$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS6939.roa File: AS6939.roa (raw, json) Hash identifier: VtMq4elgWVB1p4aK8DHNkvCazNewFJ5vqewYK44alO4= Subject key identifier: DC:EE:5E:B6:A2:79:40:E1:01:D8:A6:CF:20:88:E2:EB:5E:C5:37:91 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6337C131D3AB1216FF06307512C0D0F8A0C440F1 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS6939.roa Signing time: Fri 04 Jul 2025 07:51:26 +0000 ROA not before: Fri 04 Jul 2025 07:46:26 +0000 ROA not after: Fri 03 Jul 2026 07:51:26 +0000 asID: 6939 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:37:c1:31:d3:ab:12:16:ff:06:30:75:12:c0:d0:f8:a0:c4:40:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:26 2025 GMT Not After : Jul 3 07:51:26 2026 GMT Subject: CN=DCEE5EB6A27940E101D8A6CF2088E2EB5EC53791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:62:f1:60:52:5e:0b:6e:8e:af:bb:3c:49:75: 31:bf:be:91:d8:23:d8:c3:f4:65:5a:5d:45:cc:45: 9f:37:d1:ed:98:55:38:65:16:55:0f:d4:3e:9d:e2: de:0a:28:9b:32:bb:20:4b:41:ef:cc:21:07:6f:22: 35:e8:6a:71:40:a3:07:11:b4:96:4c:3a:e0:4e:52: 97:22:19:c5:f0:c7:56:28:8b:b3:fb:d6:eb:82:b9: 23:79:cc:96:17:69:91:f0:ad:8d:46:ca:71:25:4a: c0:92:35:3c:cf:3a:11:1b:0d:d4:a8:6e:7c:5b:8d: a6:a9:37:af:9b:06:cc:54:aa:35:30:5d:85:e7:6d: ec:15:25:43:80:21:97:d0:19:a9:38:f1:25:2f:4a: 8a:09:fc:f3:b0:23:51:6b:0e:de:cb:48:a0:fc:00: b5:c3:e3:01:24:f5:b9:3b:c3:03:91:28:59:4e:46: ca:bd:51:f4:48:2e:29:c9:13:cf:f8:cc:0e:20:1a: 09:87:db:86:7e:71:f0:b6:ff:d3:7f:f3:9e:57:18: 5d:a6:8d:04:27:c3:ba:7a:6e:0a:72:89:a6:1b:7e: 11:1a:dd:d1:23:e6:41:3f:04:33:75:df:8c:dc:22: 0a:aa:4d:06:c1:d0:95:c0:83:9a:ab:00:38:a8:ae: ad:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EE:5E:B6:A2:79:40:E1:01:D8:A6:CF:20:88:E2:EB:5E:C5:37:91 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS6939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 62:9d:23:b8:3c:1d:a7:40:cb:63:ad:08:e3:3a:58:c6:45:13: 0a:44:b4:be:ca:6f:a6:e4:25:ae:ec:e0:33:37:c3:54:07:b1: 90:1c:6e:34:61:1d:de:e0:b2:f2:76:90:17:73:56:8e:70:07: 8a:a5:66:da:6c:72:f2:f2:95:fb:e0:81:19:79:ad:4b:42:3c: c3:14:27:22:4a:2d:a5:a2:04:25:5f:b6:09:01:c4:f1:cd:9c: 72:68:f1:5a:c5:76:24:f9:62:3a:8b:a2:c5:98:92:cf:17:28: 67:78:cf:6c:2d:ec:10:91:f1:9f:1e:18:70:6d:30:1e:1c:32: 34:cc:2d:62:fc:ee:a4:0c:36:88:66:b5:0c:de:1a:af:a0:d8: 06:c2:03:df:29:cb:e0:70:f9:25:3d:2e:9f:17:cb:6b:14:5f: 5d:bc:37:7c:e8:9f:4c:84:9b:40:5f:ff:c3:03:f2:42:73:17: 15:a8:2e:dd:3c:3f:fa:fe:05:2b:27:09:cb:f5:08:55:44:58: fe:44:76:6b:ed:4d:1c:d3:24:8f:99:24:31:a3:8f:6d:7e:a7: 4e:6f:fd:dc:a5:5a:12:0d:1f:be:ae:2b:40:fb:de:78:20:dd: 58:36:00:26:ce:e0:91:11:92:54:77:77:43:75:17:bf:2d:a0: 94:a5:bb:42 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUYzfBMdOrEhb/BjB1EsDQ+KDEQPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjZaFw0yNjA3MDMwNzUxMjZaMDMxMTAvBgNV BAMTKERDRUU1RUI2QTI3OTQwRTEwMUQ4QTZDRjIwODhFMkVCNUVDNTM3OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFYvFgUl4Lbo6vuzxJdTG/vpHY I9jD9GVaXUXMRZ830e2YVThlFlUP1D6d4t4KKJsyuyBLQe/MIQdvIjXoanFAowcR tJZMOuBOUpciGcXwx1Yoi7P71uuCuSN5zJYXaZHwrY1GynElSsCSNTzPOhEbDdSo bnxbjaapN6+bBsxUqjUwXYXnbewVJUOAIZfQGak48SUvSooJ/POwI1FrDt7LSKD8 ALXD4wEk9bk7wwORKFlORsq9UfRILinJE8/4zA4gGgmH24Z+cfC2/9N/855XGF2m jQQnw7p6bgpyiaYbfhEa3dEj5kE/BDN134zcIgqqTQbB0JXAg5qrADiorq3VAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU3O5etqJ5QOEB2KbPIIji617FN5EwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjkzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoHVMKw CzANBgkqhkiG9w0BAQsFAAOCAQEAYp0juDwdp0DLY60I4zpYxkUTCkS0vspvpuQl ruzgMzfDVAexkBxuNGEd3uCy8naQF3NWjnAHiqVm2mxy8vKV++CBGXmtS0I8wxQn IkotpaIEJV+2CQHE8c2ccmjxWsV2JPliOouixZiSzxcoZ3jPbC3sEJHxnx4YcG0w HhwyNMwtYvzupAw2iGa1DN4ar6DYBsID3ynL4HD5JT0unxfLaxRfXbw3fOifTISb QF//wwPyQnMXFagu3Tw/+v4FKycJy/UIVURY/kR2a+1NHNMkj5kkMaOPbX6nTm/9 3KVaEg0fvq4rQPveeCDdWDYAJs7gkRGSVHd3Q3UXvy2glKW7Qg== -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:44 2025 by rpki-client