$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa File: AS44570.roa (raw, json) Hash identifier: uhbtYSAgdzcpshaV4XqJwoQODd4jOgwm9miEQzVLxOg= Subject key identifier: 2E:03:4A:D3:E2:DF:97:CB:41:7E:92:D4:69:A2:AE:27:1F:16:24:DA Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 72098D5E6C3A54B157859AC86C28E1B98166D078 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 44570 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:09:8d:5e:6c:3a:54:b1:57:85:9a:c8:6c:28:e1:b9:81:66:d0:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=2E034AD3E2DF97CB417E92D469A2AE271F1624DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:12:31:24:fa:06:57:b6:de:f3:4d:3f:f5:6e: 17:4d:18:be:e9:2e:31:c7:59:fd:dc:b0:3a:cd:4a: e8:d8:ea:21:4e:ce:11:3d:05:11:fe:26:8b:a4:77: 6e:37:14:cb:d2:fb:84:9d:13:e2:bd:ca:91:cd:b3: 6b:3a:5c:fb:73:23:74:01:80:29:60:ca:e2:99:0d: 3b:89:cf:f7:68:33:8c:ed:f4:20:35:67:2a:d5:42: 5d:bc:0e:9f:2a:dd:41:dc:1b:79:c1:db:ae:29:da: 8e:b3:71:3d:23:0a:c9:0e:da:02:1f:58:31:95:63: 7d:7e:6f:0b:ae:9e:30:e2:56:5e:16:f4:b6:d5:1f: eb:a7:2e:c4:a1:f8:da:f4:98:ca:51:77:7e:d5:88: 7c:fa:47:17:eb:5e:26:8f:01:6e:4f:a6:ad:31:86: 2b:20:e4:8c:50:fd:85:cf:b7:17:9e:ef:38:3e:64: 36:22:1f:2d:00:7b:6f:21:49:68:eb:25:1d:45:37: 93:3f:24:f3:7c:49:b0:e0:27:bc:a0:10:e1:e0:ff: 85:9f:2b:57:34:14:20:17:4a:8f:47:3a:20:c7:f8: d5:9c:0e:84:c7:f3:f2:5f:23:37:cf:fe:e4:cf:40: b3:b1:74:4d:36:17:7c:4a:da:7a:85:92:b7:42:a8: a6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:03:4A:D3:E2:DF:97:CB:41:7E:92:D4:69:A2:AE:27:1F:16:24:DA X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44570.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 98:50:66:2b:39:c1:2a:f2:8f:f0:06:0f:0a:a8:3a:86:24:e2: 6e:81:4c:ff:ee:64:fc:5e:d0:8d:a6:1e:81:ad:09:57:af:1d: c3:ae:c7:59:09:fa:fe:0e:78:52:99:bf:6c:88:2e:b5:1d:51: 90:88:05:7f:1f:77:50:87:96:f1:5a:39:ab:e0:68:ce:81:88: c2:e7:83:bd:67:7b:95:f1:67:23:3d:03:25:62:1b:dd:10:53: 88:49:cf:6a:ae:5d:93:8c:30:39:02:eb:ce:f9:a3:36:ed:82: 57:ba:a1:9c:6d:d2:b4:35:b4:42:3b:d9:99:74:3b:78:1c:c7: e4:2c:d1:29:87:d2:b5:3c:dc:c0:f5:06:5c:54:3b:27:f3:5b: d8:a1:b8:45:b4:14:6e:0e:44:e2:0d:14:5b:e0:e2:07:58:d0: 59:23:0d:42:d7:ba:5a:59:ac:72:de:a0:6a:6d:c1:c7:a5:13: ee:25:94:35:28:9c:5d:fb:77:28:3d:18:43:3a:a1:6b:49:f7: f9:bb:46:bf:cb:c0:fb:aa:5c:c7:98:18:95:c8:01:cf:ee:12: 1b:09:5e:e5:34:c0:c2:e3:78:ae:21:85:1b:a6:4d:83:96:56: ef:ae:30:7b:36:dc:27:4c:fd:17:de:2c:24:55:99:0f:f5:fd: e8:5c:4b:f4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcgmNXmw6VLFXhZrIbCjhuYFm0HgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDJFMDM0QUQzRTJERjk3Q0I0MTdFOTJENDY5QTJBRTI3MUYxNjI0REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyEjEk+gZXtt7zTT/1bhdNGL7p LjHHWf3csDrNSujY6iFOzhE9BRH+Joukd243FMvS+4SdE+K9ypHNs2s6XPtzI3QB gClgyuKZDTuJz/doM4zt9CA1ZyrVQl28Dp8q3UHcG3nB264p2o6zcT0jCskO2gIf WDGVY31+bwuunjDiVl4W9LbVH+unLsSh+Nr0mMpRd37ViHz6RxfrXiaPAW5Ppq0x hisg5IxQ/YXPtxee7zg+ZDYiHy0Ae28hSWjrJR1FN5M/JPN8SbDgJ7ygEOHg/4Wf K1c0FCAXSo9HOiDH+NWcDoTH8/JfIzfP/uTPQLOxdE02F3xK2nqFkrdCqKZ3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULgNK0+Lfl8tBfpLUaaKuJx8WJNowHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ1NzAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBAJhQZis5wSryj/AGDwqoOoYk4m6BTP/uZPxe 0I2mHoGtCVevHcOux1kJ+v4OeFKZv2yILrUdUZCIBX8fd1CHlvFaOavgaM6BiMLn g71ne5XxZyM9AyViG90QU4hJz2quXZOMMDkC6875ozbtgle6oZxt0rQ1tEI72Zl0 O3gcx+Qs0SmH0rU83MD1BlxUOyfzW9ihuEW0FG4OROINFFvg4gdY0FkjDULXulpZ rHLeoGptwcelE+4llDUonF37dyg9GEM6oWtJ9/m7Rr/LwPuqXMeYGJXIAc/uEhsJ XuU0wMLjeK4hhRumTYOWVu+uMHs23CdM/RfeLCRVmQ/1/ehcS/Q= -----END CERTIFICATE-----Generated at Sat Jun 13 10:44:01 2026 by rpki-client