$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa File: AS203453.roa (raw, json) Hash identifier: 1RiW1NrNbSHtxMQFRvfHMg60u2/QXX9tru6hTPjtFNU= Subject key identifier: 59:00:B8:CC:78:60:26:52:B5:30:9C:BD:CF:5C:C3:B3:44:76:79:99 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 49E3ABC543A973C0DA35037541D0F258ADA27C3C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 203453 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e3:ab:c5:43:a9:73:c0:da:35:03:75:41:d0:f2:58:ad:a2:7c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=5900B8CC78602652B5309CBDCF5CC3B344767999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:0e:5e:9a:32:a1:5f:61:08:ce:52:ca:d4: b0:c9:d7:71:d8:8f:c0:0a:a0:f2:e7:d3:61:f5:02: 12:3f:5e:6a:99:e3:c6:29:b4:20:6d:29:81:5b:e3: dc:f9:7f:a2:6a:20:44:f1:87:a2:31:52:5d:2a:1d: 48:14:0f:7e:4d:2e:46:4d:a4:61:82:94:b4:50:77: 2b:e1:b8:e7:9a:c1:45:b5:80:e6:b8:80:59:12:d8: a8:19:bb:1c:d7:3e:6f:11:56:2d:ed:ee:69:a5:71: 38:61:3d:33:04:62:92:3e:9e:3b:c3:0f:77:30:7d: e4:c3:06:e0:61:d6:1b:cc:df:eb:c2:6e:b1:1a:97: c0:40:11:12:aa:c5:8f:00:47:ff:e5:0c:7a:33:ce: 73:9f:15:1e:32:89:fa:24:6f:f2:69:92:4a:d7:d6: 4d:37:42:c2:f3:ee:c6:ee:e7:81:55:47:06:9e:bb: a0:20:e9:d1:d2:67:51:4a:0e:b0:2e:33:09:90:62: 29:7e:01:dd:36:00:64:d1:33:da:99:7c:e5:02:64: 4a:e1:f1:f7:f5:c6:5e:37:45:6a:a0:10:9e:fd:9a: 81:39:7e:89:d0:3e:f9:c1:83:00:14:ea:39:c2:df: 97:22:f6:a7:65:d0:a4:99:31:29:9f:4d:52:e2:8b: b5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:00:B8:CC:78:60:26:52:B5:30:9C:BD:CF:5C:C3:B3:44:76:79:99 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203453.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 5d:f1:fc:67:47:be:83:72:3b:38:87:38:89:14:90:f1:b8:53: 20:a3:b1:1c:79:2e:6f:06:e0:bf:68:7f:9b:08:af:89:64:59: 82:de:c6:fc:17:39:76:85:8a:08:68:ae:f2:ae:ef:ac:0d:97: b2:6b:ad:b3:cd:c2:cc:4e:02:5c:43:3e:31:8e:98:e6:da:96: 0d:69:53:fd:91:49:a2:5f:92:b4:20:9c:98:aa:ac:bd:42:64: 05:20:bf:43:72:7e:e1:26:9c:40:bf:d4:52:04:dd:de:67:6a: e5:9b:23:b9:49:53:de:e6:2f:0b:de:fc:fd:45:f3:36:91:ca: 3e:d9:03:6f:77:27:64:00:01:6d:6e:1c:9a:47:26:5a:27:1a: 8c:0e:96:53:af:d2:2a:6c:f1:d9:36:b3:50:9a:85:a0:f7:ee: 59:af:a1:01:c3:fb:53:40:44:5d:02:87:ff:5f:00:3a:d6:79: a9:97:5d:53:8d:e6:94:90:26:2e:2f:13:8f:6e:57:09:9d:1a: 1c:a8:00:5c:20:28:27:4c:f4:f9:fa:2a:4c:b1:7f:86:63:0a: 03:a4:2a:b3:7a:67:7d:5a:07:61:78:6e:db:93:21:a3:bd:fe: 9b:39:12:21:0b:92:b0:2a:16:63:a4:22:0f:01:d6:18:75:c3: 25:0d:d8:57 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSeOrxUOpc8DaNQN1QdDyWK2ifDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKDU5MDBCOENDNzg2MDI2NTJCNTMwOUNCRENGNUNDM0IzNDQ3Njc5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK4Q5emjKhX2EIzlLK1LDJ13HY j8AKoPLn02H1AhI/XmqZ48YptCBtKYFb49z5f6JqIETxh6IxUl0qHUgUD35NLkZN pGGClLRQdyvhuOeawUW1gOa4gFkS2KgZuxzXPm8RVi3t7mmlcThhPTMEYpI+njvD D3cwfeTDBuBh1hvM3+vCbrEal8BAERKqxY8AR//lDHozznOfFR4yifokb/JpkkrX 1k03QsLz7sbu54FVRwaeu6Ag6dHSZ1FKDrAuMwmQYil+Ad02AGTRM9qZfOUCZErh 8ff1xl43RWqgEJ79moE5fonQPvnBgwAU6jnC35ci9qdl0KSZMSmfTVLii7UnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWQC4zHhgJlK1MJy9z1zDs0R2eZkwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNDUzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBd8fxnR76Dcjs4hziJFJDxuFMgo7EceS5v BuC/aH+bCK+JZFmC3sb8Fzl2hYoIaK7yru+sDZeya62zzcLMTgJcQz4xjpjm2pYN aVP9kUmiX5K0IJyYqqy9QmQFIL9Dcn7hJpxAv9RSBN3eZ2rlmyO5SVPe5i8L3vz9 RfM2kco+2QNvdydkAAFtbhyaRyZaJxqMDpZTr9IqbPHZNrNQmoWg9+5Zr6EBw/tT QERdAof/XwA61nmpl11TjeaUkCYuLxOPblcJnRocqABcICgnTPT5+ipMsX+GYwoD pCqzemd9WgdheG7bkyGjvf6bORIhC5KwKhZjpCIPAdYYdcMlDdhX -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:05 2026 by rpki-client