$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa File: AS48436.roa (raw, json) Hash identifier: eRwccGyCGykqEUovX7Xxmi4IyF22JOvodztTXGcQ9e0= Subject key identifier: 85:D6:3B:88:A9:FC:96:51:3F:7D:0C:26:3F:07:3E:F1:2E:69:15:8A Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7042B866A89F5B4AC5B7F18E808B02103543476E Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 48436 IP address blocks: 2a07:54c1:c1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:42:b8:66:a8:9f:5b:4a:c5:b7:f1:8e:80:8b:02:10:35:43:47:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=85D63B88A9FC96513F7D0C263F073EF12E69158A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:aa:b5:7b:5e:a8:6e:c3:39:30:84:7f:0a:ac: 2b:91:a5:2d:c3:1b:9c:4c:0a:36:6f:9b:61:64:25: e5:99:ea:7f:2c:41:24:34:d5:a7:30:a6:e6:06:f1: 8a:07:4b:dc:d3:c9:de:d1:ce:4e:65:62:ee:b1:39: b7:a7:fe:d5:85:51:f2:7e:ed:fc:65:d1:4c:66:82: 5e:a1:a6:d2:7f:b4:54:fa:ea:b5:4c:85:8e:2a:dc: 6d:45:83:44:14:03:18:5b:bf:c9:2b:75:0b:b4:a4: 19:be:13:0e:ef:29:60:2b:a6:d1:76:be:10:72:12: ac:4e:40:a3:e6:48:59:a8:77:84:5d:37:a3:66:8c: e9:ba:64:1b:54:1c:5b:68:01:b2:20:99:e3:5f:e3: 8c:3d:3f:cd:2d:c0:82:9b:6f:08:03:1a:99:ba:4d: b0:3b:6f:22:f7:88:22:60:30:97:5f:f7:d5:52:ee: de:90:09:cc:d3:77:20:91:53:0c:ca:59:db:61:9b: 08:24:8e:07:21:ec:a6:1e:68:02:6f:0f:de:80:23: 1c:15:37:79:c3:18:14:49:45:50:a3:4a:8f:c3:8a: cf:56:2b:da:0e:26:40:da:91:fb:46:34:27:2c:e4: 28:e1:8d:32:a8:d3:77:0d:e5:24:67:15:ec:ba:bb: 46:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D6:3B:88:A9:FC:96:51:3F:7D:0C:26:3F:07:3E:F1:2E:69:15:8A X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c1e0::/44 Signature Algorithm: sha256WithRSAEncryption 0b:b1:10:f2:5b:60:2e:8c:43:03:2f:07:31:87:50:24:b3:e2: 69:aa:dc:a9:84:19:9c:c7:7c:38:11:4c:68:9c:58:0c:08:13: b3:f4:c1:c8:ad:68:9e:05:d4:ac:9f:45:cd:85:96:b2:a7:70: 12:59:b7:9c:5c:61:86:67:18:57:ba:83:3a:34:f1:88:c3:2a: 07:08:c8:08:1e:e3:01:1e:59:26:e5:f3:0c:43:7f:20:71:c1: 94:51:21:58:99:39:db:16:b6:68:f9:a6:99:5a:5c:a8:ac:ee: 70:56:55:5f:75:b4:c8:23:5c:e6:6c:23:9b:19:cb:53:21:4e: 70:54:10:ef:55:c5:11:53:5c:02:26:aa:1a:54:97:c7:d1:47: 45:ad:e7:0d:3c:48:a7:64:28:8b:05:89:a3:c0:46:8b:f8:02: a5:32:61:de:5e:2a:a2:d3:c7:b5:13:a6:e2:44:eb:27:db:fe: 90:bb:f5:04:d8:3d:fc:1f:49:28:72:a5:98:09:8c:dd:fa:3d: c2:80:95:7b:af:e7:4e:8f:8d:99:18:91:bb:53:e5:d5:c5:80: 92:07:2b:d7:81:50:15:cf:1c:58:1c:4e:31:05:20:56:14:02: 7f:4b:78:6c:75:fe:96:8a:dc:5a:68:34:1e:62:b2:6d:b8:e8: 5c:9a:6e:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcEK4ZqifW0rFt/GOgIsCEDVDR24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKDg1RDYzQjg4QTlGQzk2NTEzRjdEMEMyNjNGMDczRUYxMkU2OTE1OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzqrV7XqhuwzkwhH8KrCuRpS3D G5xMCjZvm2FkJeWZ6n8sQSQ01acwpuYG8YoHS9zTyd7Rzk5lYu6xOben/tWFUfJ+ 7fxl0Uxmgl6hptJ/tFT66rVMhY4q3G1Fg0QUAxhbv8krdQu0pBm+Ew7vKWArptF2 vhByEqxOQKPmSFmod4RdN6NmjOm6ZBtUHFtoAbIgmeNf44w9P80twIKbbwgDGpm6 TbA7byL3iCJgMJdf99VS7t6QCczTdyCRUwzKWdthmwgkjgch7KYeaAJvD96AIxwV N3nDGBRJRVCjSo/Dis9WK9oOJkDakftGNCcs5CjhjTKo03cN5SRnFey6u0bBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhdY7iKn8llE/fQwmPwc+8S5pFYowHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDg0MzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqB1TB weAwDQYJKoZIhvcNAQELBQADggEBAAuxEPJbYC6MQwMvBzGHUCSz4mmq3KmEGZzH fDgRTGicWAwIE7P0wcitaJ4F1KyfRc2FlrKncBJZt5xcYYZnGFe6gzo08YjDKgcI yAge4wEeWSbl8wxDfyBxwZRRIViZOdsWtmj5pplaXKis7nBWVV91tMgjXOZsI5sZ y1MhTnBUEO9VxRFTXAImqhpUl8fRR0Wt5w08SKdkKIsFiaPARov4AqUyYd5eKqLT x7UTpuJE6yfb/pC79QTYPfwfSShypZgJjN36PcKAlXuv506PjZkYkbtT5dXFgJIH K9eBUBXPHFgcTjEFIFYUAn9LeGx1/paK3FpoNB5ism246FyabgM= -----END CERTIFICATE-----Generated at Wed Nov 5 06:50:25 2025 by rpki-client