$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa File: AS44570.roa (raw, json) Hash identifier: dTSHp7q/XZcZCbe8gmtU7bEYkBunvPGzvRW9Qk7LCuw= Subject key identifier: C9:10:4F:86:6C:59:9C:D7:B6:C3:CF:18:68:79:DF:60:A8:6D:B5:D2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 35722FA22C5FCAC7D042ED8D680998AFEC36DAEA Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 44570 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:72:2f:a2:2c:5f:ca:c7:d0:42:ed:8d:68:09:98:af:ec:36:da:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=C9104F866C599CD7B6C3CF186879DF60A86DB5D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:dd:df:20:a7:78:52:38:1c:3d:08:a7:d7: 13:09:0f:a3:6a:4f:21:c4:10:eb:ca:36:1b:34:62: c1:76:ab:8d:b8:45:2c:84:bc:b1:ba:e3:9c:c8:4b: 41:ac:54:6d:d6:26:80:61:a3:59:e4:9f:2f:f1:11: 55:d3:d5:8c:41:c4:b2:44:6a:0c:d9:5d:ac:9e:fc: 42:6d:dc:f3:17:18:80:c4:b9:2c:41:8a:41:b9:55: de:cf:92:fe:31:5a:21:ce:77:a6:df:6e:29:c5:5f: 85:b3:77:92:fe:fb:ae:8a:4b:6c:4c:f2:88:8c:e0: 5e:87:02:ad:3d:d0:d8:48:dd:67:86:7f:93:ba:22: f1:98:ec:97:ba:11:9f:39:1d:a4:0e:96:37:7d:f0: b1:0d:ab:59:22:60:b3:cf:1a:1f:90:8b:a5:6e:6a: ec:ca:2e:1c:1c:9a:68:79:4b:e0:bd:e7:4a:d3:1c: ca:6e:c3:5b:5c:44:3b:d5:cd:1a:15:91:8b:25:ca: f8:a9:d3:e8:b0:dc:2f:33:bc:66:5c:74:ed:36:fd: 27:17:f7:9d:10:54:88:73:a6:6e:2a:f8:60:46:03: fa:ac:f6:82:a3:6b:ef:26:8d:2a:ca:93:86:e6:14: ba:d3:87:56:c1:a1:f5:bf:97:5a:f2:41:1d:d5:c6: e5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:10:4F:86:6C:59:9C:D7:B6:C3:CF:18:68:79:DF:60:A8:6D:B5:D2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2b:77:29:9a:63:cb:2d:2c:91:98:18:9a:d5:fa:03:9d:34:8d: 72:ad:3d:ca:85:67:a2:79:49:dd:60:97:b6:8d:f7:92:6c:93: 59:ca:59:21:1a:09:c2:1f:be:84:01:f1:5b:12:04:e2:a8:73: 5b:ad:00:91:19:f7:d5:da:78:73:a8:70:9d:27:64:25:c9:40: 1c:c4:5a:8f:0f:26:85:12:9a:91:65:77:65:b1:e2:f1:ce:c0: 1f:e5:aa:45:e0:72:b6:10:f2:6a:bd:d2:f7:3c:e2:0c:a4:a2: bb:33:29:a9:cb:9a:bb:c6:fb:23:13:86:89:09:55:b6:16:ef: 3f:66:bb:77:93:f2:08:3d:f5:79:2c:ed:95:be:47:b0:49:c3: 2f:46:d6:c8:3b:bd:56:7a:b5:8b:dd:d5:cd:a7:a8:78:ca:71: 18:11:aa:2a:00:69:47:02:05:ca:2f:1b:4f:61:0a:d5:3c:99: 01:0c:b7:88:ef:c6:11:a9:b0:01:a9:55:39:2d:6e:08:94:48: c1:e4:c7:eb:97:58:a9:d1:03:6f:f6:fd:0c:0e:0c:a8:54:bb: 4c:79:9e:76:ad:97:04:c5:36:c4:b8:b6:68:b9:1f:63:f2:40: 8f:f4:80:c0:b2:11:2d:d2:e6:1e:b2:51:b9:42:64:69:00:ba: ea:a2:f6:fb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNXIvoixfysfQQu2NaAmYr+w22uowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKEM5MTA0Rjg2NkM1OTlDRDdCNkMzQ0YxODY4NzlERjYwQTg2REI1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ud3fIKd4UjgcPQin1xMJD6Nq TyHEEOvKNhs0YsF2q424RSyEvLG645zIS0GsVG3WJoBho1nkny/xEVXT1YxBxLJE agzZXaye/EJt3PMXGIDEuSxBikG5Vd7Pkv4xWiHOd6bfbinFX4Wzd5L++66KS2xM 8oiM4F6HAq090NhI3WeGf5O6IvGY7Je6EZ85HaQOljd98LENq1kiYLPPGh+Qi6Vu auzKLhwcmmh5S+C950rTHMpuw1tcRDvVzRoVkYslyvip0+iw3C8zvGZcdO02/ScX 950QVIhzpm4q+GBGA/qs9oKja+8mjSrKk4bmFLrTh1bBofW/l1ryQR3VxuWBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyRBPhmxZnNe2w88YaHnfYKhttdIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ1NzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBACt3KZpjyy0skZgYmtX6A500jXKtPcqFZ6J5 Sd1gl7aN95Jsk1nKWSEaCcIfvoQB8VsSBOKoc1utAJEZ99XaeHOocJ0nZCXJQBzE Wo8PJoUSmpFld2Wx4vHOwB/lqkXgcrYQ8mq90vc84gykorszKanLmrvG+yMThokJ VbYW7z9mu3eT8gg99Xks7ZW+R7BJwy9G1sg7vVZ6tYvd1c2nqHjKcRgRqioAaUcC BcovG09hCtU8mQEMt4jvxhGpsAGpVTktbgiUSMHkx+uXWKnRA2/2/QwODKhUu0x5 nnatlwTFNsS4tmi5H2PyQI/0gMCyES3S5h6yUblCZGkAuuqi9vs= -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:37 2025 by rpki-client