3:bb: e0:2a:84:60:09:22:23:1a:4c:00:5e:cd:e0:53:fc:fe:97:cc: ef:39:ae:82:52:f9:78:d1:0c:36:4b:0e:6b:d5:59:44:c8:85: 7b:71:10:2f:37:a7:07:e3:a9:27:13:c0:fc:14:31:f8:c7:6a: 8f:37:92:4f:56:bc:a6:a7:34:5b:e0:65:3a:18:d9:66:fc:cf: 29:0b:2d:d0:45:b6:58:03:00:c0:31:3c:a0:4d:cd:d7:d4:91: 63:ba:0e:79:5a:b8:65:9e:6d:72:1e:27:84:5c:f6:b2:64:1e: 3e:55:d4:9b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSfWe/319vtwPzU4asTORPfBj7lIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKDgyQ0U2NjFGNzVCMjQ3MjdDRjczNkNGRTgwQUZFNUFGMUYyMDUzRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpjtijQ4KEaNoIhqgCpoFCdZUR kI3wi9hsQdGoy3+EIzAZ93hn8ZcjTiVb5OAaSanD0a6vbYP7Fs2nPF0ZdNRgkUZ4 IeHsv4PajOElLzHC4w48cOiF0SBDs+zPuXmbswUyUeWhRCQT3CeUxG9hLUQ2kn80 MeDe1VPK/04jSVuxa2gyvMexAj5sSmj5yfYIXgVkPJTU2DJZKIR04p+On6GI1Q0l rG5UuOwOHoRE405Pw1AtbcgKoUoFgRlomwAlee4klXns6pjdr7WuoTQqx7ctZRrj Fzt76neZlM9zXYqivA71Vvn1rfR4J8q8/+CYPBQlMO6PFTGHVkJlH56RTf7NAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgs5mH3WyRyfPc2z+gK/lrx8gU+MwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNjQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBaz+2gs5g5pcGAuOBSDZn+aOSy5rwYMcrv HS0gqI32y+pYEzym7QBsZnZMAp8WmmhRYsIsYwUDMrX43CKO4g0JczUwt+zUXTgA +2W7YMTQaRoTi4XJjHN8nHrAKECAYwlnaNUM5fO31xsAddzCySpez4AkeNPNANq5 3VecUzbqL4a8KT8ORhDZjIUQASuG47vgKoRgCSIjGkwAXs3gU/z+l8zvOa6CUvl4 0Qw2Sw5r1VlEyIV7cRAvN6cH46knE8D8FDH4x2qPN5JPVrympzRb4GU6GNlm/M8p Cy3QRbZYAwDAMTygTc3X1JFjug55Wrhlnm1yHieEXPayZB4+VdSb -----END CERTIFICATE-----Generated at Sat Jul 5 08:19:01 2025 by rpki-client