$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48581.roa File: AS48581.roa (raw, json) Hash identifier: gB6I+sCoLdjcmOeWh6d8zMuTAEbgkjQGckQn6dTjHxw= Subject key identifier: 17:1A:26:FC:29:34:38:55:F8:EE:C6:E7:4B:35:D6:F7:16:AE:97:5E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2DFAC6C069EB4F93F672B9145C09AF2ED17C0DA9 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48581.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 48581 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fa:c6:c0:69:eb:4f:93:f6:72:b9:14:5c:09:af:2e:d1:7c:0d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=171A26FC29343855F8EEC6E74B35D6F716AE975E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:0b:17:58:73:79:aa:f9:e2:22:79:6f:4d: fd:a7:69:c0:bb:5a:fc:a0:f8:7f:10:05:ad:74:0d: e9:31:6e:c9:cd:7e:71:ef:72:ee:cf:c3:d9:a9:17: 72:be:3e:6f:98:4b:fe:db:0a:81:d9:a6:18:9e:63: 55:38:08:68:b6:a3:60:7c:90:83:4c:45:fd:32:d8: ff:9e:72:e6:25:e8:6f:ef:8a:92:15:ae:1c:d9:03: 56:85:3d:da:95:2d:c9:c0:38:b3:0d:c1:7f:3b:da: 4b:42:03:2d:64:23:c3:97:a1:1b:ec:8b:29:93:69: 6f:18:e9:c6:8c:d0:e0:ee:27:86:09:41:d0:40:fa: 51:ae:f7:f5:7b:35:69:07:7c:ac:27:2e:04:eb:60: 07:c7:c5:db:21:76:f0:f1:c6:76:3e:0c:09:30:0b: c3:d3:9e:f8:95:f6:93:6a:18:e9:0d:46:aa:db:14: 20:c4:60:d2:96:70:b4:7c:13:13:dd:ec:ec:94:1d: ab:b6:26:5a:fb:b7:00:4d:11:4e:51:6b:6e:e5:63: 51:28:84:25:99:fe:81:88:bc:2c:ff:f5:b3:f2:37: 40:8f:07:36:5b:40:d0:bd:08:8a:9e:74:73:54:53: bc:1c:f8:7b:44:09:80:52:fe:fd:7a:24:32:2a:e7: 28:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1A:26:FC:29:34:38:55:F8:EE:C6:E7:4B:35:D6:F7:16:AE:97:5E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48581.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 6b:73:ce:20:32:fd:1a:28:01:74:ff:eb:6d:fa:76:b3:51:1e: 85:43:7b:7d:f0:2b:fb:50:e6:24:08:f6:b6:09:be:f2:20:b5: 68:84:a7:48:64:1d:00:66:84:64:cd:b4:29:5d:0c:68:e9:4c: 12:94:37:e6:cd:e5:69:79:a9:e8:2c:69:09:7f:14:83:82:72: 59:0a:20:d9:d8:22:49:58:90:3f:2c:56:eb:f3:45:75:8d:23: 59:51:6d:85:60:b0:85:53:80:07:5e:8b:1d:75:db:ca:2f:22: 11:0d:6f:05:aa:d0:f9:1a:9d:4a:ba:f5:60:1f:39:a9:9d:39: 3e:ef:e2:53:ae:d1:9b:8f:3e:b2:07:6b:a1:76:6c:05:8a:7d: 98:81:eb:70:04:1a:98:b3:cd:c9:ea:d4:1c:d3:2e:31:36:a2: e7:2e:78:56:d5:d4:e6:c9:39:90:26:12:f0:63:6c:62:9e:65: 15:f2:d8:fb:5d:b9:b4:7f:fe:52:0f:97:03:1d:5e:dd:0a:b5: cd:6f:dd:9f:3d:59:43:cb:53:87:62:f2:77:1f:a6:33:9a:4f: e5:7e:bd:c1:36:7d:86:53:e1:d2:b7:83:45:b8:19:5f:6c:40: 5a:2e:1a:e8:54:7b:ea:e5:e6:be:d6:2f:78:77:b3:16:3f:ef: d6:4c:54:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULfrGwGnrT5P2crkUXAmvLtF8DakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKDE3MUEyNkZDMjkzNDM4NTVGOEVFQzZFNzRCMzVENkY3MTZBRTk3NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5fAsXWHN5qvniInlvTf2nacC7 Wvyg+H8QBa10DekxbsnNfnHvcu7Pw9mpF3K+Pm+YS/7bCoHZphieY1U4CGi2o2B8 kINMRf0y2P+ecuYl6G/vipIVrhzZA1aFPdqVLcnAOLMNwX872ktCAy1kI8OXoRvs iymTaW8Y6caM0ODuJ4YJQdBA+lGu9/V7NWkHfKwnLgTrYAfHxdshdvDxxnY+DAkw C8PTnviV9pNqGOkNRqrbFCDEYNKWcLR8ExPd7OyUHau2Jlr7twBNEU5Ra27lY1Eo hCWZ/oGIvCz/9bPyN0CPBzZbQNC9CIqedHNUU7wc+HtECYBS/v16JDIq5yhLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFxom/Ck0OFX47sbnSzXW9xaul14wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDg1ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAGtzziAy/RooAXT/6236drNRHoVDe33wK/tQ 5iQI9rYJvvIgtWiEp0hkHQBmhGTNtCldDGjpTBKUN+bN5Wl5qegsaQl/FIOCclkK INnYIklYkD8sVuvzRXWNI1lRbYVgsIVTgAdeix1128ovIhENbwWq0PkanUq69WAf OamdOT7v4lOu0ZuPPrIHa6F2bAWKfZiB63AEGpizzcnq1BzTLjE2oucueFbV1ObJ OZAmEvBjbGKeZRXy2PtdubR//lIPlwMdXt0Ktc1v3Z89WUPLU4di8ncfpjOaT+V+ vcE2fYZT4dK3g0W4GV9sQFouGuhUe+rl5r7WL3h3sxY/79ZMVCc= -----END CERTIFICATE-----Generated at Sat Jul 5 08:14:21 2025 by rpki-client