$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa File: AS60900.roa (raw, json) Hash identifier: bHKg2aS1vRcQEg78fR3IYFcSew+0+u83qdrpYCOl7tE= Subject key identifier: D0:BD:C8:4B:04:3E:12:29:BB:F9:63:F8:8F:18:6A:38:4B:F9:1B:90 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 75A37C987176A42B43F2E8DF5E894A2D8F4216F6 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa Signing time: Fri 04 Jul 2025 07:51:24 +0000 ROA not before: Fri 04 Jul 2025 07:46:24 +0000 ROA not after: Fri 03 Jul 2026 07:51:24 +0000 asID: 60900 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a3:7c:98:71:76:a4:2b:43:f2:e8:df:5e:89:4a:2d:8f:42:16:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:24 2025 GMT Not After : Jul 3 07:51:24 2026 GMT Subject: CN=D0BDC84B043E1229BBF963F88F186A384BF91B90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:aa:0a:ea:99:2b:3b:9a:8e:60:1d:26:69:e1: cc:4a:38:97:dc:84:31:63:d3:39:6b:2b:4e:ee:44: 7b:85:b2:2f:5b:56:ef:23:1c:8a:c2:a3:ee:e2:11: 71:a9:10:4f:0e:f2:a8:1b:65:7f:32:78:8b:13:59: 3f:cb:2d:ee:75:87:8c:f1:ce:50:66:8a:f6:be:29: e8:f5:43:29:a3:bd:3a:da:d5:54:9d:7c:e9:c3:c2: 93:3d:ac:f8:31:e3:15:25:45:07:48:8b:a7:6b:05: 83:b1:98:8c:a7:af:2d:36:4e:99:5d:4a:35:7e:14: bf:c3:82:6a:75:4c:21:0c:32:eb:d7:9c:bf:65:ee: e0:21:9d:05:e3:ec:d4:5f:2f:ec:65:bb:e3:72:91: 34:40:d7:dc:67:68:1e:3c:77:82:eb:c9:81:7c:05: d3:a1:d9:d8:f9:83:ac:46:b3:97:08:df:3d:fd:52: e6:17:15:c2:bb:dd:5c:14:dc:39:0d:e6:56:d0:4a: ae:36:09:4c:05:c5:4a:2b:78:bf:da:4f:49:18:e5: e3:4d:67:d8:0c:cd:bb:1b:a1:19:dd:48:04:13:e5: 25:b5:1a:0a:cc:d6:13:a6:81:2d:92:50:5a:ba:e6: 08:12:52:49:00:fe:12:36:8a:f4:73:cd:9e:ed:fa: 64:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BD:C8:4B:04:3E:12:29:BB:F9:63:F8:8F:18:6A:38:4B:F9:1B:90 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 61:d0:5c:d4:86:44:21:c3:af:25:96:bb:6f:5f:df:5f:32:fc: b1:80:9b:4e:cf:40:0c:2b:b3:12:4c:23:5f:cf:52:4c:57:f3: d4:6f:af:7e:a8:b7:77:1a:5a:c7:7f:66:99:bc:8c:f0:12:ee: f5:59:1f:bd:36:00:6b:a6:ee:3f:55:b8:7f:aa:b2:b2:a4:cf: db:b5:cf:57:a6:40:b8:31:e6:48:3b:02:e0:9f:36:ff:9d:3e: fb:e6:fe:11:54:7a:9e:8a:6c:8b:99:ef:d4:01:a9:cd:c8:64: da:5a:c7:e6:15:f3:5e:fe:c3:b4:e4:8f:fe:e2:92:f3:a5:2d: d1:df:8d:cc:d7:38:89:1d:d8:a8:9e:9b:61:83:e2:88:70:ae: 21:71:da:c5:6a:23:b5:35:29:f5:ec:8d:aa:a1:88:a5:f3:86: 1b:cf:f0:52:b0:b8:84:f9:e6:89:af:9e:e7:e4:fa:89:d7:3c: da:9a:5e:bd:f1:83:fd:9c:97:7f:9c:bd:16:60:7c:83:53:b0: a8:6f:5c:51:43:f9:90:dc:5d:2b:80:91:33:10:82:07:e2:2e: 59:34:39:a5:78:80:3f:d3:2b:75:ad:04:53:78:6f:34:3a:76: 0a:f5:5d:34:8c:5a:6b:d0:20:60:3b:5b:fd:ff:ac:e9:e4:1e: fb:24:e8:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdaN8mHF2pCtD8ujfXolKLY9CFvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjRaFw0yNjA3MDMwNzUxMjRaMDMxMTAvBgNV BAMTKEQwQkRDODRCMDQzRTEyMjlCQkY5NjNGODhGMTg2QTM4NEJGOTFCOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2qgrqmSs7mo5gHSZp4cxKOJfc hDFj0zlrK07uRHuFsi9bVu8jHIrCo+7iEXGpEE8O8qgbZX8yeIsTWT/LLe51h4zx zlBmiva+Kej1QymjvTra1VSdfOnDwpM9rPgx4xUlRQdIi6drBYOxmIynry02Tpld SjV+FL/Dgmp1TCEMMuvXnL9l7uAhnQXj7NRfL+xlu+NykTRA19xnaB48d4LryYF8 BdOh2dj5g6xGs5cI3z39UuYXFcK73VwU3DkN5lbQSq42CUwFxUoreL/aT0kY5eNN Z9gMzbsboRndSAQT5SW1GgrM1hOmgS2SUFq65ggSUkkA/hI2ivRzzZ7t+mRdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0L3ISwQ+Eim7+WP4jxhqOEv5G5AwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjA5MDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAGHQXNSGRCHDryWWu29f318y/LGAm07PQAwr sxJMI1/PUkxX89Rvr36ot3caWsd/Zpm8jPAS7vVZH702AGum7j9VuH+qsrKkz9u1 z1emQLgx5kg7AuCfNv+dPvvm/hFUep6KbIuZ79QBqc3IZNpax+YV817+w7Tkj/7i kvOlLdHfjczXOIkd2Kiem2GD4ohwriFx2sVqI7U1KfXsjaqhiKXzhhvP8FKwuIT5 5omvnufk+onXPNqaXr3xg/2cl3+cvRZgfINTsKhvXFFD+ZDcXSuAkTMQggfiLlk0 OaV4gD/TK3WtBFN4bzQ6dgr1XTSMWmvQIGA7W/3/rOnkHvsk6M4= -----END CERTIFICATE-----Generated at Wed Nov 5 07:14:24 2025 by rpki-client