$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215823.roa File: AS215823.roa (raw, json) Hash identifier: vAg5+XEB+i88UBeRAa+AThtL2f4QlU/yVd1eqRsEarg= Subject key identifier: 29:1E:FC:20:18:D2:3D:38:91:CA:EB:C2:18:F2:63:2D:3C:B5:2B:2E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 251A0F656C264F330CC37256A9DBBA7DBBD13C48 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215823.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 215823 IP address blocks: 2a07:54c4::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:1a:0f:65:6c:26:4f:33:0c:c3:72:56:a9:db:ba:7d:bb:d1:3c:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=291EFC2018D23D3891CAEBC218F2632D3CB52B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ec:be:fb:39:8b:4e:9f:45:02:23:ac:00:55: 07:1f:5a:ff:0e:d9:34:0d:6e:92:a6:4c:26:c4:9e: b4:49:33:05:ab:3f:a1:c2:53:30:95:01:a7:f3:74: 2c:da:a8:03:25:4e:4b:d0:c0:0c:51:e2:5b:03:b4: 8a:fc:70:c0:ee:64:37:2e:25:0f:55:d2:a7:22:54: 1e:4b:28:d4:8a:2e:7c:fa:06:3a:6b:18:9c:a1:ee: 5f:16:6f:88:c7:41:7a:95:b2:1e:a3:06:f1:89:34: 0d:bc:e0:2c:74:6b:ad:9b:10:80:71:4a:3b:14:4f: 7f:d2:c4:76:cf:a6:d4:b7:ba:00:e0:7d:99:7d:11: 4e:2d:14:9c:39:82:c4:5b:ff:8b:89:f4:58:84:10: 81:bb:8f:89:9c:d6:d0:2b:bf:e7:99:2c:d3:d2:9a: 09:43:4a:3e:29:84:cf:c6:4e:7a:62:68:6c:da:e6: 50:30:18:c8:0f:5e:9b:12:97:0f:9a:36:97:3a:56: 5d:76:89:5b:39:4e:57:6d:dd:a1:f2:46:ea:fd:d2: c2:c3:8c:79:21:32:79:a5:0d:b4:00:e7:39:09:fb: 04:d1:e6:ad:b8:e2:fc:ac:c5:6c:85:71:d8:ae:44: e2:a5:53:94:48:14:9f:7e:ae:ce:3c:e5:aa:0a:e0: bd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1E:FC:20:18:D2:3D:38:91:CA:EB:C2:18:F2:63:2D:3C:B5:2B:2E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215823.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4::/44 Signature Algorithm: sha256WithRSAEncryption 79:3a:d0:46:86:8e:39:ac:18:83:d5:9e:06:c2:68:95:e9:02: ac:a9:62:ec:33:5b:0e:ef:d1:86:73:b7:86:60:ec:76:ea:ea: 1f:70:52:10:c3:2d:97:1f:a0:7d:98:79:0b:0e:f0:c7:18:6c: e4:1e:08:ed:85:c3:6f:32:8e:58:08:05:ef:e1:51:ed:7b:05: a9:52:d6:3b:f6:50:3e:0e:2e:82:5d:27:ca:b1:c1:dd:4c:fc: 71:a7:07:a6:e1:fc:f7:b9:25:eb:1a:98:31:28:4e:e4:67:b6: b0:2e:4a:c8:ca:ec:89:e1:b2:60:b5:e5:e7:c3:e5:69:f3:1a: cf:0f:ef:4c:02:e2:e2:8e:07:6e:7a:2a:56:da:31:53:7c:01: 4c:b6:80:bf:ea:22:6f:1d:26:44:ee:9e:22:86:88:2b:d6:82: e4:3f:bf:30:9a:f7:21:fc:33:ee:c2:7d:c9:37:87:15:4b:2a: e7:d2:be:d2:1b:f8:5c:bd:63:fc:de:be:dc:e8:57:8d:2a:4b: b8:d9:91:e1:84:b7:1c:b3:89:3a:90:e6:d1:26:72:ba:20:4c: cc:2a:a0:d1:f2:fd:9b:53:a3:57:7b:88:24:72:5a:19:1d:ea: 04:f1:64:47:8a:a7:e7:fa:9a:11:c7:b6:cb:fc:76:81:8a:d1: ec:54:69:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJRoPZWwmTzMMw3JWqdu6fbvRPEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDI5MUVGQzIwMThEMjNEMzg5MUNBRUJDMjE4RjI2MzJEM0NCNTJCMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ7L77OYtOn0UCI6wAVQcfWv8O 2TQNbpKmTCbEnrRJMwWrP6HCUzCVAafzdCzaqAMlTkvQwAxR4lsDtIr8cMDuZDcu JQ9V0qciVB5LKNSKLnz6BjprGJyh7l8Wb4jHQXqVsh6jBvGJNA284Cx0a62bEIBx SjsUT3/SxHbPptS3ugDgfZl9EU4tFJw5gsRb/4uJ9FiEEIG7j4mc1tArv+eZLNPS mglDSj4phM/GTnpiaGza5lAwGMgPXpsSlw+aNpc6Vl12iVs5Tldt3aHyRur90sLD jHkhMnmlDbQA5zkJ+wTR5q244vysxWyFcdiuROKlU5RIFJ9+rs485aoK4L0rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKR78IBjSPTiRyuvCGPJjLTy1Ky4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1ODIzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgdU xAAAMA0GCSqGSIb3DQEBCwUAA4IBAQB5OtBGho45rBiD1Z4GwmiV6QKsqWLsM1sO 79GGc7eGYOx26uofcFIQwy2XH6B9mHkLDvDHGGzkHgjthcNvMo5YCAXv4VHtewWp UtY79lA+Di6CXSfKscHdTPxxpwem4fz3uSXrGpgxKE7kZ7awLkrIyuyJ4bJgteXn w+Vp8xrPD+9MAuLijgdueipW2jFTfAFMtoC/6iJvHSZE7p4ihogr1oLkP78wmvch /DPuwn3JN4cVSyrn0r7SG/hcvWP83r7c6FeNKku42ZHhhLccs4k6kObRJnK6IEzM KqDR8v2bU6NXe4gkcloZHeoE8WRHiqfn+poRx7bL/HaBitHsVGmH -----END CERTIFICATE-----Generated at Sat Jul 5 08:19:01 2025 by rpki-client