$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216360.roa File: AS216360.roa (raw, json) Hash identifier: 7SiLbWpi+Zl/YHbREqetV1XtkKaALOAvp234jF/6qwc= Subject key identifier: 2D:70:50:E3:8E:A6:A5:EA:B2:0A:DA:7B:78:CC:95:75:8A:73:F8:C1 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 72A6049119F5566B95CFC6979C4FD80B6EB4D995 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216360.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 216360 IP address blocks: 2a07:54c4:1762::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a6:04:91:19:f5:56:6b:95:cf:c6:97:9c:4f:d8:0b:6e:b4:d9:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=2D7050E38EA6A5EAB20ADA7B78CC95758A73F8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8b:32:52:a0:ad:76:8d:fc:e7:0a:d9:2f:f2: a8:7b:44:65:ab:64:22:65:ad:72:cf:02:cc:3a:9d: 1e:45:e4:19:a2:b1:85:6e:31:f5:cf:fa:54:3e:7e: ef:f2:aa:fb:54:90:c6:2f:83:b4:5e:3f:c4:c8:15: 2e:18:a3:a9:cd:8f:75:b4:2b:d7:9b:f2:f1:58:3d: 98:f8:31:85:e5:1a:4a:db:69:2d:66:24:17:fa:1c: 2e:39:62:ac:ee:9b:d1:eb:4a:d4:4c:c1:7a:0e:cf: 7c:1e:e1:ab:8b:50:89:9d:52:66:23:f1:bb:5b:c8: dc:f2:f0:fc:d1:9a:02:be:c2:2b:8d:10:25:fb:19: 8c:46:73:79:37:1a:45:c1:a1:c1:38:a4:2c:2b:d1: 39:aa:f1:40:0e:1a:fd:75:ca:1d:90:c2:0f:df:a1: c5:67:ba:96:76:90:6e:8c:df:27:55:74:cc:75:fc: 4b:69:f4:41:c3:65:5f:dc:bf:28:2d:be:77:b3:60: 53:57:2a:0c:87:22:38:9e:65:d7:80:c1:d7:1e:af: 08:82:6a:2a:53:6f:13:49:f0:fd:3d:54:ae:05:2c: 03:ee:13:0c:76:c9:f2:09:67:e6:ef:7e:7d:5a:ed: 70:ed:2a:8d:09:36:4b:15:29:ce:8e:54:4f:5f:b0: 7d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:70:50:E3:8E:A6:A5:EA:B2:0A:DA:7B:78:CC:95:75:8A:73:F8:C1 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216360.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1762::/48 Signature Algorithm: sha256WithRSAEncryption a2:54:a3:2c:81:fa:b6:1e:20:bf:c9:01:38:f9:29:7e:cc:a4: c2:26:1f:6a:e7:33:c8:73:30:14:1e:87:03:4c:3a:5e:9a:29: 00:9e:7d:61:2a:25:c3:f0:7f:be:50:ac:90:38:66:40:27:5c: 79:71:29:74:be:21:04:5d:bf:88:7b:59:af:a2:d9:c0:fe:c7: d6:db:d2:eb:8f:5d:e3:81:9b:bc:f3:10:f3:79:c7:f9:e2:66: 2a:b8:38:8d:b9:bc:81:56:28:c4:65:94:20:7f:7e:17:e7:de: cb:6d:ae:32:b1:4c:a1:e6:3e:15:1d:b6:7a:62:00:bc:0b:75: fb:fe:ff:a7:07:f9:4d:44:4d:13:ca:4c:3a:b5:d0:d3:17:41: f9:f7:29:04:07:a7:ff:61:13:15:d4:d5:92:1f:39:c0:3e:ee: 0a:da:39:00:74:e1:07:57:ac:01:c8:1f:74:eb:fa:bc:47:16: 5e:21:33:bd:b2:da:ae:cc:46:41:30:ea:05:0c:ef:c3:32:ac: cf:93:be:9c:9c:60:0f:0e:67:aa:b9:32:40:b5:91:4e:75:77: 59:3e:6c:26:14:ba:e1:46:b4:32:21:a3:41:8d:7b:d9:1b:99: 4a:d3:19:ba:43:61:78:11:5d:4f:c9:8f:e7:2e:75:21:49:91: d3:82:b5:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcqYEkRn1VmuVz8aXnE/YC2602ZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKDJENzA1MEUzOEVBNkE1RUFCMjBBREE3Qjc4Q0M5NTc1OEE3M0Y4QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCizJSoK12jfznCtkv8qh7RGWr ZCJlrXLPAsw6nR5F5BmisYVuMfXP+lQ+fu/yqvtUkMYvg7ReP8TIFS4Yo6nNj3W0 K9eb8vFYPZj4MYXlGkrbaS1mJBf6HC45Yqzum9HrStRMwXoOz3we4auLUImdUmYj 8btbyNzy8PzRmgK+wiuNECX7GYxGc3k3GkXBocE4pCwr0Tmq8UAOGv11yh2Qwg/f ocVnupZ2kG6M3ydVdMx1/Etp9EHDZV/cvygtvnezYFNXKgyHIjieZdeAwdcerwiC aipTbxNJ8P09VK4FLAPuEwx2yfIJZ+bvfn1a7XDtKo0JNksVKc6OVE9fsH3rAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQULXBQ446mpeqyCtp7eMyVdYpz+MEwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE2MzYwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdiMA0GCSqGSIb3DQEBCwUAA4IBAQCiVKMsgfq2HiC/yQE4+Sl+zKTCJh9q5zPI czAUHocDTDpemikAnn1hKiXD8H++UKyQOGZAJ1x5cSl0viEEXb+Ie1mvotnA/sfW 29Lrj13jgZu88xDzecf54mYquDiNubyBVijEZZQgf34X597Lba4ysUyh5j4VHbZ6 YgC8C3X7/v+nB/lNRE0Tykw6tdDTF0H59ykEB6f/YRMV1NWSHznAPu4K2jkAdOEH V6wByB906/q8RxZeITO9stquzEZBMOoFDO/DMqzPk76cnGAPDmequTJAtZFOdXdZ PmwmFLrhRrQyIaNBjXvZG5lK0xm6Q2F4EV1PyY/nLnUhSZHTgrWu -----END CERTIFICATE-----Generated at Sat Jul 5 08:29:39 2025 by rpki-client