$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa File: AS215280.roa (raw, json) Hash identifier: GVN9eWOgu0WuazNxeqKYFsycFVTsrtCGszc+uBlnDF0= Subject key identifier: CD:26:BA:D8:72:21:9D:EF:4B:D8:B9:DF:B2:78:62:72:50:E3:23:B8 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7838E713886790FCF86EEFF54744BFBB3AEB26FD Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa Signing time: Fri 04 Jul 2025 07:51:27 +0000 ROA not before: Fri 04 Jul 2025 07:46:27 +0000 ROA not after: Fri 03 Jul 2026 07:51:27 +0000 asID: 215280 IP address blocks: 2a07:54c1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:38:e7:13:88:67:90:fc:f8:6e:ef:f5:47:44:bf:bb:3a:eb:26:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:27 2025 GMT Not After : Jul 3 07:51:27 2026 GMT Subject: CN=CD26BAD872219DEF4BD8B9DFB278627250E323B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c6:bb:6b:f6:95:74:80:33:1d:5a:fd:cb:31: f3:5f:47:a8:30:d8:03:53:89:71:32:2d:33:56:5c: 20:f8:dc:0f:73:ae:07:43:8a:a5:76:5b:fc:49:ad: 89:0c:c4:85:8a:52:4e:f0:13:46:9e:78:f7:d2:2b: d4:a9:f1:65:55:f8:2f:e7:a4:86:d7:ff:77:2b:f0: ce:b6:59:29:fa:69:c4:6c:36:98:ff:40:09:46:f2: 84:85:00:47:6b:1b:d6:74:fd:f6:9f:c5:5c:bc:c6: b6:34:bf:9c:7a:10:a4:8e:b6:e4:22:67:0e:e6:5e: dd:ec:b4:1d:55:a9:53:af:61:01:24:af:50:e6:df: e7:1f:9a:05:21:ea:57:dc:70:39:35:ce:bd:92:b3: 3b:bc:02:67:9c:42:bd:a8:32:c3:07:98:bd:ad:84: 7d:10:fb:a4:2e:09:7c:52:c3:c4:57:cb:47:9f:5d: cb:a6:56:ab:e2:f5:46:a5:5a:9e:e2:0d:e8:f2:0e: aa:5f:26:dd:f3:0a:50:b4:43:16:13:d9:63:6a:97: 29:33:15:e5:21:04:ad:b9:3c:5a:c2:d6:44:27:35: b1:42:f1:35:ac:ee:af:3b:75:a0:e9:6c:f5:75:20: a6:71:4b:14:68:9c:a4:da:6b:66:a4:e5:19:1b:d5: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:26:BA:D8:72:21:9D:EF:4B:D8:B9:DF:B2:78:62:72:50:E3:23:B8 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3800::/40 Signature Algorithm: sha256WithRSAEncryption 9e:c4:24:c1:b2:a3:a8:0e:89:6b:df:e3:aa:0d:cc:9c:e7:08: b7:a0:77:7d:aa:f6:ff:a7:20:26:c1:1e:87:74:66:c4:a9:d4: 57:46:e0:db:1d:df:b2:19:cc:4e:90:12:29:a3:dc:f7:bb:44: 17:ba:57:70:99:ff:4f:4b:4f:b8:f8:8a:5e:04:45:19:1a:a1: 76:44:c4:de:69:e5:19:3d:8a:02:c5:9a:58:fc:e1:3d:43:70: b7:eb:8c:ca:2c:e1:f1:27:0c:fe:94:af:53:5e:28:32:e2:d0: 66:da:86:86:ca:e4:b6:b9:c8:6d:e9:6c:21:c8:4b:86:12:fb: 25:ef:ed:02:46:f4:1c:6c:6f:1b:79:c6:88:2a:48:59:29:d9: 3a:92:13:2f:3e:86:05:a7:94:65:45:3f:74:2f:4a:c0:ec:93: 14:e3:34:b4:86:ba:d7:fd:39:89:f3:b1:db:25:6f:2e:cb:4f: de:ae:c5:d1:58:70:9d:1e:6e:0f:4e:5f:0f:0f:44:6d:ea:7e: 1b:a9:af:04:89:1c:9e:3b:cf:7b:ad:ec:a8:10:36:31:e3:90: 15:71:9c:84:41:ce:50:9e:00:c7:8f:77:ac:9d:16:e8:70:bb: e5:38:e3:1a:b0:14:fc:08:bf:59:1c:45:43:cf:4c:ca:bd:91: 11:b7:fa:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeDjnE4hnkPz4bu/1R0S/uzrrJv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjdaFw0yNjA3MDMwNzUxMjdaMDMxMTAvBgNV BAMTKENEMjZCQUQ4NzIyMTlERUY0QkQ4QjlERkIyNzg2MjcyNTBFMzIzQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDixrtr9pV0gDMdWv3LMfNfR6gw 2ANTiXEyLTNWXCD43A9zrgdDiqV2W/xJrYkMxIWKUk7wE0aeePfSK9Sp8WVV+C/n pIbX/3cr8M62WSn6acRsNpj/QAlG8oSFAEdrG9Z0/fafxVy8xrY0v5x6EKSOtuQi Zw7mXt3stB1VqVOvYQEkr1Dm3+cfmgUh6lfccDk1zr2Sszu8AmecQr2oMsMHmL2t hH0Q+6QuCXxSw8RXy0efXcumVqvi9UalWp7iDejyDqpfJt3zClC0QxYT2WNqlykz FeUhBK25PFrC1kQnNbFC8TWs7q87daDpbPV1IKZxSxRonKTaa2ak5Rkb1ftBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzSa62HIhne9L2LnfsnhiclDjI7gwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MjgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTgwDQYJKoZIhvcNAQELBQADggEBAJ7EJMGyo6gOiWvf46oNzJznCLegd32q9v+n ICbBHod0ZsSp1FdG4Nsd37IZzE6QEimj3Pe7RBe6V3CZ/09LT7j4il4ERRkaoXZE xN5p5Rk9igLFmlj84T1DcLfrjMos4fEnDP6Ur1NeKDLi0GbahobK5La5yG3pbCHI S4YS+yXv7QJG9Bxsbxt5xogqSFkp2TqSEy8+hgWnlGVFP3QvSsDskxTjNLSGutf9 OYnzsdslby7LT96uxdFYcJ0ebg9OXw8PRG3qfhuprwSJHJ47z3ut7KgQNjHjkBVx nIRBzlCeAMePd6ydFuhwu+U44xqwFPwIv1kcRUPPTMq9kRG3+kA= -----END CERTIFICATE-----Generated at Wed Nov 5 13:22:02 2025 by rpki-client