$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44487.roa File: AS44487.roa (raw, json) Hash identifier: TDiQRC6SjFg6MTLnaZ/vZEk1sXxsYRdy3a6ZVWyPe4U= Subject key identifier: A0:69:5E:64:A4:58:91:AB:DD:88:AC:54:2B:49:48:58:39:C9:7A:50 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 5DE086DF0CD3DE0C6859235BBBD99538515D4969 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44487.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 44487 IP address blocks: 2a07:54c1:3400::/39 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e0:86:df:0c:d3:de:0c:68:59:23:5b:bb:d9:95:38:51:5d:49:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=A0695E64A45891ABDD88AC542B49485839C97A50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:9b:c4:a8:e2:74:33:5f:89:d5:6b:c9:62: 14:5d:b2:b8:80:28:be:19:5f:ea:65:cc:88:9c:0c: 1e:ec:33:39:e2:c0:62:90:00:0c:54:6f:11:5a:b7: 8f:c4:41:4b:76:b2:78:f7:21:4f:27:f5:4a:8c:8f: 71:fe:d6:35:75:bf:5b:2e:55:fc:ee:a6:5a:cb:6b: 2c:a3:50:c2:10:e3:54:e7:28:fc:cf:08:46:c9:69: 9b:6b:48:b4:aa:05:c9:20:16:3d:34:3a:57:fc:81: f3:d6:95:61:40:16:1b:28:aa:47:d4:ec:18:c4:bf: 28:6d:41:1f:96:8a:41:5b:45:c6:4d:0d:d4:6d:a2: f6:d8:fc:30:ef:a1:6f:b5:5e:10:38:d1:61:39:ba: 7b:98:f1:fa:80:56:36:9b:d4:8d:2f:06:c9:e8:d2: 71:ab:f8:1d:7e:96:d4:75:38:56:fa:66:21:c0:46: 92:f7:0b:93:56:64:65:66:7d:1c:9f:74:39:3e:90: b9:ce:f2:78:89:13:cc:26:24:72:a8:38:62:ab:10: b1:a1:9f:d2:e0:86:21:a7:6e:a3:8b:7a:fa:49:45: b5:32:dd:83:c8:68:1e:cf:11:ee:c1:12:d1:54:9f: e8:86:6d:45:2e:5a:20:ee:b9:37:05:43:4f:e9:af: fc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:69:5E:64:A4:58:91:AB:DD:88:AC:54:2B:49:48:58:39:C9:7A:50 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44487.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3400::/39 Signature Algorithm: sha256WithRSAEncryption 0c:c0:5c:85:64:16:37:f9:e1:2a:f6:84:48:13:5c:82:04:a9: 47:78:3b:c6:99:eb:e4:ae:7c:44:51:e4:33:bb:c7:f0:11:54: 90:e2:2d:4b:7c:e9:a8:e6:be:5f:32:8d:8a:75:07:10:8d:8b: 9d:12:45:d7:91:ff:31:89:11:d0:50:c4:f9:41:fc:51:5c:f0: 6a:fc:81:5a:88:48:bf:5d:af:b2:bf:ef:23:cc:f9:b2:50:f1: 98:08:a4:2e:ba:d3:46:5e:89:a0:85:2f:64:6d:0c:75:d7:c2: 82:3f:83:a8:5c:e8:2d:a4:99:15:d9:b4:85:ff:24:a1:ce:38: da:88:a6:99:bb:47:d3:85:27:64:36:94:d5:68:e0:8b:af:66: b3:e6:b9:f5:96:87:01:74:6d:c7:c4:41:2d:61:52:67:0d:28: d5:29:6c:17:fa:3e:58:35:21:bc:da:09:54:a5:90:1f:d2:1d: 53:66:b1:d2:b4:59:7f:bd:9e:ed:c5:f7:21:e2:29:8e:e8:a8: fd:3c:f0:e9:f7:54:50:40:0b:a5:d3:13:b4:4a:a1:2c:c6:79: 28:88:3e:81:86:ae:91:5f:f2:de:22:b5:d6:b2:cc:32:0d:d7: e2:fc:27:e8:42:02:bd:8f:8e:b7:71:3e:9d:5b:ac:5b:fe:f4: 5a:83:23:76 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUXeCG3wzT3gxoWSNbu9mVOFFdSWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEEwNjk1RTY0QTQ1ODkxQUJERDg4QUM1NDJCNDk0ODU4MzlDOTdBNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB/ZvEqOJ0M1+J1WvJYhRdsriA KL4ZX+plzIicDB7sMzniwGKQAAxUbxFat4/EQUt2snj3IU8n9UqMj3H+1jV1v1su VfzuplrLayyjUMIQ41TnKPzPCEbJaZtrSLSqBckgFj00Olf8gfPWlWFAFhsoqkfU 7BjEvyhtQR+WikFbRcZNDdRtovbY/DDvoW+1XhA40WE5unuY8fqAVjab1I0vBsno 0nGr+B1+ltR1OFb6ZiHARpL3C5NWZGVmfRyfdDk+kLnO8niJE8wmJHKoOGKrELGh n9LghiGnbqOLevpJRbUy3YPIaB7PEe7BEtFUn+iGbUUuWiDuuTcFQ0/pr/yzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUoGleZKRYkavdiKxUK0lIWDnJelAwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ0ODcucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgEqB1TB NDANBgkqhkiG9w0BAQsFAAOCAQEADMBchWQWN/nhKvaESBNcggSpR3g7xpnr5K58 RFHkM7vH8BFUkOItS3zpqOa+XzKNinUHEI2LnRJF15H/MYkR0FDE+UH8UVzwavyB WohIv12vsr/vI8z5slDxmAikLrrTRl6JoIUvZG0MddfCgj+DqFzoLaSZFdm0hf8k oc442oimmbtH04UnZDaU1Wjgi69ms+a59ZaHAXRtx8RBLWFSZw0o1SlsF/o+WDUh vNoJVKWQH9IdU2ax0rRZf72e7cX3IeIpjuio/Tzw6fdUUEALpdMTtEqhLMZ5KIg+ gYaukV/y3iK11rLMMg3X4vwn6EICvY+Ot3E+nVusW/70WoMjdg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:11:20 2025 by rpki-client