$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54148.roa File: AS54148.roa (raw, json) Hash identifier: ixxcuJY6Psu8mDIDlbyuFnjA673bqxS399BrAwvkHhM= Subject key identifier: 68:47:DF:A9:1D:72:95:6E:75:A0:26:DD:90:8D:0C:AB:9C:3A:C6:AF Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1578C21E4D02673D3D399CFBA68F5B885B416A00 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54148.roa Signing time: Fri 04 Jul 2025 07:51:25 +0000 ROA not before: Fri 04 Jul 2025 07:46:25 +0000 ROA not after: Fri 03 Jul 2026 07:51:25 +0000 asID: 54148 IP address blocks: 2a07:54c4:175b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 23:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:78:c2:1e:4d:02:67:3d:3d:39:9c:fb:a6:8f:5b:88:5b:41:6a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:25 2025 GMT Not After : Jul 3 07:51:25 2026 GMT Subject: CN=6847DFA91D72956E75A026DD908D0CAB9C3AC6AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:38:60:e0:04:31:42:ef:25:8f:97:f4:22:a7: 41:97:fa:96:b8:41:a9:2a:28:fd:73:47:be:49:0b: f0:72:80:c3:44:79:33:8b:31:0e:e6:b7:f4:68:18: 7c:d2:69:5e:60:2d:2b:d3:cf:3d:74:8e:5f:5f:69: 08:b8:4a:84:48:94:00:99:2c:88:73:aa:a4:46:45: 52:62:a3:bc:59:86:c6:2c:7c:f5:94:92:05:54:c5: 34:82:ac:60:e0:4d:19:31:5c:06:e4:6a:e0:9d:fd: 7b:73:46:5d:8b:5d:b0:05:1f:6e:e6:85:a0:ea:4a: 33:23:ce:63:45:d3:98:14:02:0e:bf:b4:d1:c6:60: b1:85:d3:a8:1e:c5:a4:3b:f1:ff:9b:a8:b9:7f:0a: 07:d0:68:d1:98:d8:9c:25:d2:47:cd:4f:4f:fb:10: 82:1c:7f:00:7b:67:ec:8e:0a:99:22:bc:02:89:6b: a5:1e:8a:2d:88:c9:55:6f:49:df:58:0a:da:cd:e5: 19:c4:5c:9a:84:6d:54:20:df:7d:ad:44:48:9f:ff: a1:ab:64:37:f0:9f:ee:5b:92:41:e1:88:84:b0:7d: 75:9c:75:39:95:b5:e6:4b:f8:ad:75:8e:01:92:c8: 68:d2:cd:a8:d6:e2:1b:9f:13:c3:d9:f6:52:1c:9f: f3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:47:DF:A9:1D:72:95:6E:75:A0:26:DD:90:8D:0C:AB:9C:3A:C6:AF X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54148.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175b::/48 Signature Algorithm: sha256WithRSAEncryption 2d:3c:51:68:e9:5f:04:e1:89:0d:f3:1f:54:f5:e0:02:a0:ff: aa:d4:8f:e9:9c:71:e6:f6:72:49:f3:94:b1:16:7f:d0:60:10: 53:10:39:21:97:1d:34:80:cf:e1:0a:05:a6:24:a7:3d:e7:2e: 59:3b:6b:a6:66:dc:77:7c:47:e3:da:47:57:b2:d1:50:95:c1: ca:72:83:0d:94:b0:5a:d2:00:7f:d4:c7:6d:9f:30:3f:53:41: 1d:80:48:e5:ac:39:62:8f:4d:50:b5:38:8e:21:ad:f3:2b:e7: 46:08:0d:38:d7:23:57:fa:36:cb:08:58:51:6a:53:35:f6:7f: d8:33:e6:c8:a8:93:8b:58:5b:e7:52:91:66:e1:33:6a:53:48: 1a:fe:51:ea:bd:52:db:61:fc:d8:f9:e6:5d:01:0b:ae:de:24: 23:2c:e6:19:22:5b:dd:67:32:34:0d:6d:4b:0c:c3:f0:e7:d5: d1:8e:cb:37:dd:4c:a3:ee:25:93:2a:56:38:51:2d:5c:83:d6: 86:43:13:f3:86:bd:a9:21:8f:df:b2:8f:82:60:d6:98:c1:92: d2:d1:4e:7b:20:a1:37:7f:c9:20:11:7e:64:58:01:e1:1e:7b: 61:bc:e1:0c:d2:55:2b:3f:c8:75:ed:af:ca:8d:58:0b:c8:f4: 3c:25:7c:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFXjCHk0CZz09OZz7po9biFtBagAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjVaFw0yNjA3MDMwNzUxMjVaMDMxMTAvBgNV BAMTKDY4NDdERkE5MUQ3Mjk1NkU3NUEwMjZERDkwOEQwQ0FCOUMzQUM2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbOGDgBDFC7yWPl/Qip0GX+pa4 QakqKP1zR75JC/BygMNEeTOLMQ7mt/RoGHzSaV5gLSvTzz10jl9faQi4SoRIlACZ LIhzqqRGRVJio7xZhsYsfPWUkgVUxTSCrGDgTRkxXAbkauCd/XtzRl2LXbAFH27m haDqSjMjzmNF05gUAg6/tNHGYLGF06gexaQ78f+bqLl/CgfQaNGY2Jwl0kfNT0/7 EIIcfwB7Z+yOCpkivAKJa6Ueii2IyVVvSd9YCtrN5RnEXJqEbVQg332tREif/6Gr ZDfwn+5bkkHhiISwfXWcdTmVteZL+K11jgGSyGjSzajW4hufE8PZ9lIcn/MhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaEffqR1ylW51oCbdkI0Mq5w6xq8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTQxNDgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F1swDQYJKoZIhvcNAQELBQADggEBAC08UWjpXwThiQ3zH1T14AKg/6rUj+mcceb2 cknzlLEWf9BgEFMQOSGXHTSAz+EKBaYkpz3nLlk7a6Zm3Hd8R+PaR1ey0VCVwcpy gw2UsFrSAH/Ux22fMD9TQR2ASOWsOWKPTVC1OI4hrfMr50YIDTjXI1f6NssIWFFq UzX2f9gz5siok4tYW+dSkWbhM2pTSBr+Ueq9Utth/Nj55l0BC67eJCMs5hkiW91n MjQNbUsMw/Dn1dGOyzfdTKPuJZMqVjhRLVyD1oZDE/OGvakhj9+yj4Jg1pjBktLR TnsgoTd/ySARfmRYAeEee2G84QzSVSs/yHXtr8qNWAvI9DwlfHI= -----END CERTIFICATE-----Generated at Wed Nov 5 10:24:50 2025 by rpki-client