$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa File: AS59678.roa (raw, json) Hash identifier: H9rfV1LUOk1FG72sIPyzARDZGVNH4jIr4WqQYr2BLLs= Subject key identifier: 0B:F7:73:7F:A7:65:6C:BC:C4:B7:DC:0F:7B:E0:AE:C8:78:54:F9:8E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4F50B3557623C9C9B0C944DD2BAC4FBC1C2D4A27 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 59678 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:50:b3:55:76:23:c9:c9:b0:c9:44:dd:2b:ac:4f:bc:1c:2d:4a:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=0BF7737FA7656CBCC4B7DC0F7BE0AEC87854F98E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b5:e9:0d:d2:75:76:48:b4:20:5c:58:8d:a4: 39:f7:f6:1d:e6:9b:4f:a7:82:d4:3e:39:1c:df:79: 20:8e:3f:d9:0f:9d:e0:d3:e7:9c:82:64:ed:08:da: c7:59:09:e7:ad:71:28:14:ca:70:62:9d:4e:80:0c: 86:97:32:b5:78:19:28:fd:5e:9a:03:04:c9:a1:b0: e0:06:d2:da:89:c4:b5:1d:49:1b:77:bd:09:57:ca: 82:54:8b:5d:f0:2f:9e:ea:da:0a:7f:35:56:d8:4a: 93:3d:96:9a:c5:d6:45:be:e6:e9:8d:ec:cc:46:ff: ca:a6:92:d8:60:89:5d:ba:ea:6f:c1:ee:ec:7a:8a: 1b:83:db:e2:60:e6:df:e3:dd:8f:11:55:e2:bc:7c: a8:cd:4a:3a:2d:c0:87:09:2d:11:84:97:10:7d:a3: cf:c0:3e:33:58:ec:a8:1a:10:d8:c8:41:1b:8c:40: 3c:a6:54:e7:19:05:6a:c9:b5:37:f0:f9:77:f0:38: de:0e:16:56:1d:36:e0:10:21:4b:15:20:bf:6b:45: c7:d4:f4:c8:f8:f0:d4:d9:c6:57:c3:90:1a:85:c1: 29:37:5a:9a:31:6c:07:41:8e:c9:20:46:54:dd:29: ca:b6:69:78:9e:20:db:a8:b7:2f:21:40:70:05:9b: b4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F7:73:7F:A7:65:6C:BC:C4:B7:DC:0F:7B:E0:AE:C8:78:54:F9:8E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption be:84:8a:3d:3f:5e:a8:02:4f:1f:be:ea:a4:af:88:00:b1:c4: 20:38:25:66:03:59:bc:d7:99:64:d2:d6:4c:ee:15:ce:65:1f: 6b:16:aa:14:2b:08:f8:36:16:65:bd:2b:aa:cd:90:cc:2e:8b: 07:59:5a:b0:3a:ef:4d:98:31:6f:75:a1:90:9c:85:b1:95:29: 43:97:67:9c:a4:7e:38:c8:a6:2e:ae:ab:b0:7c:7e:92:34:71: c7:a4:95:05:bd:dd:c2:f7:3d:47:08:a7:94:8b:39:d7:82:16: 75:8f:22:cb:07:73:84:2b:20:cf:06:b1:a2:e6:fd:3a:2f:1d: 6a:df:b7:59:5b:77:37:9d:2b:5c:99:8e:40:ae:95:a8:ac:43: 5f:12:a7:f7:08:6f:ac:fc:78:0b:95:22:71:93:1a:23:60:7a: 78:88:fa:24:52:62:2b:38:76:b4:ec:ec:de:33:c0:6b:4f:df: ea:ec:8d:93:59:fe:93:ff:bf:c5:e8:c2:2f:91:d1:e4:cb:5a: bd:eb:cb:d8:b8:2a:7e:89:80:d5:0a:cf:94:e7:65:b3:83:e1: 66:87:09:68:90:fb:16:7a:03:b0:28:c0:d1:69:07:c1:d7:39: 0a:9b:b0:2c:90:76:89:9d:08:36:b0:48:8f:f8:69:e0:c6:c8: ce:c2:12:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT1CzVXYjycmwyUTdK6xPvBwtSicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDBCRjc3MzdGQTc2NTZDQkNDNEI3REMwRjdCRTBBRUM4Nzg1NEY5OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGtekN0nV2SLQgXFiNpDn39h3m m0+ngtQ+ORzfeSCOP9kPneDT55yCZO0I2sdZCeetcSgUynBinU6ADIaXMrV4GSj9 XpoDBMmhsOAG0tqJxLUdSRt3vQlXyoJUi13wL57q2gp/NVbYSpM9lprF1kW+5umN 7MxG/8qmkthgiV266m/B7ux6ihuD2+Jg5t/j3Y8RVeK8fKjNSjotwIcJLRGElxB9 o8/APjNY7KgaENjIQRuMQDymVOcZBWrJtTfw+XfwON4OFlYdNuAQIUsVIL9rRcfU 9Mj48NTZxlfDkBqFwSk3WpoxbAdBjskgRlTdKcq2aXieINuoty8hQHAFm7QHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUC/dzf6dlbLzEt9wPe+CuyHhU+Y4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTk2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAL6Eij0/XqgCTx++6qSviACxxCA4JWYDWbzX mWTS1kzuFc5lH2sWqhQrCPg2FmW9K6rNkMwuiwdZWrA6702YMW91oZCchbGVKUOX Z5ykfjjIpi6uq7B8fpI0cceklQW93cL3PUcIp5SLOdeCFnWPIssHc4QrIM8GsaLm /TovHWrft1lbdzedK1yZjkCulaisQ18Sp/cIb6z8eAuVInGTGiNgeniI+iRSYis4 drTs7N4zwGtP3+rsjZNZ/pP/v8Xowi+R0eTLWr3ry9i4Kn6JgNUKz5TnZbOD4WaH CWiQ+xZ6A7AowNFpB8HXOQqbsCyQdomdCDawSI/4aeDGyM7CEk4= -----END CERTIFICATE-----Generated at Sat Jul 5 08:22:17 2025 by rpki-client