$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215600.roa File: AS215600.roa (raw, json) Hash identifier: NaMlOfN7wNjPnWI5HSCUKb9M9j93nb5Zw+RYGM/WvLo= Subject key identifier: E1:0C:8B:82:E1:48:ED:8C:BB:B0:07:1D:53:EE:E4:1B:93:78:8B:0C Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 61B97BC3215AA08621AD3DD7113049BC5A56020B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215600.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 215600 IP address blocks: 2a07:54c3::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b9:7b:c3:21:5a:a0:86:21:ad:3d:d7:11:30:49:bc:5a:56:02:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=E10C8B82E148ED8CBBB0071D53EEE41B93788B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2b:92:e3:2e:59:df:c4:50:c3:51:74:c1:58: 23:4b:b1:41:2d:13:0b:32:16:c7:db:db:0a:d4:ba: 58:a6:ce:94:4f:17:c4:00:92:ef:fd:9e:b4:86:cf: 88:95:03:3e:46:bf:f3:7e:d6:49:8b:45:50:57:39: 8f:9a:47:00:c6:e1:76:fb:0d:79:9b:eb:5a:f1:65: c0:d1:13:31:0d:c1:2b:8a:37:d0:95:d5:55:cf:4a: 04:22:f6:ad:09:1d:43:9d:b8:cd:af:ae:f2:87:08: c2:04:79:f4:c0:12:c2:1a:03:96:15:5d:70:d4:70: f4:5c:c8:ae:23:a6:98:58:7c:50:c6:ae:b1:39:09: 72:61:f7:5b:16:55:af:b0:1c:b0:89:28:04:28:aa: e0:71:be:42:22:ac:c3:de:fa:16:35:88:1e:47:6f: 59:8e:8a:d1:b6:91:2a:ce:d5:e8:c4:1f:ad:15:87: d6:e1:53:47:7b:6e:ee:68:38:32:b5:81:12:c5:83: 63:48:29:d8:77:53:1a:1b:84:76:38:af:be:c6:6e: dc:fa:77:94:99:f0:a3:ea:a0:cf:24:20:86:3e:d7: f9:f5:8e:76:db:5b:a2:45:ab:33:5d:1d:ef:e1:bf: 4d:c5:fa:c0:a6:e1:da:ac:63:f0:d0:5d:11:20:73: a5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:0C:8B:82:E1:48:ED:8C:BB:B0:07:1D:53:EE:E4:1B:93:78:8B:0C X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215600.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c3::/32 Signature Algorithm: sha256WithRSAEncryption 94:30:d0:fa:7b:4d:bf:48:ba:ac:65:42:57:af:5d:7f:1c:e3: 80:be:91:f6:51:65:26:41:9a:d1:23:4b:25:09:b5:58:00:9c: 3b:14:8b:7b:e4:1f:05:d9:79:16:ca:4f:ea:d5:e2:b4:7c:30: 6c:4f:e3:fe:20:c2:49:8a:15:62:08:be:d5:e6:75:57:51:50: e5:0c:1c:51:02:72:65:ca:7e:d9:c4:33:3c:50:5f:4a:c6:d3: 28:26:ce:67:ea:ca:7e:52:19:a5:97:49:11:89:42:3c:de:fe: 03:77:5e:dd:19:93:c6:60:ec:dd:e7:7e:ef:94:1e:cb:f0:d1: ee:92:87:f8:6c:63:bb:58:55:f5:db:c2:43:ff:47:8a:8d:8e: 9d:e2:65:9e:d8:2e:c3:31:87:6d:6b:d6:a4:d7:6a:8b:30:c6: 11:3e:2e:a6:0f:d1:62:c5:e6:c4:9a:43:6c:07:b0:43:ae:38: bc:11:ad:8e:85:a3:68:15:cd:35:34:aa:6a:18:d0:de:bd:62: 45:1c:bc:3b:c0:ef:67:a2:23:60:b7:57:a4:0d:d8:f7:9f:78: 41:71:0f:72:21:92:2c:13:a9:18:f4:b8:0c:a6:4a:8a:1f:a6: 88:8f:c3:5d:56:ca:a7:68:ce:e4:8e:8e:52:05:8b:e9:2f:69: f6:44:88:b6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYbl7wyFaoIYhrT3XETBJvFpWAgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKEUxMEM4QjgyRTE0OEVEOENCQkIwMDcxRDUzRUVFNDFCOTM3ODhCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvK5LjLlnfxFDDUXTBWCNLsUEt EwsyFsfb2wrUulimzpRPF8QAku/9nrSGz4iVAz5Gv/N+1kmLRVBXOY+aRwDG4Xb7 DXmb61rxZcDREzENwSuKN9CV1VXPSgQi9q0JHUOduM2vrvKHCMIEefTAEsIaA5YV XXDUcPRcyK4jpphYfFDGrrE5CXJh91sWVa+wHLCJKAQoquBxvkIirMPe+hY1iB5H b1mOitG2kSrO1ejEH60Vh9bhU0d7bu5oODK1gRLFg2NIKdh3UxobhHY4r77Gbtz6 d5SZ8KPqoM8kIIY+1/n1jnbbW6JFqzNdHe/hv03F+sCm4dqsY/DQXREgc6W3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU4QyLguFI7Yy7sAcdU+7kG5N4iwwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1NjAwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgdU wzANBgkqhkiG9w0BAQsFAAOCAQEAlDDQ+ntNv0i6rGVCV69dfxzjgL6R9lFlJkGa 0SNLJQm1WACcOxSLe+QfBdl5FspP6tXitHwwbE/j/iDCSYoVYgi+1eZ1V1FQ5Qwc UQJyZcp+2cQzPFBfSsbTKCbOZ+rKflIZpZdJEYlCPN7+A3de3RmTxmDs3ed+75Qe y/DR7pKH+Gxju1hV9dvCQ/9Hio2OneJlntguwzGHbWvWpNdqizDGET4upg/RYsXm xJpDbAewQ644vBGtjoWjaBXNNTSqahjQ3r1iRRy8O8DvZ6IjYLdXpA3Y9594QXEP ciGSLBOpGPS4DKZKih+miI/DXVbKp2jO5I6OUgWL6S9p9kSItg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:13:00 2025 by rpki-client