$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa File: AS59678.roa (raw, json) Hash identifier: mEL7oUgrer/dwtRYJwO8bqocZfKJO7jeQVkJtDdKswQ= Subject key identifier: 6E:89:8E:B3:9E:96:B1:6D:01:BC:78:4B:08:D2:C7:83:3F:84:FC:B8 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 7D2778FF6DA5BB404E6DADA94953C254C142B265 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 59678 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:27:78:ff:6d:a5:bb:40:4e:6d:ad:a9:49:53:c2:54:c1:42:b2:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=6E898EB39E96B16D01BC784B08D2C7833F84FCB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b2:c4:4b:cd:7a:25:b8:35:55:eb:2a:c2:07: 13:e9:38:97:69:21:4c:8d:0c:1e:73:1d:3a:3c:d8: d3:25:cd:18:91:4d:53:22:e1:8d:e7:84:cb:61:e9: 56:ba:84:94:c8:40:a1:17:ed:39:e1:c4:2c:9e:30: ef:8a:6c:75:68:9d:bb:a6:79:e5:b5:39:60:a6:26: 3d:ce:09:2e:a9:ae:92:0a:91:0b:9a:87:ad:a3:ad: 55:ff:b4:85:04:c9:7a:c5:6c:6b:37:ff:c0:cd:67: f3:b8:de:7b:9c:78:4f:cd:b6:9b:29:8f:4e:81:49: 4b:d3:92:74:25:aa:ca:b3:5e:5e:e8:9b:28:d9:1c: 55:4b:e9:d0:ee:d6:b4:d5:9f:ff:60:cf:c3:10:0c: f8:98:e6:97:f9:00:a7:87:0b:6b:96:b1:f1:dd:36: 96:98:47:4f:83:b5:05:ea:5c:1d:08:74:63:00:60: e5:f0:b8:2d:3c:eb:62:1e:af:62:04:95:5b:00:34: 92:a7:75:2a:bd:79:aa:8e:5c:7f:a8:00:c0:1d:3c: f3:1b:ba:cc:dc:16:b8:b5:61:15:df:62:80:0c:f5: e0:b9:fc:44:96:48:90:1d:93:d2:19:b3:20:a3:58: ef:68:3c:12:3b:f0:a6:1e:5d:a7:51:d6:51:2b:0f: 78:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:89:8E:B3:9E:96:B1:6D:01:BC:78:4B:08:D2:C7:83:3F:84:FC:B8 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS59678.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 24:1f:d1:34:3e:4b:d7:fd:62:43:58:8e:90:43:7f:4e:47:cb: 01:99:e6:68:14:d7:0b:a5:bf:e4:48:51:12:fd:b9:06:5e:96: 44:9d:41:98:5f:60:e7:0c:bb:f8:b9:2e:bd:3e:e5:4e:5c:5a: 72:e5:f2:93:de:79:3c:06:21:78:4a:ac:96:a6:1a:4d:ad:88: 69:4c:ac:93:3b:f0:b3:ac:1b:ab:60:56:f8:4f:4a:89:f2:7d: f0:b1:13:81:74:bc:82:bc:f6:59:da:3b:91:21:13:26:9b:03: 6c:6e:4a:09:fe:8b:7c:63:69:28:fd:16:2f:ed:06:75:b6:39: 51:73:e0:8f:2f:43:59:c2:f3:9e:d7:b0:0e:28:49:dc:10:44: 04:6e:11:b7:82:e7:6d:40:9e:9d:92:ae:98:64:5a:99:ba:64: 8a:6f:96:3a:fa:bb:74:de:f9:52:d0:38:15:58:da:db:71:e8: 85:30:1b:27:75:cc:a3:d0:d7:89:57:dd:3f:65:ab:ea:5b:79: 19:d4:e2:ee:0e:9f:bf:4d:5a:be:62:b2:5b:48:2f:e9:4c:76: d2:31:13:45:7b:d8:a8:b8:6d:86:59:b3:81:b1:87:e4:c2:14: 82:e9:8b:04:35:52:80:5d:a3:ca:23:ac:7a:c2:e2:6e:37:98: 1a:ce:51:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfSd4/22lu0BOba2pSVPCVMFCsmUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDZFODk4RUIzOUU5NkIxNkQwMUJDNzg0QjA4RDJDNzgzM0Y4NEZDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvssRLzXoluDVV6yrCBxPpOJdp IUyNDB5zHTo82NMlzRiRTVMi4Y3nhMth6Va6hJTIQKEX7TnhxCyeMO+KbHVonbum eeW1OWCmJj3OCS6prpIKkQuah62jrVX/tIUEyXrFbGs3/8DNZ/O43nuceE/Ntpsp j06BSUvTknQlqsqzXl7omyjZHFVL6dDu1rTVn/9gz8MQDPiY5pf5AKeHC2uWsfHd NpaYR0+DtQXqXB0IdGMAYOXwuC0862Ier2IElVsANJKndSq9eaqOXH+oAMAdPPMb uszcFri1YRXfYoAM9eC5/ESWSJAdk9IZsyCjWO9oPBI78KYeXadR1lErD3jnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbomOs56WsW0BvHhLCNLHgz+E/LgwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTk2Nzgucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBACQf0TQ+S9f9YkNYjpBDf05HywGZ5mgU1wul v+RIURL9uQZelkSdQZhfYOcMu/i5Lr0+5U5cWnLl8pPeeTwGIXhKrJamGk2tiGlM rJM78LOsG6tgVvhPSonyffCxE4F0vIK89lnaO5EhEyabA2xuSgn+i3xjaSj9Fi/t BnW2OVFz4I8vQ1nC857XsA4oSdwQRARuEbeC521Anp2SrphkWpm6ZIpvljr6u3Te +VLQOBVY2ttx6IUwGyd1zKPQ14lX3T9lq+pbeRnU4u4On79NWr5isltIL+lMdtIx E0V72Ki4bYZZs4Gxh+TCFILpiwQ1UoBdo8ojrHrC4m43mBrOUbA= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:20 2026 by rpki-client