$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa File: AS206016.roa (raw, json) Hash identifier: M8x7Za+RjjlB0UXd0ohScZagBX/PC+XhksXYR/wJPvs= Subject key identifier: 8B:3D:E3:EE:09:C9:1A:19:29:9F:41:D0:71:93:80:9F:F3:11:04:CF Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0B46FA7F0002689F1E4C45BF986C5794E8D21345 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 206016 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:46:fa:7f:00:02:68:9f:1e:4c:45:bf:98:6c:57:94:e8:d2:13:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=8B3DE3EE09C91A19299F41D07193809FF31104CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:f1:4c:cd:3f:84:a7:7a:bc:1a:55:a7:4c: 74:1a:bd:e2:c2:4b:b2:98:a3:36:93:a8:36:38:89: f5:a8:50:50:8f:85:3b:e8:d1:12:07:fb:b7:65:8a: 69:3e:7b:70:ab:14:fe:ef:dd:77:d5:27:5a:75:14: fa:85:4e:62:67:8c:7b:b8:d2:dd:a9:99:5b:20:2f: 79:61:ce:96:f6:d8:2d:e5:0d:36:68:ef:7e:79:ca: f7:4e:0b:ef:03:0d:0a:de:a3:34:cc:60:e6:88:79: ca:bc:10:37:34:e4:3b:e7:ae:08:4b:14:d2:c8:26: d5:d6:a2:19:f8:f5:bf:d2:49:45:d3:28:88:fb:66: d6:58:34:ca:3d:91:5b:3e:ba:95:dc:6d:1d:b7:f1: 9b:ab:2a:66:81:d4:f2:ae:af:86:b8:96:37:21:a8: dc:9a:6c:b9:67:a4:76:d1:98:fa:1b:8d:43:71:4c: 0d:dc:3b:43:ef:86:c6:45:f3:54:48:22:2e:70:29: 62:7a:25:6f:d6:b1:ad:b8:c5:bd:ac:c5:71:3a:c8: fc:cf:de:93:ce:30:07:cf:31:9f:0a:bd:c5:52:20: 86:e9:91:27:51:a7:d7:cb:1d:5e:7e:bc:61:5a:2b: 5e:b5:16:31:3c:4f:af:8e:4b:3c:08:e2:b1:20:2b: 8d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:3D:E3:EE:09:C9:1A:19:29:9F:41:D0:71:93:80:9F:F3:11:04:CF X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 42:cf:25:68:1c:15:7e:08:2d:83:37:e6:c3:d2:f8:7e:c7:4f: 8e:92:93:3a:90:0f:ab:db:f2:92:d4:f3:ba:9e:97:3e:91:7f: 1a:1c:a1:87:0b:0a:e4:dd:a2:86:a0:1a:0c:fa:a6:f8:14:9a: e7:4a:e5:71:52:12:e9:17:52:d8:63:5b:ac:7a:7a:b5:f0:2f: 17:7d:82:04:b3:6d:26:99:58:33:9e:51:bd:76:81:63:02:ad: 81:66:79:8e:19:94:7f:eb:87:a3:26:b9:fa:63:1b:34:32:ba: 99:a1:18:f6:7b:79:3b:f3:0d:06:c6:27:e8:5c:57:5c:76:dc: a1:ae:81:41:a6:67:cc:74:c7:65:d8:a2:96:d8:1b:8f:f5:14: 80:6f:2e:a2:41:47:3f:8a:cc:86:c0:a0:9d:d7:67:c8:f6:4f: c9:a0:e2:44:9c:2d:98:3d:cb:c4:fc:86:c3:1a:5d:a8:f7:bf: d9:00:03:6b:60:b4:70:d0:2c:07:63:3f:89:02:65:d1:e3:f6: 92:fe:93:e0:47:7c:d2:0d:6e:39:d1:b5:e8:fb:d0:0d:9b:02: 1d:89:dc:5a:c9:e4:69:bd:5e:2a:30:08:37:ed:37:0a:7b:24: 3a:ea:ba:05:ab:d7:36:95:2b:f3:71:94:a8:34:83:ff:6e:66: 05:94:37:a3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUC0b6fwACaJ8eTEW/mGxXlOjSE0UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKDhCM0RFM0VFMDlDOTFBMTkyOTlGNDFEMDcxOTM4MDlGRjMxMTA0Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC47/FMzT+Ep3q8GlWnTHQaveLC S7KYozaTqDY4ifWoUFCPhTvo0RIH+7dlimk+e3CrFP7v3XfVJ1p1FPqFTmJnjHu4 0t2pmVsgL3lhzpb22C3lDTZo7355yvdOC+8DDQreozTMYOaIecq8EDc05DvnrghL FNLIJtXWohn49b/SSUXTKIj7ZtZYNMo9kVs+upXcbR238ZurKmaB1PKur4a4ljch qNyabLlnpHbRmPobjUNxTA3cO0PvhsZF81RIIi5wKWJ6JW/Wsa24xb2sxXE6yPzP 3pPOMAfPMZ8KvcVSIIbpkSdRp9fLHV5+vGFaK161FjE8T6+OSzwI4rEgK40JAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiz3j7gnJGhkpn0HQcZOAn/MRBM8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA2MDE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBCzyVoHBV+CC2DN+bD0vh+x0+OkpM6kA+r 2/KS1PO6npc+kX8aHKGHCwrk3aKGoBoM+qb4FJrnSuVxUhLpF1LYY1usenq18C8X fYIEs20mmVgznlG9doFjAq2BZnmOGZR/64ejJrn6Yxs0MrqZoRj2e3k78w0Gxifo XFdcdtyhroFBpmfMdMdl2KKW2BuP9RSAby6iQUc/isyGwKCd12fI9k/JoOJEnC2Y PcvE/IbDGl2o97/ZAANrYLRw0CwHYz+JAmXR4/aS/pPgR3zSDW450bXo+9ANmwId idxayeRpvV4qMAg37TcKeyQ66roFq9c2lSvzcZSoNIP/bmYFlDej -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:46 2025 by rpki-client