$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa File: AS215382.roa (raw, json) Hash identifier: f8fIRBgCZLyvw96g4a3cT6GfxA62aMh/Szz6MXGAzKg= Subject key identifier: AC:55:4C:D3:11:50:9A:F9:8A:E3:02:FF:5F:E4:95:E9:6A:C6:5D:EC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3B79B69C4F349B0F1F9D9D2F754E0262F20E0670 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 215382 IP address blocks: 2a07:54c1:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:79:b6:9c:4f:34:9b:0f:1f:9d:9d:2f:75:4e:02:62:f2:0e:06:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=AC554CD311509AF98AE302FF5FE495E96AC65DEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:30:dc:82:61:26:0f:b8:32:a2:96:09:5b:6f: d8:67:0f:d6:12:47:01:cc:ba:8e:6c:3a:e3:49:75: 64:5c:36:84:d0:2d:80:ba:50:62:8f:60:fe:ca:83: 15:ff:1e:8c:47:40:68:7f:a4:78:4a:31:b7:a6:b2: 30:78:fa:d0:d2:f5:b2:67:72:06:ce:94:9e:64:f5: 8c:4f:6f:ad:dd:27:84:bb:94:97:89:43:08:69:d7: fd:f2:cf:78:25:9f:2d:a8:27:cc:56:eb:9d:d2:48: 87:15:90:39:c8:60:0f:df:c7:9a:51:da:b1:ba:1a: 6d:76:d7:56:06:d7:40:e9:b6:d8:fa:8e:08:05:c2: 80:39:35:40:cc:dd:c0:a4:4d:13:be:83:32:36:6d: d9:d4:45:d9:c7:a1:95:4e:89:f9:65:db:8d:c7:aa: f5:28:68:fd:16:25:1e:6e:50:08:e6:e5:25:c0:20: e6:d1:17:50:50:93:eb:f2:8d:19:b2:5e:1a:f0:67: b4:81:0b:86:ac:06:ba:39:80:11:1a:b4:1f:56:00: d7:0a:94:3b:86:d6:31:9d:82:3e:a6:21:8e:9f:c4: 8d:b6:ed:0f:93:67:7c:e0:c4:1f:a0:9b:02:3a:f9: d9:9e:78:2f:53:60:e9:76:4c:bb:49:d5:7d:97:fe: 44:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:55:4C:D3:11:50:9A:F9:8A:E3:02:FF:5F:E4:95:E9:6A:C6:5D:EC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215382.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:2100::/40 Signature Algorithm: sha256WithRSAEncryption 65:57:d4:59:d0:da:66:43:f1:0d:3e:db:b5:15:0c:5d:94:41: 5b:c0:c3:28:fc:28:5b:9a:a2:23:18:a0:c8:43:0e:79:89:12: 50:36:37:f7:a7:63:a1:67:2e:a1:c4:cf:b6:bc:0b:ce:11:f0: 92:a9:55:90:f7:bb:83:e6:a2:1f:b7:53:72:e9:6a:8a:e2:d5: 97:63:e1:93:1d:f4:58:8b:65:3f:f4:a7:e8:52:fa:9d:7e:cb: 33:06:ee:01:c7:63:bd:89:14:52:3b:a9:8c:dd:d3:f2:a7:ee: 5c:d9:60:89:7f:a5:c3:94:b3:b1:ab:c1:37:a8:12:f7:78:47: b7:4e:c7:12:1c:6d:04:32:02:62:f0:c5:ca:d3:74:b5:51:1c: 05:cd:bd:d6:42:8b:3e:47:79:78:57:eb:f1:54:a5:ea:56:9c: 15:43:3b:78:f0:3c:ed:df:76:1a:6e:0f:90:e6:de:8e:9c:24: 7a:4a:54:55:09:f0:5f:4c:11:55:14:c6:d9:8a:3f:d4:7c:7a: a0:35:c7:2f:40:98:ea:36:4a:3f:37:0c:5d:be:4f:f8:6c:a3: 89:37:bd:ad:b5:31:fa:05:4c:eb:11:86:09:89:19:1a:c6:0d: c2:04:ad:7f:f4:8b:b2:df:2e:c0:0a:11:da:51:17:7a:9d:ad: bb:08:4e:fb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO3m2nE80mw8fnZ0vdU4CYvIOBnAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKEFDNTU0Q0QzMTE1MDlBRjk4QUUzMDJGRjVGRTQ5NUU5NkFDNjVERUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDMNyCYSYPuDKilglbb9hnD9YS RwHMuo5sOuNJdWRcNoTQLYC6UGKPYP7KgxX/HoxHQGh/pHhKMbemsjB4+tDS9bJn cgbOlJ5k9YxPb63dJ4S7lJeJQwhp1/3yz3glny2oJ8xW653SSIcVkDnIYA/fx5pR 2rG6Gm1211YG10Dpttj6jggFwoA5NUDM3cCkTRO+gzI2bdnURdnHoZVOifll243H qvUoaP0WJR5uUAjm5SXAIObRF1BQk+vyjRmyXhrwZ7SBC4asBro5gBEatB9WANcK lDuG1jGdgj6mIY6fxI227Q+TZ3zgxB+gmwI6+dmeeC9TYOl2TLtJ1X2X/kSVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrFVM0xFQmvmK4wL/X+SV6WrGXewwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1MzgyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wSEwDQYJKoZIhvcNAQELBQADggEBAGVX1FnQ2mZD8Q0+27UVDF2UQVvAwyj8KFua oiMYoMhDDnmJElA2N/enY6FnLqHEz7a8C84R8JKpVZD3u4Pmoh+3U3Lpaori1Zdj 4ZMd9FiLZT/0p+hS+p1+yzMG7gHHY72JFFI7qYzd0/Kn7lzZYIl/pcOUs7GrwTeo Evd4R7dOxxIcbQQyAmLwxcrTdLVRHAXNvdZCiz5HeXhX6/FUpepWnBVDO3jwPO3f dhpuD5Dm3o6cJHpKVFUJ8F9MEVUUxtmKP9R8eqA1xy9AmOo2Sj83DF2+T/hso4k3 va21MfoFTOsRhgmJGRrGDcIErX/0i7LfLsAKEdpRF3qdrbsITvs= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:09 2026 by rpki-client