$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50224.roa File: AS50224.roa (raw, json) Hash identifier: P/Ek4cof4beMIvzqoGGD3qyJK3gVXU9dxoqLfYrvjPw= Subject key identifier: 36:2A:75:14:57:7A:84:08:D9:88:EB:3F:66:DB:A8:F4:BA:56:42:C5 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2564B397C61AB451F90A57752BA79EB3E81038CE Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50224.roa Signing time: Fri 04 Jul 2025 07:51:23 +0000 ROA not before: Fri 04 Jul 2025 07:46:23 +0000 ROA not after: Fri 03 Jul 2026 07:51:23 +0000 asID: 50224 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:64:b3:97:c6:1a:b4:51:f9:0a:57:75:2b:a7:9e:b3:e8:10:38:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:23 2025 GMT Not After : Jul 3 07:51:23 2026 GMT Subject: CN=362A7514577A8408D988EB3F66DBA8F4BA5642C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:09:ad:52:b7:70:73:c6:9c:bb:47:6a:c3:df: 31:ef:dd:90:78:11:5a:e4:60:c4:fe:22:1a:e3:2b: 3d:20:18:1f:67:c3:95:49:92:65:e8:d7:b0:c6:ac: 06:5a:ff:f7:34:05:36:e8:bb:eb:41:f6:c0:2e:7a: 31:73:6e:d3:eb:1d:81:eb:bf:fd:37:89:e6:5a:2b: 31:42:0a:f0:c9:77:6f:ca:30:18:99:a6:55:5d:9b: 30:cf:07:73:46:16:a7:48:fd:ef:92:30:15:c1:49: 39:32:e1:a5:5d:b7:10:84:96:94:90:10:12:e8:a7: 46:d8:76:39:29:a1:ea:b5:3a:57:89:5f:63:15:ef: db:86:97:ed:51:d5:52:13:ac:0d:a4:36:28:b8:d1: 57:ea:25:99:3a:81:c5:b2:06:de:21:9c:13:04:60: 5d:da:4f:2b:1e:83:cc:3f:0c:37:f5:ff:96:fe:43: 52:7d:98:50:66:72:3b:6f:1e:c6:5d:d6:df:9b:e7: 41:53:9a:5d:8d:00:c4:9d:f0:40:cf:3a:c4:af:92: 97:c9:9a:10:17:a8:4a:3d:dd:30:31:f3:a7:31:22: 35:d1:09:40:80:23:82:a5:b4:21:a4:40:12:25:d2: 67:cc:98:8a:b8:f4:c9:40:f5:3e:80:b8:18:74:8e: 8a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:2A:75:14:57:7A:84:08:D9:88:EB:3F:66:DB:A8:F4:BA:56:42:C5 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50224.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption c1:56:29:29:50:da:1d:c3:b9:0b:f6:fb:36:3e:71:20:f9:3a: 29:99:1e:dd:25:6b:63:c8:87:6b:04:87:8a:14:24:04:cc:7e: 88:b6:6e:74:2f:0e:86:64:d7:36:4f:1e:1e:27:ea:5c:d3:a2: fd:5b:bc:14:f9:7f:a9:20:35:b9:9d:d8:5c:14:54:90:24:c2: 9b:f9:d6:22:76:58:ae:8d:57:6f:c8:31:ad:f4:90:ad:ee:a2: e4:76:49:e7:96:d2:ae:2a:71:3c:d7:e3:a9:b8:2a:58:6b:be: c0:ee:5c:8a:e6:c3:89:6e:4b:d3:74:94:61:95:a2:4a:24:74: fc:66:dd:39:3c:b4:59:c8:b3:49:17:51:e3:d6:d8:1f:6f:78: 6a:0d:b5:cc:8b:10:a4:15:d2:05:5b:fd:ab:b8:f5:63:69:c3: 51:e7:2e:b9:f4:fb:94:ea:73:6a:5b:0d:23:5e:53:4d:05:9e: cc:b9:7e:c9:30:a8:a7:c5:62:52:c9:23:68:8b:e3:5f:e7:b1: 8b:d9:7a:0e:8b:7a:b0:ae:5d:e6:4b:ce:8e:54:24:ee:9c:c9: 08:c5:90:14:c3:3d:85:4e:95:67:99:98:e0:de:b5:12:c4:76: b0:33:c7:7a:a0:7a:52:03:62:01:15:21:59:d9:d3:53:63:ef: e1:6f:ef:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJWSzl8YatFH5Cld1K6ees+gQOM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjNaFw0yNjA3MDMwNzUxMjNaMDMxMTAvBgNV BAMTKDM2MkE3NTE0NTc3QTg0MDhEOTg4RUIzRjY2REJBOEY0QkE1NjQyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOCa1St3Bzxpy7R2rD3zHv3ZB4 EVrkYMT+IhrjKz0gGB9nw5VJkmXo17DGrAZa//c0BTbou+tB9sAuejFzbtPrHYHr v/03ieZaKzFCCvDJd2/KMBiZplVdmzDPB3NGFqdI/e+SMBXBSTky4aVdtxCElpSQ EBLop0bYdjkpoeq1OleJX2MV79uGl+1R1VITrA2kNii40VfqJZk6gcWyBt4hnBME YF3aTyseg8w/DDf1/5b+Q1J9mFBmcjtvHsZd1t+b50FTml2NAMSd8EDPOsSvkpfJ mhAXqEo93TAx86cxIjXRCUCAI4KltCGkQBIl0mfMmIq49MlA9T6AuBh0joq3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNip1FFd6hAjZiOs/Ztuo9LpWQsUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTAyMjQucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAMFWKSlQ2h3DuQv2+zY+cSD5OimZHt0la2PI h2sEh4oUJATMfoi2bnQvDoZk1zZPHh4n6lzTov1bvBT5f6kgNbmd2FwUVJAkwpv5 1iJ2WK6NV2/IMa30kK3uouR2SeeW0q4qcTzX46m4KlhrvsDuXIrmw4luS9N0lGGV okokdPxm3Tk8tFnIs0kXUePW2B9veGoNtcyLEKQV0gVb/au49WNpw1HnLrn0+5Tq c2pbDSNeU00Fnsy5fskwqKfFYlLJI2iL41/nsYvZeg6LerCuXeZLzo5UJO6cyQjF kBTDPYVOlWeZmODetRLEdrAzx3qgelIDYgEVIVnZ01Nj7+Fv77E= -----END CERTIFICATE-----Generated at Sat Jul 5 08:29:38 2025 by rpki-client