$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54009.roa File: AS54009.roa (raw, json) Hash identifier: IdeNy09W6CkrdesIjrPcoCGD1uAE3l3B2p7TBj4Lyws= Subject key identifier: 3D:EB:48:62:74:20:FC:6F:71:A9:45:6D:66:83:A6:1D:4E:8E:7B:54 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 276ADC52EC575C494F20A3CE76A35B9B803BFBE0 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54009.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 54009 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6a:dc:52:ec:57:5c:49:4f:20:a3:ce:76:a3:5b:9b:80:3b:fb:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=3DEB48627420FC6F71A9456D6683A61D4E8E7B54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:79:23:58:2c:a6:9e:b0:49:df:e6:95:58: 92:46:0e:ab:2e:f1:aa:a9:86:4f:92:88:14:b9:eb: 5e:6e:62:1e:d8:0f:ca:4b:85:d3:bb:56:23:41:f8: 81:33:55:28:0b:5c:d3:eb:3d:f0:63:7f:00:b9:4e: 96:34:c3:a9:40:02:5f:48:3e:f4:d1:ec:3d:73:d2: 5e:94:ff:5c:b6:fc:c8:b0:81:39:ce:2a:13:8f:c7: a3:2c:71:8e:f4:fd:3b:0a:7a:d2:01:4d:f0:98:6b: 4a:9f:9a:8b:6f:d9:e3:fb:9a:72:22:5c:22:61:1b: 74:a8:27:88:d9:40:09:33:f7:17:11:e4:d5:da:c1: 00:91:cc:0d:d4:4e:a5:f5:23:9b:8a:34:ae:47:ba: 64:47:93:a6:dd:c4:4b:39:e7:d8:f7:af:a9:62:1e: 4a:0c:71:84:49:29:4b:2a:00:a2:36:82:59:ec:0b: 7a:70:4d:3f:42:2f:24:c4:bf:56:49:63:1d:a1:ea: a6:79:e6:cd:99:82:86:76:47:04:2f:d9:8e:ec:9a: 9f:e1:ea:2e:e7:6b:b5:54:b1:4e:e2:d2:80:ce:df: 2e:8b:ad:6f:e3:58:72:3a:11:53:49:6f:22:67:43: dd:18:ae:19:97:da:71:6d:a1:22:9d:ed:19:b2:eb: 27:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:EB:48:62:74:20:FC:6F:71:A9:45:6D:66:83:A6:1D:4E:8E:7B:54 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54009.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 00:7d:06:ad:66:51:d3:7e:71:13:b0:d7:3d:46:30:31:5d:db: f7:9d:98:b7:2b:4c:47:12:6b:97:4b:58:f2:7f:55:20:24:a9: 60:cd:71:6e:a6:8d:5f:55:45:62:78:8b:39:69:34:12:fb:66: 77:97:74:a4:50:84:ab:0c:06:de:5c:de:48:72:a4:c9:1b:fa: 26:31:6f:28:66:af:54:b9:f7:76:8e:f8:ef:82:76:87:87:b8: 4c:4e:8d:32:d0:0b:10:2c:43:e4:2a:25:a3:0a:82:32:52:6d: 95:2f:e9:44:11:d0:bf:a5:f5:07:be:12:d0:e0:ce:80:be:06: f0:39:0c:22:4b:b6:e0:23:5e:fb:2a:91:b3:f5:69:23:e9:99: 3a:38:27:07:91:fc:56:84:78:62:f3:36:7f:50:77:49:94:2d: 1a:bd:c7:64:47:25:2c:f0:2a:5b:8a:52:c2:cb:14:6e:be:7a: 95:0b:18:72:75:a2:8f:aa:92:9d:53:8f:b2:83:25:eb:df:ce: 4c:42:35:a4:47:76:bd:d7:d6:43:65:43:3a:6e:69:55:f4:14: 4b:6b:14:a2:b4:6b:29:92:c9:1b:ad:83:38:df:1f:28:85:48: 46:b0:0b:3d:8a:f5:2d:50:94:ef:c6:d0:a6:f3:7d:fc:30:9d: c8:de:60:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ2rcUuxXXElPIKPOdqNbm4A7++AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKDNERUI0ODYyNzQyMEZDNkY3MUE5NDU2RDY2ODNBNjFENEU4RTdCNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUnkjWCymnrBJ3+aVWJJGDqsu 8aqphk+SiBS5615uYh7YD8pLhdO7ViNB+IEzVSgLXNPrPfBjfwC5TpY0w6lAAl9I PvTR7D1z0l6U/1y2/MiwgTnOKhOPx6MscY70/TsKetIBTfCYa0qfmotv2eP7mnIi XCJhG3SoJ4jZQAkz9xcR5NXawQCRzA3UTqX1I5uKNK5HumRHk6bdxEs559j3r6li HkoMcYRJKUsqAKI2glnsC3pwTT9CLyTEv1ZJYx2h6qZ55s2ZgoZ2RwQv2Y7smp/h 6i7na7VUsU7i0oDO3y6LrW/jWHI6EVNJbyJnQ90YrhmX2nFtoSKd7Rmy6yc9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPetIYnQg/G9xqUVtZoOmHU6Oe1QwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTQwMDkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAAB9Bq1mUdN+cROw1z1GMDFd2/edmLcrTEcS a5dLWPJ/VSAkqWDNcW6mjV9VRWJ4izlpNBL7ZneXdKRQhKsMBt5c3khypMkb+iYx byhmr1S593aO+O+CdoeHuExOjTLQCxAsQ+QqJaMKgjJSbZUv6UQR0L+l9Qe+EtDg zoC+BvA5DCJLtuAjXvsqkbP1aSPpmTo4JweR/FaEeGLzNn9Qd0mULRq9x2RHJSzw KluKUsLLFG6+epULGHJ1oo+qkp1Tj7KDJevfzkxCNaRHdr3X1kNlQzpuaVX0FEtr FKK0aymSyRutgzjfHyiFSEawCz2K9S1QlO/G0KbzffwwncjeYEM= -----END CERTIFICATE-----Generated at Sat Jul 5 08:12:13 2025 by rpki-client