$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215363.roa File: AS215363.roa (raw, json) Hash identifier: /YaT5SsV5DYVoLDcljpZjechbb7wmp3Afo57c+uZy6I= Subject key identifier: 20:A0:D3:95:95:4A:CD:85:43:05:10:EB:23:42:2D:0F:4D:F2:77:B7 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7FD80978F5F97A962314685468F384B12AA8644C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215363.roa Signing time: Fri 04 Jul 2025 07:51:29 +0000 ROA not before: Fri 04 Jul 2025 07:46:29 +0000 ROA not after: Fri 03 Jul 2026 07:51:29 +0000 asID: 215363 IP address blocks: 2a07:54c1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:d8:09:78:f5:f9:7a:96:23:14:68:54:68:f3:84:b1:2a:a8:64:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:29 2025 GMT Not After : Jul 3 07:51:29 2026 GMT Subject: CN=20A0D395954ACD85430510EB23422D0F4DF277B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:36:fd:67:07:a8:e2:32:16:50:a3:52:5f: 5d:34:c3:68:11:b9:0f:0a:35:4e:74:9e:aa:cd:80: 52:0a:ab:a3:72:de:3a:df:4e:86:70:4a:f4:26:5a: 53:69:b8:a3:33:be:20:d9:55:bb:9d:a6:71:d5:b0: b2:3e:d1:88:74:16:b8:cd:85:c7:84:57:e8:d6:24: ee:9c:50:f4:68:ed:6f:85:f1:94:ff:e4:22:4f:b7: 14:b8:2d:e4:8c:55:2b:6a:17:3c:80:e2:73:9a:58: 4b:3c:0f:5c:df:68:c3:3a:de:9a:ad:e9:14:e8:83: 1e:d1:b4:8f:9e:f5:e2:33:ab:d9:23:96:35:23:2d: 37:09:cc:44:63:54:c3:4e:4f:20:3c:1d:cd:24:c6: 1d:7a:4b:62:73:7d:3c:9d:a8:33:e5:23:a2:0d:88: 06:f7:91:4a:02:3b:b7:d2:c3:43:b7:a0:2e:01:c5: 5c:ef:5e:0f:0a:45:61:9a:e4:89:aa:4d:5b:bd:97: 87:a1:a2:45:0e:40:58:eb:69:cf:36:9a:db:63:9b: 2d:58:ab:c8:83:b4:78:b2:1f:a1:f7:f6:ce:12:cc: ed:14:38:25:df:ab:62:65:b7:9d:b0:5b:b5:8d:c5: 19:8d:6a:d5:4d:6a:f0:43:d7:b1:c1:64:cf:0d:bf: 19:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A0:D3:95:95:4A:CD:85:43:05:10:EB:23:42:2D:0F:4D:F2:77:B7 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2000::/40 Signature Algorithm: sha256WithRSAEncryption 50:5b:49:54:09:93:5f:60:0b:bb:a2:6b:0d:4c:6c:14:11:97: 8a:43:0a:c5:15:e5:7c:21:cd:5f:04:b5:96:55:d7:16:9b:62: ff:c2:e7:11:aa:25:2c:21:df:19:0b:6b:58:55:1f:34:7a:59: 8b:04:18:f6:7e:c1:8e:2f:1b:de:ed:5e:6b:e6:68:14:1f:4a: 36:f6:81:96:f2:0f:a9:87:bc:01:4f:24:ee:8f:73:da:8e:ad: 3f:7b:76:ae:47:e6:7e:23:8c:27:01:f5:f7:17:4a:31:b0:44: 76:1d:a0:23:e5:6f:ad:dd:79:60:83:ee:01:57:32:7c:40:00: 4b:d5:cd:19:c9:dc:32:cf:b3:d5:ee:3c:93:a5:88:ba:65:3e: 77:8b:a8:cf:ee:26:6e:97:dc:ca:01:80:ba:e5:18:9d:8e:04: 0d:6d:6e:c9:01:4a:18:ad:87:b5:79:9a:d2:28:3a:b9:a3:e3: 2f:00:b6:c7:0c:98:e3:6a:5e:79:4f:7e:5f:96:4e:18:15:db: 9d:d8:82:44:c1:f6:a8:29:c8:71:46:ed:64:73:82:0a:42:4c: e1:26:5f:59:27:77:0c:e9:df:24:5d:f8:c7:e2:29:4a:d1:9f: 5b:70:10:03:2d:dd:cd:53:e1:e2:ad:7a:b0:ed:23:f2:c2:88: e3:3a:84:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf9gJePX5epYjFGhUaPOEsSqoZEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjlaFw0yNjA3MDMwNzUxMjlaMDMxMTAvBgNV BAMTKDIwQTBEMzk1OTU0QUNEODU0MzA1MTBFQjIzNDIyRDBGNERGMjc3QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNjb9Zweo4jIWUKNSX100w2gR uQ8KNU50nqrNgFIKq6Ny3jrfToZwSvQmWlNpuKMzviDZVbudpnHVsLI+0Yh0FrjN hceEV+jWJO6cUPRo7W+F8ZT/5CJPtxS4LeSMVStqFzyA4nOaWEs8D1zfaMM63pqt 6RTogx7RtI+e9eIzq9kjljUjLTcJzERjVMNOTyA8Hc0kxh16S2JzfTydqDPlI6IN iAb3kUoCO7fSw0O3oC4BxVzvXg8KRWGa5ImqTVu9l4ehokUOQFjrac82mttjmy1Y q8iDtHiyH6H39s4SzO0UOCXfq2Jlt52wW7WNxRmNatVNavBD17HBZM8NvxkfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIKDTlZVKzYVDBRDrI0ItD03yd7cwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MzYzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSAwDQYJKoZIhvcNAQELBQADggEBAFBbSVQJk19gC7uiaw1MbBQRl4pDCsUV5Xwh zV8EtZZV1xabYv/C5xGqJSwh3xkLa1hVHzR6WYsEGPZ+wY4vG97tXmvmaBQfSjb2 gZbyD6mHvAFPJO6Pc9qOrT97dq5H5n4jjCcB9fcXSjGwRHYdoCPlb63deWCD7gFX MnxAAEvVzRnJ3DLPs9XuPJOliLplPneLqM/uJm6X3MoBgLrlGJ2OBA1tbskBShit h7V5mtIoOrmj4y8AtscMmONqXnlPfl+WThgV253YgkTB9qgpyHFG7WRzggpCTOEm X1kndwzp3yRd+MfiKUrRn1twEAMt3c1T4eKterDtI/LCiOM6hFw= -----END CERTIFICATE-----Generated at Sat Jul 5 08:14:21 2025 by rpki-client