$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212934.roa File: AS212934.roa (raw, json) Hash identifier: drI7AqqUZ+tarnWWj1nCVD1Tg9ycZ3cMh2MD+T3v8CA= Subject key identifier: 90:48:56:27:82:C3:EC:7F:41:0F:48:45:9D:41:60:35:08:82:8C:E1 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2825F603ECB575AD5DB6A15B73B88C15D54F3C8E Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212934.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 212934 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:25:f6:03:ec:b5:75:ad:5d:b6:a1:5b:73:b8:8c:15:d5:4f:3c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=9048562782C3EC7F410F48459D41603508828CE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d2:69:f0:e6:26:8e:21:81:cb:6a:cf:57:b0: 7a:b2:58:de:35:48:7c:8b:97:85:f3:d5:53:1e:87: 48:cc:bd:fd:f4:4a:8b:2b:4a:15:65:ee:0f:e9:08: 09:c6:c0:1a:70:04:22:ae:33:3d:30:57:43:15:94: 03:f7:c8:95:ec:fc:63:0b:a8:b4:5b:6f:2d:1c:6a: 80:8e:7d:4f:29:61:51:97:dc:63:2e:f1:99:d0:67: 5d:41:55:a3:24:a3:c3:16:5c:12:ff:ef:4f:bb:2b: e3:c1:cb:36:bb:e6:c0:b2:d5:fe:51:ad:86:ef:89: 0b:df:0b:f4:0e:e9:04:89:fe:c7:bb:85:f8:20:43: 2c:0d:94:77:45:06:03:84:fa:b9:92:a1:7f:74:a7: 52:0a:d5:be:bd:9e:5a:0e:f8:0d:69:68:ff:49:b4: 86:52:15:b2:8d:20:0d:f6:01:5e:dc:49:d2:e7:25: 2b:68:d4:ff:4d:48:9b:5c:5d:a5:9c:da:32:85:59: 76:ab:3e:d7:b7:c2:fa:d4:0a:7f:d2:0c:78:6b:6b: 64:ba:eb:b1:01:9e:a6:b1:90:b9:dc:e3:73:ad:85: e7:fc:7e:88:d0:3d:e5:4d:69:35:a3:bc:c7:ad:0a: a2:63:ca:f7:d5:2c:41:67:1c:7e:99:fa:e4:af:9a: 31:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:48:56:27:82:C3:EC:7F:41:0F:48:45:9D:41:60:35:08:82:8C:E1 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS212934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 91:11:e1:17:df:a0:2a:c3:b6:35:32:97:ff:22:aa:8d:bd:28: c9:89:d0:6e:1c:c0:c8:85:53:f5:52:82:2b:58:fd:7b:54:c6: 40:3e:3d:51:69:2b:a1:9b:04:36:5f:83:75:22:42:20:3d:d8: 4b:04:27:57:59:50:17:7f:42:fb:1d:2d:65:87:5b:38:e7:06: 1f:ce:72:df:93:22:30:94:06:e7:67:34:10:8e:58:6d:3d:d0: 22:f5:69:40:0f:18:9c:ff:26:33:81:17:c4:b3:dd:f8:c8:1a: 5e:c6:f9:dc:00:66:1b:75:b3:4f:ff:49:f4:43:65:97:5a:46: cd:5d:67:03:3e:82:fc:02:58:b3:ba:0d:c0:9e:e5:6d:12:e0: b5:20:ed:d9:ab:cd:83:19:8a:4e:9c:53:2d:2b:cf:4b:9c:7b: c8:69:84:85:2a:5b:8d:64:66:6a:9c:76:26:1a:56:c2:82:2a: 63:9a:62:3f:23:f2:17:39:be:cd:9b:e6:a8:8e:1f:53:a8:1c: d1:6c:17:06:16:10:a9:01:43:82:83:30:fb:af:5e:1d:cd:c4: c5:cf:7c:da:e9:4a:f2:5e:d4:3d:99:c5:ce:64:5f:18:0c:cb: fd:79:50:f8:c1:6b:bd:13:1d:7b:c0:f0:68:7c:bc:5a:1e:de: 67:0c:f6:5f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKCX2A+y1da1dtqFbc7iMFdVPPI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDkwNDg1NjI3ODJDM0VDN0Y0MTBGNDg0NTlENDE2MDM1MDg4MjhDRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC90mnw5iaOIYHLas9XsHqyWN41 SHyLl4Xz1VMeh0jMvf30SosrShVl7g/pCAnGwBpwBCKuMz0wV0MVlAP3yJXs/GML qLRbby0caoCOfU8pYVGX3GMu8ZnQZ11BVaMko8MWXBL/70+7K+PByza75sCy1f5R rYbviQvfC/QO6QSJ/se7hfggQywNlHdFBgOE+rmSoX90p1IK1b69nloO+A1paP9J tIZSFbKNIA32AV7cSdLnJSto1P9NSJtcXaWc2jKFWXarPte3wvrUCn/SDHhra2S6 67EBnqaxkLnc43Othef8fojQPeVNaTWjvMetCqJjyvfVLEFnHH6Z+uSvmjEvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkEhWJ4LD7H9BD0hFnUFgNQiCjOEwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEyOTM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCREeEX36Aqw7Y1Mpf/IqqNvSjJidBuHMDI hVP1UoIrWP17VMZAPj1RaSuhmwQ2X4N1IkIgPdhLBCdXWVAXf0L7HS1lh1s45wYf znLfkyIwlAbnZzQQjlhtPdAi9WlADxic/yYzgRfEs934yBpexvncAGYbdbNP/0n0 Q2WXWkbNXWcDPoL8Alizug3AnuVtEuC1IO3Zq82DGYpOnFMtK89LnHvIaYSFKluN ZGZqnHYmGlbCgipjmmI/I/IXOb7Nm+aojh9TqBzRbBcGFhCpAUOCgzD7r14dzcTF z3za6UryXtQ9mcXOZF8YDMv9eVD4wWu9Ex17wPBofLxaHt5nDPZf -----END CERTIFICATE-----Generated at Sat Jul 5 08:13:01 2025 by rpki-client