$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS202828.roa File: AS202828.roa (raw, json) Hash identifier: YqGkmYIw4FCgw73374R/UXMxXgflXlKqBjvsG0EDoOo= Subject key identifier: E5:37:4F:BA:8A:FF:1A:6B:7D:C0:79:BD:FD:72:4A:67:8C:AD:A3:A1 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 55FAC7AB87A6B7E793421CE4A6D94835185BFFE0 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS202828.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 202828 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:fa:c7:ab:87:a6:b7:e7:93:42:1c:e4:a6:d9:48:35:18:5b:ff:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=E5374FBA8AFF1A6B7DC079BDFD724A678CADA3A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:e6:65:52:2f:2f:d3:dc:eb:1c:8f:c4:d8: 7b:67:27:d3:f3:13:5a:ec:66:18:3b:71:3f:2b:a5: 5a:8c:88:6c:3d:fa:d1:13:45:21:67:d8:2b:da:43: 0f:cd:9a:fe:46:a0:ee:64:b6:6c:a5:36:a5:4c:9e: 9e:0b:b3:8e:d9:94:83:3f:6b:cb:c0:68:c6:ac:da: af:d0:8c:82:6d:a7:be:9f:a3:4b:15:32:61:1a:a4: 65:b1:c6:6c:3d:4b:a2:59:41:73:76:80:15:8d:af: 6f:f8:86:bb:58:29:e9:cb:69:99:26:6b:5c:03:38: ac:a7:f3:09:12:13:68:d9:e4:e2:cd:8f:b7:0d:8f: 3f:f8:46:ea:bc:9d:7d:ba:53:72:7b:f0:22:36:7c: e8:a5:b2:77:d8:1e:b6:6b:4e:c0:31:ea:a6:30:ea: e8:f9:7e:f2:b5:c4:18:0c:45:69:7e:6c:ce:a3:55: fd:b6:cb:9b:56:b8:05:f9:6f:ea:00:21:4b:d2:5c: 1d:41:0b:d7:37:8f:73:a3:32:85:f8:e7:11:6f:53: e0:65:3d:59:c3:50:4c:75:05:ef:30:1d:ff:ce:05: a3:9e:64:3d:59:bc:c7:d8:cd:a5:95:15:35:31:f3: ad:10:1f:d3:9b:95:a1:14:e9:6d:07:dc:43:4c:9a: 16:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:37:4F:BA:8A:FF:1A:6B:7D:C0:79:BD:FD:72:4A:67:8C:AD:A3:A1 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS202828.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 4e:9a:a4:81:d7:4b:a8:e6:35:e8:e3:a2:63:a4:df:dc:c6:d1: a2:67:e6:6e:12:55:e9:b5:a1:50:70:2a:10:57:32:37:32:83: 52:9e:e7:98:4a:59:7c:96:e5:ee:13:19:b5:5d:91:92:86:1f: 38:a9:32:1e:0d:0d:42:fa:46:72:a7:3f:a7:93:38:0e:e0:02: 18:83:75:a4:9f:61:45:5f:94:f1:9a:7a:75:67:6e:d6:77:c9: bf:cd:94:b4:1d:a6:97:fc:8e:87:8f:ee:20:28:e1:b4:c5:ac: 5f:b8:ef:6e:fc:e8:d3:ef:82:af:57:a7:0c:dd:59:ad:f9:8e: 79:19:9e:3e:44:01:76:e3:6f:12:11:76:24:f4:7a:3a:92:29: c9:84:2e:42:e4:b1:e8:d9:9a:ef:50:ac:85:05:3f:0d:66:36: 45:14:fc:fa:4a:7f:4d:09:a7:98:03:4f:24:20:b7:64:aa:4c: 09:42:85:36:bd:7d:df:f4:e7:5d:f2:0b:1d:15:97:c4:8d:73: 36:03:42:06:8f:d9:25:ec:eb:a1:1b:f1:0e:4e:96:f9:11:dd: 4a:96:3f:81:f9:5a:a5:e0:a2:84:ae:57:f8:8d:c3:f0:d3:9c: a3:36:a2:63:62:b4:6c:29:be:43:cd:35:cf:88:e4:0e:fc:34: 55:b4:9d:c9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVfrHq4emt+eTQhzkptlINRhb/+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKEU1Mzc0RkJBOEFGRjFBNkI3REMwNzlCREZENzI0QTY3OENBREEzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMRuZlUi8v09zrHI/E2HtnJ9Pz E1rsZhg7cT8rpVqMiGw9+tETRSFn2CvaQw/Nmv5GoO5ktmylNqVMnp4Ls47ZlIM/ a8vAaMas2q/QjIJtp76fo0sVMmEapGWxxmw9S6JZQXN2gBWNr2/4hrtYKenLaZkm a1wDOKyn8wkSE2jZ5OLNj7cNjz/4Ruq8nX26U3J78CI2fOilsnfYHrZrTsAx6qYw 6uj5fvK1xBgMRWl+bM6jVf22y5tWuAX5b+oAIUvSXB1BC9c3j3OjMoX45xFvU+Bl PVnDUEx1Be8wHf/OBaOeZD1ZvMfYzaWVFTUx860QH9OblaEU6W0H3ENMmha7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5TdPuor/Gmt9wHm9/XJKZ4yto6EwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAyODI4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBOmqSB10uo5jXo46JjpN/cxtGiZ+ZuElXp taFQcCoQVzI3MoNSnueYSll8luXuExm1XZGShh84qTIeDQ1C+kZypz+nkzgO4AIY g3Wkn2FFX5Txmnp1Z27Wd8m/zZS0HaaX/I6Hj+4gKOG0xaxfuO9u/OjT74KvV6cM 3Vmt+Y55GZ4+RAF2428SEXYk9Ho6kinJhC5C5LHo2ZrvUKyFBT8NZjZFFPz6Sn9N CaeYA08kILdkqkwJQoU2vX3f9Odd8gsdFZfEjXM2A0IGj9kl7OuhG/EOTpb5Ed1K lj+B+Vql4KKErlf4jcPw05yjNqJjYrRsKb5DzTXPiOQO/DRVtJ3J -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:17 2026 by rpki-client