$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52041.roa File: AS52041.roa (raw, json) Hash identifier: Z3EuQcCYB6mLoK3kRLFsxWdmTZ0BdZg8JY1uFAZOvCE= Subject key identifier: E1:64:60:E4:74:95:52:BD:15:88:9F:59:C2:7E:18:3E:E2:5F:03:6E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 305DD3074FA2AFE9F4AD0E13358B34B1938C2A0A Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52041.roa Signing time: Fri 05 Jun 2026 08:45:54 +0000 ROA not before: Fri 05 Jun 2026 08:40:54 +0000 ROA not after: Fri 04 Jun 2027 08:45:54 +0000 asID: 52041 IP address blocks: 2a07:54c4:174c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:5d:d3:07:4f:a2:af:e9:f4:ad:0e:13:35:8b:34:b1:93:8c:2a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:54 2026 GMT Not After : Jun 4 08:45:54 2027 GMT Subject: CN=E16460E4749552BD15889F59C27E183EE25F036E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d9:fc:63:19:4e:d0:42:d5:74:e8:23:7a:de: 12:a8:69:ea:63:b6:4a:81:e1:9c:d1:53:fc:88:60: f3:71:de:24:2e:27:7b:c2:b8:01:c8:a2:f9:2e:bb: 7e:05:2f:a4:69:bf:c9:e7:b2:29:32:8b:45:96:c2: 88:ac:b0:64:9b:44:00:76:de:17:81:b3:f3:62:4f: dc:24:c0:12:d0:8d:42:f9:16:e9:70:b8:32:58:6b: 04:ef:c1:cd:06:f9:29:23:a7:a4:60:58:16:47:41: 40:bd:dd:25:bc:90:01:e7:23:d6:9a:47:2c:f2:ab: 40:98:f7:13:02:91:97:b2:00:cb:a4:dc:a8:dc:1e: 21:4a:9f:62:a0:39:cb:47:79:62:92:b1:f0:28:3f: fd:9c:a2:e9:cf:54:3a:f9:2e:ac:1f:aa:ff:1d:6c: a1:7c:7e:2f:72:e9:3a:ae:a9:3e:82:17:22:b1:17: 83:e8:33:ed:21:1b:2f:dc:96:42:8c:aa:6b:6e:f3: 4a:9d:75:5c:b7:94:0e:e5:d7:18:ae:84:ba:14:67: 16:8b:d8:48:97:44:50:73:1d:04:ad:9c:d5:8b:8a: f0:92:c4:24:5f:39:ba:d0:81:d3:02:87:9f:37:13: 18:55:8d:12:59:35:6a:7e:40:29:be:e2:a2:94:00: 4c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:64:60:E4:74:95:52:BD:15:88:9F:59:C2:7E:18:3E:E2:5F:03:6E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52041.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174c::/48 Signature Algorithm: sha256WithRSAEncryption 3e:df:25:66:a7:0c:50:9f:f9:d2:19:4a:17:dc:24:0c:55:24: 5c:d5:9b:f0:19:ee:a2:f4:60:75:5c:33:f0:a9:a7:16:0e:1b: 4f:a5:3b:57:a4:7b:a9:c2:29:2a:10:37:fa:f3:66:ef:c9:a0: 22:ca:33:46:7c:08:a7:b7:ce:b7:c3:68:0a:ce:50:51:97:f4: b5:4b:09:3d:e0:f3:1f:52:59:1c:7b:e5:a7:09:81:ba:1f:29: 98:2f:a5:16:f5:90:0d:3c:20:e3:04:f7:a3:a9:4b:16:f8:41: e5:86:22:43:b0:fe:03:2b:d4:f2:9b:40:79:ef:9b:dc:bc:c1: 67:a5:f0:52:a2:2c:aa:78:be:40:02:9d:e4:de:b5:44:ff:18: ed:72:18:97:9d:19:65:cd:f6:99:88:3e:2b:d2:f9:e9:02:5e: 09:c1:41:26:5c:16:2d:7d:35:48:bd:c8:6e:44:4e:07:9a:08: 4e:f0:0c:9a:97:9e:2f:af:10:92:cf:34:18:8c:76:aa:de:60: a6:7c:e3:7c:c1:ac:b2:3f:c7:1c:da:d5:8f:c7:d5:ae:fc:fc: 55:2d:7f:cf:09:d8:d5:9b:3c:8a:f5:09:da:5f:c3:6c:87:ee: d8:2b:f3:02:5e:b7:1e:ce:70:c2:28:48:d3:f7:41:90:1f:71: 83:d3:53:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMF3TB0+ir+n0rQ4TNYs0sZOMKgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTRaFw0yNzA2MDQwODQ1NTRaMDMxMTAvBgNV BAMTKEUxNjQ2MEU0NzQ5NTUyQkQxNTg4OUY1OUMyN0UxODNFRTI1RjAzNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDw2fxjGU7QQtV06CN63hKoaepj tkqB4ZzRU/yIYPNx3iQuJ3vCuAHIovkuu34FL6Rpv8nnsikyi0WWwoissGSbRAB2 3heBs/NiT9wkwBLQjUL5FulwuDJYawTvwc0G+Skjp6RgWBZHQUC93SW8kAHnI9aa Ryzyq0CY9xMCkZeyAMuk3KjcHiFKn2KgOctHeWKSsfAoP/2counPVDr5Lqwfqv8d bKF8fi9y6TquqT6CFyKxF4PoM+0hGy/clkKMqmtu80qddVy3lA7l1xiuhLoUZxaL 2EiXRFBzHQStnNWLivCSxCRfObrQgdMCh583ExhVjRJZNWp+QCm+4qKUAEzhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4WRg5HSVUr0ViJ9Zwn4YPuJfA24wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTIwNDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0wwDQYJKoZIhvcNAQELBQADggEBAD7fJWanDFCf+dIZShfcJAxVJFzVm/AZ7qL0 YHVcM/CppxYOG0+lO1eke6nCKSoQN/rzZu/JoCLKM0Z8CKe3zrfDaArOUFGX9LVL CT3g8x9SWRx75acJgbofKZgvpRb1kA08IOME96OpSxb4QeWGIkOw/gMr1PKbQHnv m9y8wWel8FKiLKp4vkACneTetUT/GO1yGJedGWXN9pmIPivS+ekCXgnBQSZcFi19 NUi9yG5ETgeaCE7wDJqXni+vEJLPNBiMdqreYKZ843zBrLI/xxza1Y/H1a78/FUt f88J2NWbPIr1Cdpfw2yH7tgr8wJetx7OcMIoSNP3QZAfcYPTU44= -----END CERTIFICATE-----Generated at Sat Jun 13 10:44:01 2026 by rpki-client