$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa File: AS52210.roa (raw, json) Hash identifier: xtB9xH8jxsmWV5vPUPgcqfomiO73Gz9Qu3XsoSPgCwc= Subject key identifier: 1F:B0:B6:6C:89:BA:1F:CA:41:78:02:BD:C6:31:FF:F3:7F:D7:DC:9F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6626F30229B770DCAFBED8B86B81CE92BCB31366 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 52210 IP address blocks: 2a07:54c4:174b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:26:f3:02:29:b7:70:dc:af:be:d8:b8:6b:81:ce:92:bc:b3:13:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=1FB0B66C89BA1FCA417802BDC631FFF37FD7DC9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:42:19:da:25:04:eb:ac:73:91:9a:f3:6d: e9:c9:db:62:37:fa:ca:a0:7a:05:83:f1:4b:a2:53: a3:58:96:cb:fa:af:82:71:71:18:6b:62:3a:a4:29: 72:7b:98:4b:7e:9c:fa:3f:65:9e:43:3e:85:e8:d2: cc:0c:b4:f9:22:cd:69:a8:28:c5:92:99:d1:bc:f0: 44:95:5b:46:f1:a4:2a:85:2b:5d:44:ed:a4:ce:f9: 27:92:76:83:6a:08:a3:49:3f:00:39:3f:63:43:3f: fb:d1:45:84:eb:78:83:d7:ad:b5:53:06:50:a5:96: 7e:4d:f4:b4:b0:86:82:b0:2f:a3:35:f9:a2:c3:43: f9:09:33:71:57:bd:37:6c:2a:10:ec:78:cb:77:31: 2e:24:30:15:9d:5c:fd:98:22:77:eb:25:50:7d:87: 7c:4b:7b:6d:8d:33:5d:69:99:50:ce:75:ca:9f:24: a5:79:62:d3:b6:c4:88:32:0c:7d:2b:a5:9f:92:a6: 15:4d:dd:8c:66:dd:fa:d8:0b:f0:24:c3:67:66:44: 33:c5:1f:8f:20:62:85:49:70:b7:c4:88:d0:f9:93: ce:e4:dd:e6:c8:0a:9e:e9:94:a0:26:e3:9a:72:c7: ce:a3:f4:a5:0e:92:d5:4b:a8:ca:06:34:6f:36:c1: 6e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B0:B6:6C:89:BA:1F:CA:41:78:02:BD:C6:31:FF:F3:7F:D7:DC:9F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174b::/48 Signature Algorithm: sha256WithRSAEncryption 23:30:1b:76:4a:e7:a1:f5:8c:23:a2:f0:04:65:c5:fd:a4:0d: b9:45:0f:a9:e3:e7:23:2e:68:37:cd:38:cc:58:96:96:d4:9c: e2:19:98:9f:3d:2a:5e:bb:fa:3b:ef:e7:da:cc:81:bf:60:d4: e0:fa:b8:9a:57:28:9a:9a:21:bf:b6:b4:71:a5:0f:5e:b2:e9: ec:ce:c0:09:4c:7b:9f:de:55:5e:e6:7e:c1:98:99:14:7b:d4: 96:58:a1:37:50:73:39:e5:8b:2c:3b:bb:1c:49:8b:bb:bd:72: 97:33:b6:aa:90:fc:b6:ee:17:5a:22:3b:12:7b:dd:c7:8b:7b: 3a:9d:09:10:e4:fd:61:7c:4a:c4:fd:d6:29:93:c1:70:35:5c: a6:48:c8:7a:6d:d6:74:ea:3b:76:40:c8:ff:46:90:86:1b:9c: d3:e7:a3:dc:a1:44:00:ba:23:5b:a8:e7:29:8f:a1:56:d5:5d: e8:d0:e6:f6:bd:56:36:cd:b0:f8:53:da:03:17:9b:e2:52:57: c1:7a:b8:f6:9e:20:b5:9f:61:15:c2:1a:19:fd:77:ee:f2:8c: b4:af:1e:f9:d9:93:13:3a:de:98:37:b7:49:1f:a7:1b:2f:01: d0:9f:ad:f0:30:e4:60:56:60:f2:be:57:9e:df:78:11:a2:dc: 43:08:8a:ba -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZibzAim3cNyvvti4a4HOkryzE2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKDFGQjBCNjZDODlCQTFGQ0E0MTc4MDJCREM2MzFGRkYzN0ZEN0RDOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLd0IZ2iUE66xzkZrzbenJ22I3 +sqgegWD8UuiU6NYlsv6r4JxcRhrYjqkKXJ7mEt+nPo/ZZ5DPoXo0swMtPkizWmo KMWSmdG88ESVW0bxpCqFK11E7aTO+SeSdoNqCKNJPwA5P2NDP/vRRYTreIPXrbVT BlClln5N9LSwhoKwL6M1+aLDQ/kJM3FXvTdsKhDseMt3MS4kMBWdXP2YInfrJVB9 h3xLe22NM11pmVDOdcqfJKV5YtO2xIgyDH0rpZ+SphVN3Yxm3frYC/Akw2dmRDPF H48gYoVJcLfEiND5k87k3ebICp7plKAm45pyx86j9KUOktVLqMoGNG82wW7FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUH7C2bIm6H8pBeAK9xjH/83/X3J8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTIyMTAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0swDQYJKoZIhvcNAQELBQADggEBACMwG3ZK56H1jCOi8ARlxf2kDblFD6nj5yMu aDfNOMxYlpbUnOIZmJ89Kl67+jvv59rMgb9g1OD6uJpXKJqaIb+2tHGlD16y6ezO wAlMe5/eVV7mfsGYmRR71JZYoTdQcznliyw7uxxJi7u9cpcztqqQ/LbuF1oiOxJ7 3ceLezqdCRDk/WF8SsT91imTwXA1XKZIyHpt1nTqO3ZAyP9GkIYbnNPno9yhRAC6 I1uo5ymPoVbVXejQ5va9VjbNsPhT2gMXm+JSV8F6uPaeILWfYRXCGhn9d+7yjLSv HvnZkxM63pg3t0kfpxsvAdCfrfAw5GBWYPK+V57feBGi3EMIiro= -----END CERTIFICATE-----Generated at Sat Jul 5 08:13:00 2025 by rpki-client