$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: Tl3ijSzrE9pquauIN8qIwL286jbnnRxlW4zz7PCYEfw= Subject key identifier: D6:38:4E:65:5A:52:0C:98:86:E9:C2:E1:7C:9A:7E:8C:08:8C:51:1A Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 11BA9F5458528D342475D68716634BB11B081586 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 210667 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ba:9f:54:58:52:8d:34:24:75:d6:87:16:63:4b:b1:1b:08:15:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=D6384E655A520C9886E9C2E17C9A7E8C088C511A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:da:86:a0:f3:79:e4:33:0b:84:37:00:6e:06: 06:1b:8d:ff:c6:d3:37:b4:d2:05:52:aa:4c:bb:dd: 76:95:64:40:89:bd:e2:28:1a:ec:1e:34:3f:47:21: f9:de:4d:73:6f:e1:76:b7:07:67:35:2b:45:f3:c4: 22:d5:7e:73:e1:91:11:62:cc:4c:c7:2e:b9:91:1c: 5b:24:2a:ff:6f:dd:36:9a:1d:02:08:c3:f6:b8:00: 33:9b:5b:b2:9a:bd:d9:ed:9d:6f:5c:34:01:3b:c9: 91:e6:60:53:c3:f3:51:1f:83:3f:c6:26:d4:90:eb: cc:9b:f4:dc:e1:4c:ad:38:a7:7b:42:95:b2:8f:38: 30:5d:42:16:8b:05:cd:91:2f:28:99:6f:2c:32:b2: 68:b4:eb:36:b7:95:bd:70:bf:c2:3a:a6:16:9d:0a: 72:ee:24:c1:18:05:16:35:ae:4d:8c:89:49:13:17: a9:0a:1a:3a:38:90:5c:99:6b:23:f5:ad:03:bc:c6: 42:d6:3f:d0:6a:7b:35:c6:1b:29:27:e4:ec:63:d1: c8:7e:83:b1:53:1e:7b:2b:c6:d9:43:85:5e:29:3b: d5:82:90:52:3a:0d:dc:e1:72:90:86:77:9b:84:78: 36:f0:3c:c9:09:8e:cb:16:f6:bb:fe:75:70:6b:c7: 97:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:38:4E:65:5A:52:0C:98:86:E9:C2:E1:7C:9A:7E:8C:08:8C:51:1A X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 10:67:64:3d:6e:b0:76:9c:ce:e6:af:f5:fb:d0:5b:1b:7f:1a: 0f:1b:bf:ba:56:83:40:39:28:28:b5:36:10:f0:2e:cb:50:91: 85:48:8f:a0:7e:2d:e6:91:77:68:08:a7:8f:d8:2e:e1:30:35: ef:50:e0:a6:94:bd:be:4e:92:a3:c2:5f:49:55:95:f8:d6:b9: 86:af:59:4a:16:f5:58:68:87:d5:bc:2e:d6:37:30:d2:02:b2: 61:6f:e3:3b:36:a3:8b:a3:6d:82:28:36:e3:48:e2:97:e0:cc: 17:3e:48:a8:f4:bf:18:34:01:ef:a7:66:71:90:81:bd:6f:d5: fc:87:92:81:cd:90:af:10:cb:09:1e:eb:90:61:07:ec:25:a2: 46:2d:1f:cb:49:71:8e:2a:1e:35:f9:0b:33:3f:0c:0c:66:4f: 0f:dc:50:9d:74:4e:af:ba:80:80:94:25:54:27:84:38:c8:19: e9:77:36:40:7b:ae:dd:4d:51:45:84:05:df:5e:86:7a:d8:e7: 3d:01:f4:8d:98:06:55:2e:a8:e2:94:19:14:4a:da:0d:6a:1c: 6e:41:db:67:8a:c0:d3:b4:35:45:52:89:c7:1b:66:6b:03:5b: 50:f2:93:cb:ab:2a:d0:8a:7f:7c:44:07:94:b6:34:93:d0:0f: 70:5a:c1:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEbqfVFhSjTQkddaHFmNLsRsIFYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEQ2Mzg0RTY1NUE1MjBDOTg4NkU5QzJFMTdDOUE3RThDMDg4QzUxMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ2oag83nkMwuENwBuBgYbjf/G 0ze00gVSqky73XaVZECJveIoGuweND9HIfneTXNv4Xa3B2c1K0XzxCLVfnPhkRFi zEzHLrmRHFskKv9v3TaaHQIIw/a4ADObW7KavdntnW9cNAE7yZHmYFPD81Efgz/G JtSQ68yb9NzhTK04p3tClbKPODBdQhaLBc2RLyiZbywysmi06za3lb1wv8I6phad CnLuJMEYBRY1rk2MiUkTF6kKGjo4kFyZayP1rQO8xkLWP9BqezXGGykn5Oxj0ch+ g7FTHnsrxtlDhV4pO9WCkFI6DdzhcpCGd5uEeDbwPMkJjssW9rv+dXBrx5ctAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1jhOZVpSDJiG6cLhfJp+jAiMURowHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAQZ2Q9brB2nM7mr/X70FsbfxoPG7+6VoNA OSgotTYQ8C7LUJGFSI+gfi3mkXdoCKeP2C7hMDXvUOCmlL2+TpKjwl9JVZX41rmG r1lKFvVYaIfVvC7WNzDSArJhb+M7NqOLo22CKDbjSOKX4MwXPkio9L8YNAHvp2Zx kIG9b9X8h5KBzZCvEMsJHuuQYQfsJaJGLR/LSXGOKh41+QszPwwMZk8P3FCddE6v uoCAlCVUJ4Q4yBnpdzZAe67dTVFFhAXfXoZ62Oc9AfSNmAZVLqjilBkUStoNahxu QdtnisDTtDVFUonHG2ZrA1tQ8pPLqyrQin98RAeUtjST0A9wWsHj -----END CERTIFICATE-----Generated at Sat Jul 5 08:21:25 2025 by rpki-client