$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207556.roa File: AS207556.roa (raw, json) Hash identifier: taUSerOz8WY7iA8Uv2iPPMxD7QuF7sThrAXCnqV+3E0= Subject key identifier: 71:74:7C:81:18:56:4E:F7:03:D5:16:40:01:6B:D7:80:F4:08:02:3F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 296FD616944310DAE42F52BA3988E792A77E09D8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207556.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 207556 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1753::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:6f:d6:16:94:43:10:da:e4:2f:52:ba:39:88:e7:92:a7:7e:09:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=71747C8118564EF703D51640016BD780F408023F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:46:d6:ff:11:d8:27:04:36:e1:00:70:e6:e4: 91:88:84:c8:11:51:47:0a:27:85:fc:5e:0d:01:18: 81:a6:bd:fb:f7:5d:82:f3:aa:08:f2:6c:f3:7e:d3: f4:cf:86:bf:c8:2d:cb:8d:09:1e:ee:bf:46:a6:5c: 59:26:39:6a:c5:35:0d:3c:1a:f0:9c:d9:64:db:dc: 61:be:d1:33:9e:9d:ca:e4:db:fe:4b:ff:4d:e0:93: 4a:b1:16:c1:18:c3:ae:99:49:1f:b7:80:0e:38:15: 67:3b:51:bc:65:fa:38:f9:d6:f4:0d:07:1e:72:75: 73:17:22:59:ba:3e:3e:79:fd:a7:e6:dd:59:3e:c2: 39:2f:52:f4:b5:4e:7e:5c:f8:06:17:b1:e9:38:53: c6:c0:e3:90:32:f0:eb:d7:88:81:03:16:53:d2:ef: ff:cc:6a:94:57:1b:d3:7e:c1:94:9d:05:f6:4a:97: 41:30:4e:eb:74:83:46:5a:1c:9f:f4:e7:64:f5:39: 74:79:43:4c:75:52:38:cb:ad:ba:03:a5:a8:e5:8f: e9:1c:80:39:1f:ef:c6:4b:df:66:72:4a:9c:c3:b2: 20:89:9d:3d:12:2b:9e:87:bc:90:38:8c:57:bd:25: 03:bb:03:c5:4d:14:fa:49:d6:92:61:da:97:f7:59: be:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:74:7C:81:18:56:4E:F7:03:D5:16:40:01:6B:D7:80:F4:08:02:3F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207556.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1753::/48 Signature Algorithm: sha256WithRSAEncryption 1f:34:5f:be:df:eb:c2:7b:1b:06:14:fc:2e:97:bf:38:e7:96: 09:2a:58:dd:71:82:c8:70:ac:fc:a0:49:5f:41:de:8a:3f:ce: 65:d1:6e:0c:31:98:39:24:d5:46:4f:30:dc:f4:48:19:71:b3: a5:be:f8:26:bb:a0:1e:6a:78:2a:70:69:8c:eb:49:0d:54:76: 33:f2:85:01:37:4c:b5:c2:ff:e1:07:b3:39:5c:57:7c:82:f2: 74:92:d6:8c:dc:30:07:c6:50:28:82:3c:d3:eb:c4:0f:64:ae: 1d:d7:cc:5e:c7:fe:ef:b5:dd:4a:ea:d1:eb:08:9d:2c:62:01: 59:a6:03:7a:4b:85:0c:59:8d:f9:64:32:e3:d5:17:ac:b1:1e: 7c:bd:be:02:37:4f:95:1c:01:c2:0e:f1:60:dc:95:d1:9e:87: cb:5e:2a:a6:d2:c8:19:29:3f:ef:6a:aa:f4:c4:be:00:d2:44: 40:2b:f7:49:d4:93:34:58:5c:5b:3f:02:99:c4:9c:76:82:b5: 00:23:40:95:98:4f:dd:89:8f:0d:55:3a:f2:08:63:51:4d:67: 3a:e4:f6:56:d0:71:8b:f1:a6:3a:16:50:95:37:43:51:8c:a6: 94:6a:51:16:c0:34:40:30:cd:57:d8:8f:34:d3:97:7c:a0:e6: 05:4e:32:2e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUKW/WFpRDENrkL1K6OYjnkqd+CdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKDcxNzQ3QzgxMTg1NjRFRjcwM0Q1MTY0MDAxNkJENzgwRjQwODAyM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeRtb/EdgnBDbhAHDm5JGIhMgR UUcKJ4X8Xg0BGIGmvfv3XYLzqgjybPN+0/TPhr/ILcuNCR7uv0amXFkmOWrFNQ08 GvCc2WTb3GG+0TOencrk2/5L/03gk0qxFsEYw66ZSR+3gA44FWc7Ubxl+jj51vQN Bx5ydXMXIlm6Pj55/afm3Vk+wjkvUvS1Tn5c+AYXsek4U8bA45Ay8OvXiIEDFlPS 7//MapRXG9N+wZSdBfZKl0EwTut0g0ZaHJ/052T1OXR5Q0x1UjjLrboDpajlj+kc gDkf78ZL32ZySpzDsiCJnT0SK56HvJA4jFe9JQO7A8VNFPpJ1pJh2pf3Wb65AgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUcXR8gRhWTvcD1RZAAWvXgPQIAj8wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA3NTU2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdTMA0GCSqGSIb3DQEBCwUAA4IBAQAfNF++3+vCexsGFPwul784 55YJKljdcYLIcKz8oElfQd6KP85l0W4MMZg5JNVGTzDc9EgZcbOlvvgmu6Aeangq cGmM60kNVHYz8oUBN0y1wv/hB7M5XFd8gvJ0ktaM3DAHxlAogjzT68QPZK4d18xe x/7vtd1K6tHrCJ0sYgFZpgN6S4UMWY35ZDLj1RessR58vb4CN0+VHAHCDvFg3JXR nofLXiqm0sgZKT/vaqr0xL4A0kRAK/dJ1JM0WFxbPwKZxJx2grUAI0CVmE/diY8N VTryCGNRTWc65PZW0HGL8aY6FlCVN0NRjKaUalEWwDRAMM1X2I8005d8oOYFTjIu -----END CERTIFICATE-----Generated at Sat Jun 13 06:44:56 2026 by rpki-client