$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198016.roa File: AS198016.roa (raw, json) Hash identifier: oa84lrs5dLZ0kgCHieO4SQ3Sunam2PUTkHwJhV6YGQM= Subject key identifier: 0F:62:69:81:92:2B:4A:16:CA:D8:0F:AC:9A:0D:AF:D9:1E:BE:8B:A4 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3250E1303504C2821214299C5CCAC369B8484FE5 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198016.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 198016 IP address blocks: 2a07:54c7:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:50:e1:30:35:04:c2:82:12:14:29:9c:5c:ca:c3:69:b8:48:4f:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=0F626981922B4A16CAD80FAC9A0DAFD91EBE8BA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:55:eb:85:46:9b:02:2c:aa:5a:d3:1d:c6:a8: 35:6b:d4:bf:d3:e6:ad:b9:bb:a3:80:c4:be:7d:5d: ad:66:8b:3c:9f:e0:64:82:54:c4:59:1d:86:22:b5: 91:6b:a7:84:e2:ef:84:8c:2d:c5:63:65:95:1e:6e: 32:ee:b5:7c:93:70:ea:8c:8d:10:8e:d5:8f:e0:c6: 22:00:68:98:b9:07:7b:9e:9c:29:b8:96:b4:83:ca: 24:83:9c:a3:5b:6c:c4:52:c8:9f:1c:f0:4a:1d:4a: b6:8c:74:4c:22:70:d6:f9:bb:bc:88:8c:ef:f9:df: 8e:82:98:fe:ba:fa:f1:15:73:89:4e:8d:d5:d1:1b: 1e:fd:a1:af:3e:16:2a:b7:5c:19:d2:bf:69:31:43: ce:1b:e5:71:d1:7b:ca:d2:97:73:23:f4:21:41:29: d4:69:a9:6c:f5:46:d6:04:ec:00:fd:a9:af:f8:25: 3b:a6:02:6f:68:e2:5c:f8:7e:d6:ab:5f:0e:24:f5: 00:69:0c:70:45:2c:83:20:8e:f7:6c:0a:07:d1:c5: 3d:da:27:8c:ef:a1:e6:24:79:9f:96:e8:e1:37:cc: 74:c5:2f:ad:69:8e:f9:50:30:f4:a5:90:c4:b9:f6: 64:8c:9d:a2:19:e7:89:c3:20:46:e9:5e:f5:b1:a8: 54:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:62:69:81:92:2B:4A:16:CA:D8:0F:AC:9A:0D:AF:D9:1E:BE:8B:A4 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:2000::/36 Signature Algorithm: sha256WithRSAEncryption 52:75:e1:83:9b:42:f4:80:c8:7b:3e:aa:a1:98:b3:64:84:fd: 0d:6a:a4:60:eb:9f:03:aa:05:93:4d:6c:30:d1:a6:76:52:b7: 7f:75:7f:62:42:18:49:bb:83:dd:0e:3b:dd:9c:31:1e:60:e1: 99:52:a7:61:d3:5b:e3:e1:15:3f:a7:dd:bd:48:4b:2e:45:05: b2:15:09:4b:3f:c6:91:61:d2:04:2d:5f:a2:15:d2:94:14:51: ae:c5:95:54:37:69:31:a4:e7:5c:0c:70:cc:7a:fb:61:06:28: 61:de:89:c8:c0:27:3b:3b:10:bb:ab:f5:89:6a:17:e5:75:92: 87:ed:c4:44:e0:a9:ad:37:13:f1:cb:5f:5f:54:62:3f:f0:b1: 81:ad:f4:7d:37:f3:15:5a:03:da:28:1e:b2:fd:46:46:74:fd: ee:1e:f7:78:30:d1:2b:e6:66:88:e1:2f:f0:99:c7:52:13:26: 32:95:e9:c6:b8:de:72:3f:cc:2e:45:16:f5:e1:75:fc:73:76: 24:34:cf:9f:54:db:f8:6b:20:15:5b:a4:46:44:d5:a9:87:5a: b2:bd:4e:59:b8:d1:7b:3e:f8:37:d0:91:08:bf:d5:be:83:d2: 30:4d:a2:e0:79:35:39:a3:a4:74:12:45:aa:c4:a0:ac:a5:93: 6d:4e:ac:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMlDhMDUEwoISFCmcXMrDabhIT+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDBGNjI2OTgxOTIyQjRBMTZDQUQ4MEZBQzlBMERBRkQ5MUVCRThCQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfVeuFRpsCLKpa0x3GqDVr1L/T 5q25u6OAxL59Xa1mizyf4GSCVMRZHYYitZFrp4Ti74SMLcVjZZUebjLutXyTcOqM jRCO1Y/gxiIAaJi5B3uenCm4lrSDyiSDnKNbbMRSyJ8c8EodSraMdEwicNb5u7yI jO/5346CmP66+vEVc4lOjdXRGx79oa8+Fiq3XBnSv2kxQ84b5XHRe8rSl3Mj9CFB KdRpqWz1RtYE7AD9qa/4JTumAm9o4lz4ftarXw4k9QBpDHBFLIMgjvdsCgfRxT3a J4zvoeYkeZ+W6OE3zHTFL61pjvlQMPSlkMS59mSMnaIZ54nDIEbpXvWxqFRjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUD2JpgZIrShbK2A+smg2v2R6+i6QwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk4MDE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdU xyAwDQYJKoZIhvcNAQELBQADggEBAFJ14YObQvSAyHs+qqGYs2SE/Q1qpGDrnwOq BZNNbDDRpnZSt391f2JCGEm7g90OO92cMR5g4ZlSp2HTW+PhFT+n3b1ISy5FBbIV CUs/xpFh0gQtX6IV0pQUUa7FlVQ3aTGk51wMcMx6+2EGKGHeicjAJzs7ELur9Ylq F+V1koftxETgqa03E/HLX19UYj/wsYGt9H038xVaA9ooHrL9RkZ0/e4e93gw0Svm ZojhL/CZx1ITJjKV6ca43nI/zC5FFvXhdfxzdiQ0z59U2/hrIBVbpEZE1amHWrK9 Tlm40Xs++DfQkQi/1b6D0jBNouB5NTmjpHQSRarEoKylk21OrOw= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:12 2026 by rpki-client