$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212294.roa File: AS212294.roa (raw, json) Hash identifier: 4veKHqQsmSc9g/JO2Dsr7zaBFAu3EX4ElK2wCg72EW8= Subject key identifier: D1:53:82:91:22:C0:54:58:34:C2:09:6F:13:26:90:6B:B6:78:B4:89 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 023DB1FBD469AA35251BF1E06E046DCDD0315F05 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212294.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 212294 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:3d:b1:fb:d4:69:aa:35:25:1b:f1:e0:6e:04:6d:cd:d0:31:5f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=D153829122C0545834C2096F1326906BB678B489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6d:ac:33:ec:a6:69:2e:15:60:fa:2d:a5:77: 0b:b0:e5:bb:65:4d:70:db:36:ed:6e:9a:a7:d7:2c: b6:24:8f:cb:53:c9:c9:a9:63:9b:d9:f7:55:95:37: 25:e1:ad:de:48:68:36:d1:30:6c:4a:b2:7a:d5:32: 70:0c:04:e8:7b:03:13:9b:88:04:08:31:67:2c:85: 4f:0e:fa:82:d7:78:bc:3b:b0:fb:3d:44:e4:72:c5: b5:40:66:48:48:ee:d9:33:48:6c:0d:f9:48:e1:bc: b0:a1:52:d1:17:83:f7:48:31:2e:da:f3:04:3c:c7: c1:66:47:a0:ed:e2:72:38:6c:84:67:14:0a:4d:28: 05:6a:d9:fd:e7:12:af:cf:60:9a:a1:20:74:a4:38: 31:3a:5b:14:50:aa:eb:e3:7c:cb:c9:01:9c:f2:a7: a8:30:4b:3c:ae:b3:82:54:ca:39:f0:28:a5:11:fd: 31:43:86:45:1f:5b:fb:c3:84:62:f4:a5:eb:ae:03: 5c:ab:7d:10:7b:15:44:3d:13:ce:5a:ba:8b:de:b1: 2f:6b:d6:87:76:2b:cb:8f:17:61:94:85:d8:91:8c: 7f:09:01:67:b6:a3:26:6b:0c:61:82:2b:8c:ba:8f: ff:92:11:2b:4c:a4:34:4d:64:3c:9e:b3:ca:73:c9: 41:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:53:82:91:22:C0:54:58:34:C2:09:6F:13:26:90:6B:B6:78:B4:89 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212294.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 06:64:60:67:52:9e:ac:eb:c4:9a:03:cb:17:e3:b7:eb:e2:59: 56:9e:47:50:02:8c:da:48:e0:e3:08:e1:16:d5:eb:7e:6b:d3: d3:29:bf:a5:9f:a1:99:d2:73:5c:94:6f:03:d4:40:07:e1:16: e5:42:8c:b9:98:37:34:6d:0a:43:a4:12:6b:67:76:ca:4b:b9: b3:17:49:ee:1e:f4:fc:f4:c3:84:9d:5b:32:47:b9:bf:5e:83: 33:87:39:44:31:12:51:34:22:d1:bf:a3:bb:b9:40:a8:41:bb: ef:f7:3f:4c:15:cf:bc:a5:cd:ec:78:5a:5a:b9:ec:b4:86:78: 90:d5:04:29:a2:5e:7a:3d:10:73:8d:92:ba:d1:1c:4c:92:34: 85:03:2e:92:ad:0a:31:51:ab:92:ca:4a:5b:25:80:e5:0e:27: 4e:71:57:c1:a8:dc:8c:91:74:f7:ed:99:19:22:8f:f7:0a:e9: 39:64:a1:a8:21:21:c0:fc:26:80:b2:38:e8:8f:a8:5f:37:7c: 68:c3:d1:2a:0f:a0:72:b4:08:ae:fe:d2:33:a9:fb:af:ed:b5: 99:e1:eb:fb:57:ad:e0:fe:b8:41:f0:21:ba:52:a7:33:88:29: 84:fe:0e:b4:0c:56:2e:80:73:b0:8f:b4:7a:b6:c9:5d:58:71: c1:41:3b:5f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAj2x+9RpqjUlG/HgbgRtzdAxXwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEQxNTM4MjkxMjJDMDU0NTgzNEMyMDk2RjEzMjY5MDZCQjY3OEI0ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgbawz7KZpLhVg+i2ldwuw5btl TXDbNu1umqfXLLYkj8tTycmpY5vZ91WVNyXhrd5IaDbRMGxKsnrVMnAMBOh7AxOb iAQIMWcshU8O+oLXeLw7sPs9RORyxbVAZkhI7tkzSGwN+UjhvLChUtEXg/dIMS7a 8wQ8x8FmR6Dt4nI4bIRnFApNKAVq2f3nEq/PYJqhIHSkODE6WxRQquvjfMvJAZzy p6gwSzyus4JUyjnwKKUR/TFDhkUfW/vDhGL0peuuA1yrfRB7FUQ9E85auovesS9r 1od2K8uPF2GUhdiRjH8JAWe2oyZrDGGCK4y6j/+SEStMpDRNZDyes8pzyUHjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU0VOCkSLAVFg0wglvEyaQa7Z4tIkwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEyMjk0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAGZGBnUp6s68SaA8sX47fr4llWnkdQAoza SODjCOEW1et+a9PTKb+ln6GZ0nNclG8D1EAH4RblQoy5mDc0bQpDpBJrZ3bKS7mz F0nuHvT89MOEnVsyR7m/XoMzhzlEMRJRNCLRv6O7uUCoQbvv9z9MFc+8pc3seFpa uey0hniQ1QQpol56PRBzjZK60RxMkjSFAy6SrQoxUauSykpbJYDlDidOcVfBqNyM kXT37ZkZIo/3Cuk5ZKGoISHA/CaAsjjoj6hfN3xow9EqD6BytAiu/tIzqfuv7bWZ 4ev7V63g/rhB8CG6UqcziCmE/g60DFYugHOwj7R6tsldWHHBQTtf -----END CERTIFICATE-----Generated at Sat Jul 5 08:27:59 2025 by rpki-client