$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa File: AS48436.roa (raw, json) Hash identifier: f17QgXYaIsIaSP3oA/QJo5/HRGzKAGMGb74Wv70EOVw= Subject key identifier: C2:57:D4:27:89:8C:2E:E8:77:76:8B:5D:62:CF:A0:1A:6C:D9:F8:FD Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 3D5B433F8C8A8AC718BB96DC424F897A68A21A88 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 48436 IP address blocks: 2a07:54c1:c1e0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Jun 2026 22:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5b:43:3f:8c:8a:8a:c7:18:bb:96:dc:42:4f:89:7a:68:a2:1a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=C257D427898C2EE877768B5D62CFA01A6CD9F8FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:06:bb:60:b5:85:1b:f2:11:a0:3d:52:48: e3:51:9c:be:8f:7a:d0:b8:d4:51:e1:f4:17:f9:be: 5e:39:e6:98:03:1a:a2:21:b8:f6:a6:bb:01:96:10: 8b:18:dc:7e:70:2d:30:8e:1d:ba:4e:b1:11:60:96: bb:2f:95:2a:f0:aa:db:59:55:60:6e:39:66:6f:45: 07:0c:f8:43:14:b0:52:d7:57:f8:65:39:0f:fd:d2: ea:4b:7e:05:be:59:34:da:ba:13:29:06:bb:39:b9: 2f:b0:a1:36:e1:85:95:e9:1a:d3:d3:b0:a3:dd:f2: ee:84:23:c4:76:a3:6d:bd:88:ed:be:0a:b8:f8:81: 5a:b6:e2:1e:98:91:75:c0:a8:bc:12:c4:b1:9c:fc: 6a:d1:ec:19:ec:ad:b0:88:51:fd:1b:a4:aa:f7:bd: b7:51:ac:78:e9:ba:71:1a:82:a3:e8:88:e5:bd:8d: fc:af:af:37:c4:ca:0f:79:6c:51:f9:a5:28:c7:ea: ee:aa:75:83:76:5e:d1:b9:5f:ae:d8:28:d9:a6:dc: 0d:41:7c:75:cd:57:9b:23:68:90:81:06:b0:c0:4f: 8b:a5:d0:60:0c:d5:4a:2b:f4:1f:aa:4b:5c:bb:fe: 5f:94:aa:43:e7:52:ab:32:f5:38:4c:88:0e:03:92: f6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:57:D4:27:89:8C:2E:E8:77:76:8B:5D:62:CF:A0:1A:6C:D9:F8:FD X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS48436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c1e0::/44 Signature Algorithm: sha256WithRSAEncryption 51:65:5c:f1:81:18:7e:d0:ca:c6:a5:e2:a6:48:a7:bc:52:48: 6e:4a:bc:86:69:4b:e6:7f:37:f6:e8:ae:31:45:1a:13:4a:c4: f8:63:76:bd:e2:8a:42:8c:49:ca:34:af:3b:17:18:77:72:c9: 16:30:48:aa:20:71:a0:26:0f:43:7c:60:92:cf:f8:07:9f:91: d2:fd:b5:62:b0:c4:15:f9:cd:a9:c4:03:c3:70:90:5a:a9:c2: f9:93:2c:a5:ea:38:a9:de:99:64:45:71:f5:6d:ad:3f:af:0f: 42:c7:96:86:d3:56:be:88:33:bb:64:58:2d:72:d3:33:0d:00: e5:77:56:40:eb:c1:a5:c3:a1:82:12:aa:3b:7b:d8:13:55:77: 7a:67:8f:06:0b:b7:f7:8c:dc:0c:3d:14:20:4a:25:d9:4e:36: b2:c2:c9:15:6c:d5:06:10:78:83:2c:7a:68:c4:c1:a1:0a:51: af:67:62:7d:49:be:07:ad:04:a8:1a:59:0b:b9:d1:4b:3a:da: b2:43:de:d3:64:be:0f:33:42:45:3f:7b:61:a9:12:6a:a8:90: 2d:56:4a:5b:ec:29:83:f6:de:d7:ce:0a:10:0f:18:17:e3:df: ac:f4:d1:94:d6:01:c2:a6:91:c3:d5:20:a8:00:40:74:ce:44: a5:bd:f1:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPVtDP4yKiscYu5bcQk+JemiiGogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKEMyNTdENDI3ODk4QzJFRTg3Nzc2OEI1RDYyQ0ZBMDFBNkNEOUY4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6uAa7YLWFG/IRoD1SSONRnL6P etC41FHh9Bf5vl455pgDGqIhuPamuwGWEIsY3H5wLTCOHbpOsRFglrsvlSrwqttZ VWBuOWZvRQcM+EMUsFLXV/hlOQ/90upLfgW+WTTauhMpBrs5uS+woTbhhZXpGtPT sKPd8u6EI8R2o229iO2+Crj4gVq24h6YkXXAqLwSxLGc/GrR7BnsrbCIUf0bpKr3 vbdRrHjpunEagqPoiOW9jfyvrzfEyg95bFH5pSjH6u6qdYN2XtG5X67YKNmm3A1B fHXNV5sjaJCBBrDAT4ul0GAM1Uor9B+qS1y7/l+UqkPnUqsy9ThMiA4DkvYBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwlfUJ4mMLuh3dotdYs+gGmzZ+P0wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDg0MzYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQqB1TB weAwDQYJKoZIhvcNAQELBQADggEBAFFlXPGBGH7Qysal4qZIp7xSSG5KvIZpS+Z/ N/borjFFGhNKxPhjdr3iikKMSco0rzsXGHdyyRYwSKogcaAmD0N8YJLP+AefkdL9 tWKwxBX5zanEA8NwkFqpwvmTLKXqOKnemWRFcfVtrT+vD0LHlobTVr6IM7tkWC1y 0zMNAOV3VkDrwaXDoYISqjt72BNVd3pnjwYLt/eM3Aw9FCBKJdlONrLCyRVs1QYQ eIMsemjEwaEKUa9nYn1JvgetBKgaWQu50Us62rJD3tNkvg8zQkU/e2GpEmqokC1W SlvsKYP23tfOChAPGBfj36z00ZTWAcKmkcPVIKgAQHTORKW98bw= -----END CERTIFICATE-----Generated at Wed Jun 17 08:47:03 2026 by rpki-client