$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44658.roa File: AS44658.roa (raw, json) Hash identifier: gocPCaFxTnvVPYtNqRzVu6PlXFkP2gX/R9ikC9wMKdc= Subject key identifier: 95:C1:44:BA:CD:44:C3:44:62:E7:A5:3F:25:2E:33:DA:D4:31:E5:8B Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 30BD44D21A649481206BAF627F8048D3A623DA4F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44658.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 44658 IP address blocks: 2a07:54c4:1300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:bd:44:d2:1a:64:94:81:20:6b:af:62:7f:80:48:d3:a6:23:da:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=95C144BACD44C34462E7A53F252E33DAD431E58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0f:a2:57:d6:a6:a4:ad:8f:ea:35:84:f3:7a: 84:f9:53:71:9e:9b:d2:8f:33:65:71:34:39:b5:b9: 7d:7d:bd:dc:ed:c2:6a:50:2f:f4:6b:9b:c1:64:89: 17:3f:a6:2d:34:1a:db:a0:73:4c:82:9c:df:cb:ff: 9b:72:50:2b:57:b8:70:6c:e3:b0:01:96:20:90:c6: cb:08:16:2f:f7:e6:16:66:fa:33:97:54:2e:85:52: f4:d0:50:d5:18:03:33:1d:18:e3:bf:a6:11:ad:35: 62:be:99:05:86:f9:30:26:87:ec:36:71:7a:6d:55: fd:7d:30:f4:ba:36:b8:3c:6b:20:bd:c5:56:5f:85: 50:e7:a1:6e:65:3e:18:6e:e2:1f:e1:72:a6:50:58: 49:9d:59:dc:ef:91:4b:1c:92:2a:cf:79:1e:cc:73: dc:d1:72:a7:68:94:68:4a:3a:b0:04:23:71:1e:ea: 20:10:2c:a0:6b:ee:75:cf:3c:3e:94:f5:45:34:86: d1:6d:97:5d:5f:9b:64:57:63:09:b6:a3:72:37:ab: fc:73:ad:b3:71:9f:3a:75:86:2e:47:dc:46:8d:76: a2:96:19:8a:56:28:39:67:50:ff:e7:ae:c8:a8:2f: 10:d9:af:b6:9d:dd:94:47:17:d9:df:34:06:58:78: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C1:44:BA:CD:44:C3:44:62:E7:A5:3F:25:2E:33:DA:D4:31:E5:8B X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44658.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1300::/40 Signature Algorithm: sha256WithRSAEncryption 6e:49:dd:18:2b:d3:9d:9c:0d:fa:b8:4b:95:eb:04:34:19:a9: 79:ef:e0:1e:a1:f5:ec:05:6e:9e:87:b8:a4:b7:83:ac:33:80: e2:2e:b5:5f:fa:fe:4f:8b:af:a5:d6:75:6d:ff:8b:e2:d9:55: e8:f7:5b:fe:6c:40:80:9b:b4:c3:f5:8f:10:f1:fb:9c:7b:70: d6:5f:62:64:f6:2d:2d:1c:f1:6e:8c:90:97:96:48:38:20:e4: 32:68:6b:ab:31:bb:0e:5c:e3:80:cb:fa:85:8b:ef:fe:3b:07: 70:8c:c4:62:94:22:cd:a2:ec:b0:3c:91:28:ab:b6:69:e4:77: 57:07:70:4c:43:a7:10:d6:d0:b7:3f:af:9f:4a:11:bf:1e:d6: 04:8b:67:70:89:6a:51:27:67:12:f0:33:d2:83:aa:e6:82:64: 10:e8:e7:50:27:b9:a7:82:0e:a1:f7:ca:fc:2e:4e:54:9a:28: e8:7c:c1:29:b8:3e:bc:93:16:1c:9a:5b:92:ba:b6:89:5e:34: 44:d7:38:1c:0a:0e:d5:20:ce:97:52:71:f7:bf:9b:c4:30:c9: 61:02:0c:a4:6f:44:f7:f0:b9:43:13:76:39:c4:55:fa:c1:dc: af:ad:a3:b3:e2:7f:0e:ce:4c:91:2f:bd:b2:17:fc:3c:9e:3e: 49:39:c0:70 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUML1E0hpklIEga69if4BI06Yj2k8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDk1QzE0NEJBQ0Q0NEMzNDQ2MkU3QTUzRjI1MkUzM0RBRDQzMUU1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrD6JX1qakrY/qNYTzeoT5U3Ge m9KPM2VxNDm1uX19vdztwmpQL/Rrm8FkiRc/pi00Gtugc0yCnN/L/5tyUCtXuHBs 47ABliCQxssIFi/35hZm+jOXVC6FUvTQUNUYAzMdGOO/phGtNWK+mQWG+TAmh+w2 cXptVf19MPS6Nrg8ayC9xVZfhVDnoW5lPhhu4h/hcqZQWEmdWdzvkUsckirPeR7M c9zRcqdolGhKOrAEI3Ee6iAQLKBr7nXPPD6U9UU0htFtl11fm2RXYwm2o3I3q/xz rbNxnzp1hi5H3EaNdqKWGYpWKDlnUP/nrsioLxDZr7ad3ZRHF9nfNAZYeA67AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlcFEus1Ew0Ri56U/JS4z2tQx5YswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ2NTgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqB1TE EzANBgkqhkiG9w0BAQsFAAOCAQEAbkndGCvTnZwN+rhLlesENBmpee/gHqH17AVu noe4pLeDrDOA4i61X/r+T4uvpdZ1bf+L4tlV6Pdb/mxAgJu0w/WPEPH7nHtw1l9i ZPYtLRzxboyQl5ZIOCDkMmhrqzG7DlzjgMv6hYvv/jsHcIzEYpQizaLssDyRKKu2 aeR3VwdwTEOnENbQtz+vn0oRvx7WBItncIlqUSdnEvAz0oOq5oJkEOjnUCe5p4IO offK/C5OVJoo6HzBKbg+vJMWHJpbkrq2iV40RNc4HAoO1SDOl1Jx97+bxDDJYQIM pG9E9/C5QxN2OcRV+sHcr62js+J/Ds5MkS+9shf8PJ4+STnAcA== -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:19 2026 by rpki-client