$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa File: AS213045.roa (raw, json) Hash identifier: jd1ObXrCHa07Ajy8EIAZJh/C9OgDDgCnf/er9XOYLBs= Subject key identifier: 87:69:CF:34:51:5A:AF:F9:DB:41:24:12:31:E9:89:87:24:31:95:FA Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 731B79CDE6D651CAB18451C5674D1E076F215651 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 213045 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:1b:79:cd:e6:d6:51:ca:b1:84:51:c5:67:4d:1e:07:6f:21:56:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=8769CF34515AAFF9DB41241231E98987243195FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:b9:5a:d3:dc:51:a1:e2:9f:e2:0f:ef:bd: 6c:04:6c:b8:6c:23:c0:ec:6d:98:60:e8:7b:cc:42: 44:3f:a7:52:48:f3:f7:60:28:dd:81:44:dd:ba:90: a7:5e:b1:11:1e:38:39:53:bf:69:48:c5:94:e3:9f: f2:e2:b6:29:6c:ae:25:b5:ac:be:98:d6:c6:1b:20: 28:e2:50:21:12:80:09:99:ce:8a:3d:24:0d:0b:0e: 4f:39:24:2d:a4:0f:cd:43:cb:5b:7f:0b:99:87:18: 8e:86:e2:3e:8d:89:a7:26:2c:d5:4b:64:bd:d2:63: 50:b7:b6:3e:86:44:b2:7c:0c:fc:bc:3f:e0:ed:7d: 8c:25:7f:87:17:6f:42:2e:74:55:ca:5a:be:69:75: 70:64:ab:16:57:09:c0:cd:bc:06:99:4a:e2:3c:16: d2:db:8d:ba:8c:d1:99:e8:69:d3:7e:72:51:79:94: e6:c2:74:67:b4:e0:32:d2:d7:d7:44:96:04:4e:92: 58:81:6b:4a:45:f9:01:b8:49:28:72:bc:d3:dc:48: 2d:51:3f:d6:07:b0:13:c1:9b:7a:46:16:a1:d8:30: f7:be:05:99:8d:44:92:81:00:1e:57:56:a0:46:af: fd:b8:cd:32:33:ad:f6:88:a9:20:5d:fd:a0:c9:ff: 48:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:69:CF:34:51:5A:AF:F9:DB:41:24:12:31:E9:89:87:24:31:95:FA X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption a5:72:ca:15:58:72:3a:e3:8f:03:1e:d0:c4:81:aa:f3:b0:ba: 02:01:80:09:11:96:1a:3f:6d:62:e7:50:78:4b:2d:c2:71:eb: 05:40:99:09:de:52:99:ac:7b:9f:98:6c:51:1a:84:02:1e:5c: d6:08:67:d3:a7:ed:5a:4a:28:12:50:5d:7f:50:aa:a2:e3:4a: f3:36:ff:5a:e5:53:62:38:a1:1a:6e:a6:90:2e:93:c8:04:f7: 42:79:6c:1f:b2:b9:22:44:d2:c5:d6:e2:b6:11:ec:a1:cc:25: 6b:eb:4e:60:96:1f:56:d0:96:ab:45:94:f3:b4:cd:a1:20:08: 00:13:74:f1:a8:af:23:dd:43:b4:7b:0a:fe:b2:00:83:b6:de: a9:fd:2f:51:39:42:6c:54:6c:f7:f2:a9:78:68:55:98:4c:79: 6c:74:c4:50:f4:dc:08:9a:ff:ac:02:c9:bb:46:9f:6c:4a:51: 47:dd:99:ab:69:90:d9:9e:d6:d5:b3:81:2a:d9:c9:80:bd:f5: ae:d0:7f:38:15:c7:db:3a:2e:20:71:9d:33:6b:ba:c4:2c:13: 4c:08:08:9a:91:94:7d:86:33:20:ad:82:66:17:65:67:c1:c4: 9c:73:52:17:a8:e1:d6:cd:a4:99:7c:44:4b:02:f7:00:4c:2c: c2:5d:3f:8d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcxt5zebWUcqxhFHFZ00eB28hVlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKDg3NjlDRjM0NTE1QUFGRjlEQjQxMjQxMjMxRTk4OTg3MjQzMTk1RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDehbla09xRoeKf4g/vvWwEbLhs I8DsbZhg6HvMQkQ/p1JI8/dgKN2BRN26kKdesREeODlTv2lIxZTjn/LitilsriW1 rL6Y1sYbICjiUCESgAmZzoo9JA0LDk85JC2kD81Dy1t/C5mHGI6G4j6NiacmLNVL ZL3SY1C3tj6GRLJ8DPy8P+DtfYwlf4cXb0IudFXKWr5pdXBkqxZXCcDNvAaZSuI8 FtLbjbqM0ZnoadN+clF5lObCdGe04DLS19dElgROkliBa0pF+QG4SShyvNPcSC1R P9YHsBPBm3pGFqHYMPe+BZmNRJKBAB5XVqBGr/24zTIzrfaIqSBd/aDJ/0iDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUh2nPNFFar/nbQSQSMemJhyQxlfowHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEzMDQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQClcsoVWHI6448DHtDEgarzsLoCAYAJEZYa P21i51B4Sy3CcesFQJkJ3lKZrHufmGxRGoQCHlzWCGfTp+1aSigSUF1/UKqi40rz Nv9a5VNiOKEabqaQLpPIBPdCeWwfsrkiRNLF1uK2EeyhzCVr605glh9W0JarRZTz tM2hIAgAE3TxqK8j3UO0ewr+sgCDtt6p/S9ROUJsVGz38ql4aFWYTHlsdMRQ9NwI mv+sAsm7Rp9sSlFH3ZmraZDZntbVs4Eq2cmAvfWu0H84FcfbOi4gcZ0za7rELBNM CAiakZR9hjMgrYJmF2VnwcScc1IXqOHWzaSZfERLAvcATCzCXT+N -----END CERTIFICATE-----Generated at Sat Jul 5 08:25:20 2025 by rpki-client