$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: Yzl9OjCKLW1SmVYjN1AMEArs6yqtXCo4BHHPxLhYCx4= Subject key identifier: 18:D5:9B:B5:FE:19:CB:19:D5:7E:A2:D0:7B:84:48:93:3A:77:26:4E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1FF24EAD55F9BF819C238024D7AA47BB6248DCE9 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS14618.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 14618 IP address blocks: 2a07:54c1:4500::/40 maxlen: 48 2a07:54c4:175c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f2:4e:ad:55:f9:bf:81:9c:23:80:24:d7:aa:47:bb:62:48:dc:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=18D59BB5FE19CB19D57EA2D07B8448933A77264E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:56:62:1c:6a:ba:da:16:ef:8f:f5:b3:71:dd: 28:b5:72:46:5e:bd:39:be:ff:04:ea:b1:61:b3:c4: ff:92:94:23:a7:26:94:9e:c0:57:04:81:6c:b7:a9: 80:12:60:e6:52:87:41:8a:d2:9b:ee:f7:f4:f3:b0: 3f:03:d6:23:02:c5:85:b3:b6:10:df:08:ed:4a:ae: d0:0f:9e:19:be:2b:99:1b:02:2a:99:0f:a7:42:9a: a7:57:f9:6c:75:4a:c9:e2:18:b8:99:af:df:f7:ae: 15:3f:69:fe:2f:05:fe:6d:99:29:8e:e4:05:cd:c3: 0d:c2:9c:38:9f:75:88:f7:5c:f5:83:48:68:ac:42: 1e:07:18:8e:62:f1:99:79:b5:65:5a:9e:58:9c:19: a2:e3:21:05:7d:65:5e:49:ac:b3:44:ba:ef:3a:2c: 88:fe:9b:c8:53:a0:62:f0:c3:3b:71:d4:29:47:0e: d3:b2:13:67:76:8b:67:81:e6:43:b8:3e:b7:f5:cd: 85:6b:42:56:7d:3b:b9:a0:f1:c4:c8:ce:7b:90:b2: 3a:62:ac:43:ce:b3:dc:8c:d7:98:99:52:c7:f9:af: 6e:90:34:f2:47:ea:0e:f0:71:9a:f0:64:2b:f8:dd: 50:f8:a8:a5:9e:6a:60:4d:94:06:50:e5:ee:0d:fd: de:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D5:9B:B5:FE:19:CB:19:D5:7E:A2:D0:7B:84:48:93:3A:77:26:4E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4500::/40 2a07:54c4:175c::/48 Signature Algorithm: sha256WithRSAEncryption 45:e4:7e:c8:f9:b8:27:47:3a:ce:3f:02:bf:4a:95:22:9e:38: ca:99:ae:6b:55:28:d5:e9:5f:dd:ab:89:08:e1:ca:e1:70:75: 53:a9:a7:43:6f:59:84:16:ea:5f:cf:1d:8c:2f:9e:16:45:ec: b3:fa:c6:e1:42:03:74:12:e7:7e:9d:bc:b4:9f:cc:06:ff:35: ef:62:6c:e4:ad:cb:11:7a:69:03:4b:30:1f:92:87:42:3d:0e: 48:19:39:7d:ac:88:7e:bb:8c:b5:38:29:5e:12:c5:7c:2b:68: ad:c5:ee:88:bc:8a:b8:5a:2e:f1:d5:23:33:f1:9e:d7:0c:df: 90:39:aa:a7:2f:c2:3e:aa:12:3d:11:02:4b:ad:9c:58:10:6c: d2:18:97:39:96:4e:47:66:b5:9a:7b:60:c7:6e:3a:e8:bb:50: 9e:18:3b:db:f4:29:9e:12:8c:26:87:94:d1:c7:5f:54:5b:e1: 3b:04:df:08:ab:fc:19:b9:02:ff:23:cd:5d:fc:56:53:88:7f: 2b:53:c3:13:10:4b:e5:ad:7d:03:24:84:91:a0:bf:ef:de:5f: 83:3f:da:e8:47:78:dd:f5:72:e6:b3:3a:74:5a:4f:4c:76:33: 28:82:23:c9:bb:2e:32:cc:b2:a7:0b:ab:c4:6e:8c:5e:f9:df: 57:d5:a4:42 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUH/JOrVX5v4GcI4Ak16pHu2JI3OkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDE4RDU5QkI1RkUxOUNCMTlENTdFQTJEMDdCODQ0ODkzM0E3NzI2NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2VmIcarraFu+P9bNx3Si1ckZe vTm+/wTqsWGzxP+SlCOnJpSewFcEgWy3qYASYOZSh0GK0pvu9/TzsD8D1iMCxYWz thDfCO1KrtAPnhm+K5kbAiqZD6dCmqdX+Wx1SsniGLiZr9/3rhU/af4vBf5tmSmO 5AXNww3CnDifdYj3XPWDSGisQh4HGI5i8Zl5tWVanlicGaLjIQV9ZV5JrLNEuu86 LIj+m8hToGLwwztx1ClHDtOyE2d2i2eB5kO4Prf1zYVrQlZ9O7mg8cTIznuQsjpi rEPOs9yM15iZUsf5r26QNPJH6g7wcZrwZCv43VD4qKWeamBNlAZQ5e4N/d7TAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUGNWbtf4ZyxnVfqLQe4RIkzp3Jk4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBgAqB1TB RQMHACoHVMQXXDANBgkqhkiG9w0BAQsFAAOCAQEAReR+yPm4J0c6zj8Cv0qVIp44 ypmua1Uo1elf3auJCOHK4XB1U6mnQ29ZhBbqX88djC+eFkXss/rG4UIDdBLnfp28 tJ/MBv8172Js5K3LEXppA0swH5KHQj0OSBk5fayIfruMtTgpXhLFfCtorcXuiLyK uFou8dUjM/Ge1wzfkDmqpy/CPqoSPRECS62cWBBs0hiXOZZOR2a1mntgx2466LtQ nhg72/QpnhKMJoeU0cdfVFvhOwTfCKv8GbkC/yPNXfxWU4h/K1PDExBL5a19AySE kaC/795fgz/a6Ed43fVy5rM6dFpPTHYzKIIjybsuMsyypwurxG6MXvnfV9WkQg== -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:21 2026 by rpki-client