$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa File: AS216339.roa (raw, json) Hash identifier: lfVat+84cWmTwdXDo7a3xomIWYG5fgl0+XOWOk4Ch78= Subject key identifier: 18:FB:12:5A:CE:A1:F1:73:C7:1D:CD:6A:59:5F:6B:D7:7B:B5:0C:33 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 53715B0D0E0A412A5975478C03748053C552B1B5 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 216339 IP address blocks: 2a07:54c1:3900::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:71:5b:0d:0e:0a:41:2a:59:75:47:8c:03:74:80:53:c5:52:b1:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=18FB125ACEA1F173C71DCD6A595F6BD77BB50C33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a7:46:db:67:0a:45:41:16:0d:e8:9d:ee:f1: e6:ec:3f:22:aa:c1:a4:19:03:03:5f:9e:33:10:72: 86:92:e1:fd:08:d6:c4:3a:a0:2e:02:19:76:ea:1e: 6f:db:48:12:0a:2d:3c:a8:22:53:58:13:28:e0:72: 40:68:7a:5c:28:19:00:bf:c3:9d:88:2a:f8:5e:e1: f0:fa:17:66:a9:0a:66:7d:37:97:a4:32:c7:97:89: 43:eb:55:7d:0b:dc:91:4d:55:aa:f9:97:58:57:5a: 9b:b7:4a:4f:36:73:2a:88:60:b6:81:52:c6:ed:ec: cb:ad:1d:fe:8d:86:14:7c:2b:e5:d7:2a:5b:db:39: 4d:f7:ff:20:5f:12:3e:d3:37:ce:67:29:c2:83:1a: e7:52:15:98:b8:3d:e0:56:d3:ae:77:bb:9b:20:64: eb:97:e0:8a:61:7d:14:44:cc:6e:19:ce:18:7e:7c: b1:f1:7f:c4:1f:6f:76:0a:8f:85:ac:11:df:54:8d: e6:3a:31:a3:03:3c:77:87:ca:e5:0a:84:ed:3e:07: e6:a0:0e:87:18:49:00:ce:5f:d1:c8:4c:9a:93:c4: 45:89:1b:fa:8b:03:fb:03:62:80:a8:a6:38:60:f3: d5:cc:85:a5:42:ca:11:32:7d:0d:18:98:d8:17:fe: 12:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FB:12:5A:CE:A1:F1:73:C7:1D:CD:6A:59:5F:6B:D7:7B:B5:0C:33 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3900::/40 Signature Algorithm: sha256WithRSAEncryption 6a:19:71:8b:f5:c9:54:04:4e:25:5c:cc:95:c0:f2:30:eb:51: 4b:94:b8:28:18:5a:99:54:82:bd:14:47:bb:9e:8b:17:85:ee: 96:81:14:a1:90:02:70:3c:d6:04:85:5b:2c:86:7f:53:5a:b2: 75:87:2d:34:04:4e:da:8b:ff:af:7f:66:01:80:9f:9f:83:3b: a4:b1:ba:d8:95:32:73:5f:78:23:b5:b9:c6:b4:dc:98:3b:e9: 2a:87:95:1a:f3:2e:f9:cf:13:30:31:d2:9b:5a:9b:28:60:9f: d9:d3:9f:cf:14:86:af:4d:d5:b9:82:e8:de:fa:3d:b0:52:76: 86:d0:45:5d:e8:3e:34:c9:95:b7:3d:1a:ef:21:ae:1f:26:ee: 6e:13:c1:fe:db:fa:3b:ca:51:d0:9c:99:92:90:81:dc:d6:59: 9c:56:33:e7:1d:b7:25:b1:38:7b:66:c2:94:d6:4c:63:50:31: c0:8e:39:a4:ac:9a:8d:5d:6c:c5:3f:34:1e:a8:fc:9b:6e:8c: 31:43:4e:a1:2e:6a:ff:83:ec:d1:87:db:31:68:04:18:9b:2b: e3:95:7a:9c:89:fc:28:b2:56:6d:7f:9d:bb:32:9f:bb:8d:61: 40:40:b8:ae:26:16:b2:da:ec:75:d8:03:97:09:15:cc:9b:bf: 4b:9e:ca:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU3FbDQ4KQSpZdUeMA3SAU8VSsbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKDE4RkIxMjVBQ0VBMUYxNzNDNzFEQ0Q2QTU5NUY2QkQ3N0JCNTBDMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtp0bbZwpFQRYN6J3u8ebsPyKq waQZAwNfnjMQcoaS4f0I1sQ6oC4CGXbqHm/bSBIKLTyoIlNYEyjgckBoelwoGQC/ w52IKvhe4fD6F2apCmZ9N5ekMseXiUPrVX0L3JFNVar5l1hXWpu3Sk82cyqIYLaB Usbt7MutHf6NhhR8K+XXKlvbOU33/yBfEj7TN85nKcKDGudSFZi4PeBW0653u5sg ZOuX4IphfRREzG4Zzhh+fLHxf8Qfb3YKj4WsEd9UjeY6MaMDPHeHyuUKhO0+B+ag DocYSQDOX9HITJqTxEWJG/qLA/sDYoCopjhg89XMhaVCyhEyfQ0YmNgX/hI/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGPsSWs6h8XPHHc1qWV9r13u1DDMwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE2MzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTkwDQYJKoZIhvcNAQELBQADggEBAGoZcYv1yVQETiVczJXA8jDrUUuUuCgYWplU gr0UR7ueixeF7paBFKGQAnA81gSFWyyGf1NasnWHLTQETtqL/69/ZgGAn5+DO6Sx utiVMnNfeCO1uca03Jg76SqHlRrzLvnPEzAx0ptamyhgn9nTn88Uhq9N1bmC6N76 PbBSdobQRV3oPjTJlbc9Gu8hrh8m7m4Twf7b+jvKUdCcmZKQgdzWWZxWM+cdtyWx OHtmwpTWTGNQMcCOOaSsmo1dbMU/NB6o/JtujDFDTqEuav+D7NGH2zFoBBibK+OV epyJ/CiyVm1/nbsyn7uNYUBAuK4mFrLa7HXYA5cJFcybv0ueyuk= -----END CERTIFICATE-----Generated at Sat Jul 5 08:23:06 2025 by rpki-client