$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50391.roa File: AS50391.roa (raw, json) Hash identifier: IEoSxxA0R05ancaWkgd0w/4tc8DycnDN1qjIYHoC+7Y= Subject key identifier: FA:AE:AE:65:8E:3D:2A:F4:C7:AB:3F:07:96:C4:0D:39:7A:62:15:87 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 20DDF3173B423A53EDD7132E473F541A9166055B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50391.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 50391 IP address blocks: 2a07:54c4:1760::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:dd:f3:17:3b:42:3a:53:ed:d7:13:2e:47:3f:54:1a:91:66:05:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=FAAEAE658E3D2AF4C7AB3F0796C40D397A621587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bb:71:72:3b:99:2a:c0:6e:69:b8:16:98:a1: fc:fa:9a:1e:e9:32:0d:d0:1c:48:7f:7d:58:ba:3e: 8a:ed:9c:3d:26:66:cb:33:f7:1c:c0:cf:34:ed:b4: cb:b8:f8:9f:e0:f3:7b:3e:ce:6f:62:01:60:a3:72: 72:f6:c7:8b:72:6e:bf:67:20:fe:b6:4a:af:59:9b: 49:42:64:99:05:3f:84:65:3a:7c:fb:b3:3f:ca:0c: 9e:b7:cf:a4:4c:c1:0e:51:1c:87:09:5e:d5:c9:28: 72:5f:e8:fe:7b:42:f5:1b:cd:3a:88:3d:03:b3:04: dd:53:dd:c4:af:bb:17:3d:26:d0:dc:9e:bf:d1:b5: a0:81:ea:35:ef:e6:a6:99:8e:95:b8:74:35:a3:7e: 87:49:8e:26:73:f9:ea:66:1f:42:60:97:75:dc:4b: f6:48:9b:d0:4f:78:b2:78:e7:a1:3a:13:c1:c0:5d: 1d:3a:cb:d5:f6:ad:ad:d0:ed:65:91:17:77:53:50: fe:00:d6:5a:22:82:8e:ed:8e:aa:0a:cd:ae:e3:3e: 56:8e:0c:ed:2b:87:10:c1:05:27:28:11:a8:7a:de: ad:53:e0:65:96:9e:3f:f7:a4:1e:47:7a:35:d6:40: 8b:da:59:8e:8f:a7:b4:00:8c:e5:d7:e1:6d:f2:94: e3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AE:AE:65:8E:3D:2A:F4:C7:AB:3F:07:96:C4:0D:39:7A:62:15:87 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS50391.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1760::/48 Signature Algorithm: sha256WithRSAEncryption 2f:6a:6b:7d:62:cc:48:9e:49:95:b6:08:6e:9d:6e:b4:0a:3f: 20:1e:fb:e7:c1:f3:d6:21:36:bc:02:fe:bd:2f:f1:0b:70:2b: 69:fe:d6:29:73:e5:5d:0f:a8:c2:22:09:8c:ed:85:fc:e9:31: af:e8:a6:84:97:2b:90:5a:d6:ec:18:4a:aa:47:26:7a:16:07: a7:d9:4e:bf:a2:dd:9c:d7:00:e7:04:b1:92:49:ad:c1:0a:d7: 83:fe:d7:7f:44:39:55:8e:67:ce:a6:5d:01:40:74:b9:00:e3: 51:fb:fe:ad:5c:7e:93:ce:28:1b:61:16:62:da:11:f3:2b:f5: cc:90:bf:62:97:2b:4b:d8:d1:c3:81:f0:40:32:62:b1:3c:2d: 6d:ae:69:3b:ba:ef:25:83:2c:57:ef:e5:66:2c:58:c6:af:8e: 58:62:41:50:42:e5:72:2e:6d:40:3c:49:5f:53:ef:18:62:0f: 97:3b:f5:c1:9a:1e:ba:28:6a:c6:d1:1d:51:34:3e:ca:d2:dd: 61:45:c8:25:ce:02:e7:fa:4f:26:da:31:33:1d:0f:f6:57:73: da:ca:6f:e5:28:94:eb:7a:b2:51:92:7f:a1:11:8e:4e:be:e0: 1d:d1:0f:f3:dc:43:02:21:9d:54:8d:40:75:45:ec:8a:3b:c5: d6:ed:d9:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIN3zFztCOlPt1xMuRz9UGpFmBVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKEZBQUVBRTY1OEUzRDJBRjRDN0FCM0YwNzk2QzQwRDM5N0E2MjE1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChu3FyO5kqwG5puBaYofz6mh7p Mg3QHEh/fVi6PortnD0mZssz9xzAzzTttMu4+J/g83s+zm9iAWCjcnL2x4tybr9n IP62Sq9Zm0lCZJkFP4RlOnz7sz/KDJ63z6RMwQ5RHIcJXtXJKHJf6P57QvUbzTqI PQOzBN1T3cSvuxc9JtDcnr/RtaCB6jXv5qaZjpW4dDWjfodJjiZz+epmH0Jgl3Xc S/ZIm9BPeLJ456E6E8HAXR06y9X2ra3Q7WWRF3dTUP4A1loigo7tjqoKza7jPlaO DO0rhxDBBScoEah63q1T4GWWnj/3pB5HejXWQIvaWY6Pp7QAjOXX4W3ylOMhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+q6uZY49KvTHqz8HlsQNOXpiFYcwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTAzOTEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F2AwDQYJKoZIhvcNAQELBQADggEBAC9qa31izEieSZW2CG6dbrQKPyAe++fB89Yh NrwC/r0v8QtwK2n+1ilz5V0PqMIiCYzthfzpMa/opoSXK5Ba1uwYSqpHJnoWB6fZ Tr+i3ZzXAOcEsZJJrcEK14P+139EOVWOZ86mXQFAdLkA41H7/q1cfpPOKBthFmLa EfMr9cyQv2KXK0vY0cOB8EAyYrE8LW2uaTu67yWDLFfv5WYsWMavjlhiQVBC5XIu bUA8SV9T7xhiD5c79cGaHrooasbRHVE0PsrS3WFFyCXOAuf6TybaMTMdD/ZXc9rK b+UolOt6slGSf6ERjk6+4B3RD/PcQwIhnVSNQHVF7Io7xdbt2YY= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:16 2026 by rpki-client