$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: u3U3M1autKtu+KZ2xfcqAIlsDIBhRKU7IuT7pAaLXfc= Subject key identifier: E9:A1:1E:D6:FB:50:8E:DA:37:FE:CE:65:B8:2A:DC:FE:A8:28:68:FC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 221003F646C752E3CECA38024B55E34D2F33DB21 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47272.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 47272 IP address blocks: 2a07:54c4:175f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:10:03:f6:46:c7:52:e3:ce:ca:38:02:4b:55:e3:4d:2f:33:db:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=E9A11ED6FB508EDA37FECE65B82ADCFEA82868FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:2f:87:41:38:85:41:cb:37:ec:f3:4d:ca: 79:2d:f8:4a:94:39:26:6f:4f:39:ba:7e:c2:1e:66: 0a:6d:05:1d:89:31:a2:c7:1a:0e:e9:88:43:c8:83: 72:86:ee:a6:69:d7:3a:7a:e8:4e:ad:3c:57:32:88: cd:25:9d:d6:5c:79:60:ea:12:9f:8f:74:fe:49:0f: b3:06:b8:47:63:2d:49:de:a0:70:e0:9b:84:44:0a: fe:01:a3:ce:e7:ae:bc:e5:f3:58:d3:35:bd:5a:42: 38:44:a3:6a:67:37:33:d1:c5:42:1a:1b:2b:ff:63: c1:14:c7:ce:21:d9:69:69:6d:41:37:68:2d:89:ab: d1:0b:98:c3:f4:c3:6a:c1:92:17:d5:f3:21:e4:ed: c2:cd:ef:45:28:98:0c:9f:19:15:dc:d1:4d:40:ba: 39:33:db:70:1d:86:2c:08:3e:1d:5f:42:7f:ea:4b: f0:09:91:cd:77:bb:56:58:43:a9:44:95:bf:17:74: b9:61:af:0a:17:82:ba:db:8e:82:12:7f:e9:b5:d3: 45:da:77:32:5e:34:96:87:e3:65:5e:44:ea:88:be: eb:b3:34:c6:71:24:ae:93:58:27:c3:a8:2e:50:59: 2c:8f:5f:98:f8:35:0b:72:70:d8:e7:dc:ab:1f:86: 64:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A1:1E:D6:FB:50:8E:DA:37:FE:CE:65:B8:2A:DC:FE:A8:28:68:FC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:175f::/48 Signature Algorithm: sha256WithRSAEncryption ac:52:41:b8:28:63:29:2f:8b:e5:a0:5c:93:79:61:73:a7:87: 90:41:ef:14:2f:9c:95:07:87:96:21:59:b8:df:3b:f9:16:c8: 4d:f5:86:a8:e8:2c:84:40:b4:a4:0f:20:fc:a8:6e:53:42:3f: 49:6a:8a:2a:23:d5:11:54:5b:91:aa:5e:39:ab:15:ac:99:7e: ff:d6:6f:2f:93:03:28:f1:b2:e9:e1:d6:32:5a:1b:6a:c5:2b: 73:5a:64:f1:f5:81:01:3e:b5:02:c1:c7:13:f8:cd:9e:98:e8: 0b:76:ee:65:4f:8e:da:a6:4a:4b:41:cd:6c:af:ce:5d:49:31: 43:e4:e4:d8:8e:52:dd:37:08:24:36:d3:60:71:c0:92:cc:19: f0:4a:ff:76:df:bd:62:6f:b3:a9:4b:90:8d:be:6f:05:7d:7f: f1:e1:41:3e:b5:2b:85:76:6c:60:c2:cb:fa:15:19:7b:25:6c: 26:19:d7:ca:23:3c:3b:4c:e0:e7:88:a7:55:e1:1d:aa:52:84: 60:b2:a5:72:ac:fd:80:3d:38:2b:c1:44:bf:e7:6b:3b:bb:3c: 6b:a4:4b:d2:1f:67:b2:0d:86:ad:c8:84:bb:7f:5f:eb:51:7e: e8:53:f7:16:07:ed:17:90:73:5a:56:c3:bb:db:ed:24:69:99: 6c:d8:e6:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIhAD9kbHUuPOyjgCS1XjTS8z2yEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKEU5QTExRUQ2RkI1MDhFREEzN0ZFQ0U2NUI4MkFEQ0ZFQTgyODY4RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGBy+HQTiFQcs37PNNynkt+EqU OSZvTzm6fsIeZgptBR2JMaLHGg7piEPIg3KG7qZp1zp66E6tPFcyiM0lndZceWDq Ep+PdP5JD7MGuEdjLUneoHDgm4RECv4Bo87nrrzl81jTNb1aQjhEo2pnNzPRxUIa Gyv/Y8EUx84h2WlpbUE3aC2Jq9ELmMP0w2rBkhfV8yHk7cLN70UomAyfGRXc0U1A ujkz23AdhiwIPh1fQn/qS/AJkc13u1ZYQ6lElb8XdLlhrwoXgrrbjoISf+m100Xa dzJeNJaH42VeROqIvuuzNMZxJK6TWCfDqC5QWSyPX5j4NQtycNjn3KsfhmTdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6aEe1vtQjto3/s5luCrc/qgoaPwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDcyNzIucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F18wDQYJKoZIhvcNAQELBQADggEBAKxSQbgoYykvi+WgXJN5YXOnh5BB7xQvnJUH h5YhWbjfO/kWyE31hqjoLIRAtKQPIPyoblNCP0lqiioj1RFUW5GqXjmrFayZfv/W by+TAyjxsunh1jJaG2rFK3NaZPH1gQE+tQLBxxP4zZ6Y6At27mVPjtqmSktBzWyv zl1JMUPk5NiOUt03CCQ202BxwJLMGfBK/3bfvWJvs6lLkI2+bwV9f/HhQT61K4V2 bGDCy/oVGXslbCYZ18ojPDtM4OeIp1XhHapShGCypXKs/YA9OCvBRL/nazu7PGuk S9IfZ7INhq3IhLt/X+tRfuhT9xYH7ReQc1pWw7vb7SRpmWzY5oc= -----END CERTIFICATE-----Generated at Sat Jun 13 11:33:40 2026 by rpki-client