$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa File: AS44733.roa (raw, json) Hash identifier: M84zqFm25bB3bu0obzYNudREHOQDV1zBtV8NiU/Tznk= Subject key identifier: C4:73:41:D5:F9:19:5E:6D:25:23:F5:B4:8F:F0:4A:A0:F4:D5:12:0D Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6B6A0272DBF136738B1F0462F9E247C6FA37064B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 44733 IP address blocks: 2a07:54c4:18f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:02:72:db:f1:36:73:8b:1f:04:62:f9:e2:47:c6:fa:37:06:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=C47341D5F9195E6D2523F5B48FF04AA0F4D5120D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3a:98:6a:bb:90:d1:91:0f:52:08:17:3a:9f: 7c:7f:56:98:9d:32:02:9b:c9:96:d1:fa:6f:70:32: 21:a6:0e:1d:63:44:32:53:83:da:2f:69:26:f4:87: 1f:8a:c3:df:81:87:ed:0a:bc:0f:59:74:e5:70:33: 0f:fb:1c:42:be:ed:b5:2e:90:49:cc:37:81:f9:e5: 69:fd:6b:fe:b2:69:b7:cd:70:28:2e:a3:40:92:2e: 92:50:41:72:1d:16:90:24:0d:ca:27:ee:7b:b4:78: 48:b7:2e:da:8d:c2:6d:7f:ae:dc:f2:00:cc:15:13: 30:57:c4:0c:f1:18:b7:34:49:52:2d:e6:03:e1:fe: b9:55:a6:b7:19:f1:41:bd:ef:c5:1f:aa:0c:8b:61: f2:dc:02:0c:18:81:83:36:94:60:ad:b0:44:da:a2: 05:00:ef:ac:3e:93:52:95:00:c5:71:96:03:bd:af: 0a:63:fd:e3:f9:1d:a8:ea:69:90:36:f3:9c:78:a3: fb:7c:ac:62:47:1b:f0:78:f9:f5:14:56:30:04:44: ee:ad:d9:08:ec:88:95:cf:7c:da:7b:9b:39:3b:e4: f5:74:10:65:3b:74:0a:e0:45:fb:20:70:eb:a3:50: 15:a6:9e:fd:66:4e:ac:d2:e7:d1:ae:f7:0a:01:9b: 21:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:73:41:D5:F9:19:5E:6D:25:23:F5:B4:8F:F0:4A:A0:F4:D5:12:0D X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:18f4::/48 Signature Algorithm: sha256WithRSAEncryption 23:56:1e:06:4a:90:28:be:c5:2d:86:e0:d4:92:57:15:a0:70: 3a:d7:6a:6d:27:57:a6:3a:48:85:aa:15:80:0d:86:78:61:8c: a1:0f:57:d0:b4:bf:27:52:17:3c:60:9f:1a:c0:bb:54:aa:74: 4c:8b:bc:6e:d8:bf:25:c2:3c:51:f1:f9:38:29:a9:c8:97:66: fd:96:f5:01:f9:28:df:5e:c4:09:50:e9:30:12:88:a7:48:59: 0d:5d:57:38:1f:e7:00:f4:a3:27:93:c1:77:f8:dc:be:30:de: 15:81:d1:74:9f:88:98:29:38:22:ce:57:ab:d0:d5:ae:0c:50: ee:45:88:69:c2:89:3f:ef:39:7c:5e:93:5b:92:50:02:54:17: f3:a1:16:57:9f:f4:8b:8e:46:91:e1:ef:66:ab:4f:0e:32:ad: 42:b4:ec:7f:ca:ae:f1:d4:5c:55:68:71:ec:0a:53:ab:2e:2f: 41:66:bc:cc:aa:2d:8f:06:74:0b:82:96:7d:94:ac:b0:73:8f: a1:ef:2b:85:48:6b:2f:3f:9f:df:55:f7:e8:89:32:ad:99:51: 28:8f:fb:32:88:bc:a7:b8:76:fe:e7:f4:09:db:15:0c:93:df: 18:78:d5:20:cb:6d:4f:b2:cd:68:92:df:7b:be:e8:69:f6:1d: 5a:9a:34:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa2oCctvxNnOLHwRi+eJHxvo3BkswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKEM0NzM0MUQ1RjkxOTVFNkQyNTIzRjVCNDhGRjA0QUEwRjRENTEyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIOphqu5DRkQ9SCBc6n3x/Vpid MgKbyZbR+m9wMiGmDh1jRDJTg9ovaSb0hx+Kw9+Bh+0KvA9ZdOVwMw/7HEK+7bUu kEnMN4H55Wn9a/6yabfNcCguo0CSLpJQQXIdFpAkDcon7nu0eEi3LtqNwm1/rtzy AMwVEzBXxAzxGLc0SVIt5gPh/rlVprcZ8UG978UfqgyLYfLcAgwYgYM2lGCtsETa ogUA76w+k1KVAMVxlgO9rwpj/eP5HajqaZA285x4o/t8rGJHG/B4+fUUVjAERO6t 2QjsiJXPfNp7mzk75PV0EGU7dArgRfsgcOujUBWmnv1mTqzS59Gu9woBmyH/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxHNB1fkZXm0lI/W0j/BKoPTVEg0wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ3MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE GPQwDQYJKoZIhvcNAQELBQADggEBACNWHgZKkCi+xS2G4NSSVxWgcDrXam0nV6Y6 SIWqFYANhnhhjKEPV9C0vydSFzxgnxrAu1SqdEyLvG7YvyXCPFHx+TgpqciXZv2W 9QH5KN9exAlQ6TASiKdIWQ1dVzgf5wD0oyeTwXf43L4w3hWB0XSfiJgpOCLOV6vQ 1a4MUO5FiGnCiT/vOXxek1uSUAJUF/OhFlef9IuORpHh72arTw4yrUK07H/KrvHU XFVocewKU6suL0FmvMyqLY8GdAuCln2UrLBzj6HvK4VIay8/n99V9+iJMq2ZUSiP +zKIvKe4dv7n9AnbFQyT3xh41SDLbU+yzWiS33u+6Gn2HVqaNF0= -----END CERTIFICATE-----Generated at Sat Jul 5 08:19:42 2025 by rpki-client