$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa File: AS203453.roa (raw, json) Hash identifier: zMufd3og0SI/OL3BGXrfEUW0RGs30ooOINC0QVJFEjc= Subject key identifier: C9:CD:EE:11:67:EF:61:54:DB:45:97:8B:44:E2:7E:80:35:9C:8F:24 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 38AD9FAA7D952E7523A2BC6134DDCAD7FA4FB897 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 203453 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ad:9f:aa:7d:95:2e:75:23:a2:bc:61:34:dd:ca:d7:fa:4f:b8:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=C9CDEE1167EF6154DB45978B44E27E80359C8F24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:78:02:1d:1b:ac:fe:37:14:3f:bb:96:83:5d: 65:68:c8:b8:d8:8d:a2:10:eb:85:39:80:c0:ea:fa: 0f:75:28:5f:68:3c:7e:1d:52:3a:c5:04:2b:90:26: 07:a9:23:44:97:55:93:71:bd:0b:22:75:ad:6e:69: 42:f5:a9:96:9d:c2:0f:42:ab:75:d3:53:32:49:af: e2:39:17:49:03:87:6f:8d:e3:88:ff:c6:d3:b6:9a: 74:f0:87:65:7a:6d:b2:db:30:9f:c9:b3:62:3c:22: f1:d9:8c:e3:80:1c:b4:61:24:3b:4a:cc:c1:0e:ea: 7a:af:ed:87:a6:40:92:5d:e9:2e:d8:fe:27:fb:9d: b1:78:45:94:68:49:d3:e1:36:39:cc:bc:20:4c:86: 34:fa:34:f5:72:10:ba:23:6d:14:6f:15:ce:d8:9b: 10:e5:81:b4:15:91:11:6c:b5:0c:8c:9e:ab:8b:49: 2a:41:4d:7a:28:21:a7:19:8a:7c:ef:c7:d8:28:1e: 4d:ad:38:2b:a5:76:a7:a2:55:4c:95:a3:36:ae:95: 74:d9:3b:fe:40:5a:6a:5e:79:a3:23:3f:20:9f:a5: 43:f2:4c:fe:1e:20:49:92:57:be:da:46:d3:9c:dd: b4:9d:32:02:55:b7:0d:2f:5d:f5:ef:8b:82:5c:fb: 3c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:CD:EE:11:67:EF:61:54:DB:45:97:8B:44:E2:7E:80:35:9C:8F:24 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 3f:7a:c1:7b:17:b6:df:e1:96:7d:8b:3a:af:1c:0e:60:49:4d: 0b:b7:13:b2:ea:74:28:c6:b6:85:07:2b:6a:78:5c:98:7f:0a: 8d:63:96:9a:30:3a:02:24:a1:76:b4:8a:b7:d1:97:1c:ea:44: 0b:8d:91:e4:16:29:15:d0:2b:41:ac:2e:70:a9:a4:8f:25:8b: 78:c3:34:6f:ac:0b:79:5c:18:23:b8:f0:76:16:64:82:95:85: e6:5a:57:69:70:a2:de:93:69:77:42:5e:f4:d7:2d:86:12:e9: 02:35:0a:4b:6f:40:77:6d:31:f3:22:0f:63:cc:d7:82:54:05: 64:2e:eb:4c:c1:94:b6:c6:68:4a:38:2b:e1:4a:cb:67:ac:dd: 01:18:7d:35:82:62:26:6e:2f:a6:fb:76:5b:f3:89:4c:2f:24: 6b:57:bc:c3:c5:db:15:b2:06:4c:5d:16:e8:01:f0:1e:0d:fb: 19:2f:96:b7:8e:5f:18:90:4d:26:37:1a:45:57:ab:7f:b7:15: b9:58:fe:98:92:9b:e1:28:e6:ba:6a:46:ba:ae:b5:c0:67:ed: 5a:da:5b:68:44:9a:cf:35:6c:62:fa:97:99:ec:e9:56:bb:00: a4:bb:77:79:a7:b0:02:5f:6e:ee:d9:a8:88:bf:b0:51:25:1b: 20:da:35:f0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOK2fqn2VLnUjorxhNN3K1/pPuJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKEM5Q0RFRTExNjdFRjYxNTREQjQ1OTc4QjQ0RTI3RTgwMzU5QzhGMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/eAIdG6z+NxQ/u5aDXWVoyLjY jaIQ64U5gMDq+g91KF9oPH4dUjrFBCuQJgepI0SXVZNxvQsida1uaUL1qZadwg9C q3XTUzJJr+I5F0kDh2+N44j/xtO2mnTwh2V6bbLbMJ/Js2I8IvHZjOOAHLRhJDtK zMEO6nqv7YemQJJd6S7Y/if7nbF4RZRoSdPhNjnMvCBMhjT6NPVyELojbRRvFc7Y mxDlgbQVkRFstQyMnquLSSpBTXooIacZinzvx9goHk2tOCuldqeiVUyVozaulXTZ O/5AWmpeeaMjPyCfpUPyTP4eIEmSV77aRtOc3bSdMgJVtw0vXfXvi4Jc+zxvAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUyc3uEWfvYVTbRZeLROJ+gDWcjyQwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA/esF7F7bf4ZZ9izqvHA5gSU0LtxOy6nQo xraFBytqeFyYfwqNY5aaMDoCJKF2tIq30Zcc6kQLjZHkFikV0CtBrC5wqaSPJYt4 wzRvrAt5XBgjuPB2FmSClYXmWldpcKLek2l3Ql701y2GEukCNQpLb0B3bTHzIg9j zNeCVAVkLutMwZS2xmhKOCvhSstnrN0BGH01gmImbi+m+3Zb84lMLyRrV7zDxdsV sgZMXRboAfAeDfsZL5a3jl8YkE0mNxpFV6t/txW5WP6YkpvhKOa6aka6rrXAZ+1a 2ltoRJrPNWxi+peZ7OlWuwCku3d5p7ACX27u2aiIv7BRJRsg2jXw -----END CERTIFICATE-----Generated at Wed Nov 5 13:21:31 2025 by rpki-client