$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa File: AS207778.roa (raw, json) Hash identifier: e+walWrTsiLtPIjooMuS2YhJukI5FrzWhGA1Dp7tefI= Subject key identifier: A4:F6:D4:A9:78:62:A3:1A:06:A0:B6:A4:59:58:89:BC:70:A9:1F:A6 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1EC50FF7FAA7AF84E2408D760B6E47D3EA40F1A8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 207778 IP address blocks: 2a07:54c1:4931::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c5:0f:f7:fa:a7:af:84:e2:40:8d:76:0b:6e:47:d3:ea:40:f1:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=A4F6D4A97862A31A06A0B6A4595889BC70A91FA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b6:0c:95:be:cc:31:61:ca:99:54:b6:7f:cc: a5:93:d1:87:79:6b:d3:8e:79:97:2f:58:73:10:45: cb:b1:12:a1:be:5f:11:ad:93:e1:eb:12:5b:ea:b9: f9:34:e1:31:76:e6:fb:97:bc:3a:2b:38:40:f8:de: e6:ba:d3:78:de:c6:1a:ea:70:1a:85:ed:d7:42:79: 06:aa:89:50:25:d1:cb:d8:c2:5b:7c:3b:ca:82:26: 9e:fb:41:86:6c:21:92:86:77:0c:5a:35:d1:0a:c8: 55:96:43:d6:e7:87:ce:13:7f:d4:9b:ff:03:3f:5b: 8e:11:d1:df:7b:e9:84:69:09:d6:f1:fc:cc:ed:b8: d3:05:19:25:3d:4f:7a:ee:ed:e6:96:14:c5:0f:3d: ae:5e:eb:a1:66:65:f1:e5:4a:1f:e9:9b:f7:d7:ff: 24:66:81:b6:b9:48:4f:9b:d8:7c:85:87:9f:b4:54: e3:c6:2c:94:fe:5e:8d:00:c2:a8:df:eb:ac:a0:9a: 29:87:f3:1d:ec:32:0c:d2:aa:08:d9:13:98:25:2f: a8:5e:df:73:49:2a:45:de:e6:bc:80:fb:71:52:77: a0:69:48:67:b7:8a:ee:3f:3e:e7:d0:b4:b5:ff:b0: 19:1c:97:07:0c:52:6e:f5:45:dd:18:08:90:73:d1: 4d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F6:D4:A9:78:62:A3:1A:06:A0:B6:A4:59:58:89:BC:70:A9:1F:A6 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4931::/48 Signature Algorithm: sha256WithRSAEncryption 93:c5:98:7b:fe:87:fb:aa:ec:d7:e4:96:d8:3c:a7:b7:76:2f: db:c5:a2:e8:16:9b:04:12:1a:6c:59:f2:ff:1a:f4:6d:c5:5e: 9f:6b:d9:f9:6a:86:28:f4:7e:fa:56:69:f4:e7:a8:14:76:eb: 13:39:1f:e1:fe:db:18:48:71:91:31:23:04:f7:96:fb:40:e9: bd:de:59:9e:c6:d5:89:d9:ea:21:73:dc:53:e6:aa:b3:3c:25: 6b:ed:12:69:f0:c1:29:1e:83:d7:2b:a3:36:1f:61:65:33:40: c7:8e:5d:5c:71:bf:5d:bf:85:1b:c7:71:a9:72:ee:ed:50:2c: fe:f8:06:e8:22:35:7c:9d:ee:9e:e5:2c:10:a9:bd:16:f8:6e: 30:df:da:55:88:fe:e3:24:dc:9b:93:ed:75:ed:09:38:37:95: ab:c6:c2:89:0f:5f:24:f1:b7:16:5c:ba:f1:8e:1b:47:f1:33: 5c:6c:b5:b5:7e:80:89:a4:92:5d:3e:97:d4:f7:24:00:b8:e7: 12:a8:18:10:5b:52:cb:ce:1f:45:0a:a0:e9:7b:40:fd:6d:4e: 42:d5:6b:54:13:10:95:21:10:ab:e7:03:a7:37:e4:ae:6b:16: c1:67:a9:b5:a5:6e:3d:6e:f9:cf:e2:10:92:67:b4:89:36:65: b7:da:77:a0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHsUP9/qnr4TiQI12C25H0+pA8agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKEE0RjZENEE5Nzg2MkEzMUEwNkEwQjZBNDU5NTg4OUJDNzBBOTFGQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgtgyVvswxYcqZVLZ/zKWT0Yd5 a9OOeZcvWHMQRcuxEqG+XxGtk+HrElvqufk04TF25vuXvDorOED43ua603jexhrq cBqF7ddCeQaqiVAl0cvYwlt8O8qCJp77QYZsIZKGdwxaNdEKyFWWQ9bnh84Tf9Sb /wM/W44R0d976YRpCdbx/MztuNMFGSU9T3ru7eaWFMUPPa5e66FmZfHlSh/pm/fX /yRmgba5SE+b2HyFh5+0VOPGLJT+Xo0Awqjf66ygmimH8x3sMgzSqgjZE5glL6he 33NJKkXe5ryA+3FSd6BpSGe3iu4/PufQtLX/sBkclwcMUm71Rd0YCJBz0U0VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpPbUqXhioxoGoLakWViJvHCpH6YwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA3Nzc4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wUkxMA0GCSqGSIb3DQEBCwUAA4IBAQCTxZh7/of7quzX5JbYPKe3di/bxaLoFpsE EhpsWfL/GvRtxV6fa9n5aoYo9H76Vmn056gUdusTOR/h/tsYSHGRMSME95b7QOm9 3lmextWJ2eohc9xT5qqzPCVr7RJp8MEpHoPXK6M2H2FlM0DHjl1ccb9dv4Ubx3Gp cu7tUCz++AboIjV8ne6e5SwQqb0W+G4w39pViP7jJNybk+117Qk4N5WrxsKJD18k 8bcWXLrxjhtH8TNcbLW1foCJpJJdPpfU9yQAuOcSqBgQW1LLzh9FCqDpe0D9bU5C 1WtUExCVIRCr5wOnN+SuaxbBZ6m1pW49bvnP4hCSZ7SJNmW32neg -----END CERTIFICATE-----Generated at Wed Nov 5 13:21:30 2025 by rpki-client