$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa File: AS215665.roa (raw, json) Hash identifier: O9Snekc8rs6XfNGuSPZ8X9uVVpACFrLhZ4EUvZQSKdY= Subject key identifier: 58:A1:29:28:39:A6:83:8D:2B:EC:58:7C:F5:EF:ED:0A:3B:CB:DA:EC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 797D6BE7281E0554ED659AFED889F0DF80E9C00A Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 215665 IP address blocks: 2a07:54c1:4700::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7d:6b:e7:28:1e:05:54:ed:65:9a:fe:d8:89:f0:df:80:e9:c0:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=58A1292839A6838D2BEC587CF5EFED0A3BCBDAEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1b:81:00:6f:18:ed:4c:b1:f8:56:a7:b9:f2: 2f:00:a0:2f:f1:5d:ab:f3:c3:d1:51:1f:e6:49:3b: f1:31:6c:bd:22:36:03:27:cf:c3:46:73:91:e0:cb: 92:1b:0c:78:d2:e0:87:07:7a:e4:2d:af:72:4f:16: 5b:39:a6:47:a8:4f:35:56:c4:09:c3:f9:f0:83:cc: 89:66:66:d2:50:93:12:76:05:05:cc:bc:d0:80:5b: 46:c5:9d:83:0b:f5:e1:0d:13:61:e3:d5:bb:c7:74: 5c:51:bf:fb:ea:d9:cc:af:62:b0:00:6e:d2:1d:da: ea:01:62:92:92:3c:f2:c5:c8:0d:50:a7:7d:2c:47: f0:68:55:0b:12:bb:64:a6:c8:a7:9f:08:3a:d6:36: 43:ca:03:6a:7c:c5:48:d3:dc:73:40:49:38:d2:ea: d2:61:c4:d5:1c:5c:18:83:b7:c0:9f:6a:85:69:7d: 7c:80:96:aa:ac:a3:2e:08:be:6e:04:49:65:64:86: 04:49:c0:8a:b1:9d:54:89:41:61:0c:18:d5:93:f7: 70:17:41:b7:f5:d4:2f:34:f6:fb:f8:30:a5:fa:f4: 97:2c:30:1d:4b:72:35:3e:78:b4:33:83:9c:e9:01: 2a:9c:2a:22:61:a4:7f:3d:87:bd:88:b4:0b:36:d7: cf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A1:29:28:39:A6:83:8D:2B:EC:58:7C:F5:EF:ED:0A:3B:CB:DA:EC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS215665.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4700::/40 Signature Algorithm: sha256WithRSAEncryption 22:4b:ba:3a:9b:55:20:65:4f:5f:f4:1b:2e:48:66:38:0f:41: 15:de:38:67:76:e1:2d:30:ad:88:db:f4:77:4e:0a:e8:21:70: 42:56:29:07:66:ca:82:53:01:16:57:3d:f4:da:cf:d8:29:fe: 0f:f8:36:fb:a7:2d:72:45:84:ae:d1:e5:e4:6b:2a:06:25:eb: df:c7:b4:48:62:59:6d:12:75:e2:e1:d8:f4:4a:3b:c7:e7:79: 61:67:19:14:55:15:d0:80:6b:01:67:38:1c:fa:d5:bd:4a:07: 9d:b1:b3:71:af:65:9a:9b:ee:cc:c5:a0:40:fb:0a:dc:57:85: d8:5c:6d:b1:e5:68:c8:13:6d:02:95:40:e0:c2:bb:f7:46:a4: f5:99:ed:e7:64:69:b3:ea:f2:bc:f3:1a:72:34:cf:49:73:dd: 47:95:53:27:e1:b7:91:bd:fd:86:6c:41:36:40:08:86:6c:21: ea:8e:a5:7b:f4:18:6a:31:7a:9e:8d:85:47:c6:8d:7c:2a:45: 42:ec:a6:eb:01:8d:10:e8:97:64:55:e9:3e:73:d2:d4:e9:4c: 70:0f:e2:5c:13:7b:0d:8d:42:a6:b3:5b:35:c3:4b:cc:3c:35: 9a:bf:5b:ec:b5:bc:53:43:1b:6f:f9:72:e4:43:38:d5:23:9d: eb:65:bd:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeX1r5ygeBVTtZZr+2Inw34DpwAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDU4QTEyOTI4MzlBNjgzOEQyQkVDNTg3Q0Y1RUZFRDBBM0JDQkRBRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2G4EAbxjtTLH4Vqe58i8AoC/x Xavzw9FRH+ZJO/ExbL0iNgMnz8NGc5Hgy5IbDHjS4IcHeuQtr3JPFls5pkeoTzVW xAnD+fCDzIlmZtJQkxJ2BQXMvNCAW0bFnYML9eENE2Hj1bvHdFxRv/vq2cyvYrAA btId2uoBYpKSPPLFyA1Qp30sR/BoVQsSu2SmyKefCDrWNkPKA2p8xUjT3HNASTjS 6tJhxNUcXBiDt8CfaoVpfXyAlqqsoy4Ivm4ESWVkhgRJwIqxnVSJQWEMGNWT93AX Qbf11C809vv4MKX69JcsMB1LcjU+eLQzg5zpASqcKiJhpH89h72ItAs218+HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWKEpKDmmg40r7Fh89e/tCjvL2uwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE1NjY1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wUcwDQYJKoZIhvcNAQELBQADggEBACJLujqbVSBlT1/0Gy5IZjgPQRXeOGd24S0w rYjb9HdOCughcEJWKQdmyoJTARZXPfTaz9gp/g/4NvunLXJFhK7R5eRrKgYl69/H tEhiWW0SdeLh2PRKO8fneWFnGRRVFdCAawFnOBz61b1KB52xs3GvZZqb7szFoED7 CtxXhdhcbbHlaMgTbQKVQODCu/dGpPWZ7edkabPq8rzzGnI0z0lz3UeVUyfht5G9 /YZsQTZACIZsIeqOpXv0GGoxep6NhUfGjXwqRULspusBjRDol2RV6T5z0tTpTHAP 4lwTew2NQqazWzXDS8w8NZq/W+y1vFNDG2/5cuRDONUjnetlvfc= -----END CERTIFICATE-----Generated at Sat Jun 13 06:44:54 2026 by rpki-client