$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa File: AS215382.roa (raw, json) Hash identifier: h8HrKdDVgsJZCkJ3bx3PqPR+zHZGyj8jSf+YsKEgWYU= Subject key identifier: F2:99:69:0F:D6:1F:9E:A2:C1:99:68:41:AF:2C:7A:9A:FD:47:3C:8B Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 5EC7D6FA208850F79CF70D4F320DAD93C63BB8CF Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 215382 IP address blocks: 2a07:54c1:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c7:d6:fa:20:88:50:f7:9c:f7:0d:4f:32:0d:ad:93:c6:3b:b8:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=F299690FD61F9EA2C1996841AF2C7A9AFD473C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:2d:42:d8:a8:4d:9b:34:d6:0e:d3:59:c9: 4b:72:7e:9a:30:ee:5f:b8:8e:b9:85:20:c4:e3:a9: c6:98:28:21:50:34:ad:f9:21:2f:7e:10:cd:bd:5c: be:5a:13:d1:3f:bf:3f:d7:13:5c:04:3e:b7:73:ad: 8d:2f:42:cd:c6:35:15:97:d3:51:cc:68:43:ca:8b: 0f:8a:e3:a9:09:3e:94:45:63:c1:6c:c8:2d:e1:23: f2:64:4c:9a:0e:e3:34:f3:8b:5d:91:8a:26:75:f0: 9c:85:ef:e6:3a:07:cb:3a:e2:80:2d:b0:4f:cd:9e: 1b:c6:5e:e6:47:08:84:59:21:c7:ba:ae:4f:aa:ad: fe:f7:f1:2a:05:96:48:11:e1:17:25:4a:66:8e:65: e5:90:86:b4:71:4d:ed:1f:e8:dd:ff:cc:f9:8a:1a: 52:65:11:6d:1e:0e:c2:a8:6c:e5:fd:17:d0:1b:62: bb:3e:c2:a7:02:51:2a:8a:61:23:04:74:b0:87:9c: a8:08:d1:9d:dc:15:88:91:0f:4c:d9:a3:6a:db:a5: 12:16:4d:79:94:05:23:ef:de:e6:b8:d6:cd:f8:75: 4c:29:c8:81:db:7a:ca:ec:d9:d5:1f:92:18:6d:cc: 72:4a:ce:d9:17:a4:78:1b:30:e9:4b:dc:70:92:e5: 3d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:99:69:0F:D6:1F:9E:A2:C1:99:68:41:AF:2C:7A:9A:FD:47:3C:8B X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2100::/40 Signature Algorithm: sha256WithRSAEncryption b3:dc:bb:c1:91:c8:03:75:2a:bc:20:ea:73:ea:a9:d8:30:b7: 29:71:8f:d2:f7:9a:33:22:0e:55:2d:f0:9d:c6:87:b8:31:50: 02:38:80:8a:3e:98:ff:f4:ab:e0:ae:8d:e9:e0:de:92:53:86: fe:70:67:fd:6b:e0:2b:d0:be:3e:f3:a1:84:9e:47:c2:e3:1a: 83:4b:63:db:da:ad:61:be:76:97:df:8e:0e:03:25:c2:f4:cf: 37:0a:d6:49:4f:a3:07:06:d5:77:ec:35:b3:ae:e6:61:c5:6e: de:93:5c:39:bb:25:ef:7e:75:e7:8b:1a:b9:ad:fe:2d:4e:d1: bd:a6:03:c0:0c:40:4b:dd:d1:d1:82:82:5d:99:4d:9d:7c:67: 0b:30:16:c9:39:24:30:4b:a7:93:3c:1f:65:04:97:b4:f0:f3: 65:e1:54:e3:a1:30:40:dd:b7:79:fd:f4:80:31:7b:39:f2:c5: 97:bc:a9:a2:47:c5:db:56:de:58:d6:6a:56:2b:af:b3:01:18: 31:68:69:d3:b8:b0:94:9a:c9:f1:39:71:6f:95:9f:be:1b:51: ea:ef:04:4d:3b:56:87:03:0a:96:5e:03:33:96:1f:91:5f:71: ab:87:5d:f5:22:ff:e8:75:af:61:64:5e:2d:aa:08:e5:98:86: 2c:03:9d:57 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXsfW+iCIUPec9w1PMg2tk8Y7uM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKEYyOTk2OTBGRDYxRjlFQTJDMTk5Njg0MUFGMkM3QTlBRkQ0NzNDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW/C1C2KhNmzTWDtNZyUtyfpow 7l+4jrmFIMTjqcaYKCFQNK35IS9+EM29XL5aE9E/vz/XE1wEPrdzrY0vQs3GNRWX 01HMaEPKiw+K46kJPpRFY8FsyC3hI/JkTJoO4zTzi12RiiZ18JyF7+Y6B8s64oAt sE/NnhvGXuZHCIRZIce6rk+qrf738SoFlkgR4RclSmaOZeWQhrRxTe0f6N3/zPmK GlJlEW0eDsKobOX9F9AbYrs+wqcCUSqKYSMEdLCHnKgI0Z3cFYiRD0zZo2rbpRIW TXmUBSPv3ua41s34dUwpyIHbesrs2dUfkhhtzHJKztkXpHgbMOlL3HCS5T2HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8plpD9YfnqLBmWhBryx6mv1HPIswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MzgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSEwDQYJKoZIhvcNAQELBQADggEBALPcu8GRyAN1Krwg6nPqqdgwtylxj9L3mjMi DlUt8J3Gh7gxUAI4gIo+mP/0q+Cujeng3pJThv5wZ/1r4CvQvj7zoYSeR8LjGoNL Y9varWG+dpffjg4DJcL0zzcK1klPowcG1XfsNbOu5mHFbt6TXDm7Je9+deeLGrmt /i1O0b2mA8AMQEvd0dGCgl2ZTZ18ZwswFsk5JDBLp5M8H2UEl7Tw82XhVOOhMEDd t3n99IAxeznyxZe8qaJHxdtW3ljWalYrr7MBGDFoadO4sJSayfE5cW+Vn74bUerv BE07VocDCpZeAzOWH5FfcauHXfUi/+h1r2FkXi2qCOWYhiwDnVc= -----END CERTIFICATE-----Generated at Wed Nov 5 14:51:38 2025 by rpki-client