$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS56762.roa File: AS56762.roa (raw, json) Hash identifier: FvVjzx9PVNpdPbeM97m7VJ45XY/z5n1DlY8+NMviQNo= Subject key identifier: 1C:42:15:73:77:2D:6F:66:68:93:A9:02:DF:61:CE:D8:B2:6D:68:21 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 68094B7D853B65388BCB40D1DF5FB11FF4EC8018 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS56762.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 56762 IP address blocks: 2a07:54c1:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:09:4b:7d:85:3b:65:38:8b:cb:40:d1:df:5f:b1:1f:f4:ec:80:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=1C421573772D6F666893A902DF61CED8B26D6821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:8b:a8:14:d7:13:de:43:f9:63:9f:f9:be: d7:f5:09:f5:94:b7:60:34:6d:90:c0:52:0e:8a:7d: 84:1e:73:8b:20:bc:ed:22:8f:0c:0f:52:8b:fc:cc: 19:7a:0d:d8:5b:a3:a6:32:ba:a9:de:3e:77:24:6c: 34:6d:db:f5:25:6d:fe:41:a4:9b:5b:36:6f:31:8c: dd:57:ea:b0:ab:8f:0c:ef:65:50:19:9a:8c:81:7a: 80:32:fa:81:76:64:4f:3e:36:c3:61:d9:3e:dd:8b: 91:9d:52:ff:4b:37:49:e8:d8:d7:35:6c:f1:89:7f: 8a:dd:81:cd:09:7c:ef:6a:2c:33:cc:cb:e8:45:5b: eb:f9:fc:d8:dd:dd:d8:33:0e:77:40:a2:2c:8f:5b: 59:f4:2a:ed:eb:ce:61:a2:ce:21:02:13:d6:0f:17: 06:6e:4a:3e:a1:65:e2:dc:ba:79:92:03:c1:c8:75: 0a:e1:84:ab:ed:9b:0c:b2:27:b4:6d:f8:96:21:f8: 6f:e6:0a:2e:53:61:f3:c8:ff:a0:6a:2b:3b:f3:77: 92:8f:4b:a6:f1:c4:27:82:a9:8d:17:c8:f7:12:dc: 30:3c:77:da:c3:36:07:c0:82:8d:14:97:ca:e3:69: ac:bc:87:6e:4a:38:70:f1:d1:f2:03:91:77:46:ae: 4c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:42:15:73:77:2D:6F:66:68:93:A9:02:DF:61:CE:D8:B2:6D:68:21 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS56762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4100::/40 Signature Algorithm: sha256WithRSAEncryption 47:32:96:d8:fa:00:ab:c7:93:f0:28:88:7b:af:ab:47:a9:29: 05:03:46:c9:a5:19:1b:1e:f8:21:60:1a:ea:44:25:39:dd:97: 32:fc:a3:e4:e6:59:c4:fe:62:0b:8c:b2:8d:3d:f5:6f:c5:27: c2:69:84:c5:4e:d0:38:2d:8b:49:dc:1c:1c:96:75:7a:60:4f: de:8f:c3:ee:96:5c:3b:9c:bb:09:49:b6:59:23:20:9e:fb:f3: d0:8f:9f:db:d1:46:87:e1:ee:bd:52:f1:e4:98:85:b8:d4:e0: 96:3f:1f:ec:68:02:ad:26:3a:ad:f1:89:dd:39:cd:f5:3b:0d: e5:68:21:0c:4f:b9:c2:7d:5e:64:0a:40:15:2d:43:c2:92:4b: d6:5e:40:10:eb:ca:49:8d:b2:cd:77:61:90:0f:c8:db:32:41: b6:08:7f:99:1a:61:3b:e8:67:2e:7a:f0:f9:3c:c4:e0:c1:99: 4c:6e:4c:d3:2f:6b:2f:d1:20:18:63:c8:68:d6:93:ed:98:d8: d7:ad:11:54:ff:e0:fe:d7:d8:b8:ba:4f:e0:0e:87:6c:a5:04: 78:d2:cc:45:9e:e0:2e:8d:9d:c8:62:52:a1:40:ec:32:ff:1d: dd:e0:2f:0c:cb:03:5b:02:ce:f7:a7:82:c5:83:0d:00:7e:f6: fe:bc:92:5e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUaAlLfYU7ZTiLy0DR31+xH/TsgBgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDFDNDIxNTczNzcyRDZGNjY2ODkzQTkwMkRGNjFDRUQ4QjI2RDY4MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxouoFNcT3kP5Y5/5vtf1CfWU t2A0bZDAUg6KfYQec4sgvO0ijwwPUov8zBl6Ddhbo6YyuqnePnckbDRt2/Ulbf5B pJtbNm8xjN1X6rCrjwzvZVAZmoyBeoAy+oF2ZE8+NsNh2T7di5GdUv9LN0no2Nc1 bPGJf4rdgc0JfO9qLDPMy+hFW+v5/Njd3dgzDndAoiyPW1n0Ku3rzmGiziECE9YP FwZuSj6hZeLcunmSA8HIdQrhhKvtmwyyJ7Rt+JYh+G/mCi5TYfPI/6BqKzvzd5KP S6bxxCeCqY0XyPcS3DA8d9rDNgfAgo0Ul8rjaay8h25KOHDx0fIDkXdGrkwvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHEIVc3ctb2Zok6kC32HO2LJtaCEwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTY3NjIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TB QTANBgkqhkiG9w0BAQsFAAOCAQEARzKW2PoAq8eT8CiIe6+rR6kpBQNGyaUZGx74 IWAa6kQlOd2XMvyj5OZZxP5iC4yyjT31b8UnwmmExU7QOC2LSdwcHJZ1emBP3o/D 7pZcO5y7CUm2WSMgnvvz0I+f29FGh+HuvVLx5JiFuNTglj8f7GgCrSY6rfGJ3TnN 9TsN5WghDE+5wn1eZApAFS1DwpJL1l5AEOvKSY2yzXdhkA/I2zJBtgh/mRphO+hn Lnrw+TzE4MGZTG5M0y9rL9EgGGPIaNaT7ZjY160RVP/g/tfYuLpP4A6HbKUEeNLM RZ7gLo2dyGJSoUDsMv8d3eAvDMsDWwLO96eCxYMNAH72/rySXg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:19:42 2025 by rpki-client