$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198590.roa File: AS198590.roa (raw, json) Hash identifier: wctiEhvz9Ilt+047Qyo35OIojY1yJ1r8msZbUg8bmLo= Subject key identifier: 58:74:5A:8E:B4:58:08:48:A1:53:D1:A9:38:89:93:FD:C1:2C:72:69 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 649F4A6E271AFDB863FED139DB0E45A150264DF8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198590.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 198590 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:9f:4a:6e:27:1a:fd:b8:63:fe:d1:39:db:0e:45:a1:50:26:4d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=58745A8EB4580848A153D1A9388993FDC12C7269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fa:3c:ae:ec:5b:ac:1b:13:a0:39:33:9c:20: 14:82:43:62:6f:57:b5:6b:b1:cf:e9:d7:ca:cf:c2: 2a:2b:e3:2c:4e:df:78:ec:0b:80:4e:ee:84:4f:87: 4a:81:69:79:f5:fa:20:79:b6:18:c5:36:db:69:a8: 4c:b9:df:8f:41:c3:3c:98:05:e8:2e:c6:23:a0:5c: 52:02:80:dd:ca:e0:aa:7c:12:bb:7e:13:e6:18:46: fe:d2:3a:ae:af:57:d4:84:b3:bc:33:c4:ae:74:40: 3d:5d:95:75:8d:c6:2a:46:a3:53:fe:87:ac:bc:04: ca:2e:87:5a:8a:4d:20:8d:a6:1c:35:d6:0a:f8:09: 2e:fc:24:6a:3e:30:1f:97:38:14:6d:01:04:86:0a: cc:c1:bd:f2:19:36:b0:77:c1:c2:b3:ea:08:2e:6d: d6:88:a9:1d:5b:c9:19:ce:38:9c:88:fa:ba:af:97: a1:d8:c1:20:77:3c:68:a4:84:8a:69:9e:eb:48:63: f9:6a:3c:a4:35:b3:94:d6:9f:b7:a7:e4:09:47:4f: b7:ec:38:aa:d2:a5:bf:b0:a4:6a:7f:49:06:e7:61: 54:e3:89:85:fa:dd:fa:d7:c0:1d:4a:14:f6:0c:a4: 7c:62:fb:26:f9:38:8c:30:54:b7:29:6d:83:a2:b0: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:74:5A:8E:B4:58:08:48:A1:53:D1:A9:38:89:93:FD:C1:2C:72:69 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS198590.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:b00b::/48 Signature Algorithm: sha256WithRSAEncryption b0:65:c9:7e:96:39:3e:67:76:1e:ea:2e:ce:15:b1:a3:c3:75: b8:b8:d5:6e:53:83:09:c5:68:3a:5e:2b:85:3b:64:7d:82:11: 64:8c:2a:3d:49:ef:ac:bd:3e:26:e3:ce:eb:e0:b2:89:8b:52: ac:e3:d6:f0:86:12:e3:7c:e6:12:ba:d7:c5:bb:21:3d:b9:dc: f3:80:8f:c1:64:55:a6:b2:4d:52:a2:38:2e:66:c7:7d:a4:d7: a9:2a:fa:0c:f4:20:76:6f:c4:8e:21:57:93:fb:49:11:01:00: 33:48:51:76:a5:3f:db:a7:57:e9:15:a8:94:b9:e4:a0:c3:e6: 92:d5:f8:bc:59:1f:b8:b8:1b:7a:a7:b7:cc:5e:88:dd:12:42: 1d:6b:a9:0f:2f:f0:68:9d:4c:0a:54:d3:24:9d:8a:c6:98:f1: 8d:2d:ef:ed:89:6d:17:67:4b:ec:9c:25:ca:d6:66:b8:bd:24: 30:73:99:8d:38:4c:8b:27:ac:74:82:9d:ad:28:4f:4a:04:ae: 7f:56:62:d6:86:aa:a2:f8:a0:b9:f7:8e:29:fc:52:e9:10:1d: 5c:d0:90:bd:61:f9:a4:cd:6e:44:11:22:fa:4c:3c:72:ab:ff: be:b1:be:7f:50:b9:3c:f8:9e:56:06:8d:b2:05:58:46:01:08: 43:8e:42:45 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUZJ9Kbica/bhj/tE52w5FoVAmTfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDU4NzQ1QThFQjQ1ODA4NDhBMTUzRDFBOTM4ODk5M0ZEQzEyQzcyNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU+jyu7FusGxOgOTOcIBSCQ2Jv V7Vrsc/p18rPwior4yxO33jsC4BO7oRPh0qBaXn1+iB5thjFNttpqEy5349BwzyY BeguxiOgXFICgN3K4Kp8Ert+E+YYRv7SOq6vV9SEs7wzxK50QD1dlXWNxipGo1P+ h6y8BMouh1qKTSCNphw11gr4CS78JGo+MB+XOBRtAQSGCszBvfIZNrB3wcKz6ggu bdaIqR1byRnOOJyI+rqvl6HYwSB3PGikhIppnutIY/lqPKQ1s5TWn7en5AlHT7fs OKrSpb+wpGp/SQbnYVTjiYX63frXwB1KFPYMpHxi+yb5OIwwVLcpbYOisPdVAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUWHRajrRYCEihU9GpOImT/cEscmkwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk4NTkwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxLALMA0GCSqGSIb3DQEBCwUAA4IBAQCwZcl+ljk+Z3Ye6i7OFbGj w3W4uNVuU4MJxWg6XiuFO2R9ghFkjCo9Se+svT4m487r4LKJi1Ks49bwhhLjfOYS utfFuyE9udzzgI/BZFWmsk1SojguZsd9pNepKvoM9CB2b8SOIVeT+0kRAQAzSFF2 pT/bp1fpFaiUueSgw+aS1fi8WR+4uBt6p7fMXojdEkIda6kPL/BonUwKVNMknYrG mPGNLe/tiW0XZ0vsnCXK1ma4vSQwc5mNOEyLJ6x0gp2tKE9KBK5/VmLWhqqi+KC5 944p/FLpEB1c0JC9YfmkzW5EESL6TDxyq/++sb5/ULk8+J5WBo2yBVhGAQhDjkJF -----END CERTIFICATE-----Generated at Sat Jun 13 10:45:34 2026 by rpki-client