$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa File: AS54681.roa (raw, json) Hash identifier: qzkY0A70LJiQeEWY4WKkWSP18NMA76jAVaeHJPLiVbg= Subject key identifier: 01:DD:37:D9:0D:2B:3E:B5:D7:91:A9:E3:5B:0A:B7:2B:CB:00:15:96 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 31AF466638893EFF0C34D81BAF55A7013BDACBC8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa Signing time: Fri 04 Jul 2025 07:51:29 +0000 ROA not before: Fri 04 Jul 2025 07:46:29 +0000 ROA not after: Fri 03 Jul 2026 07:51:29 +0000 asID: 54681 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:af:46:66:38:89:3e:ff:0c:34:d8:1b:af:55:a7:01:3b:da:cb:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:29 2025 GMT Not After : Jul 3 07:51:29 2026 GMT Subject: CN=01DD37D90D2B3EB5D791A9E35B0AB72BCB001596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3f:b0:ee:80:a5:5f:d5:ee:58:ed:19:bc:97: 25:e4:38:89:f6:5b:25:60:78:b1:dd:2c:37:95:e8: fa:0b:3c:a6:a3:8d:e3:62:e5:25:47:8e:a2:0f:94: 03:6c:54:bb:53:85:23:da:fc:db:d7:fb:f6:2c:98: 10:b8:e4:bc:67:74:3c:20:4b:44:68:50:8c:b7:93: 64:8b:65:51:0a:00:0d:36:74:d2:82:19:5d:20:81: 1b:9d:b0:a5:35:d1:11:3a:3a:48:fb:7c:55:33:64: a0:d4:4c:6b:18:3f:13:0d:60:85:c8:b3:79:86:83: 85:ef:5b:0d:c1:e9:be:c6:f0:36:71:d9:aa:46:3d: 3d:64:26:a9:bb:0d:7e:81:c2:e3:2b:69:e9:26:91: bd:f2:1f:a1:7b:b1:93:e4:6e:4a:d2:e6:b4:67:d3: 8e:a9:f1:c1:b7:96:ae:31:c0:4f:26:1d:0b:b6:80: a8:df:65:66:bc:7f:5e:6f:45:e8:0f:84:23:fa:b8: ac:cc:a1:57:7f:1d:1c:72:e5:97:a2:97:8b:52:14: 5b:f7:2e:cd:cf:ea:c7:90:d8:da:db:61:ce:42:e1: e3:20:73:6d:b8:43:18:dc:62:1b:47:8c:e8:d7:5e: cc:71:75:8c:5b:00:f2:e7:54:4d:f4:cc:7f:22:bb: 5a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:DD:37:D9:0D:2B:3E:B5:D7:91:A9:E3:5B:0A:B7:2B:CB:00:15:96 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:f000::/36 Signature Algorithm: sha256WithRSAEncryption 36:02:4e:b3:69:2a:18:87:da:69:0b:ba:40:ab:8a:52:77:40: 00:33:10:be:9e:ef:27:40:3f:70:f2:03:0a:95:d3:18:ea:a7: 02:79:92:74:c1:5e:cd:26:2b:e6:3d:3c:a4:a5:ec:90:98:95: 94:b8:db:75:b8:a5:60:93:cb:ae:55:84:6a:66:b8:60:bc:de: 66:02:ae:dc:7e:ec:f2:4a:ec:75:a2:99:82:19:f9:72:ae:26: be:62:3d:92:0d:f9:1e:cd:89:7e:68:af:3c:21:fc:27:fc:e4: 88:80:f1:65:37:0b:53:65:7f:f4:d2:72:69:c0:70:91:d9:d8: c9:75:2a:4a:10:5e:47:54:0d:32:c5:22:71:fd:61:76:ba:47: 52:0e:96:f4:84:06:e1:82:96:e8:a5:f1:fb:54:19:94:ab:8d: 26:26:2a:4b:d0:b7:d5:7e:e7:10:5c:54:d4:a6:1e:67:e5:1d: c4:14:dc:ff:19:01:ea:0f:d0:4d:26:d2:32:d5:17:bc:9b:47: 57:94:16:ff:f4:76:c4:75:02:ec:b2:a8:c7:06:d4:b9:9b:66: e0:9c:67:99:eb:b2:2a:bd:e8:9b:cf:70:b5:5d:b0:53:cf:9e: 3b:d2:fc:eb:34:72:af:d0:61:ba:b6:cd:37:54:a1:68:61:5d: 51:df:ed:bf -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUMa9GZjiJPv8MNNgbr1WnATvay8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjlaFw0yNjA3MDMwNzUxMjlaMDMxMTAvBgNV BAMTKDAxREQzN0Q5MEQyQjNFQjVENzkxQTlFMzVCMEFCNzJCQ0IwMDE1OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwP7DugKVf1e5Y7Rm8lyXkOIn2 WyVgeLHdLDeV6PoLPKajjeNi5SVHjqIPlANsVLtThSPa/NvX+/YsmBC45LxndDwg S0RoUIy3k2SLZVEKAA02dNKCGV0ggRudsKU10RE6Okj7fFUzZKDUTGsYPxMNYIXI s3mGg4XvWw3B6b7G8DZx2apGPT1kJqm7DX6BwuMraekmkb3yH6F7sZPkbkrS5rRn 046p8cG3lq4xwE8mHQu2gKjfZWa8f15vRegPhCP6uKzMoVd/HRxy5Zeil4tSFFv3 Ls3P6seQ2NrbYc5C4eMgc224QxjcYhtHjOjXXsxxdYxbAPLnVE30zH8iu1r1AgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUAd032Q0rPrXXkanjWwq3K8sAFZYwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTQ2ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwAqB1TC sAsDBgQqB1TE8DANBgkqhkiG9w0BAQsFAAOCAQEANgJOs2kqGIfaaQu6QKuKUndA ADMQvp7vJ0A/cPIDCpXTGOqnAnmSdMFezSYr5j08pKXskJiVlLjbdbilYJPLrlWE ama4YLzeZgKu3H7s8krsdaKZghn5cq4mvmI9kg35Hs2JfmivPCH8J/zkiIDxZTcL U2V/9NJyacBwkdnYyXUqShBeR1QNMsUicf1hdrpHUg6W9IQG4YKW6KXx+1QZlKuN JiYqS9C31X7nEFxU1KYeZ+UdxBTc/xkB6g/QTSbSMtUXvJtHV5QW//R2xHUC7LKo xwbUuZtm4JxnmeuyKr3om89wtV2wU8+eO9L86zRyr9BhurbNN1ShaGFdUd/tvw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:23:47 2025 by rpki-client