$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa File: AS207598.roa (raw, json) Hash identifier: 7U79g3DrLQe1KQQZiSsSyNf0Ymgu7zjmWYseG18tvO0= Subject key identifier: 74:18:2F:D5:D5:B9:B2:A4:F2:62:7B:50:B7:87:B9:7F:3E:6E:EC:51 Certificate issuer: /CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Certificate serial: 092FAF1215131660866B75F7E09C954C92448439 Authority key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa Signing time: Wed 28 May 2025 18:20:52 +0000 ROA not before: Wed 28 May 2025 18:15:52 +0000 ROA not after: Wed 27 May 2026 18:20:52 +0000 asID: 207598 IP address blocks: 2a07:54c4:73d1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 20:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2f:af:12:15:13:16:60:86:6b:75:f7:e0:9c:95:4c:92:44:84:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E Validity Not Before: May 28 18:15:52 2025 GMT Not After : May 27 18:20:52 2026 GMT Subject: CN=74182FD5D5B9B2A4F2627B50B787B97F3E6EEC51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8b:69:ff:cc:c4:85:b2:9d:2c:04:17:5b:21: 74:79:8b:37:cf:41:bf:cc:34:ba:ac:f9:7f:11:cb: 36:97:80:06:ce:60:b0:51:63:bd:77:eb:9f:0c:81: a4:f5:92:a6:71:ca:c2:8f:d1:8a:9b:d9:b2:c4:cd: 6a:9b:59:45:58:fd:0e:c3:1e:ef:4f:f2:f8:1a:c3: 18:50:e6:30:36:e0:e6:d9:f7:f1:3b:da:e7:2f:61: 36:73:7f:1a:65:2e:54:b5:3f:82:5f:86:41:5e:a2: 17:fb:41:6e:8f:33:8e:fc:a7:79:90:e9:69:a7:08: 30:23:9a:20:f6:f3:8f:cb:46:53:cb:5f:92:0b:db: 29:c1:bc:b0:4d:e4:d9:b3:98:ff:b5:ae:85:10:92: bc:e0:ef:00:94:35:5c:6f:cb:73:df:d5:bf:81:12: 43:f7:49:1e:8a:60:83:15:ea:bb:97:b7:c3:7f:b2: 04:e1:e3:8b:50:bd:3e:18:5e:2f:88:d5:a8:69:67: 22:d0:3a:3c:4f:1f:26:8f:8b:1e:aa:7a:53:39:7f: 3e:14:05:85:bd:67:c6:11:4c:9f:5f:56:f9:bd:97: c9:1c:20:bb:24:9f:e7:a0:6d:85:42:b9:3e:c7:c6: 36:8b:f8:f5:8b:f6:8b:3e:82:61:91:e6:aa:64:bc: 05:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:18:2F:D5:D5:B9:B2:A4:F2:62:7B:50:B7:87:B9:7F:3E:6E:EC:51 X509v3 Authority Key Identifier: keyid:41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/AS207598.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:73d1::/48 Signature Algorithm: sha256WithRSAEncryption 07:7d:25:97:82:92:9c:ea:03:0d:f5:07:c8:b1:f2:ac:e7:f9: 70:fb:51:77:6f:dc:6f:0d:f1:ea:82:61:9d:13:3a:a3:81:f0: ac:e1:1a:a8:ae:e8:f9:9a:62:56:b4:89:d1:e6:57:03:db:8b: aa:17:77:d6:af:c7:fc:43:d3:61:b3:8a:78:d8:59:7c:be:f7: c5:56:3c:a9:d5:a1:3f:24:d0:fb:92:e9:0c:c1:09:73:88:e5: 5c:12:c1:e3:86:87:95:60:a1:8b:85:41:5d:76:2a:65:0a:af: be:a2:d2:69:66:df:1a:d7:62:68:c3:af:1a:0e:ca:6c:82:12: 42:5c:a6:f4:89:03:e7:df:06:33:9f:a4:e1:4d:61:9d:3d:47: 23:c6:d6:7b:35:11:f6:eb:0f:0b:97:5c:b1:fe:c4:38:03:74: 32:7e:a5:62:64:b4:ad:a7:d5:5f:ef:d0:df:66:50:44:d4:d4: c4:9a:9f:b7:56:df:f7:c2:8b:b8:f8:bc:32:29:af:8f:13:6a: a4:b2:3a:5f:7a:de:5e:37:62:24:85:98:d0:33:b2:de:b4:fe: cd:0d:12:a9:c1:2e:c2:e9:92:8e:44:61:59:ab:96:eb:60:bd: a7:f6:88:f8:35:e5:6f:77:59:73:3c:75:4d:43:58:f9:c4:87: d9:a0:46:ca -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCS+vEhUTFmCGa3X34JyVTJJEhDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEw RTFFMkY4RTAeFw0yNTA1MjgxODE1NTJaFw0yNjA1MjcxODIwNTJaMDMxMTAvBgNV BAMTKDc0MTgyRkQ1RDVCOUIyQTRGMjYyN0I1MEI3ODdCOTdGM0U2RUVDNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyi2n/zMSFsp0sBBdbIXR5izfP Qb/MNLqs+X8RyzaXgAbOYLBRY713658MgaT1kqZxysKP0Yqb2bLEzWqbWUVY/Q7D Hu9P8vgawxhQ5jA24ObZ9/E72ucvYTZzfxplLlS1P4JfhkFeohf7QW6PM478p3mQ 6WmnCDAjmiD284/LRlPLX5IL2ynBvLBN5NmzmP+1roUQkrzg7wCUNVxvy3Pf1b+B EkP3SR6KYIMV6ruXt8N/sgTh44tQvT4YXi+I1ahpZyLQOjxPHyaPix6qelM5fz4U BYW9Z8YRTJ9fVvm9l8kcILskn+egbYVCuT7HxjaL+PWL9os+gmGR5qpkvAV/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdBgv1dW5sqTyYntQt4e5fz5u7FEwHwYDVR0j BBgwFoAUQfZXzzVk8jO5d/QKyl5L0Q4eL44wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzAvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFFMkY4RS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNDFGNjU3Q0YzNTY0RjIzM0I5NzdGNDBBQ0E1RTRCRDEwRTFF MkY4RS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi8wL0FTMjA3NTk4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xHPRMA0GCSqGSIb3DQEBCwUAA4IBAQAHfSWXgpKc6gMN9QfIsfKs5/lw+1F3b9xv DfHqgmGdEzqjgfCs4Rqoruj5mmJWtInR5lcD24uqF3fWr8f8Q9Nhs4p42Fl8vvfF Vjyp1aE/JND7kukMwQlziOVcEsHjhoeVYKGLhUFddiplCq++otJpZt8a12Jow68a DspsghJCXKb0iQPn3wYzn6ThTWGdPUcjxtZ7NRH26w8Ll1yx/sQ4A3QyfqViZLSt p9Vf79DfZlBE1NTEmp+3Vt/3wou4+LwyKa+PE2qksjpfet5eN2IkhZjQM7LetP7N DRKpwS7C6ZKORGFZq5brYL2n9oj4NeVvd1lzPHVNQ1j5xIfZoEbK -----END CERTIFICATE-----Generated at Sun Jun 15 06:11:13 2025 by rpki-client