$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211350.roa File: AS211350.roa (raw, json) Hash identifier: BN1AZnY+jsQYT/4uOsw9brBSS0qw+TPQXNtZOhirYIc= Subject key identifier: 67:F5:0A:8E:26:A6:36:13:40:09:2C:5D:A0:F5:66:B0:84:7B:8A:06 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 677566FBDC654B3D980CF3C8A0914A0A316E3764 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211350.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 211350 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:1755::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:75:66:fb:dc:65:4b:3d:98:0c:f3:c8:a0:91:4a:0a:31:6e:37:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=67F50A8E26A6361340092C5DA0F566B0847B8A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:65:01:13:64:7f:46:57:f7:0e:8f:45:cf:88: 8f:23:52:e9:92:22:c9:b1:72:18:cb:64:1d:fa:2d: b3:48:79:f3:57:08:e5:7a:3b:a7:5e:b0:c9:72:2f: ef:e7:b2:ec:0b:88:45:b1:da:03:10:98:a5:ec:db: cf:af:cd:ea:27:73:8c:c6:02:5f:cb:b5:58:a2:0e: 44:1f:2a:66:d4:21:62:c6:50:76:37:ed:5b:c4:ab: 2e:d6:26:82:38:bb:e7:e0:56:cd:64:1e:59:74:00: 30:69:24:f0:c6:f5:33:6a:f3:fa:98:4e:9e:78:a0: 1e:6b:9d:05:a8:0b:8f:90:7e:54:7f:56:ca:c0:d7: 13:43:2c:49:24:5e:87:47:93:08:e8:59:d0:e6:93: 72:0a:56:44:93:6f:1a:2f:29:5b:cd:13:ee:32:77: 27:5a:db:04:b3:c5:52:a6:a2:3d:47:90:cf:e6:44: 6e:06:7d:13:30:0b:b9:26:f1:83:96:39:2b:a2:d8: 49:5d:4b:a0:85:54:09:12:22:c2:56:4d:cf:bc:53: 87:f9:f5:03:31:e7:75:8f:a1:50:0e:4b:c5:e9:d8: 5d:28:bb:50:77:24:ae:95:2e:1d:6e:5b:85:84:a0: 6c:a8:5b:0b:02:fc:15:90:55:88:30:96:c6:58:ba: d6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F5:0A:8E:26:A6:36:13:40:09:2C:5D:A0:F5:66:B0:84:7B:8A:06 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211350.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:1755::/48 Signature Algorithm: sha256WithRSAEncryption 3a:c1:1e:8c:82:0e:f0:c9:86:4e:b0:71:66:d7:e2:4c:42:d2: 40:77:7c:15:f4:77:4f:bf:bd:58:02:82:ba:d5:51:2c:de:f0: 7a:a7:43:07:46:df:d8:f8:5a:aa:7e:86:94:3b:ae:c1:71:e0: 98:4b:b4:55:7a:38:e9:bc:5f:84:bb:5f:7f:46:22:ef:40:d0: db:e6:97:6a:3b:6d:c0:ea:80:42:28:cd:aa:b2:af:f1:2b:1d: 8a:1d:05:4c:c2:04:70:17:f7:80:73:b3:24:21:d0:f5:b4:db: 54:17:31:5f:38:7a:6d:e6:4b:39:90:f0:af:ed:0d:b7:fd:26: 65:ae:51:60:46:71:19:0b:1b:ab:13:12:ec:ae:e4:5c:bf:fd: ce:b8:f0:2a:3a:5f:76:c8:f6:6e:07:83:70:d5:e1:a6:5d:04: 94:a0:62:05:28:e8:59:7e:fb:e9:a3:b2:c1:88:b4:55:eb:ac: e1:64:42:01:98:9c:ee:78:17:7b:c6:95:7d:f5:18:0f:5f:b1: 44:bb:fd:d4:4f:13:33:2e:13:b9:58:39:cc:b5:c9:c3:39:fb: ca:66:bc:89:2b:15:db:9a:04:3a:9f:94:fe:83:1a:27:9d:be: 92:f2:cc:4f:11:d2:d4:61:b0:e1:d7:21:d1:d9:0f:e2:13:62: 3f:1e:7e:8b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIUZ3Vm+9xlSz2YDPPIoJFKCjFuN2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDY3RjUwQThFMjZBNjM2MTM0MDA5MkM1REEwRjU2NkIwODQ3QjhBMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYZQETZH9GV/cOj0XPiI8jUumS IsmxchjLZB36LbNIefNXCOV6O6desMlyL+/nsuwLiEWx2gMQmKXs28+vzeonc4zG Al/LtViiDkQfKmbUIWLGUHY37VvEqy7WJoI4u+fgVs1kHll0ADBpJPDG9TNq8/qY Tp54oB5rnQWoC4+QflR/VsrA1xNDLEkkXodHkwjoWdDmk3IKVkSTbxovKVvNE+4y dyda2wSzxVKmoj1HkM/mRG4GfRMwC7km8YOWOSui2EldS6CFVAkSIsJWTc+8U4f5 9QMx53WPoVAOS8Xp2F0ou1B3JK6VLh1uW4WEoGyoWwsC/BWQVYgwlsZYutZbAgMB AAGjggJGMIICQjAdBgNVHQ4EFgQUZ/UKjiamNhNACSxdoPVmsIR7igYwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjExMzUwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgdU wrALAwcAKgdUxBdVMA0GCSqGSIb3DQEBCwUAA4IBAQA6wR6Mgg7wyYZOsHFm1+JM QtJAd3wV9HdPv71YAoK61VEs3vB6p0MHRt/Y+FqqfoaUO67BceCYS7RVejjpvF+E u19/RiLvQNDb5pdqO23A6oBCKM2qsq/xKx2KHQVMwgRwF/eAc7MkIdD1tNtUFzFf OHpt5ks5kPCv7Q23/SZlrlFgRnEZCxurExLsruRcv/3OuPAqOl92yPZuB4Nw1eGm XQSUoGIFKOhZfvvpo7LBiLRV66zhZEIBmJzueBd7xpV99RgPX7FEu/3UTxMzLhO5 WDnMtcnDOfvKZryJKxXbmgQ6n5T+gxonnb6S8sxPEdLUYbDh1yHR2Q/iE2I/Hn6L -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:11 2026 by rpki-client