$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215192.roa File: AS215192.roa (raw, json) Hash identifier: Lc3vBGZdiYZBpojyZHmNbGiLxd/uTG0HiqXk03g2jkY= Subject key identifier: E1:9D:41:7C:40:80:D5:4C:D7:A7:C7:E6:B0:5D:EE:00:00:D2:1A:A0 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 099AF3C13F957D391E040D6F1969DEF0B45EA4D8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215192.roa Signing time: Fri 04 Jul 2025 07:51:29 +0000 ROA not before: Fri 04 Jul 2025 07:46:29 +0000 ROA not after: Fri 03 Jul 2026 07:51:29 +0000 asID: 215192 IP address blocks: 2a07:54c1:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:9a:f3:c1:3f:95:7d:39:1e:04:0d:6f:19:69:de:f0:b4:5e:a4:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:29 2025 GMT Not After : Jul 3 07:51:29 2026 GMT Subject: CN=E19D417C4080D54CD7A7C7E6B05DEE0000D21AA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:31:44:1f:62:51:df:ea:dc:25:c2:10:e1:1a: 58:30:65:bc:3e:d1:13:f7:2e:e1:08:15:68:a8:6d: e1:7b:49:57:94:b4:88:d0:e2:9e:78:2d:2f:cc:be: f3:5d:9f:7a:7e:8d:93:75:a8:d3:75:3f:c8:92:b5: 9b:9b:1b:f2:44:7d:5b:93:e7:ff:4f:d4:36:6a:9e: 0f:93:e5:7f:f7:10:87:02:d7:87:6c:f5:84:0b:05: a6:7d:50:06:be:92:a5:16:87:69:26:c0:ef:1f:83: d1:66:17:ff:66:38:9e:36:63:3f:60:a9:28:07:9e: 5e:b5:db:1f:c0:95:d9:b9:8f:e3:3c:63:88:d6:86: 4b:92:d9:e2:95:e2:cf:69:b6:34:ee:d3:21:63:37: 22:2f:29:24:0c:61:1f:56:89:11:ac:3d:ee:a3:e3: 92:6d:45:ce:76:60:77:3e:eb:6f:94:b3:8a:18:5f: 78:99:7d:7b:cb:18:66:44:83:cb:be:dc:b0:40:08: 2f:8f:8b:ef:c6:0f:35:4c:82:9b:5e:13:91:2a:2e: 64:5d:e5:f2:42:c1:1e:f3:d0:6c:c2:68:cd:eb:f0: c7:b1:75:7d:e7:9e:34:1f:c3:ab:7e:ff:65:7d:fc: af:63:ce:a3:eb:be:68:06:10:09:35:9c:fb:aa:22: 08:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:9D:41:7C:40:80:D5:4C:D7:A7:C7:E6:B0:5D:EE:00:00:D2:1A:A0 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215192.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c200::/40 Signature Algorithm: sha256WithRSAEncryption b1:4b:5c:a3:40:b0:be:bb:11:37:a9:34:5d:da:15:46:5c:b2: 3f:8c:b6:89:86:5a:41:ea:0c:5f:6e:e5:8d:23:25:f7:6a:2b: cb:47:88:f3:e7:91:4c:28:75:d4:c3:2d:60:92:e7:c5:49:69: 5e:3e:3d:1b:56:f0:9c:ec:49:8b:ba:21:95:26:e2:e0:e1:9c: e6:b3:2f:58:73:eb:e3:c1:5a:8b:2a:7a:2c:47:9b:8a:52:5f: ef:32:c3:64:fe:a5:62:ea:38:f7:92:07:ab:a3:f9:82:73:d0: a3:06:ba:9f:0f:ce:05:a1:cb:1d:d9:32:ce:6e:83:8b:ed:38: ab:e3:47:3f:43:38:86:ba:f2:f4:ad:96:23:b9:da:01:84:cc: e0:83:55:03:18:03:f4:e6:da:b6:26:d7:ce:11:bd:b6:b7:db: 44:a5:d6:a4:0d:bf:5f:7e:25:af:84:69:66:0e:26:21:54:52: 41:15:c6:50:eb:55:64:af:3b:3e:cd:28:51:23:0c:27:ca:f4: ef:00:61:10:71:1e:32:39:14:07:45:45:5a:28:e9:6f:38:9f: 59:ff:4d:79:eb:c2:5b:2d:c7:dc:0a:86:16:eb:7f:40:e5:0f: 31:2a:72:48:b7:40:ce:33:22:5c:aa:14:65:a0:c1:4c:4a:c9: 96:23:5f:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCZrzwT+VfTkeBA1vGWne8LRepNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjlaFw0yNjA3MDMwNzUxMjlaMDMxMTAvBgNV BAMTKEUxOUQ0MTdDNDA4MEQ1NENEN0E3QzdFNkIwNURFRTAwMDBEMjFBQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdMUQfYlHf6twlwhDhGlgwZbw+ 0RP3LuEIFWiobeF7SVeUtIjQ4p54LS/MvvNdn3p+jZN1qNN1P8iStZubG/JEfVuT 5/9P1DZqng+T5X/3EIcC14ds9YQLBaZ9UAa+kqUWh2kmwO8fg9FmF/9mOJ42Yz9g qSgHnl612x/Aldm5j+M8Y4jWhkuS2eKV4s9ptjTu0yFjNyIvKSQMYR9WiRGsPe6j 45JtRc52YHc+62+Us4oYX3iZfXvLGGZEg8u+3LBACC+Pi+/GDzVMgpteE5EqLmRd 5fJCwR7z0GzCaM3r8MexdX3nnjQfw6t+/2V9/K9jzqPrvmgGEAk1nPuqIgjNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4Z1BfECA1UzXp8fmsF3uAADSGqAwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MTkyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wcIwDQYJKoZIhvcNAQELBQADggEBALFLXKNAsL67ETepNF3aFUZcsj+MtomGWkHq DF9u5Y0jJfdqK8tHiPPnkUwoddTDLWCS58VJaV4+PRtW8JzsSYu6IZUm4uDhnOaz L1hz6+PBWosqeixHm4pSX+8yw2T+pWLqOPeSB6uj+YJz0KMGup8PzgWhyx3ZMs5u g4vtOKvjRz9DOIa68vStliO52gGEzOCDVQMYA/Tm2rYm184Rvba320Sl1qQNv19+ Ja+EaWYOJiFUUkEVxlDrVWSvOz7NKFEjDCfK9O8AYRBxHjI5FAdFRVoo6W84n1n/ TXnrwlstx9wKhhbrf0DlDzEqcki3QM4zIlyqFGWgwUxKyZYjX7g= -----END CERTIFICATE-----Generated at Sat Jul 5 08:24:21 2025 by rpki-client