$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa File: AS0.roa (raw, json) Hash identifier: WmMU3QxKxTFs6/2lQYVMYdkPFck1uw2VTLS4VPDNVcs= Subject key identifier: C6:1C:4F:C6:B5:E5:FA:6B:44:72:94:52:16:23:86:6C:9B:46:F1:1E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 419AD819781F14E522BEAFE5E526BAA41A39B6BE Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 0 IP address blocks: 2a07:54c7:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:9a:d8:19:78:1f:14:e5:22:be:af:e5:e5:26:ba:a4:1a:39:b6:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=C61C4FC6B5E5FA6B447294521623866C9B46F11E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:94:b5:27:8b:e8:35:30:06:56:23:b9:c5: 54:20:e3:f1:a9:cd:ed:50:e6:ae:a2:f4:91:7e:38: 29:02:fd:a8:eb:6f:f2:e9:b7:f3:a4:62:3e:98:71: 02:e0:e7:dc:8a:cd:a1:53:90:b3:61:7f:a5:9c:8f: a3:47:2d:f9:29:79:ca:ea:3e:92:a9:3f:0a:5b:d8: f0:e1:d4:48:49:b9:b7:2b:df:b4:2a:ee:25:0c:f1: 9a:bd:38:fd:05:1a:dc:b1:16:1b:29:4e:fb:e4:e8: 90:15:73:2a:51:69:51:fa:2e:42:06:d0:46:c9:f5: 76:b7:f3:bc:5f:de:d9:2b:f5:a5:6a:81:9e:21:ee: 9a:34:03:50:47:a1:6f:14:ef:bc:1c:b1:1e:fd:72: 74:4e:ce:35:7f:de:ee:87:ce:fa:e8:1d:ee:c0:80: 1b:2e:82:f3:a5:df:e5:08:91:42:c0:41:11:43:6e: 6f:6c:60:03:2b:9c:cc:50:c4:96:5d:cd:d6:1b:b1: e3:6c:1b:08:c7:8d:03:ca:49:06:3c:04:0c:77:dc: ed:97:b3:f1:08:45:4f:e4:68:4e:ea:3c:53:86:8c: a0:6d:2c:54:37:94:18:26:91:3b:85:15:ba:64:b2: 42:22:87:82:d0:66:07:e3:2d:5b:cd:d6:b5:7f:94: dd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:1C:4F:C6:B5:E5:FA:6B:44:72:94:52:16:23:86:6C:9B:46:F1:1E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:6000::/36 Signature Algorithm: sha256WithRSAEncryption 3a:5a:05:83:69:c6:9e:ac:df:72:7e:d1:64:a3:2d:f8:bb:31: b8:99:4a:b1:8c:77:5e:21:3f:b4:b8:3a:55:fe:dc:e8:09:c8: 81:21:eb:c9:34:2e:d5:5d:44:16:09:99:d9:1b:44:95:10:d2: 44:5d:eb:c6:19:ba:5b:c2:e1:ab:71:79:a2:c6:98:40:74:85: 5d:47:31:47:58:28:23:3b:5d:b3:47:44:bf:67:a0:d4:ac:5b: dc:2b:7d:73:28:02:a6:7b:8d:ca:9e:86:b2:bd:45:7e:90:45: 66:c6:ee:0d:d1:3b:ef:5b:8e:e6:e8:ff:9d:75:ce:87:17:20: 5f:79:53:51:42:e8:c5:e2:54:44:09:23:76:75:9e:f2:d4:e8: af:97:01:ac:bd:ff:8f:2d:2c:c9:5a:bb:eb:b5:73:7d:81:1d: fe:81:55:86:f9:20:0b:5d:78:4d:6c:42:e1:98:97:b6:e7:ee: c5:af:21:3c:91:9c:63:78:72:3d:93:89:f4:89:6e:4b:3a:2e: a5:1c:1e:a9:ed:0a:3c:aa:b4:5b:98:e9:c6:a6:a8:19:f9:6b: c2:82:09:52:28:81:da:70:a2:cb:9b:20:00:41:1e:44:75:48: f6:8b:52:74:4e:3b:b3:b8:7b:07:07:10:c1:41:f8:af:39:a1: 0b:e4:bc:6b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQZrYGXgfFOUivq/l5Sa6pBo5tr4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKEM2MUM0RkM2QjVFNUZBNkI0NDcyOTQ1MjE2MjM4NjZDOUI0NkYxMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfmZS1J4voNTAGViO5xVQg4/Gp ze1Q5q6i9JF+OCkC/ajrb/Lpt/OkYj6YcQLg59yKzaFTkLNhf6Wcj6NHLfkpecrq PpKpPwpb2PDh1EhJubcr37Qq7iUM8Zq9OP0FGtyxFhspTvvk6JAVcypRaVH6LkIG 0EbJ9Xa387xf3tkr9aVqgZ4h7po0A1BHoW8U77wcsR79cnROzjV/3u6HzvroHe7A gBsugvOl3+UIkULAQRFDbm9sYAMrnMxQxJZdzdYbseNsGwjHjQPKSQY8BAx33O2X s/EIRU/kaE7qPFOGjKBtLFQ3lBgmkTuFFbpkskIih4LQZgfjLVvN1rV/lN0RAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUxhxPxrXl+mtEcpRSFiOGbJtG8R4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoHVMdgMA0G CSqGSIb3DQEBCwUAA4IBAQA6WgWDacaerN9yftFkoy34uzG4mUqxjHdeIT+0uDpV /tzoCciBIevJNC7VXUQWCZnZG0SVENJEXevGGbpbwuGrcXmixphAdIVdRzFHWCgj O12zR0S/Z6DUrFvcK31zKAKme43KnoayvUV+kEVmxu4N0TvvW47m6P+ddc6HFyBf eVNRQujF4lRECSN2dZ7y1OivlwGsvf+PLSzJWrvrtXN9gR3+gVWG+SALXXhNbELh mJe25+7FryE8kZxjeHI9k4n0iW5LOi6lHB6p7Qo8qrRbmOnGpqgZ+WvCgglSKIHa cKLLmyAAQR5EdUj2i1J0TjuzuHsHBxDBQfivOaEL5Lxr -----END CERTIFICATE-----Generated at Wed Nov 5 02:58:29 2025 by rpki-client