$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209718.roa File: AS209718.roa (raw, json) Hash identifier: 4d09eCt3WjSwxLCX25l42BMYC9k+hA+VE3CltluoIkw= Subject key identifier: F8:6F:EA:A9:F6:16:2E:AE:4A:B6:E9:8D:A2:A1:B6:CD:9C:38:9A:D0 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7D46D6899F1487ADFA240637F30CFFAC986E306F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209718.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 209718 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:46:d6:89:9f:14:87:ad:fa:24:06:37:f3:0c:ff:ac:98:6e:30:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=F86FEAA9F6162EAE4AB6E98DA2A1B6CD9C389AD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:21:16:99:f2:cb:bf:35:c2:0b:1f:3d:36:af: 4c:34:a6:62:16:0b:bc:08:04:1f:2b:93:4a:94:c8: da:cb:90:41:33:bf:4a:33:d3:98:4e:9d:29:69:e7: 97:c0:75:a0:70:13:69:b9:28:fb:9a:56:d4:20:52: 2b:ab:a0:52:46:fb:62:3c:7f:31:d6:39:4f:a2:7e: f6:bc:6f:b9:2a:20:77:c2:27:ec:eb:9e:ce:ab:f9: e8:7a:fb:4f:2b:20:9f:32:8a:0d:2d:74:d1:56:cb: c8:3a:5f:56:16:2f:28:00:00:67:52:ec:d0:18:b5: 22:49:a8:bf:4f:3a:08:ce:e9:85:cb:60:95:79:a9: b0:d0:3d:df:bc:3f:e0:46:b5:da:b7:ee:c9:39:9c: 7f:81:e2:f8:7f:0d:3a:1c:1d:40:fb:4f:0c:c8:04: 33:7e:24:48:34:47:52:bc:eb:95:d8:ef:cf:9c:84: b7:9a:d8:84:16:d7:fb:bd:a2:3b:1d:c5:a9:bd:18: d6:c8:b5:5c:21:a0:8f:f4:e4:9f:98:7d:80:9a:68: 96:bd:93:72:12:2b:c9:5d:ef:66:a9:9e:a6:32:64: 44:5a:a7:31:74:70:d3:90:4b:62:4e:6a:fd:31:87: 11:9f:f6:1b:f5:46:35:09:0d:cf:18:f4:ca:25:0d: 04:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6F:EA:A9:F6:16:2E:AE:4A:B6:E9:8D:A2:A1:B6:CD:9C:38:9A:D0 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209718.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 9a:ac:e0:04:86:26:6c:56:5d:5c:5c:b2:05:82:80:f8:aa:0e: e5:01:86:9a:b5:44:71:30:70:8a:58:e6:72:3c:53:6c:8e:d6: a6:00:d0:73:70:30:d7:e5:ee:cf:bb:88:7f:53:37:0e:3d:07: ce:40:28:99:fb:3e:4a:11:19:74:33:72:4a:c4:bf:1e:cf:0f: 6e:2f:ba:b1:b9:ac:e7:a9:a1:f2:05:74:51:6d:d6:cf:9b:fb: 44:65:2b:11:8d:7b:53:4b:45:39:73:4d:20:f2:ae:1d:f6:75: 54:e1:5c:b4:8f:89:bc:ab:33:3a:1f:df:c1:4a:59:b4:61:94: a7:9d:93:63:06:03:1b:c7:9c:20:76:9a:48:da:84:a9:fa:97: 62:60:03:02:28:b6:21:82:62:39:ab:29:16:6b:b7:5c:7a:0f: c0:b8:d6:f2:7c:b5:88:6c:b8:6e:d9:91:a5:42:f4:42:b6:ce: 02:e4:63:0e:68:bb:e6:99:75:5c:4e:36:22:c0:96:5f:42:09: 1d:a4:10:74:a7:5d:40:17:53:b0:6f:46:57:92:20:ad:f9:07: 13:34:89:a0:bb:86:26:90:c9:b4:04:f5:21:31:a0:0f:ba:59: 0e:28:7b:41:0a:96:05:10:44:14:cf:bf:38:58:53:6e:d4:98: 5e:46:7a:49 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfUbWiZ8Uh636JAY38wz/rJhuMG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKEY4NkZFQUE5RjYxNjJFQUU0QUI2RTk4REEyQTFCNkNEOUMzODlBRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVIRaZ8su/NcILHz02r0w0pmIW C7wIBB8rk0qUyNrLkEEzv0oz05hOnSlp55fAdaBwE2m5KPuaVtQgUiuroFJG+2I8 fzHWOU+ifva8b7kqIHfCJ+zrns6r+eh6+08rIJ8yig0tdNFWy8g6X1YWLygAAGdS 7NAYtSJJqL9POgjO6YXLYJV5qbDQPd+8P+BGtdq37sk5nH+B4vh/DTocHUD7TwzI BDN+JEg0R1K865XY78+chLea2IQW1/u9ojsdxam9GNbItVwhoI/05J+YfYCaaJa9 k3ISK8ld72apnqYyZERapzF0cNOQS2JOav0xhxGf9hv1RjUJDc8Y9MolDQT5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+G/qqfYWLq5KtumNoqG2zZw4mtAwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA5NzE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCarOAEhiZsVl1cXLIFgoD4qg7lAYaatURx MHCKWOZyPFNsjtamANBzcDDX5e7Pu4h/UzcOPQfOQCiZ+z5KERl0M3JKxL8ezw9u L7qxuaznqaHyBXRRbdbPm/tEZSsRjXtTS0U5c00g8q4d9nVU4Vy0j4m8qzM6H9/B Slm0YZSnnZNjBgMbx5wgdppI2oSp+pdiYAMCKLYhgmI5qykWa7dceg/AuNbyfLWI bLhu2ZGlQvRCts4C5GMOaLvmmXVcTjYiwJZfQgkdpBB0p11AF1Owb0ZXkiCt+QcT NImgu4YmkMm0BPUhMaAPulkOKHtBCpYFEEQUz784WFNu1JheRnpJ -----END CERTIFICATE-----Generated at Sat Jun 13 06:44:58 2026 by rpki-client