$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206444.roa File: AS206444.roa (raw, json) Hash identifier: 13uRR4d0IbpqZGejwgmdwcN3DqFaTxkbfEt0t9mGFP4= Subject key identifier: 8D:8A:90:FE:9C:BF:3E:1B:50:33:D4:5A:62:E0:18:A2:E9:B5:50:8C Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3D21DD675D768AADB0195DE1D83EE05FB2B4F0F6 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206444.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 206444 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:9800::/37 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:21:dd:67:5d:76:8a:ad:b0:19:5d:e1:d8:3e:e0:5f:b2:b4:f0:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=8D8A90FE9CBF3E1B5033D45A62E018A2E9B5508C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:61:71:48:2c:92:82:fe:35:0f:a3:9b:e1:5e: 91:62:93:dc:88:04:b8:dc:ab:38:e4:48:30:5c:63: ec:70:0b:77:43:ae:73:7c:2a:2b:5e:31:6b:2b:e4: ca:c9:c4:85:6c:4e:fc:cc:e4:a5:2b:c7:0d:a8:f7: c5:27:fc:25:42:8d:bb:58:26:64:1b:20:23:d5:b6: 88:9c:36:22:2e:c1:9e:f0:81:a3:86:f9:b5:00:1c: 9a:09:9c:1d:ed:8e:7d:2a:21:4d:87:b1:fb:d6:f9: e2:cf:b2:b8:05:e2:41:63:6f:b1:9f:ce:07:9a:f7: 56:23:be:43:66:57:af:04:da:bb:23:f9:ce:8a:4c: 38:40:81:8c:1b:e9:56:45:5b:ef:be:fd:f5:2e:82: fc:d3:6d:e1:27:ef:13:15:2e:2b:17:10:fc:be:f4: 0b:fc:64:20:6a:19:6e:92:87:7a:b2:4d:42:05:45: 86:a4:c5:57:c9:63:d4:d1:8a:d0:97:39:1f:d1:dc: fd:09:3f:fd:cc:36:f3:7d:a6:0c:48:7a:92:00:eb: c4:1b:b6:3c:49:db:55:2d:71:30:23:8d:7c:64:4d: ce:13:02:c6:5a:b2:84:50:99:d6:ea:00:8d:e6:59: 29:ca:28:27:b4:54:82:f4:c2:54:d1:a3:83:fd:c5: 56:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8A:90:FE:9C:BF:3E:1B:50:33:D4:5A:62:E0:18:A2:E9:B5:50:8C X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:9800::/37 Signature Algorithm: sha256WithRSAEncryption 0d:0b:0e:0c:63:f9:a6:77:9f:90:57:9c:cc:95:ef:6a:12:2f: 71:77:b1:14:0e:93:f2:ec:c9:1c:45:65:15:0b:48:83:22:39: fd:50:53:f7:19:40:c0:09:e9:3a:10:db:13:23:d5:a0:d9:d0: 3e:e6:98:2b:7d:33:8c:a6:a2:ef:36:28:d2:bb:22:37:b2:85: 9e:4c:94:bc:6e:9f:b3:d0:c5:5a:13:3f:bc:14:39:96:98:88: 74:df:8b:54:fd:6c:9e:47:42:7d:c6:d2:79:32:90:a6:92:1c: 4d:61:79:80:4b:82:6f:48:90:93:8d:a9:bd:6f:dc:13:50:ca: 4a:cf:20:e4:dd:12:21:f1:54:53:cc:fe:2b:6d:1a:5d:e7:cc: fe:cb:e0:38:47:31:44:2a:90:a3:ce:62:52:c3:10:a2:a8:30: d7:c2:6a:aa:fc:f9:ee:39:d1:ea:be:81:66:25:1f:c3:9d:b2: 8a:41:bc:d7:01:69:7f:2c:df:b2:e6:bd:01:66:87:37:84:e1: 03:d4:d8:5c:e3:09:1a:35:e8:41:25:c1:5d:37:a4:a1:b8:30: 79:38:fb:ff:e1:2b:e1:2f:fb:74:59:46:29:18:44:ea:68:b7: e5:c1:1f:0b:1a:45:42:25:fb:95:58:ce:e8:bf:5f:81:2d:18: e2:0b:f5:5f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIUPSHdZ112iq2wGV3h2D7gX7K08PYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDhEOEE5MEZFOUNCRjNFMUI1MDMzRDQ1QTYyRTAxOEEyRTlCNTUwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwYXFILJKC/jUPo5vhXpFik9yI BLjcqzjkSDBcY+xwC3dDrnN8KiteMWsr5MrJxIVsTvzM5KUrxw2o98Un/CVCjbtY JmQbICPVtoicNiIuwZ7wgaOG+bUAHJoJnB3tjn0qIU2HsfvW+eLPsrgF4kFjb7Gf zgea91YjvkNmV68E2rsj+c6KTDhAgYwb6VZFW+++/fUugvzTbeEn7xMVLisXEPy+ 9Av8ZCBqGW6Sh3qyTUIFRYakxVfJY9TRitCXOR/R3P0JP/3MNvN9pgxIepIA68Qb tjxJ21UtcTAjjXxkTc4TAsZasoRQmdbqAI3mWSnKKCe0VIL0wlTRo4P9xVZlAgMB AAGjggJFMIICQTAdBgNVHQ4EFgQUjYqQ/py/PhtQM9RaYuAYoum1UIwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA2NDQ0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKgdU wrALAwYDKgdUxJgwDQYJKoZIhvcNAQELBQADggEBAA0LDgxj+aZ3n5BXnMyV72oS L3F3sRQOk/LsyRxFZRULSIMiOf1QU/cZQMAJ6ToQ2xMj1aDZ0D7mmCt9M4ymou82 KNK7IjeyhZ5MlLxun7PQxVoTP7wUOZaYiHTfi1T9bJ5HQn3G0nkykKaSHE1heYBL gm9IkJONqb1v3BNQykrPIOTdEiHxVFPM/ittGl3nzP7L4DhHMUQqkKPOYlLDEKKo MNfCaqr8+e450eq+gWYlH8OdsopBvNcBaX8s37LmvQFmhzeE4QPU2FzjCRo16EEl wV03pKG4MHk4+//hK+Ev+3RZRikYROpot+XBHwsaRUIl+5VYzui/X4EtGOIL9V8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:21 2026 by rpki-client