$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa File: AS206016.roa (raw, json) Hash identifier: NJf3CcjWMqWUL2STKwcpqmx8QD4J1WjcmINVICQNbl4= Subject key identifier: 65:2F:C5:E0:37:E8:8F:79:82:5A:31:C6:3F:EE:04:55:FF:02:FE:00 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6020C68E3BD817F2A7ABB48FFB5BCA54CA132A7E Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 206016 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:20:c6:8e:3b:d8:17:f2:a7:ab:b4:8f:fb:5b:ca:54:ca:13:2a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=652FC5E037E88F79825A31C63FEE0455FF02FE00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:40:5d:68:7d:16:90:ba:30:b1:2d:9d:c8:ad: 49:b2:1a:b4:41:52:89:84:99:11:0b:1e:a7:b7:b5: 32:c4:ea:8d:ad:9e:06:82:5a:b9:15:1f:71:e9:a6: b3:07:00:6f:fd:19:c3:07:9f:64:1f:ed:b8:71:ec: f7:c0:a4:a8:42:d4:8c:75:3e:13:60:33:9c:0f:83: d1:d5:1a:e1:6d:b3:04:59:f2:54:15:78:1f:9e:08: 83:26:37:1b:51:c6:03:bc:32:cb:93:5a:4e:bc:a9: 49:1d:da:21:16:77:3d:2e:a0:7e:12:cc:06:b6:17: ba:6d:83:6f:ee:66:6c:6a:8c:47:97:2f:fd:3c:62: a4:e7:37:1f:a9:b1:cc:02:d0:91:35:25:a4:b2:c3: e3:56:8a:f4:59:f9:f3:01:56:bc:f0:8c:da:ae:e5: 43:05:62:11:00:0e:dd:06:4f:80:d3:ef:52:d3:0f: 42:d1:ef:4b:9a:c0:d8:bd:c5:4e:13:4b:54:35:9b: 8e:b9:88:63:03:0a:d3:c4:f9:a5:79:09:04:e2:28: 9b:f3:09:95:8e:f3:0a:43:6a:54:93:e5:7c:27:90: ef:d6:56:fd:64:ba:cb:05:67:3c:7d:be:be:94:fc: 6e:34:61:6a:21:10:39:4f:d1:7c:49:e1:d7:4d:ce: 3b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2F:C5:E0:37:E8:8F:79:82:5A:31:C6:3F:EE:04:55:FF:02:FE:00 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206016.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 8a:15:ef:bf:41:ca:81:59:21:2f:d9:16:a5:bb:f9:af:40:a1: 9b:17:74:0d:0f:c5:6b:e7:b3:b2:fa:0a:b3:c3:24:c1:06:57: b7:54:f8:86:a2:ca:24:53:91:c3:86:47:fa:f4:df:8c:4c:a5: 1c:df:29:53:ea:7c:4f:01:cd:55:80:8e:7f:4c:60:2d:a2:25: 62:ed:60:7f:1b:f5:ab:9a:b7:3c:90:6b:1a:73:44:73:96:0d: 5f:fe:98:52:d3:f6:e9:14:77:de:a7:c7:32:2a:f3:ae:4f:33: 5a:af:d4:84:0b:a1:92:d0:ed:1c:c9:ee:0f:de:01:d6:05:68: 84:10:30:38:a7:16:2b:6e:31:30:bb:70:41:67:64:c9:e2:d0: ba:3e:c7:6e:ab:db:26:ad:5e:b4:76:fa:a5:ab:64:4d:da:41: 34:ba:91:4b:e6:9e:d8:88:33:fc:f8:61:f0:29:8b:82:e9:07: 79:57:3f:4a:8f:b9:6b:e5:17:ca:2d:27:95:19:c2:60:b6:7d: 04:95:4e:28:c0:04:06:5d:2d:bb:08:b6:ff:40:ef:9b:e7:47: 92:69:03:f1:21:09:37:89:c9:c9:a7:11:5c:20:47:58:46:9c: bf:1a:47:69:ef:59:fe:60:ac:ac:b2:50:a5:35:f9:44:12:ed: 22:9f:73:9a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYCDGjjvYF/Knq7SP+1vKVMoTKn4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKDY1MkZDNUUwMzdFODhGNzk4MjVBMzFDNjNGRUUwNDU1RkYwMkZFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrQF1ofRaQujCxLZ3IrUmyGrRB UomEmRELHqe3tTLE6o2tngaCWrkVH3HpprMHAG/9GcMHn2Qf7bhx7PfApKhC1Ix1 PhNgM5wPg9HVGuFtswRZ8lQVeB+eCIMmNxtRxgO8MsuTWk68qUkd2iEWdz0uoH4S zAa2F7ptg2/uZmxqjEeXL/08YqTnNx+pscwC0JE1JaSyw+NWivRZ+fMBVrzwjNqu 5UMFYhEADt0GT4DT71LTD0LR70uawNi9xU4TS1Q1m465iGMDCtPE+aV5CQTiKJvz CZWO8wpDalST5XwnkO/WVv1kussFZzx9vr6U/G40YWohEDlP0XxJ4ddNzjsFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZS/F4Dfoj3mCWjHGP+4EVf8C/gAwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA2MDE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCKFe+/QcqBWSEv2Ralu/mvQKGbF3QND8Vr 57Oy+gqzwyTBBle3VPiGosokU5HDhkf69N+MTKUc3ylT6nxPAc1VgI5/TGAtoiVi 7WB/G/Wrmrc8kGsac0Rzlg1f/phS0/bpFHfep8cyKvOuTzNar9SEC6GS0O0cye4P 3gHWBWiEEDA4pxYrbjEwu3BBZ2TJ4tC6Psduq9smrV60dvqlq2RN2kE0upFL5p7Y iDP8+GHwKYuC6Qd5Vz9Kj7lr5RfKLSeVGcJgtn0ElU4owAQGXS27CLb/QO+b50eS aQPxIQk3icnJpxFcIEdYRpy/Gkdp71n+YKysslClNflEEu0in3Oa -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:21 2026 by rpki-client