$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS951.roa File: AS951.roa (raw, json) Hash identifier: gkLoD7MRbphxtcHFhjDh9QMCb+nGJJzUE3DaVDseqcc= Subject key identifier: 87:39:29:89:E9:85:05:68:F0:15:55:FB:14:08:98:AB:E9:B3:4A:67 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 729D2F85A990859F4F91DEC4520AF4525BC6B0E4 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS951.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 951 IP address blocks: 2a07:54c4:1751::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9d:2f:85:a9:90:85:9f:4f:91:de:c4:52:0a:f4:52:5b:c6:b0:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=87392989E9850568F01555FB140898ABE9B34A67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:84:f0:8b:d4:94:b8:e3:8d:c0:81:b1:51: 1f:fd:8c:26:47:72:a9:48:84:01:f9:5c:24:de:fc: 0f:dd:60:1e:5e:b6:09:d5:d4:83:fa:fa:a6:d1:2e: c2:8c:27:02:b7:84:5b:b3:1c:c0:a9:9d:17:3d:6b: 7a:30:83:ac:ec:d2:ed:a0:dd:b3:a2:7a:59:2a:8e: d0:71:92:df:90:92:f8:98:b1:18:e5:bd:f7:df:15: f3:b8:00:28:22:3f:94:10:2b:c2:2f:4b:22:6c:18: a7:c0:dd:f1:9a:2c:cd:93:ac:73:fe:0f:22:49:ad: e8:e8:6a:ca:2b:76:20:4c:98:aa:f4:d0:7b:fe:bf: 23:aa:35:1a:5e:0f:fa:3a:d3:20:f0:ce:91:84:55: ff:65:0f:f6:dc:48:9c:28:d8:f4:40:a3:ed:48:68: 11:4e:24:8d:b4:8f:64:97:7e:c0:8f:48:cf:cb:17: 25:1c:19:da:fd:37:1a:dc:57:1d:a7:16:df:a1:d0: b9:c1:0b:18:9f:03:c4:f1:d5:18:cf:9f:70:da:12: da:58:ef:6f:52:c2:1a:a8:65:67:3d:38:27:50:66: 38:45:fe:06:d9:32:2c:10:4b:eb:99:be:b5:2e:47: 00:81:67:19:88:c6:b9:68:c7:d9:20:8c:d4:f0:b0: 32:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:39:29:89:E9:85:05:68:F0:15:55:FB:14:08:98:AB:E9:B3:4A:67 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS951.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:1751::/48 Signature Algorithm: sha256WithRSAEncryption 60:52:ce:4d:9a:62:60:fd:e2:bc:72:95:7a:d9:bd:c2:76:33: f9:32:cd:c0:90:5d:1d:79:9b:67:94:e2:c1:cd:80:b6:20:e2: df:b4:21:51:19:a2:a3:32:78:36:f8:86:a2:a5:9b:0c:13:40: 86:29:15:c5:0e:24:bf:ae:25:4f:cd:35:db:d8:c5:8d:ea:69: bf:86:44:5d:e4:73:b9:6b:dd:d2:d3:0e:b7:45:de:45:79:9b: e4:eb:b0:01:f7:63:f2:a0:a1:5d:9f:f3:d1:f9:1d:5d:d7:68: dc:9a:98:a8:48:c6:3e:96:19:1f:29:a6:eb:93:83:bb:b2:17: b4:53:0d:ef:ab:cb:66:7b:6b:8d:1e:aa:28:21:db:c6:01:7b: 1d:f8:37:f3:1e:46:30:00:27:10:8b:f2:7f:41:8d:53:80:80: 85:c6:7a:73:c5:fe:af:59:8f:2b:23:56:9f:55:28:1a:65:a4: cb:ba:37:84:31:2c:08:c3:69:40:b2:a6:f7:4b:b0:75:4d:ff: 02:17:c0:35:3c:05:06:f2:59:ff:f1:b7:3d:e1:cd:ce:82:a8: 85:dc:a9:1f:14:cc:67:e8:2c:97:85:1f:2a:b1:7f:ac:47:8d: ef:b0:25:f3:51:01:29:06:d2:27:11:c6:7e:0d:84:eb:24:4e: 8c:34:41:0c -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUcp0vhamQhZ9Pkd7EUgr0UlvGsOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDg3MzkyOTg5RTk4NTA1NjhGMDE1NTVGQjE0MDg5OEFCRTlCMzRBNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPwITwi9SUuOONwIGxUR/9jCZH cqlIhAH5XCTe/A/dYB5etgnV1IP6+qbRLsKMJwK3hFuzHMCpnRc9a3owg6zs0u2g 3bOielkqjtBxkt+QkviYsRjlvfffFfO4ACgiP5QQK8IvSyJsGKfA3fGaLM2TrHP+ DyJJrejoasordiBMmKr00Hv+vyOqNRpeD/o60yDwzpGEVf9lD/bcSJwo2PRAo+1I aBFOJI20j2SXfsCPSM/LFyUcGdr9NxrcVx2nFt+h0LnBCxifA8Tx1RjPn3DaEtpY 729SwhqoZWc9OCdQZjhF/gbZMiwQS+uZvrUuRwCBZxmIxrlox9kgjNTwsDKbAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUhzkpiemFBWjwFVX7FAiYq+mzSmcwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTOTUxLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUxBdR MA0GCSqGSIb3DQEBCwUAA4IBAQBgUs5NmmJg/eK8cpV62b3CdjP5Ms3AkF0deZtn lOLBzYC2IOLftCFRGaKjMng2+IaipZsME0CGKRXFDiS/riVPzTXb2MWN6mm/hkRd 5HO5a93S0w63Rd5FeZvk67AB92PyoKFdn/PR+R1d12jcmpioSMY+lhkfKabrk4O7 she0Uw3vq8tme2uNHqooIdvGAXsd+DfzHkYwACcQi/J/QY1TgICFxnpzxf6vWY8r I1afVSgaZaTLujeEMSwIw2lAsqb3S7B1Tf8CF8A1PAUG8ln/8bc94c3OgqiF3Kkf FMxn6CyXhR8qsX+sR43vsCXzUQEpBtInEcZ+DYTrJE6MNEEM -----END CERTIFICATE-----Generated at Sat Jun 13 09:25:23 2026 by rpki-client