$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa File: AS0.roa (raw, json) Hash identifier: 3j3z6My7KWYFkB8iHM6GWEHscd8zua6TXr4fLskeIOE= Subject key identifier: 86:B0:78:81:9B:74:36:DE:D6:4B:32:CC:26:E0:C5:CA:25:E5:F4:E2 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0F77A1324204462E713442C2DCB57CDAF81CF4A7 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 0 IP address blocks: 2a07:54c7:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:77:a1:32:42:04:46:2e:71:34:42:c2:dc:b5:7c:da:f8:1c:f4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=86B078819B7436DED64B32CC26E0C5CA25E5F4E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f6:4b:40:d4:20:92:f3:f9:7c:57:5a:72:6a: f5:13:4a:78:aa:fd:12:27:ef:ea:0a:ed:90:e4:fa: 6c:f7:89:25:6c:b6:74:de:68:96:9a:55:3c:c7:f0: 4a:e7:97:88:ef:33:48:27:f4:38:05:ff:bf:73:a1: ba:ba:cc:e2:8e:b6:b7:99:59:07:03:f0:af:cc:24: 28:27:4f:5a:c6:64:15:9e:3a:57:a3:94:25:36:ac: b0:46:3c:af:79:aa:56:bf:60:36:ac:be:ee:ee:70: a3:70:f4:96:1a:6e:28:b8:f9:b6:3d:57:4d:57:f1: 8c:c7:45:97:5a:91:99:0b:4a:1f:f9:44:7b:82:5a: 83:bc:4b:46:46:89:fa:78:6c:b7:ad:87:38:89:59: 73:97:23:ab:c7:5d:1e:d9:ad:86:00:f8:f7:4c:f3: f9:bf:4a:e7:80:e6:6a:ea:27:70:fc:f8:45:0a:d9: cf:3a:a7:3f:41:ef:83:41:ff:5f:9b:1c:2d:71:21: 25:21:99:6f:f0:a7:f4:de:bf:79:9a:eb:3a:1d:69: 68:d3:ab:1c:2a:e9:50:9b:ec:58:8a:53:bd:6d:27: b1:18:0f:8f:c9:1c:d0:11:94:07:7a:02:aa:ca:df: 67:73:80:c9:ce:c0:2e:2b:95:e7:45:30:8f:3f:80: 12:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B0:78:81:9B:74:36:DE:D6:4B:32:CC:26:E0:C5:CA:25:E5:F4:E2 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS0.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:6000::/36 Signature Algorithm: sha256WithRSAEncryption 33:8e:cb:db:24:d4:c5:df:2e:98:46:13:e0:94:51:8b:d8:7c: f8:5b:b0:db:e8:65:4a:72:b8:21:ac:37:12:6a:0b:e2:10:cc: 75:6f:9a:01:68:24:3f:96:4f:19:dc:50:d2:01:51:b8:ee:23: 28:34:f6:8f:2e:96:9c:ad:54:e8:49:df:e3:19:a4:29:a9:10: cd:fc:b9:2f:f4:35:62:6e:83:60:a8:1a:2a:05:f3:d5:5b:05: bc:84:fd:7c:d6:41:42:b1:6b:ea:af:81:66:bc:8d:b5:da:f4: c9:d2:40:e5:5f:ff:9b:f0:a4:e3:9f:3a:d9:1b:b8:16:9e:90: ca:62:ef:a7:0b:44:9e:41:61:47:38:5f:e3:cc:10:ac:30:65: fd:91:24:4b:79:9d:94:00:34:1f:2c:e1:b7:d6:12:12:d5:01: 96:8c:ea:23:df:cb:82:de:d2:8a:24:a3:7f:ff:c1:6f:37:a8: fe:43:a9:cf:41:56:29:de:c4:3f:c9:02:0c:2c:39:15:0b:38: 19:ce:3f:d0:a9:52:fd:fc:1c:d8:d5:12:78:4a:c9:f4:d3:af: ee:48:77:2d:67:fb:74:db:9f:67:e4:ba:46:b6:37:9e:d7:7e: f0:75:d3:62:d5:e9:cd:76:96:ff:08:df:6a:93:85:28:23:53: 5f:c0:4f:8b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUD3ehMkIERi5xNELC3LV82vgc9KcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDg2QjA3ODgxOUI3NDM2REVENjRCMzJDQzI2RTBDNUNBMjVFNUY0RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi9ktA1CCS8/l8V1pyavUTSniq /RIn7+oK7ZDk+mz3iSVstnTeaJaaVTzH8Ernl4jvM0gn9DgF/79zobq6zOKOtreZ WQcD8K/MJCgnT1rGZBWeOlejlCU2rLBGPK95qla/YDasvu7ucKNw9JYabii4+bY9 V01X8YzHRZdakZkLSh/5RHuCWoO8S0ZGifp4bLethziJWXOXI6vHXR7ZrYYA+PdM 8/m/SueA5mrqJ3D8+EUK2c86pz9B74NB/1+bHC1xISUhmW/wp/Tev3ma6zodaWjT qxwq6VCb7FiKU71tJ7EYD4/JHNARlAd6AqrK32dzgMnOwC4rledFMI8/gBIzAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUhrB4gZt0Nt7WSzLMJuDFyiXl9OIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwdgYIKwYBBQUHAQsEajBoMGYGCCsGAQUFBzALhlpyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoHVMdgMA0G CSqGSIb3DQEBCwUAA4IBAQAzjsvbJNTF3y6YRhPglFGL2Hz4W7Db6GVKcrghrDcS agviEMx1b5oBaCQ/lk8Z3FDSAVG47iMoNPaPLpacrVToSd/jGaQpqRDN/Lkv9DVi boNgqBoqBfPVWwW8hP181kFCsWvqr4FmvI212vTJ0kDlX/+b8KTjnzrZG7gWnpDK Yu+nC0SeQWFHOF/jzBCsMGX9kSRLeZ2UADQfLOG31hIS1QGWjOoj38uC3tKKJKN/ /8FvN6j+Q6nPQVYp3sQ/yQIMLDkVCzgZzj/QqVL9/BzY1RJ4Ssn006/uSHctZ/t0 259n5LpGtjee137wddNi1enNdpb/CN9qk4UoI1NfwE+L -----END CERTIFICATE-----Generated at Sat Jun 13 09:25:29 2026 by rpki-client