$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211562.roa File: AS211562.roa (raw, json) Hash identifier: 5uGjn2xK7CzK83Fpo439clLtaHQBdrs0mxtpeXwU+Tk= Subject key identifier: 01:48:C9:0B:D9:61:84:7D:74:41:CF:2C:E9:1A:44:65:D3:5A:86:FC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0DF0630AD61C763A5BB1B921A0D16205509DFD64 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211562.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 211562 IP address blocks: 2a07:54c4:1750::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f0:63:0a:d6:1c:76:3a:5b:b1:b9:21:a0:d1:62:05:50:9d:fd:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=0148C90BD961847D7441CF2CE91A4465D35A86FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:59:15:a8:11:d3:9a:d9:3d:b3:a9:e0:ac: 16:0b:ff:0c:8b:5b:6d:9e:3f:50:b9:b0:6b:a4:b8: f4:88:32:2e:90:01:cb:d1:c4:d9:2e:f4:3d:d9:23: a6:03:b4:71:3b:89:1c:db:d0:d7:6c:65:62:ed:c6: 65:6b:f0:82:5f:4e:b5:71:72:89:55:fb:42:d1:c2: 27:e4:1e:42:9b:f9:c8:23:39:48:8f:cc:53:08:5c: 01:62:61:84:bd:3b:10:f7:43:f6:db:64:05:c1:8f: 66:59:3f:c0:e8:b8:5a:e4:d0:62:7c:ab:76:78:c0: a8:3f:c1:af:8c:c9:47:62:a8:0a:49:46:47:42:74: 62:b2:f4:cf:2d:98:15:94:89:f3:0a:77:b8:b4:52: a8:8f:d8:58:3e:f1:2f:77:94:2a:1d:83:23:6f:f0: c0:a5:fb:d3:23:a0:69:81:a5:d5:bd:db:6d:bc:d8: 40:71:eb:fc:f7:40:4c:82:36:98:56:e2:0e:c4:22: eb:95:ae:2c:0f:98:70:43:52:90:8b:2c:10:ef:bb: c9:23:ff:55:75:a8:06:6e:bc:d0:77:03:0b:db:a2: b8:4e:56:f9:aa:b6:bc:d0:76:87:e9:78:d8:6a:f5: a7:db:00:2c:f4:91:26:f2:14:4c:e5:29:84:2d:75: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:48:C9:0B:D9:61:84:7D:74:41:CF:2C:E9:1A:44:65:D3:5A:86:FC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1750::/48 Signature Algorithm: sha256WithRSAEncryption 15:90:03:05:8d:96:b5:37:7f:dd:65:dd:21:53:fe:b3:22:4e: 67:5b:01:b5:ca:74:62:f8:52:1d:75:3e:9b:7c:fa:a6:c5:36: 41:da:9f:31:49:d0:0d:09:c5:98:62:24:dc:d1:06:21:80:3b: b4:95:a8:ff:51:3c:b5:96:d9:f3:ba:c6:3d:da:dd:63:81:d9: 5e:f3:2a:02:82:23:a7:e2:b0:b8:d2:23:90:e8:3d:a3:3e:eb: 5f:10:92:92:f1:d3:fe:57:cd:2e:9f:b7:f3:b8:dd:71:48:27: 50:eb:50:85:59:17:52:e4:85:e9:1f:82:6e:13:e7:e2:73:f2: 7d:26:07:b6:29:48:f1:c7:4a:a2:5e:cf:82:d9:62:f1:7c:20: d7:f5:a4:69:c1:0b:ef:f4:4e:3c:98:6c:96:c4:c6:13:8d:e1: 42:9a:e8:9a:90:ff:66:4a:0c:08:2b:58:de:3d:b2:d9:bd:51: 7f:98:e7:33:88:11:e8:b9:f9:9d:3e:c8:c1:12:66:c4:42:bb: 83:df:d9:96:5a:48:88:51:ac:f9:54:c2:07:1e:f6:08:db:24: 3b:13:b7:4d:ee:3f:5d:72:c3:fd:89:3c:9c:3a:f6:f5:cc:0a: 47:28:01:0c:97:2d:ec:91:67:1f:91:f0:ab:2d:76:a3:d5:77: d2:09:1c:9b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDfBjCtYcdjpbsbkhoNFiBVCd/WQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDAxNDhDOTBCRDk2MTg0N0Q3NDQxQ0YyQ0U5MUE0NDY1RDM1QTg2RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4D1kVqBHTmtk9s6ngrBYL/wyL W22eP1C5sGukuPSIMi6QAcvRxNku9D3ZI6YDtHE7iRzb0NdsZWLtxmVr8IJfTrVx colV+0LRwifkHkKb+cgjOUiPzFMIXAFiYYS9OxD3Q/bbZAXBj2ZZP8DouFrk0GJ8 q3Z4wKg/wa+MyUdiqApJRkdCdGKy9M8tmBWUifMKd7i0UqiP2Fg+8S93lCodgyNv 8MCl+9MjoGmBpdW922282EBx6/z3QEyCNphW4g7EIuuVriwPmHBDUpCLLBDvu8kj /1V1qAZuvNB3AwvborhOVvmqtrzQdofpeNhq9afbACz0kSbyFEzlKYQtdfF5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAUjJC9lhhH10Qc8s6RpEZdNahvwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjExNTYyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdQMA0GCSqGSIb3DQEBCwUAA4IBAQAVkAMFjZa1N3/dZd0hU/6zIk5nWwG1ynRi +FIddT6bfPqmxTZB2p8xSdANCcWYYiTc0QYhgDu0laj/UTy1ltnzusY92t1jgdle 8yoCgiOn4rC40iOQ6D2jPutfEJKS8dP+V80un7fzuN1xSCdQ61CFWRdS5IXpH4Ju E+fic/J9Jge2KUjxx0qiXs+C2WLxfCDX9aRpwQvv9E48mGyWxMYTjeFCmuiakP9m SgwIK1jePbLZvVF/mOcziBHoufmdPsjBEmbEQruD39mWWkiIUaz5VMIHHvYI2yQ7 E7dN7j9dcsP9iTycOvb1zApHKAEMly3skWcfkfCrLXaj1XfSCRyb -----END CERTIFICATE-----Generated at Sat Jul 5 08:14:22 2025 by rpki-client