$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204585.roa File: AS204585.roa (raw, json) Hash identifier: XYt737fihX9EuEDrgetfNhuVvIL8qj9GAYkKMG0UXCo= Subject key identifier: CE:8A:7D:AF:CE:43:F8:30:B9:4A:63:5B:FA:08:3B:CA:9D:9F:69:53 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1B0DE4D5D579BD80F078AC8BB861091BE2F3C696 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204585.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 204585 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c7:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:0d:e4:d5:d5:79:bd:80:f0:78:ac:8b:b8:61:09:1b:e2:f3:c6:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=CE8A7DAFCE43F830B94A635BFA083BCA9D9F6953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:51:be:94:ff:9c:c2:67:19:68:53:8a:5c: dc:5c:e8:5f:91:04:df:12:38:57:4c:6a:db:c3:b6: fc:57:38:f0:ee:4d:ca:91:c6:36:6d:61:fe:63:f3: 2e:ad:ef:30:2c:c4:e8:69:89:32:6d:8c:e0:c2:88: d0:04:b7:a6:d7:12:90:6c:53:3e:40:a8:3d:c3:a0: dd:b8:19:ae:43:11:ea:38:de:40:7f:89:9b:23:5e: af:78:f0:f4:c5:85:4e:a4:75:c2:b0:67:3f:ed:92: 1f:e9:1b:df:8f:8e:c1:f2:07:1f:6c:b7:6e:e2:ef: 24:47:fb:18:aa:ca:f9:c4:cd:11:e4:b0:a0:3f:85: 1a:11:67:66:03:8b:ee:ba:c3:72:e6:c7:77:6b:e6: 6b:a5:82:e8:31:32:69:65:fb:fd:a3:03:b0:f3:b7: ad:93:ca:01:83:89:00:ed:04:64:66:d4:94:de:c5: 22:0d:81:05:46:5d:32:47:a1:3e:a8:e7:7c:58:4d: e0:cb:f3:e2:b1:7e:75:ef:32:79:d9:e4:c7:d0:88: 4d:29:1f:11:29:42:ff:25:b1:b8:8e:9e:c8:ad:c2: da:d2:a8:23:84:16:f1:79:6b:b5:85:14:82:f3:62: 36:74:cf:16:57:a1:24:d6:fd:ee:74:b6:f7:75:30: 8e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8A:7D:AF:CE:43:F8:30:B9:4A:63:5B:FA:08:3B:CA:9D:9F:69:53 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204585.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c7:8000::/36 Signature Algorithm: sha256WithRSAEncryption 12:89:0f:b7:96:86:68:9e:fd:6a:4c:1f:1b:c7:a2:b3:0e:17: 9a:fe:99:f2:b3:89:15:91:89:d8:4a:42:ef:a0:fa:66:85:20: ce:fb:4b:e1:55:4b:d7:27:57:1c:ea:a8:f9:17:7d:a7:28:c4: f3:a2:69:5a:13:0e:7a:70:99:0e:53:88:38:9b:ab:7b:a2:07: 94:d5:66:08:b4:13:2d:a4:e0:ac:02:f4:53:0d:d7:83:02:53: 19:56:d7:91:e3:87:b2:e6:58:78:5a:91:31:46:05:40:f2:16: e4:04:51:0f:7c:44:3b:0c:56:fa:ee:24:e0:8f:65:e2:0b:13: 5f:db:bd:32:9e:8d:c2:b5:54:3f:c0:cb:36:6d:dd:ca:d7:bc: ba:fc:cb:cf:45:49:eb:f1:46:4a:95:c5:c0:5c:ac:62:b9:04: 98:0c:8c:b7:bd:20:97:12:88:c7:d2:98:29:8a:2f:27:ec:92: 7f:58:19:ee:f6:98:ef:1f:0d:e8:43:fa:e5:59:c7:66:d1:07: 0c:44:db:98:8a:e4:16:66:70:47:98:2f:2b:38:e6:3a:8a:dd: 87:85:e9:11:c8:7f:59:f0:8f:5c:da:e7:13:ae:38:15:6b:4b: 60:84:f7:0d:8c:50:56:d9:c4:2c:6f:e2:5f:72:c9:f3:be:2a: 9d:4f:c3:4b -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUGw3k1dV5vYDweKyLuGEJG+LzxpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKENFOEE3REFGQ0U0M0Y4MzBCOTRBNjM1QkZBMDgzQkNBOUQ5RjY5NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKrFG+lP+cwmcZaFOKXNxc6F+R BN8SOFdMatvDtvxXOPDuTcqRxjZtYf5j8y6t7zAsxOhpiTJtjODCiNAEt6bXEpBs Uz5AqD3DoN24Ga5DEeo43kB/iZsjXq948PTFhU6kdcKwZz/tkh/pG9+PjsHyBx9s t27i7yRH+xiqyvnEzRHksKA/hRoRZ2YDi+66w3Lmx3dr5mulgugxMmll+/2jA7Dz t62TygGDiQDtBGRm1JTexSINgQVGXTJHoT6o53xYTeDL8+KxfnXvMnnZ5MfQiE0p HxEpQv8lsbiOnsitwtrSqCOEFvF5a7WFFILzYjZ0zxZXoSTW/e50tvd1MI61AgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUzop9r85D+DC5SmNb+gg7yp2faVMwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA0NTg1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgdU wrALAwYEKgdUx4AwDQYJKoZIhvcNAQELBQADggEBABKJD7eWhmie/WpMHxvHorMO F5r+mfKziRWRidhKQu+g+maFIM77S+FVS9cnVxzqqPkXfacoxPOiaVoTDnpwmQ5T iDibq3uiB5TVZgi0Ey2k4KwC9FMN14MCUxlW15Hjh7LmWHhakTFGBUDyFuQEUQ98 RDsMVvruJOCPZeILE1/bvTKejcK1VD/AyzZt3crXvLr8y89FSevxRkqVxcBcrGK5 BJgMjLe9IJcSiMfSmCmKLyfskn9YGe72mO8fDehD+uVZx2bRBwxE25iK5BZmcEeY Lys45jqK3YeF6RHIf1nwj1za5xOuOBVrS2CE9w2MUFbZxCxv4l9yyfO+Kp1Pw0s= -----END CERTIFICATE-----Generated at Sat Jun 13 10:44:01 2026 by rpki-client