$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216056.roa File: AS216056.roa (raw, json) Hash identifier: anXxrcJuZkYMya0hcY5+ZADA7sfeSfvAGJg8hcqFF5o= Subject key identifier: C8:3E:A3:95:FD:17:81:04:36:77:8B:30:B5:F9:19:E0:C3:81:F7:B2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7C2F922BF29575E4D94A00B5150AC0E9D0B1A51E Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216056.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 216056 IP address blocks: 2a07:54c1:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:2f:92:2b:f2:95:75:e4:d9:4a:00:b5:15:0a:c0:e9:d0:b1:a5:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=C83EA395FD17810436778B30B5F919E0C381F7B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9f:35:d9:68:95:c0:21:f5:7b:05:97:5c:97: cd:13:64:54:95:84:8f:74:af:60:bf:9d:1b:05:f7: 42:15:84:65:74:54:fc:4a:a7:73:92:64:3c:e5:61: be:0f:b2:7d:7a:28:a0:bf:e4:5f:77:30:ea:28:c9: cb:7c:8a:84:bc:f3:31:19:95:8b:d3:b1:09:62:bd: 8a:e6:c2:aa:be:d2:82:94:eb:ca:7d:b1:9c:ba:a2: 30:ea:9b:13:bd:03:ba:dd:5a:a4:23:cd:12:b2:c7: e8:1e:a9:90:56:c9:e8:a7:4d:b9:f3:b9:80:f3:ae: 43:73:a0:f2:9a:e6:59:37:57:3e:34:bf:14:de:33: db:b3:c2:9f:c8:db:39:49:20:21:da:b4:7a:bd:27: 60:97:fc:9d:ba:0e:e0:84:bb:14:8f:da:79:02:1b: f9:a3:5c:f9:05:f0:58:cf:7c:fb:19:5e:d3:91:79: bb:77:a8:97:b5:91:a1:fc:90:40:2f:90:7e:a7:25: 8c:32:9d:6a:e8:d8:46:b2:17:79:5c:73:95:eb:cb: a1:da:3a:57:89:a9:81:f2:5d:84:58:b5:9b:82:33: a3:d4:7c:96:56:79:74:d9:0f:a4:6d:07:20:21:c3: 49:57:aa:17:16:a5:85:fe:15:d5:d9:40:ec:89:04: 69:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:3E:A3:95:FD:17:81:04:36:77:8B:30:B5:F9:19:E0:C3:81:F7:B2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2200::/40 Signature Algorithm: sha256WithRSAEncryption a4:0c:76:e1:50:ee:06:d1:9d:fc:bf:24:fc:ba:23:a3:dc:bd: 95:01:43:8c:ec:42:5f:ef:3d:ba:26:3a:48:87:f4:50:96:52: fe:06:00:42:4f:85:ab:c1:b2:c5:64:50:2b:06:82:8f:5c:e9: 97:46:dd:a8:2e:d9:48:fb:bc:88:30:7e:c8:27:6a:e0:75:52: 70:7d:93:d0:d5:74:50:d7:9f:12:b8:3c:6b:27:1f:52:87:74: d1:34:35:ba:d7:8a:63:d3:5a:14:8d:f6:cf:fd:71:d8:2a:1d: f9:6c:1c:fa:2e:96:0d:d7:41:c4:a5:b1:b0:ec:ff:6a:63:8c: 3e:f4:28:94:00:f4:aa:92:6c:0a:7b:0a:70:80:31:14:a9:af: b6:c2:fd:8c:ef:7a:40:00:85:54:64:33:ff:3b:16:c1:6e:82: 6f:94:9e:18:7a:2d:a9:a0:7f:21:56:44:4f:c1:f8:16:a5:c0: 15:37:ef:b2:fa:0b:0c:b5:0e:09:65:cb:5d:bd:72:25:fa:47: bf:58:37:27:07:30:4b:7c:dc:aa:c5:d0:53:a8:85:48:ad:c6: 0f:e8:ae:71:fd:da:7c:01:f8:90:f4:57:3f:d7:40:48:23:f5: 4b:de:f1:13:a8:c0:e5:0a:73:2e:73:21:d8:70:a9:8e:79:39: b6:12:16:91 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfC+SK/KVdeTZSgC1FQrA6dCxpR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKEM4M0VBMzk1RkQxNzgxMDQzNjc3OEIzMEI1RjkxOUUwQzM4MUY3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/nzXZaJXAIfV7BZdcl80TZFSV hI90r2C/nRsF90IVhGV0VPxKp3OSZDzlYb4Psn16KKC/5F93MOooyct8ioS88zEZ lYvTsQlivYrmwqq+0oKU68p9sZy6ojDqmxO9A7rdWqQjzRKyx+geqZBWyeinTbnz uYDzrkNzoPKa5lk3Vz40vxTeM9uzwp/I2zlJICHatHq9J2CX/J26DuCEuxSP2nkC G/mjXPkF8FjPfPsZXtORebt3qJe1kaH8kEAvkH6nJYwynWro2EayF3lcc5Xry6Ha OleJqYHyXYRYtZuCM6PUfJZWeXTZD6RtByAhw0lXqhcWpYX+FdXZQOyJBGlZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyD6jlf0XgQQ2d4swtfkZ4MOB97IwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE2MDU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSIwDQYJKoZIhvcNAQELBQADggEBAKQMduFQ7gbRnfy/JPy6I6PcvZUBQ4zsQl/v PbomOkiH9FCWUv4GAEJPhavBssVkUCsGgo9c6ZdG3agu2Uj7vIgwfsgnauB1UnB9 k9DVdFDXnxK4PGsnH1KHdNE0NbrXimPTWhSN9s/9cdgqHflsHPoulg3XQcSlsbDs /2pjjD70KJQA9KqSbAp7CnCAMRSpr7bC/YzvekAAhVRkM/87FsFugm+Unhh6Lamg fyFWRE/B+BalwBU377L6Cwy1Dglly129ciX6R79YNycHMEt83KrF0FOohUitxg/o rnH92nwB+JD0Vz/XQEgj9Uve8ROowOUKcy5zIdhwqY55ObYSFpE= -----END CERTIFICATE-----Generated at Sat Jul 5 08:16:40 2025 by rpki-client