$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa File: AS207778.roa (raw, json) Hash identifier: 9JL91LKDKVHjIycaWw+Ttx//IoMzQUsQCPjPdPQAxgw= Subject key identifier: A4:22:F7:97:5F:F5:48:DF:51:8C:97:74:92:BA:5C:03:F2:73:D9:95 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 456A59DED9E78113A6331CE37D7AD8FFA085DDC1 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 207778 IP address blocks: 2a07:54c1:4931::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:6a:59:de:d9:e7:81:13:a6:33:1c:e3:7d:7a:d8:ff:a0:85:dd:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=A422F7975FF548DF518C977492BA5C03F273D995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:4f:ab:5d:4c:0e:c2:05:b6:05:a3:fb:cf: 23:4f:c5:01:15:d4:49:61:c9:bb:3d:6e:b5:e1:b5: a6:48:bf:62:c7:dd:68:76:1a:78:3a:81:70:55:eb: 14:da:04:52:7f:b4:dd:7d:26:43:c0:80:9e:84:fb: 79:57:8a:de:62:f5:23:25:82:eb:9f:11:e8:a2:b4: 39:11:c7:34:b1:32:27:cf:4b:27:a3:5c:e2:85:13: 00:d2:d0:97:6a:84:ff:7b:e2:f3:bc:48:49:ed:f8: 22:e8:84:fd:6b:b0:a8:a5:02:1b:80:37:d8:44:a1: c5:68:db:96:d6:f2:19:85:31:bb:de:40:25:c1:b7: 18:15:92:f2:72:e3:6d:78:29:4b:57:dd:80:b1:c3: f2:59:3f:c4:1d:02:af:da:48:06:66:bf:1d:af:c8: 42:39:63:ff:93:a0:9c:f1:1d:e1:af:1f:89:9c:92: 15:be:4f:4f:98:49:a6:b1:12:3c:91:4b:83:21:69: 48:6c:30:74:5a:73:27:f7:00:4c:47:3b:47:50:ef: f0:b5:67:35:fa:76:1b:7e:1f:e2:6e:b0:48:a0:ad: df:33:86:47:2a:e7:0a:76:b8:c1:99:9b:94:19:ff: d2:e9:69:14:cf:9d:70:7a:a4:32:08:cd:6a:17:6f: dd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:22:F7:97:5F:F5:48:DF:51:8C:97:74:92:BA:5C:03:F2:73:D9:95 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS207778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4931::/48 Signature Algorithm: sha256WithRSAEncryption 91:d5:3f:df:d3:85:df:ae:0c:a3:40:23:ba:a2:92:ba:69:ce: 70:3f:70:f9:d5:d6:af:19:ea:50:4b:bf:8f:29:fe:b5:a4:57: ec:ff:7e:74:61:79:a6:16:bc:67:e6:c7:33:98:2a:a2:05:0c: 36:ba:39:32:13:30:dc:19:06:39:35:a9:8f:94:bf:57:d8:6b: 86:a4:9f:87:5e:bc:90:a2:1f:ac:01:2c:35:0d:76:d3:d6:42: 21:66:ee:41:14:30:8a:bf:af:e6:ba:11:e4:ee:19:67:d1:45: aa:92:32:09:54:1e:f1:ea:44:2d:be:43:85:1a:39:42:5a:42: 3c:8c:ff:0a:ec:6f:11:5e:6b:49:a0:db:a1:95:ad:ac:fe:6a: a7:2c:48:e9:62:66:d8:64:4c:8f:ae:42:d5:03:4c:81:ac:a2: 39:2c:a2:7a:b6:69:c2:50:de:d4:d2:3f:ea:31:ef:95:58:d0: b3:c4:13:2c:fe:c4:9a:b2:74:f9:ce:e0:3b:19:59:68:d3:22: bf:b1:dc:a5:b3:ff:89:a2:e0:65:2d:50:64:a9:1f:91:b2:9d: 3f:3f:7d:3b:74:be:54:c1:25:b7:15:77:7c:82:3e:3e:ce:78: 5a:91:d9:55:a5:14:88:4f:8c:11:f4:46:b3:45:2a:9b:34:c3: 8c:0a:9a:68 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURWpZ3tnngROmMxzjfXrY/6CF3cEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKEE0MjJGNzk3NUZGNTQ4REY1MThDOTc3NDkyQkE1QzAzRjI3M0Q5OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCntk+rXUwOwgW2BaP7zyNPxQEV 1Elhybs9brXhtaZIv2LH3Wh2Gng6gXBV6xTaBFJ/tN19JkPAgJ6E+3lXit5i9SMl guufEeiitDkRxzSxMifPSyejXOKFEwDS0JdqhP974vO8SEnt+CLohP1rsKilAhuA N9hEocVo25bW8hmFMbveQCXBtxgVkvJy4214KUtX3YCxw/JZP8QdAq/aSAZmvx2v yEI5Y/+ToJzxHeGvH4mckhW+T0+YSaaxEjyRS4MhaUhsMHRacyf3AExHO0dQ7/C1 ZzX6dht+H+JusEigrd8zhkcq5wp2uMGZm5QZ/9LpaRTPnXB6pDIIzWoXb91dAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpCL3l1/1SN9RjJd0krpcA/Jz2ZUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA3Nzc4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wUkxMA0GCSqGSIb3DQEBCwUAA4IBAQCR1T/f04XfrgyjQCO6opK6ac5wP3D51dav GepQS7+PKf61pFfs/350YXmmFrxn5sczmCqiBQw2ujkyEzDcGQY5NamPlL9X2GuG pJ+HXryQoh+sASw1DXbT1kIhZu5BFDCKv6/muhHk7hln0UWqkjIJVB7x6kQtvkOF GjlCWkI8jP8K7G8RXmtJoNuhla2s/mqnLEjpYmbYZEyPrkLVA0yBrKI5LKJ6tmnC UN7U0j/qMe+VWNCzxBMs/sSasnT5zuA7GVlo0yK/sdyls/+JouBlLVBkqR+Rsp0/ P307dL5UwSW3FXd8gj4+znhakdlVpRSIT4wR9EazRSqbNMOMCppo -----END CERTIFICATE-----Generated at Sat Jun 13 09:25:56 2026 by rpki-client