$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211954.roa File: AS211954.roa (raw, json) Hash identifier: xHtYKV66fAIIyjOnp3sFM4TYQE4v2+n/9jJrQH+wTnA= Subject key identifier: 23:4B:CB:29:F7:CD:0D:1F:D2:25:58:BB:3E:90:0A:98:55:F8:A1:C5 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 62EB98657E93223ACDAADB4AD3169331E05C907E Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211954.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 211954 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:eb:98:65:7e:93:22:3a:cd:aa:db:4a:d3:16:93:31:e0:5c:90:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=234BCB29F7CD0D1FD22558BB3E900A9855F8A1C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:88:38:f4:83:61:15:f9:c0:04:f5:50:1a: 29:a3:33:5e:34:f3:bb:24:8a:21:7a:53:e1:73:3c: 1b:27:1f:dc:61:00:2e:db:71:c2:37:be:b4:1b:7f: 02:8a:3e:19:9b:e5:dc:db:94:ec:75:23:47:df:d2: 12:d5:f4:4a:93:da:b4:32:8e:a6:56:ef:27:2d:fe: 1a:ea:5c:4f:34:cd:ae:30:3f:b9:71:ee:d6:23:c6: 4d:a7:f3:a9:7b:f1:bf:4e:52:90:e8:2b:51:ab:cf: 88:66:94:58:60:26:e2:fd:c5:70:a1:6a:8f:37:14: fd:45:e0:61:85:20:08:93:bc:3b:d2:8c:37:0b:5f: c4:29:66:df:1d:8d:34:ca:8f:73:0b:84:cf:cb:53: 70:d5:88:ac:80:24:ba:91:b6:b7:d3:ea:9b:00:ae: 68:d8:76:c6:42:30:82:78:d0:3c:39:2d:06:77:2c: c0:ef:85:fb:6d:b8:aa:95:ea:dc:60:72:24:b2:66: 6c:e0:00:49:2b:e2:40:81:2a:51:a9:c7:24:82:ae: af:b6:6f:d1:e6:52:f6:c4:63:1a:f2:e1:3b:a9:79: 41:bc:b0:e4:45:e9:6b:da:6f:e3:1e:31:1b:4c:62: 33:ad:22:21:ff:37:a5:b7:8e:05:8e:18:95:c4:a0: 44:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4B:CB:29:F7:CD:0D:1F:D2:25:58:BB:3E:90:0A:98:55:F8:A1:C5 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS211954.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 39:25:84:47:96:6b:bb:e8:93:ef:6c:44:0c:5f:ac:5d:55:60: 74:e7:0f:85:3c:78:ac:af:17:d6:ec:18:91:e9:46:ac:03:37: a4:44:80:28:af:49:3a:1f:62:6e:58:c0:d8:31:5a:52:41:1c: 9b:66:7c:d2:6e:21:23:2a:b1:22:47:73:d0:5c:d7:da:3f:35: 08:3b:af:fd:2f:25:d1:c5:8d:ab:11:08:c9:70:43:7e:fe:e4: 03:29:ca:8b:e2:04:a6:46:65:dd:e7:c8:5d:76:6d:48:2b:d6: c0:b6:ee:07:56:8a:7a:21:02:d2:71:2b:46:51:c3:e3:04:57: c6:04:ec:eb:f7:eb:d4:15:12:d3:77:1a:1c:e0:a5:53:1e:0f: f4:3d:12:81:67:47:80:f8:55:bd:55:4f:ab:49:73:ae:ed:e9: 3d:6a:b4:4f:be:78:85:c2:0f:5d:cf:43:d3:09:27:6e:b0:b8: b1:6d:30:dc:4b:7f:93:f1:da:9f:8c:de:02:31:f6:16:96:e1: dc:85:01:3b:fb:84:8d:86:09:90:0e:20:84:f6:3b:3f:03:72: a3:d1:38:d8:84:3c:b2:78:32:be:f8:82:c3:e8:39:09:92:00: 85:11:ff:84:c1:2b:d4:35:9b:80:18:9c:8e:7a:89:d0:a8:26: 0d:82:5b:90 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYuuYZX6TIjrNqttK0xaTMeBckH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDIzNEJDQjI5RjdDRDBEMUZEMjI1NThCQjNFOTAwQTk4NTVGOEExQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC84og49INhFfnABPVQGimjM140 87skiiF6U+FzPBsnH9xhAC7bccI3vrQbfwKKPhmb5dzblOx1I0ff0hLV9EqT2rQy jqZW7yct/hrqXE80za4wP7lx7tYjxk2n86l78b9OUpDoK1Grz4hmlFhgJuL9xXCh ao83FP1F4GGFIAiTvDvSjDcLX8QpZt8djTTKj3MLhM/LU3DViKyAJLqRtrfT6psA rmjYdsZCMIJ40Dw5LQZ3LMDvhfttuKqV6txgciSyZmzgAEkr4kCBKlGpxySCrq+2 b9HmUvbEYxry4TupeUG8sORF6Wvab+MeMRtMYjOtIiH/N6W3jgWOGJXEoEQpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUI0vLKffNDR/SJVi7PpAKmFX4ocUwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjExOTU0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQA5JYRHlmu76JPvbEQMX6xdVWB05w+FPHis rxfW7BiR6UasAzekRIAor0k6H2JuWMDYMVpSQRybZnzSbiEjKrEiR3PQXNfaPzUI O6/9LyXRxY2rEQjJcEN+/uQDKcqL4gSmRmXd58hddm1IK9bAtu4HVop6IQLScStG UcPjBFfGBOzr9+vUFRLTdxoc4KVTHg/0PRKBZ0eA+FW9VU+rSXOu7ek9arRPvniF wg9dz0PTCSdusLixbTDcS3+T8dqfjN4CMfYWluHchQE7+4SNhgmQDiCE9js/A3Kj 0TjYhDyyeDK++ILD6DkJkgCFEf+EwSvUNZuAGJyOeonQqCYNgluQ -----END CERTIFICATE-----Generated at Sat Jun 13 10:45:26 2026 by rpki-client