$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa File: AS44733.roa (raw, json) Hash identifier: /fO/lYNnNcfjTvCjMarxeXF0hH+02pO/tSdL1BH7JEI= Subject key identifier: 52:96:E4:54:AE:1C:FB:D9:1E:05:0F:92:5F:6A:95:FC:5E:1E:4D:92 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3C0DEC3D6F46DE2DA69ABC5A64C2D8EB989060D6 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 44733 IP address blocks: 2a07:54c4:18f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:0d:ec:3d:6f:46:de:2d:a6:9a:bc:5a:64:c2:d8:eb:98:90:60:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=5296E454AE1CFBD91E050F925F6A95FC5E1E4D92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d0:43:42:24:f3:96:40:6c:37:79:aa:16:a3: 8e:41:f6:cb:10:4b:cf:e5:62:43:9f:93:6c:d7:4a: 6c:2c:a6:33:12:e6:dd:bd:a6:a9:6a:6e:eb:c7:dc: 1d:f4:55:ac:96:a4:77:9b:a6:74:57:1b:86:b8:97: cd:8a:59:8b:47:14:83:37:d4:ce:ad:f5:5e:fe:24: 22:a9:07:d6:ba:d7:56:49:0e:e1:42:9b:56:95:f1: 4c:23:b9:18:3b:f3:ba:34:3f:60:41:ec:95:af:78: 99:10:13:e4:08:2c:5f:02:10:ae:1a:9b:61:9d:4d: 6c:5a:08:82:cf:b8:5d:36:71:ab:99:c3:21:56:57: 1a:6d:27:09:1a:19:62:55:27:85:d4:c5:4a:23:d0: 4e:50:23:e2:98:68:75:9f:0f:28:ee:cc:e1:72:2c: dc:a0:a9:2b:65:a5:e2:c3:4b:b8:35:7b:c1:03:d7: f6:ca:be:64:94:c7:d9:65:64:27:8d:2b:75:f6:9c: 43:47:6a:66:81:70:94:4b:44:39:8b:84:00:ee:40: 9f:09:a5:42:10:ef:ab:25:e3:fe:26:4a:be:97:03: 77:34:1e:05:54:ca:f7:34:4c:f0:06:6a:c2:96:00: 34:8e:da:a2:8c:20:d1:c8:5b:56:90:9e:44:f8:03: 63:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:96:E4:54:AE:1C:FB:D9:1E:05:0F:92:5F:6A:95:FC:5E:1E:4D:92 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS44733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:18f4::/48 Signature Algorithm: sha256WithRSAEncryption 57:e2:20:e2:ed:a7:61:26:24:2c:c0:82:1e:ab:4b:22:73:c0: f4:73:ea:ca:41:d1:e3:95:82:fa:99:02:52:d1:88:c2:3d:8e: 06:1a:db:77:9a:ee:45:f2:0a:93:5b:cb:ee:6d:f0:20:c6:c8: 06:fd:89:f0:8f:df:c6:05:35:a5:7a:a7:27:9d:20:c8:34:1a: 11:27:ca:2b:75:33:77:39:fc:5d:07:12:32:8b:61:4d:cb:55: 98:20:8d:13:4e:21:02:c3:8f:7e:b1:d3:ca:de:14:f6:32:fb: f0:0d:69:e2:b5:14:70:5f:81:8d:0c:57:cf:43:34:f7:a6:7d: 1c:e8:47:ad:3b:c6:42:e1:fd:f8:47:a9:07:e8:78:ca:12:04: cf:ac:b4:b3:9d:2f:8e:91:34:9d:8f:e9:ae:c0:89:6d:5e:f1: 0f:17:32:0a:7d:58:07:21:ba:57:38:75:87:2f:9b:5c:dc:cd: 9f:0b:c5:f5:91:a0:8c:fa:f4:0b:1d:63:88:67:b8:84:7e:96: c9:3a:72:da:be:e8:ad:49:fc:27:53:85:af:23:61:19:f0:ac: 15:33:86:3c:89:c2:f7:b3:5b:d0:63:b7:dc:6f:76:9e:6c:81: 2e:d1:67:c7:2c:48:b6:1c:0a:22:89:e2:07:47:e3:35:ba:e6: ef:83:bf:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPA3sPW9G3i2mmrxaZMLY65iQYNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDUyOTZFNDU0QUUxQ0ZCRDkxRTA1MEY5MjVGNkE5NUZDNUUxRTREOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY0ENCJPOWQGw3eaoWo45B9ssQ S8/lYkOfk2zXSmwspjMS5t29pqlqbuvH3B30VayWpHebpnRXG4a4l82KWYtHFIM3 1M6t9V7+JCKpB9a611ZJDuFCm1aV8UwjuRg787o0P2BB7JWveJkQE+QILF8CEK4a m2GdTWxaCILPuF02cauZwyFWVxptJwkaGWJVJ4XUxUoj0E5QI+KYaHWfDyjuzOFy LNygqStlpeLDS7g1e8ED1/bKvmSUx9llZCeNK3X2nENHamaBcJRLRDmLhADuQJ8J pUIQ76sl4/4mSr6XA3c0HgVUyvc0TPAGasKWADSO2qKMINHIW1aQnkT4A2P1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUpbkVK4c+9keBQ+SX2qV/F4eTZIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDQ3MzMucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE GPQwDQYJKoZIhvcNAQELBQADggEBAFfiIOLtp2EmJCzAgh6rSyJzwPRz6spB0eOV gvqZAlLRiMI9jgYa23ea7kXyCpNby+5t8CDGyAb9ifCP38YFNaV6pyedIMg0GhEn yit1M3c5/F0HEjKLYU3LVZggjRNOIQLDj36x08reFPYy+/ANaeK1FHBfgY0MV89D NPemfRzoR607xkLh/fhHqQfoeMoSBM+stLOdL46RNJ2P6a7AiW1e8Q8XMgp9WAch ulc4dYcvm1zczZ8LxfWRoIz69AsdY4hnuIR+lsk6ctq+6K1J/CdTha8jYRnwrBUz hjyJwvezW9Bjt9xvdp5sgS7RZ8csSLYcCiKJ4gdH4zW65u+Dv88= -----END CERTIFICATE-----Generated at Sat Jun 13 10:23:49 2026 by rpki-client