$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa File: AS203619.roa (raw, json) Hash identifier: Jxsr5YQRfkTduwcoXFQJHLBWVULtaB6mlBPWsOi2f6A= Subject key identifier: 67:5F:EB:52:78:DF:0A:0B:B5:06:78:45:8A:52:D5:28:94:26:47:A3 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7011723761CE3629790D876B80C5A57030E089A6 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 203619 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:11:72:37:61:ce:36:29:79:0d:87:6b:80:c5:a5:70:30:e0:89:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=675FEB5278DF0A0BB50678458A52D528942647A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:8d:30:28:b8:c0:98:52:e6:64:55:9a:59: 65:02:29:07:45:3b:a7:5d:1e:96:8d:35:2c:49:e3: 0d:55:cf:63:2f:7f:46:01:78:8d:fd:33:8f:3a:b8: 5e:39:2e:a1:51:a9:9a:7e:83:b4:f6:f7:b4:ca:24: 92:55:1e:40:b2:28:30:c1:a3:ce:0d:79:2c:51:01: fc:6b:89:5f:69:9e:4b:89:32:f8:48:9b:bb:61:4f: cd:71:3a:9f:dc:9a:80:a8:93:b7:fa:ab:c8:5e:3c: e2:fb:ce:bc:1c:af:13:ef:ba:0d:4e:0d:88:0e:6e: b2:e6:cb:7f:24:e0:d1:56:6f:8c:f4:06:f6:67:f6: 52:e1:fc:e1:31:f1:18:0f:5a:8f:2d:30:28:41:02: 30:72:bd:f3:3a:85:bc:7c:36:19:32:76:e1:89:1f: 11:00:73:5d:ac:01:2d:3a:18:1f:e6:f2:80:b9:75: b7:90:24:96:dd:c5:25:70:75:b4:02:50:61:08:23: 6a:b6:5f:46:9b:86:2b:3d:d4:fe:7b:01:99:b0:aa: c7:fd:27:7b:84:7e:e2:e2:5e:09:82:30:7b:27:3c: 24:85:4a:5c:a4:cc:9e:a5:af:a5:84:65:bd:16:83: 87:aa:d4:51:f3:4c:78:d3:8d:af:11:27:d8:40:47: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5F:EB:52:78:DF:0A:0B:B5:06:78:45:8A:52:D5:28:94:26:47:A3 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203619.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 37:c6:e9:69:d9:e1:63:18:55:eb:41:4e:2a:ad:5f:68:d8:8e: 7e:18:bb:75:66:7e:98:be:32:99:e5:bd:ff:19:86:0f:5c:4d: 3f:69:67:08:12:20:ef:f1:3e:c4:fb:2e:05:af:4a:ed:47:ee: 18:aa:40:5b:94:c4:82:6e:7a:7c:82:45:c6:2d:3b:77:cf:4a: 29:ca:b6:fb:ab:7a:d8:f7:30:e2:a0:f2:b7:78:24:2b:5e:dc: c6:4b:a0:47:03:80:53:60:5f:65:be:34:42:9a:a1:01:e5:c5: a1:de:2a:86:b1:5a:48:23:06:a0:bb:d9:20:38:96:73:68:07: ce:f7:e7:b3:80:e9:a2:21:0f:b5:5e:9c:fe:9e:8f:ed:67:76: 66:60:26:f7:4b:b2:16:5c:31:91:99:68:61:cd:79:c7:b0:a5: bf:26:61:f8:71:10:57:e1:e1:71:01:a9:1a:39:59:3f:90:38: ca:ee:c0:ac:12:b7:f3:eb:aa:14:8e:1a:7e:47:91:5a:21:7c: b6:c6:a1:8f:6f:38:62:19:d7:51:86:b4:eb:19:4a:b0:b8:fe: a4:13:7a:b4:0b:36:1d:5a:0e:42:30:f2:be:95:d6:3a:60:11: 9c:bd:0c:83:06:74:e1:a4:6c:1c:10:8c:7b:36:2e:af:41:be: 91:72:b7:56 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUcBFyN2HONil5DYdrgMWlcDDgiaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDY3NUZFQjUyNzhERjBBMEJCNTA2Nzg0NThBNTJENTI4OTQyNjQ3QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH1Y0wKLjAmFLmZFWaWWUCKQdF O6ddHpaNNSxJ4w1Vz2Mvf0YBeI39M486uF45LqFRqZp+g7T297TKJJJVHkCyKDDB o84NeSxRAfxriV9pnkuJMvhIm7thT81xOp/cmoCok7f6q8hePOL7zrwcrxPvug1O DYgObrLmy38k4NFWb4z0BvZn9lLh/OEx8RgPWo8tMChBAjByvfM6hbx8NhkyduGJ HxEAc12sAS06GB/m8oC5dbeQJJbdxSVwdbQCUGEII2q2X0abhis91P57AZmwqsf9 J3uEfuLiXgmCMHsnPCSFSlykzJ6lr6WEZb0Wg4eq1FHzTHjTja8RJ9hAR0qZAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZ1/rUnjfCgu1BnhFilLVKJQmR6MwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNjE5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA3xulp2eFjGFXrQU4qrV9o2I5+GLt1Zn6Y vjKZ5b3/GYYPXE0/aWcIEiDv8T7E+y4Fr0rtR+4YqkBblMSCbnp8gkXGLTt3z0op yrb7q3rY9zDioPK3eCQrXtzGS6BHA4BTYF9lvjRCmqEB5cWh3iqGsVpIIwagu9kg OJZzaAfO9+ezgOmiIQ+1Xpz+no/tZ3ZmYCb3S7IWXDGRmWhhzXnHsKW/JmH4cRBX 4eFxAakaOVk/kDjK7sCsErfz66oUjhp+R5FaIXy2xqGPbzhiGddRhrTrGUqwuP6k E3q0CzYdWg5CMPK+ldY6YBGcvQyDBnThpGwcEIx7Ni6vQb6RcrdW -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:06 2026 by rpki-client