$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203867.roa File: AS203867.roa (raw, json) Hash identifier: 9VWYbFvfk3tS67BKBhTv884lRSjLNIgWRMlk+h4svbY= Subject key identifier: 97:71:45:EF:15:49:4E:AB:11:16:25:E9:83:1F:1D:27:6B:DD:31:3E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 28AF81BF8B9D38DBB266F9804AB6F34E1411D937 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203867.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 203867 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1758::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:af:81:bf:8b:9d:38:db:b2:66:f9:80:4a:b6:f3:4e:14:11:d9:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=977145EF15494EAB111625E9831F1D276BDD313E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:69:7a:46:ad:1b:3d:72:e5:07:ee:1d:8c:a2: 4b:55:d1:96:93:69:af:0e:0f:d7:09:c2:f6:c3:44: af:5d:52:19:be:83:03:82:5c:88:09:0e:0a:7f:1b: 95:1d:c2:9d:03:20:2b:45:0f:53:27:89:9b:b4:09: e5:e3:37:ea:eb:34:23:49:86:9f:08:81:a0:71:30: b5:d2:1d:2c:26:15:c7:f6:a7:3a:8e:ce:bc:0e:c9: 40:cf:54:c9:b2:f7:03:09:8e:d3:33:87:bb:1d:47: ac:80:80:b0:07:0b:19:35:14:92:c3:84:ab:b3:36: 97:01:a3:a9:4a:6e:96:23:cc:be:b8:33:99:6a:23: c0:47:f4:de:8f:ca:32:0d:9c:56:f4:e3:84:31:2a: ae:67:6b:57:a2:82:d2:cc:80:fd:fc:ba:90:db:43: 5c:be:2b:ae:2d:42:c0:65:fc:e2:df:d7:46:cc:f4: 8b:51:58:86:ff:d7:1c:d8:9c:67:db:b5:48:36:89: b9:1e:51:25:12:0e:d1:8a:bc:fb:32:ab:ee:2a:56: 50:f0:76:31:86:2a:4d:48:a7:2a:df:d7:3a:28:52: e4:d6:e4:61:87:11:a1:42:06:d2:ee:9a:1a:65:6d: 1f:75:ad:a8:26:5c:4f:45:7a:7c:e1:f7:96:16:58: 6e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:71:45:EF:15:49:4E:AB:11:16:25:E9:83:1F:1D:27:6B:DD:31:3E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1758::/48 Signature Algorithm: sha256WithRSAEncryption b5:36:c0:a6:dd:0f:ce:63:2e:9b:ea:26:a8:bf:2d:e1:e8:92: 8c:66:b8:23:f7:91:ed:af:06:b1:f1:cb:a3:ad:a8:aa:0f:bf: ba:d3:74:e6:fc:5c:52:52:ca:a9:ca:e6:66:55:21:98:d5:99: ec:37:52:5a:2c:6d:84:e8:0f:70:89:04:6c:c3:9a:1b:06:a4: f0:6a:ba:3c:88:8a:58:53:23:56:17:d4:4c:0c:55:fe:3e:2b: 2f:a5:72:34:2d:eb:f8:e1:8b:eb:ee:1f:ac:a2:7d:2e:1d:e6: 38:91:89:2e:bc:d5:da:7c:af:25:dd:65:97:3d:21:92:1b:af: d9:43:a1:ff:26:cf:1c:dd:08:7d:71:cc:a3:0d:7a:ee:9a:81: 92:6b:02:4a:8b:d3:a9:61:d6:02:3e:73:a3:43:4d:7f:10:ce: 03:70:6f:0c:56:e8:63:2f:93:1b:4f:5d:74:c4:f8:7c:4b:51: 5b:69:24:2b:e8:38:21:bd:2c:47:3a:d7:89:67:a0:95:a6:7b: f2:d9:60:c3:8e:56:43:d7:fe:b6:6f:d6:1e:2e:11:8c:15:cb: ab:fe:e8:35:fa:4b:2a:00:a2:35:df:0a:ab:91:71:a1:0a:fe: 52:f6:5a:83:4e:11:d3:2e:0c:c0:f8:d4:57:33:3b:72:a3:28: b6:34:b6:7d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUKK+Bv4udONuyZvmASrbzThQR2TcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDk3NzE0NUVGMTU0OTRFQUIxMTE2MjVFOTgzMUYxRDI3NkJERDMxM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwaXpGrRs9cuUH7h2MoktV0ZaT aa8OD9cJwvbDRK9dUhm+gwOCXIgJDgp/G5Udwp0DICtFD1MniZu0CeXjN+rrNCNJ hp8IgaBxMLXSHSwmFcf2pzqOzrwOyUDPVMmy9wMJjtMzh7sdR6yAgLAHCxk1FJLD hKuzNpcBo6lKbpYjzL64M5lqI8BH9N6PyjINnFb044QxKq5na1eigtLMgP38upDb Q1y+K64tQsBl/OLf10bM9ItRWIb/1xzYnGfbtUg2ibkeUSUSDtGKvPsyq+4qVlDw djGGKk1Ipyrf1zooUuTW5GGHEaFCBtLumhplbR91ragmXE9Fenzh95YWWG73AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUl3FF7xVJTqsRFiXpgx8dJ2vdMT4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzODY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdYMA0GCSqGSIb3DQEBCwUAA4IBAQC1NsCm3Q/OYy6b6iaovy3h 6JKMZrgj95Htrwax8cujraiqD7+603Tm/FxSUsqpyuZmVSGY1ZnsN1JaLG2E6A9w iQRsw5obBqTwaro8iIpYUyNWF9RMDFX+PisvpXI0Lev44Yvr7h+son0uHeY4kYku vNXafK8l3WWXPSGSG6/ZQ6H/Js8c3Qh9ccyjDXrumoGSawJKi9OpYdYCPnOjQ01/ EM4DcG8MVuhjL5MbT110xPh8S1FbaSQr6DghvSxHOteJZ6CVpnvy2WDDjlZD1/62 b9YeLhGMFcur/ug1+ksqAKI13wqrkXGhCv5S9lqDThHTLgzA+NRXMztyoyi2NLZ9 -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:15 2026 by rpki-client