$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200242.roa File: AS200242.roa (raw, json) Hash identifier: hwHW/GK5yyTjDA/qqnwKobA2PjpoC08PQ60ZN2+/zpc= Subject key identifier: D9:BE:79:3D:71:3D:D8:7F:49:85:84:57:E8:3B:A0:7F:AB:94:0B:EB Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 2C9A4E3D04240DA65C84887841D1F9DD975FB34B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200242.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 200242 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:9a:4e:3d:04:24:0d:a6:5c:84:88:78:41:d1:f9:dd:97:5f:b3:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=D9BE793D713DD87F49858457E83BA07FAB940BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:be:3a:34:76:a4:06:41:8c:3d:9c:12:e8: f8:e6:95:ac:b3:ff:b5:0a:96:41:be:23:da:b7:e5: 29:83:8e:97:64:f6:f4:f7:61:0c:d8:09:95:8b:2e: f8:7d:2b:15:46:f5:7c:d2:d2:18:33:b8:71:16:81: e2:0f:70:ea:17:61:51:41:08:8a:92:a6:19:bf:b6: 50:29:bd:9e:0a:b9:e2:9c:7d:2b:f9:82:26:d2:51: d8:e6:39:55:0f:50:da:86:bf:6d:46:76:bf:3d:b8: 0e:40:d5:4a:83:cb:93:c6:b0:be:64:0a:f0:9f:3b: 45:bb:a8:fd:df:57:ad:ce:b8:be:e1:f4:1d:8d:96: d6:b1:8c:a3:f7:bd:a1:e9:97:db:9e:48:2d:7a:76: d1:72:18:2e:e2:1c:72:f1:3a:69:32:cc:01:13:cc: 20:9d:5c:15:01:a7:f0:70:26:20:60:db:5a:6f:85: 4c:dd:da:08:b9:1a:15:20:53:23:5a:10:96:d3:18: 5c:01:0c:b1:a3:45:bd:f1:d7:ce:20:f2:0e:5b:ba: 88:4e:ac:cd:24:2e:f3:c4:19:c6:2d:15:b5:65:9f: d3:3f:30:68:38:47:fe:bc:de:d4:05:50:da:45:00: 1b:77:d7:81:9d:09:34:92:90:bd:38:32:62:51:87: a7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BE:79:3D:71:3D:D8:7F:49:85:84:57:E8:3B:A0:7F:AB:94:0B:EB X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS200242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption bb:c8:a0:cd:a3:e5:56:f6:ec:e6:e3:ed:8f:1d:94:d1:23:47: 9f:f2:52:a9:67:9e:5c:21:9c:26:4f:92:0f:d4:f4:bf:18:66: 67:a7:52:65:c3:60:d0:7a:bb:6c:fc:eb:a0:cc:3b:e5:4c:aa: 35:97:92:f9:50:4a:ea:27:65:a1:70:84:57:e5:6f:b6:23:21: cb:ce:ff:20:bd:6b:29:d5:54:f3:00:ef:e1:4e:99:99:b2:1c: 66:e7:44:ef:83:f9:1e:0e:eb:5d:74:9b:1e:a5:ba:31:2c:0c: fc:1d:97:94:0d:cc:a5:6d:27:8b:60:7e:b7:7b:fd:fc:5c:72: 7b:61:e6:12:d3:2c:b5:51:1d:9f:28:2a:2c:b9:c0:77:ef:9f: 9c:51:65:55:3d:08:78:53:0e:ed:4d:dd:f1:a1:ca:f4:02:56: 2a:49:8e:c8:d7:a3:e5:16:24:89:ea:c4:2b:0a:9c:71:74:52: aa:72:21:85:d1:4a:3b:81:85:a2:c3:71:55:8b:f7:3e:e4:0e: 9c:a1:c0:40:a8:38:66:3c:6f:30:2e:f6:42:f7:e5:fd:71:42: 68:dc:fe:bc:77:ef:0a:03:4f:7e:79:f7:55:d4:f7:37:12:f4: 7f:3c:f6:27:2e:18:98:71:3a:a9:87:a2:9e:ce:17:02:59:fd: 80:a1:8f:a7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULJpOPQQkDaZchIh4QdH53Zdfs0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKEQ5QkU3OTNENzEzREQ4N0Y0OTg1ODQ1N0U4M0JBMDdGQUI5NDBCRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ur46NHakBkGMPZwS6Pjmlayz /7UKlkG+I9q35SmDjpdk9vT3YQzYCZWLLvh9KxVG9XzS0hgzuHEWgeIPcOoXYVFB CIqSphm/tlApvZ4KueKcfSv5gibSUdjmOVUPUNqGv21Gdr89uA5A1UqDy5PGsL5k CvCfO0W7qP3fV63OuL7h9B2NltaxjKP3vaHpl9ueSC16dtFyGC7iHHLxOmkyzAET zCCdXBUBp/BwJiBg21pvhUzd2gi5GhUgUyNaEJbTGFwBDLGjRb3x184g8g5buohO rM0kLvPEGcYtFbVln9M/MGg4R/683tQFUNpFABt314GdCTSSkL04MmJRh6fFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2b55PXE92H9JhYRX6Dugf6uUC+swHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAwMjQyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQC7yKDNo+VW9uzm4+2PHZTRI0ef8lKpZ55c IZwmT5IP1PS/GGZnp1Jlw2DQerts/OugzDvlTKo1l5L5UErqJ2WhcIRX5W+2IyHL zv8gvWsp1VTzAO/hTpmZshxm50Tvg/keDutddJsepboxLAz8HZeUDcylbSeLYH63 e/38XHJ7YeYS0yy1UR2fKCosucB375+cUWVVPQh4Uw7tTd3xocr0AlYqSY7I16Pl FiSJ6sQrCpxxdFKqciGF0Uo7gYWiw3FVi/c+5A6cocBAqDhmPG8wLvZC9+X9cUJo 3P68d+8KA09+efdV1Pc3EvR/PPYnLhiYcTqph6KezhcCWf2AoY+n -----END CERTIFICATE-----Generated at Sat Jun 13 06:44:54 2026 by rpki-client