$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212149.roa File: AS212149.roa (raw, json) Hash identifier: kv2a8pRAtxFqMnsSzOgHZHIYSQbk6K+B3Kuhnww0s50= Subject key identifier: 59:E6:3B:39:F0:85:FF:53:A4:9D:BD:3A:84:EE:A8:88:2F:40:EF:73 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2932F125780A9FEFBBE50732EAC33E5241780C59 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212149.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 212149 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:32:f1:25:78:0a:9f:ef:bb:e5:07:32:ea:c3:3e:52:41:78:0c:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=59E63B39F085FF53A49DBD3A84EEA8882F40EF73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:d5:f9:8b:b5:c1:9a:0f:e7:ee:e3:df:7a: fe:4c:47:a4:b7:a3:23:a0:2a:b1:e9:2d:86:a2:c5: 5a:c9:c1:54:1c:87:d1:a1:56:a3:d7:15:f7:84:d0: 92:59:f5:ec:5b:84:22:e4:1f:18:a5:ee:37:51:2a: 5b:cb:a7:5c:4e:5e:b5:cb:b0:58:88:c5:61:fc:55: 0c:84:19:ab:90:a1:29:f9:73:97:69:a6:a1:f7:44: 1b:d0:75:46:18:e3:05:b5:27:da:80:5a:24:0b:7e: 3e:24:f6:b0:e6:74:0d:84:58:7b:98:e7:a1:d3:cb: 56:c6:e1:67:83:da:ea:31:79:66:f4:34:5b:78:4a: d5:0d:33:54:d8:af:7c:a8:27:5e:eb:7e:03:f8:b7: 31:dd:0d:a0:17:14:ac:83:d1:f2:d9:3e:1b:7c:c1: 53:84:3a:4b:f3:1b:1e:30:da:9f:51:4e:90:7b:e7: c9:5f:ac:e5:23:9d:af:35:7e:63:48:e5:87:da:c4: 1a:c9:8e:3f:e7:66:e5:59:08:e9:86:2d:f3:0f:a6: 2e:7f:f3:87:a1:fb:79:6a:c8:04:6a:c3:eb:a4:ad: 55:e3:a9:48:cc:4e:2e:dc:21:96:d9:af:1b:34:59: 1d:66:c4:51:50:33:47:e9:eb:2d:7d:b1:4f:ab:0f: b0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E6:3B:39:F0:85:FF:53:A4:9D:BD:3A:84:EE:A8:88:2F:40:EF:73 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212149.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2a:02:f8:df:84:00:23:a4:68:6f:03:c0:26:ef:89:ed:41:52: 4b:06:4e:58:c0:7e:93:38:96:67:0a:4e:b4:bb:78:e6:f5:f8: 62:f9:a8:eb:7f:80:90:71:ee:88:aa:1b:6e:a9:14:80:17:67: 7c:a7:37:ad:28:3d:d7:c2:89:58:56:0d:ef:1c:33:1b:f1:9c: 46:eb:ce:c6:f4:fd:e9:f8:ab:f0:ea:e9:af:81:4f:96:a9:fc: aa:dd:66:76:c1:bc:92:f8:e3:4d:c2:7e:80:74:87:e1:eb:f1: 0f:5a:21:62:dc:3d:bf:42:58:9a:ec:26:cf:91:1f:a0:cf:3c: ba:45:1f:10:20:d2:95:0b:9e:62:01:cb:68:08:68:fa:b3:20: a5:78:7a:9e:ec:3f:22:f6:87:0c:97:7e:94:27:95:8d:31:e7: 3b:b1:b9:d1:55:6d:81:e4:70:d5:cf:c4:68:80:85:8a:d4:0c: 62:f2:c6:03:b5:9c:69:b2:25:24:42:29:31:2a:89:22:c4:1a: 43:40:b6:10:e7:ad:ca:cf:b9:83:c0:16:f2:7d:be:26:19:fb: 8a:92:7d:01:9a:09:1b:6c:d4:f1:9c:60:6d:e1:a9:8d:82:0c: f7:4e:b7:71:88:f0:54:e0:fb:f7:b1:28:fc:04:5a:6f:33:07: 3e:c5:b3:38 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKTLxJXgKn++75Qcy6sM+UkF4DFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKDU5RTYzQjM5RjA4NUZGNTNBNDlEQkQzQTg0RUVBODg4MkY0MEVGNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL79X5i7XBmg/n7uPfev5MR6S3 oyOgKrHpLYaixVrJwVQch9GhVqPXFfeE0JJZ9exbhCLkHxil7jdRKlvLp1xOXrXL sFiIxWH8VQyEGauQoSn5c5dppqH3RBvQdUYY4wW1J9qAWiQLfj4k9rDmdA2EWHuY 56HTy1bG4WeD2uoxeWb0NFt4StUNM1TYr3yoJ17rfgP4tzHdDaAXFKyD0fLZPht8 wVOEOkvzGx4w2p9RTpB758lfrOUjna81fmNI5YfaxBrJjj/nZuVZCOmGLfMPpi5/ 84eh+3lqyARqw+ukrVXjqUjMTi7cIZbZrxs0WR1mxFFQM0fp6y19sU+rD7DnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWeY7OfCF/1Oknb06hO6oiC9A73MwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEyMTQ5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAqAvjfhAAjpGhvA8Am74ntQVJLBk5YwH6T OJZnCk60u3jm9fhi+ajrf4CQce6IqhtuqRSAF2d8pzetKD3XwolYVg3vHDMb8ZxG 687G9P3p+Kvw6umvgU+Wqfyq3WZ2wbyS+ONNwn6AdIfh6/EPWiFi3D2/Qlia7CbP kR+gzzy6RR8QINKVC55iActoCGj6syCleHqe7D8i9ocMl36UJ5WNMec7sbnRVW2B 5HDVz8RogIWK1Axi8sYDtZxpsiUkQikxKokixBpDQLYQ563Kz7mDwBbyfb4mGfuK kn0BmgkbbNTxnGBt4amNggz3TrdxiPBU4Pv3sSj8BFpvMwc+xbM4 -----END CERTIFICATE-----Generated at Sat Jul 5 08:23:46 2025 by rpki-client