$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa File: AS199428.roa (raw, json) Hash identifier: hcKjvkbzUUXRRiVw+hXW8Hx58E+R3ZpWeFG9MLmrVNk= Subject key identifier: BE:1C:FE:10:40:CA:0E:51:C6:F7:0B:8F:F9:11:81:46:89:45:3B:32 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 09F028FEF88A120BBAEA05F6349C330AE612104D Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 199428 IP address blocks: 2a07:54c1:4300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f0:28:fe:f8:8a:12:0b:ba:ea:05:f6:34:9c:33:0a:e6:12:10:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=BE1CFE1040CA0E51C6F70B8FF911814689453B32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:91:a6:16:1a:92:20:2c:bc:45:be:65:bd:83: ca:97:c7:d0:89:54:ce:b5:fa:09:53:20:bd:05:a1: a5:5b:fb:b8:49:ba:63:06:62:01:8b:ba:ab:01:61: 84:ce:ae:3e:70:f5:2f:81:38:57:d8:de:b7:39:12: 89:6f:2b:53:b9:01:13:0c:11:7d:d0:f8:99:7d:73: d5:b9:42:8f:4d:a8:d3:d5:b7:6a:bb:dd:f6:28:ac: 97:84:f0:7e:d6:5c:1d:f5:69:61:77:83:98:79:65: c4:93:54:b1:84:6b:40:df:43:69:9f:af:f7:5b:45: 4c:43:a5:81:a5:d0:7a:c4:46:1f:bb:d4:1a:18:f7: f3:43:1a:87:a6:79:79:7a:1b:d9:2c:d7:a4:91:12: da:b7:3c:a9:84:83:11:24:ce:06:2f:a7:c2:4e:b8: d8:7f:1d:88:bf:ff:cf:2b:83:ab:04:9c:90:f8:3d: 7b:e1:ea:ba:42:e9:a1:c4:01:8b:b4:39:b9:df:dc: 45:02:1b:93:27:6a:80:3b:4f:20:da:1b:3a:35:e0: f8:d6:5d:63:41:d9:0b:4e:92:bb:d2:7f:81:ce:ae: fa:f5:c9:c2:5b:a8:45:13:4d:b6:de:f6:2f:43:0b: f5:dc:cc:06:34:68:1f:64:8d:88:c4:14:e4:d1:ba: c8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1C:FE:10:40:CA:0E:51:C6:F7:0B:8F:F9:11:81:46:89:45:3B:32 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS199428.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4300::/40 Signature Algorithm: sha256WithRSAEncryption 8e:a3:a4:ce:b8:af:87:6e:1d:fd:96:c6:a2:66:f0:ec:70:60: 84:e9:63:c9:7c:66:d4:5f:8c:43:ee:53:37:2f:40:ba:47:20: 69:c4:0b:1d:35:9c:58:b0:c5:80:26:eb:78:de:e0:87:4f:b3: 4a:f8:f0:f0:14:07:f3:8b:4c:53:21:56:06:e7:29:21:e2:3e: be:d1:0b:4e:1e:32:a9:48:8e:35:c7:11:b5:e1:f5:bd:e3:76: d2:e9:15:d3:fd:3e:ce:1f:0a:6d:29:f3:13:6e:7b:d6:f2:18: d1:0c:1e:02:8b:6c:7b:dd:d9:09:34:de:ad:e7:9e:c7:6b:53: 43:53:04:93:6f:55:af:75:70:e7:76:45:d3:61:8f:c9:fd:f6: d2:cf:a9:b8:78:50:07:7a:94:82:a4:ac:2e:3b:50:17:ae:52: 18:0a:26:fa:1b:c7:29:c6:f0:0b:fc:05:ec:57:ba:dd:ed:f9: ff:5a:4d:24:77:67:7f:83:78:de:31:ec:4c:3b:85:4f:0f:09: ca:e7:4e:e8:ca:56:0d:4c:7a:0e:ff:08:a0:ae:59:0e:7b:c9: fb:34:5a:49:d8:4f:6d:08:b8:4c:8f:42:4f:8f:45:a8:b6:e3: a4:f7:3e:bb:38:5f:16:27:7b:bd:6f:a9:ef:ce:39:39:85:34: 51:0f:95:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCfAo/viKEgu66gX2NJwzCuYSEE0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKEJFMUNGRTEwNDBDQTBFNTFDNkY3MEI4RkY5MTE4MTQ2ODk0NTNCMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnkaYWGpIgLLxFvmW9g8qXx9CJ VM61+glTIL0FoaVb+7hJumMGYgGLuqsBYYTOrj5w9S+BOFfY3rc5EolvK1O5ARMM EX3Q+Jl9c9W5Qo9NqNPVt2q73fYorJeE8H7WXB31aWF3g5h5ZcSTVLGEa0DfQ2mf r/dbRUxDpYGl0HrERh+71BoY9/NDGoemeXl6G9ks16SREtq3PKmEgxEkzgYvp8JO uNh/HYi//88rg6sEnJD4PXvh6rpC6aHEAYu0Obnf3EUCG5MnaoA7TyDaGzo14PjW XWNB2QtOkrvSf4HOrvr1ycJbqEUTTbbe9i9DC/XczAY0aB9kjYjEFOTRusjbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvhz+EEDKDlHG9wuP+RGBRolFOzIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMTk5NDI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUMwDQYJKoZIhvcNAQELBQADggEBAI6jpM64r4duHf2WxqJm8OxwYITpY8l8ZtRf jEPuUzcvQLpHIGnECx01nFiwxYAm63je4IdPs0r48PAUB/OLTFMhVgbnKSHiPr7R C04eMqlIjjXHEbXh9b3jdtLpFdP9Ps4fCm0p8xNue9byGNEMHgKLbHvd2Qk03q3n nsdrU0NTBJNvVa91cOd2RdNhj8n99tLPqbh4UAd6lIKkrC47UBeuUhgKJvobxynG 8Av8BexXut3t+f9aTSR3Z3+DeN4x7Ew7hU8PCcrnTujKVg1Meg7/CKCuWQ57yfs0 WknYT20IuEyPQk+PRai246T3Prs4XxYne71vqe/OOTmFNFEPlVs= -----END CERTIFICATE-----Generated at Sat Jun 13 11:33:44 2026 by rpki-client