$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa File: AS60900.roa (raw, json) Hash identifier: fhUZHjBMsk1nGaqvyGQ+VpqpHCBumghM4K6WpdE1RhU= Subject key identifier: 3E:1A:C1:03:24:14:50:39:D8:4D:D9:AD:89:F0:34:A6:18:37:68:93 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 5B0DD48ACF7F52BC601AFFEDCEF17E04A329EE68 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 60900 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0d:d4:8a:cf:7f:52:bc:60:1a:ff:ed:ce:f1:7e:04:a3:29:ee:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=3E1AC10324145039D84DD9AD89F034A618376893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:7b:38:b0:32:2d:76:f8:6c:81:9a:29:dc: 8c:d3:b8:9e:da:e4:d1:50:1a:f7:f1:b5:6f:65:f1: 37:c3:61:17:58:03:48:d5:4d:a0:ad:bf:93:5a:99: 14:b4:bd:4d:2a:c0:50:de:a3:9d:b7:34:62:c0:c8: 63:a4:c6:ab:f3:8e:ab:6f:30:ee:ae:82:46:b7:7a: c4:0f:90:db:59:cf:dd:f4:de:15:ac:88:16:66:23: 2b:97:09:6b:49:b9:ee:d6:29:5e:1c:a0:da:3e:5f: 01:bf:46:b0:df:66:16:f2:87:9c:bc:0a:92:1f:ec: 42:e1:12:3c:f7:a4:81:ad:09:ec:9b:01:3d:e5:67: 0d:17:00:68:a3:40:d8:37:6b:ed:72:88:83:13:4c: 22:2a:c4:1e:65:25:62:d9:7b:98:07:29:ef:b1:18: c9:2a:d7:60:ec:4f:08:19:54:0f:49:a0:13:45:d2: 4a:e3:73:c3:15:21:6a:a3:87:52:04:68:3c:c7:9e: 50:61:ae:5a:75:95:2e:b6:35:92:84:0e:fe:e2:aa: 61:e1:66:40:ba:9b:bc:99:03:41:81:cf:5d:8c:12: ca:d0:3d:f8:2a:1b:ca:4f:14:f3:eb:c8:9c:17:c2: e6:94:13:0f:0c:de:e4:ce:f2:80:1e:bf:0c:37:e9: ae:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1A:C1:03:24:14:50:39:D8:4D:D9:AD:89:F0:34:A6:18:37:68:93 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60900.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 10:f5:6e:c7:d6:5f:fa:95:d3:8d:bc:0f:1e:3d:33:70:a0:ef: 1c:65:57:38:d4:bd:c9:0e:a4:93:2a:b4:52:20:a2:cc:9a:9f: 2b:3b:68:b4:3d:5b:a1:7d:f1:e5:9f:02:04:89:29:df:54:4a: a0:06:82:d9:3b:b9:8c:94:6e:0f:d1:2d:f2:75:88:67:24:6c: aa:91:69:ca:72:75:09:71:a1:77:64:c5:2d:62:20:00:2b:cf: 7c:63:fc:a3:0d:38:66:c6:ed:62:79:a5:3d:b1:d9:cb:b0:ca: 4d:e7:99:a7:88:3d:ab:d1:a1:10:7a:52:ba:62:3d:82:4d:a0: 44:a4:b3:76:ac:0b:08:37:5b:bf:eb:16:0a:ac:79:1e:b1:a3: 74:62:dc:14:63:ea:84:c2:a2:29:68:8d:47:10:96:6b:a5:c5: b7:74:6d:50:0e:1b:40:83:c6:dc:23:84:b0:7c:c6:75:33:97: 57:b3:11:36:fb:1b:f5:9b:17:05:04:58:4b:90:5f:d5:55:38: 41:4f:51:aa:1d:af:e3:a3:62:80:70:3a:15:04:90:8f:7b:d5: 64:6f:8f:3b:13:5f:04:15:04:81:3d:dd:a8:e5:a9:16:31:07: 49:f3:7f:c8:f6:54:18:2e:07:2c:0b:2f:da:10:44:09:af:5d: 92:10:cd:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWw3Uis9/UrxgGv/tzvF+BKMp7mgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDNFMUFDMTAzMjQxNDUwMzlEODRERDlBRDg5RjAzNEE2MTgzNzY4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH2Xs4sDItdvhsgZop3IzTuJ7a 5NFQGvfxtW9l8TfDYRdYA0jVTaCtv5NamRS0vU0qwFDeo523NGLAyGOkxqvzjqtv MO6ugka3esQPkNtZz9303hWsiBZmIyuXCWtJue7WKV4coNo+XwG/RrDfZhbyh5y8 CpIf7ELhEjz3pIGtCeybAT3lZw0XAGijQNg3a+1yiIMTTCIqxB5lJWLZe5gHKe+x GMkq12DsTwgZVA9JoBNF0krjc8MVIWqjh1IEaDzHnlBhrlp1lS62NZKEDv7iqmHh ZkC6m7yZA0GBz12MEsrQPfgqG8pPFPPryJwXwuaUEw8M3uTO8oAevww36a6xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPhrBAyQUUDnYTdmtifA0phg3aJMwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjA5MDAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TC sAswDQYJKoZIhvcNAQELBQADggEBABD1bsfWX/qV0428Dx49M3Cg7xxlVzjUvckO pJMqtFIgosyanys7aLQ9W6F98eWfAgSJKd9USqAGgtk7uYyUbg/RLfJ1iGckbKqR acpydQlxoXdkxS1iIAArz3xj/KMNOGbG7WJ5pT2x2cuwyk3nmaeIPavRoRB6Urpi PYJNoESks3asCwg3W7/rFgqseR6xo3Ri3BRj6oTCoilojUcQlmulxbd0bVAOG0CD xtwjhLB8xnUzl1ezETb7G/WbFwUEWEuQX9VVOEFPUaodr+OjYoBwOhUEkI971WRv jzsTXwQVBIE93ajlqRYxB0nzf8j2VBguBywLL9oQRAmvXZIQzVs= -----END CERTIFICATE-----Generated at Sat Jun 13 09:26:11 2026 by rpki-client