$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa File: AS215280.roa (raw, json) Hash identifier: EaGUqL1RmgwDVCXGw9O6ZvGF9nCOZ6ZxIdl6M7nBbdY= Subject key identifier: 71:E7:F2:46:F6:54:3E:C3:C0:FC:5B:7C:2C:AF:55:FF:CE:7A:6D:9C Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 66A0FBBC91982CECA6EBBA80B39CA2195D93A2CD Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 215280 IP address blocks: 2a07:54c1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a0:fb:bc:91:98:2c:ec:a6:eb:ba:80:b3:9c:a2:19:5d:93:a2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=71E7F246F6543EC3C0FC5B7C2CAF55FFCE7A6D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:bd:13:f6:6f:07:9c:b6:a8:28:bc:ca:02: a4:09:2c:3d:1d:dc:2f:40:4f:68:a6:21:07:de:b0: 17:c3:31:0c:7f:25:dd:51:36:e1:20:6f:a7:f6:d5: 6c:50:25:f6:28:a5:e0:4a:95:9e:66:45:bb:1e:af: 27:b2:80:98:e4:06:f0:78:52:86:22:3c:51:b8:a1: dc:a4:a5:6b:d4:d2:bb:88:49:26:ad:52:a5:77:96: 2a:c2:3e:bf:85:9c:04:89:7e:1c:dd:d2:43:fc:3a: d6:04:af:07:79:d9:38:9f:c4:06:07:36:63:a4:86: d4:eb:78:8a:85:47:b9:b3:18:d4:24:75:ef:31:f6: 42:b4:6d:cb:b8:a1:ca:f3:ff:2e:fe:49:b7:a3:26: 50:d8:e8:8f:90:ab:e7:d5:8b:61:4b:6c:f6:95:e3: c8:ed:26:14:a4:af:06:c9:6d:dc:d6:ce:02:84:3d: 86:1e:75:cb:ce:b2:8e:cc:a8:72:aa:94:66:81:8b: 63:43:7b:f5:e4:12:d1:23:30:0d:77:70:02:0a:85: d3:17:41:6e:64:7a:25:c9:36:01:58:d9:98:ae:ff: c5:d8:7a:68:cb:55:1d:1f:d1:79:ed:13:e3:ba:12: 6f:52:ab:20:8c:74:60:cd:a0:14:18:c9:b7:93:bd: 74:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E7:F2:46:F6:54:3E:C3:C0:FC:5B:7C:2C:AF:55:FF:CE:7A:6D:9C X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215280.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3800::/40 Signature Algorithm: sha256WithRSAEncryption 1c:65:a1:59:76:22:60:e6:6b:cc:65:82:88:81:d9:c7:a5:d9: fd:53:9e:c7:95:17:6e:e2:0d:62:2e:95:9c:0c:56:7c:a6:30: 13:d8:1f:15:be:36:dd:c4:9b:bd:b9:87:d4:5a:22:e4:b1:f7: cd:24:c9:f8:12:b6:3e:e8:18:6b:28:55:90:65:6a:7a:ad:0c: 27:9c:6b:bf:6c:8c:52:bb:b8:22:f3:da:5d:fa:23:86:e0:4c: cd:4e:15:00:de:f5:03:92:20:dc:d4:2e:82:55:71:ac:2b:21: 18:7b:e3:75:b6:67:36:6c:b6:2b:db:cc:9a:17:2f:16:2b:05: 75:ec:63:f9:d1:8b:23:d6:ea:e9:0e:b8:6c:3a:55:bc:55:85: 51:9b:b5:48:8c:34:cb:76:b4:3a:85:91:7f:62:ca:b7:09:08: 05:02:7e:77:42:0c:b2:0f:20:5d:97:63:43:61:f4:80:d7:99: 90:f7:b0:eb:bc:5b:93:89:0f:8c:7f:25:b3:48:b3:ef:0d:6e: 7d:bd:87:14:9b:ca:47:8e:0b:52:64:76:76:56:2e:3c:62:4c: 44:74:c8:a4:84:90:30:6a:82:c8:b1:17:ad:fb:66:f1:dd:1d: 09:5e:9f:95:7d:30:60:c5:6e:89:63:75:85:b0:d7:e9:47:12: ac:82:a9:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZqD7vJGYLOym67qAs5yiGV2Tos0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDcxRTdGMjQ2RjY1NDNFQzNDMEZDNUI3QzJDQUY1NUZGQ0U3QTZEOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0EL0T9m8HnLaoKLzKAqQJLD0d 3C9AT2imIQfesBfDMQx/Jd1RNuEgb6f21WxQJfYopeBKlZ5mRbseryeygJjkBvB4 UoYiPFG4odykpWvU0ruISSatUqV3lirCPr+FnASJfhzd0kP8OtYErwd52TifxAYH NmOkhtTreIqFR7mzGNQkde8x9kK0bcu4ocrz/y7+SbejJlDY6I+Qq+fVi2FLbPaV 48jtJhSkrwbJbdzWzgKEPYYedcvOso7MqHKqlGaBi2NDe/XkEtEjMA13cAIKhdMX QW5keiXJNgFY2Ziu/8XYemjLVR0f0XntE+O6Em9SqyCMdGDNoBQYybeTvXRPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcefyRvZUPsPA/Ft8LK9V/856bZwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MjgwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTgwDQYJKoZIhvcNAQELBQADggEBABxloVl2ImDma8xlgoiB2cel2f1TnseVF27i DWIulZwMVnymMBPYHxW+Nt3Em725h9RaIuSx980kyfgStj7oGGsoVZBlanqtDCec a79sjFK7uCLz2l36I4bgTM1OFQDe9QOSINzULoJVcawrIRh743W2ZzZstivbzJoX LxYrBXXsY/nRiyPW6ukOuGw6VbxVhVGbtUiMNMt2tDqFkX9iyrcJCAUCfndCDLIP IF2XY0Nh9IDXmZD3sOu8W5OJD4x/JbNIs+8Nbn29hxSbykeOC1JkdnZWLjxiTER0 yKSEkDBqgsixF637ZvHdHQlen5V9MGDFboljdYWw1+lHEqyCqRU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:25:26 2026 by rpki-client