$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa File: AS215665.roa (raw, json) Hash identifier: cet9SbN52mAZvF8SPt0JsRcuC1nZ6W+MLsn72b8+mi8= Subject key identifier: 4B:02:67:9F:58:8F:27:3B:8B:F2:30:46:FA:60:61:97:45:33:44:95 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 71E5B8FAC3E1E35DC7EA6CE0473C13C2C84B0EEA Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa Signing time: Fri 04 Jul 2025 07:51:23 +0000 ROA not before: Fri 04 Jul 2025 07:46:23 +0000 ROA not after: Fri 03 Jul 2026 07:51:23 +0000 asID: 215665 IP address blocks: 2a07:54c1:4700::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 01:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e5:b8:fa:c3:e1:e3:5d:c7:ea:6c:e0:47:3c:13:c2:c8:4b:0e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:23 2025 GMT Not After : Jul 3 07:51:23 2026 GMT Subject: CN=4B02679F588F273B8BF23046FA60619745334495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fa:5d:26:c3:54:3b:ed:0d:18:81:9b:e6:cf: 77:4c:b8:73:d5:87:90:e2:8e:da:0c:b2:08:e0:c7: d1:5c:53:87:c2:40:f0:f5:70:21:68:b4:86:1c:b1: ec:e1:9f:96:76:20:9b:3d:b9:21:33:bd:37:a0:e6: 3a:51:e1:67:88:2d:2a:43:0e:7c:7e:8a:f9:1d:50: 07:8c:39:42:e2:fb:ec:d2:02:22:f3:87:5e:78:a6: ba:44:56:26:c6:a9:c0:16:53:b5:a0:92:15:59:44: 24:e7:65:6c:3b:9a:23:c7:8d:69:e9:57:97:2e:05: 1b:d6:d3:23:e5:2c:4a:5a:f1:af:3d:d9:72:b5:6f: 70:cf:10:5c:b3:31:76:53:54:a4:b5:e6:a1:c5:da: 2f:42:01:df:fe:80:b7:d3:a3:d6:54:68:9b:22:01: b9:5e:69:6c:48:09:d0:29:71:58:64:fb:bc:3a:66: d7:1b:b1:cc:56:a3:34:f7:5e:52:5a:c9:40:29:a2: cc:90:94:f3:49:98:64:4a:08:80:f1:be:ee:4a:63: 2c:b5:26:5b:cd:96:e0:ca:aa:b4:7d:9b:db:38:33: 28:44:0b:df:dc:04:1b:ef:9f:2a:b0:8d:8a:4b:ce: 8b:3c:28:d0:67:75:b5:35:4d:ec:e3:da:33:14:51: 05:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:02:67:9F:58:8F:27:3B:8B:F2:30:46:FA:60:61:97:45:33:44:95 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4700::/40 Signature Algorithm: sha256WithRSAEncryption 87:19:8a:18:b9:73:9a:c6:85:e7:c3:e3:5b:90:48:2f:95:8c: bb:f3:05:a1:4a:59:c1:15:60:9b:e5:db:7d:02:7a:33:0e:21: cb:f8:21:68:09:2b:64:08:13:c5:61:b2:6b:99:5e:43:b1:76: 3a:1d:74:a9:c1:38:18:fe:08:df:59:c1:42:ba:23:d4:60:6f: f1:8f:ae:bf:32:50:b9:6b:7d:fa:47:f4:85:a3:de:a9:e6:66: b8:22:ee:16:0c:69:48:67:37:b8:25:54:f0:0d:a1:1b:7d:6b: cb:1b:90:1a:3a:2b:18:19:55:17:87:87:af:ff:11:14:d0:5a: 3d:f1:b7:86:d4:03:fb:70:b6:1d:5e:23:20:97:b1:71:dd:be: 94:25:7d:c3:11:7c:b8:db:c1:3c:6f:a5:21:20:97:9c:28:5b: 4b:07:93:7f:75:19:3d:b7:39:e0:d8:73:cb:4f:38:2b:a3:59: 9a:67:f3:c9:be:16:e4:28:73:8e:fd:6d:89:9a:70:a0:bc:9b: 26:f2:61:59:f4:57:5a:39:5b:06:d0:ea:ef:91:93:10:c0:38: db:02:61:54:af:e7:dc:98:be:0e:ad:c2:2a:d9:be:19:3a:cd: 01:a7:38:fb:bb:65:59:41:0e:20:60:df:30:f3:92:3c:e4:5a: ed:07:19:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUceW4+sPh413H6mzgRzwTwshLDuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjNaFw0yNjA3MDMwNzUxMjNaMDMxMTAvBgNV BAMTKDRCMDI2NzlGNTg4RjI3M0I4QkYyMzA0NkZBNjA2MTk3NDUzMzQ0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH+l0mw1Q77Q0YgZvmz3dMuHPV h5DijtoMsgjgx9FcU4fCQPD1cCFotIYcsezhn5Z2IJs9uSEzvTeg5jpR4WeILSpD Dnx+ivkdUAeMOULi++zSAiLzh154prpEVibGqcAWU7WgkhVZRCTnZWw7miPHjWnp V5cuBRvW0yPlLEpa8a892XK1b3DPEFyzMXZTVKS15qHF2i9CAd/+gLfTo9ZUaJsi AbleaWxICdApcVhk+7w6ZtcbscxWozT3XlJayUAposyQlPNJmGRKCIDxvu5KYyy1 JlvNluDKqrR9m9s4MyhEC9/cBBvvnyqwjYpLzos8KNBndbU1Tezj2jMUUQWpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSwJnn1iPJzuL8jBG+mBhl0UzRJUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1NjY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUcwDQYJKoZIhvcNAQELBQADggEBAIcZihi5c5rGhefD41uQSC+VjLvzBaFKWcEV YJvl230CejMOIcv4IWgJK2QIE8VhsmuZXkOxdjoddKnBOBj+CN9ZwUK6I9Rgb/GP rr8yULlrffpH9IWj3qnmZrgi7hYMaUhnN7glVPANoRt9a8sbkBo6KxgZVReHh6// ERTQWj3xt4bUA/twth1eIyCXsXHdvpQlfcMRfLjbwTxvpSEgl5woW0sHk391GT23 OeDYc8tPOCujWZpn88m+FuQoc479bYmacKC8mybyYVn0V1o5WwbQ6u+RkxDAONsC YVSv59yYvg6twirZvhk6zQGnOPu7ZVlBDiBg3zDzkjzkWu0HGRI= -----END CERTIFICATE-----Generated at Wed Nov 5 13:21:23 2025 by rpki-client