$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa File: AS203458.roa (raw, json) Hash identifier: x+E1Ga3APuKQNLmCJOX6d/Y38nqduO8nCtCF7SuWPMQ= Subject key identifier: 7C:8C:1C:01:4F:BC:6D:FD:0E:5D:2E:05:3F:3E:77:44:61:A3:10:6A Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6316EDED2CF528D0B4D54168856510A61011CCE8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 203458 IP address blocks: 2a07:54c1:3300::/40 maxlen: 48 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:175a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:16:ed:ed:2c:f5:28:d0:b4:d5:41:68:85:65:10:a6:10:11:cc:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=7C8C1C014FBC6DFD0E5D2E053F3E774461A3106A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:64:bd:c4:bb:db:b9:27:4e:e8:79:2f:21: 10:77:7d:2e:8c:81:81:9b:e4:40:dd:26:7e:25:36: f1:a7:5e:ab:6e:fc:09:12:50:d2:da:9f:8a:e1:0c: 72:60:c8:99:34:9f:ef:75:79:f7:9c:b4:71:3b:19: 92:18:37:96:cd:b6:99:a7:b5:8c:9e:3f:bc:05:21: 8e:92:8a:c1:01:30:f6:15:de:a0:a0:0c:94:cf:43: 61:74:80:50:f6:b0:3d:1e:55:4d:66:5c:fc:01:7e: 88:66:24:d4:e7:1e:df:27:ee:9e:40:2f:5a:8e:0a: 06:e5:68:85:db:69:4a:a9:8f:dc:d2:65:3e:6b:b6: 65:8d:54:90:43:55:63:4e:e3:e2:0a:bf:78:53:23: 5c:bc:c2:b2:58:71:88:3e:f3:8b:df:a6:0a:0a:05: 50:d1:45:0a:55:9e:fd:e4:eb:bf:bb:bd:52:bd:d1: 4e:82:df:87:22:40:c6:10:d6:b3:9f:06:cb:1a:ca: bc:c1:18:81:1e:7b:25:59:e4:92:8e:3b:c7:12:33: 5f:66:65:2c:4a:69:73:9f:d5:c2:ad:3d:66:c1:70: 0f:6b:37:ce:ad:15:ea:cd:e9:ee:74:b8:df:47:d9: 9d:c0:c4:99:12:bd:9d:19:66:a5:87:15:2c:06:7d: 0e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8C:1C:01:4F:BC:6D:FD:0E:5D:2E:05:3F:3E:77:44:61:A3:10:6A X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS203458.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3300::/40 2a07:54c2:b00b::/48 2a07:54c4:175a::/48 Signature Algorithm: sha256WithRSAEncryption 21:07:a3:7d:51:57:9f:58:4b:aa:15:8a:87:74:8a:98:e8:c5: a9:7d:70:39:f1:ad:b8:15:f6:32:46:04:b2:5c:3e:13:d3:cb: 6e:7d:1c:3b:a9:4a:32:44:34:fe:90:81:fb:85:a0:ef:2d:5a: 33:46:65:62:15:6e:bc:bb:da:cb:fc:3a:27:55:ef:39:94:53: aa:d9:52:04:ba:72:1c:ec:1e:ca:3b:e3:6e:ea:55:8f:13:60: bb:63:ef:9e:19:25:1f:75:2f:62:b1:57:b4:95:a5:bb:8d:29: a5:0f:1f:42:d2:d8:6f:47:17:0f:32:79:0d:bc:0a:1e:74:49: bc:e1:5a:93:f1:95:99:66:be:fd:55:b8:69:b2:34:65:42:03: 2c:1c:c1:88:78:3f:6c:d6:f0:9b:d1:20:02:c0:6c:8d:af:a2: 47:51:46:58:fc:8e:c3:d9:81:23:1b:b6:18:f2:24:5f:03:3e: 77:bd:36:4f:7f:11:ed:73:f7:82:f0:00:f0:c6:7c:c2:62:a8: a6:ad:ca:80:ad:e2:04:bd:11:74:67:f9:17:78:93:dc:d7:6d: f3:22:95:b2:e9:47:cc:e5:aa:67:48:04:82:04:e0:fa:79:65: 78:03:69:b4:c1:6e:3d:34:e2:7a:f7:36:64:17:ac:0d:11:dd: 41:59:ff:a3 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgIUYxbt7Sz1KNC01UFohWUQphARzOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDdDOEMxQzAxNEZCQzZERkQwRTVEMkUwNTNGM0U3NzQ0NjFBMzEwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPGS9xLvbuSdO6HkvIRB3fS6M gYGb5EDdJn4lNvGnXqtu/AkSUNLan4rhDHJgyJk0n+91efectHE7GZIYN5bNtpmn tYyeP7wFIY6SisEBMPYV3qCgDJTPQ2F0gFD2sD0eVU1mXPwBfohmJNTnHt8n7p5A L1qOCgblaIXbaUqpj9zSZT5rtmWNVJBDVWNO4+IKv3hTI1y8wrJYcYg+84vfpgoK BVDRRQpVnv3k67+7vVK90U6C34ciQMYQ1rOfBssayrzBGIEeeyVZ5JKOO8cSM19m ZSxKaXOf1cKtPWbBcA9rN86tFerN6e50uN9H2Z3AxJkSvZ0ZZqWHFSwGfQ4NAgMB AAGjggJOMIICSjAdBgNVHQ4EFgQUfIwcAU+8bf0OXS4FPz53RGGjEGowHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjAzNDU4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAAjAaAwYAKgdU wTMDBwAqB1TCsAsDBwAqB1TEF1owDQYJKoZIhvcNAQELBQADggEBACEHo31RV59Y S6oViod0ipjoxal9cDnxrbgV9jJGBLJcPhPTy259HDupSjJENP6QgfuFoO8tWjNG ZWIVbry72sv8OidV7zmUU6rZUgS6chzsHso7427qVY8TYLtj754ZJR91L2KxV7SV pbuNKaUPH0LS2G9HFw8yeQ28Ch50SbzhWpPxlZlmvv1VuGmyNGVCAywcwYh4P2zW 8JvRIALAbI2vokdRRlj8jsPZgSMbthjyJF8DPne9Nk9/Ee1z94LwAPDGfMJiqKat yoCt4gS9EXRn+Rd4k9zXbfMilbLpR8zlqmdIBIIE4Pp5ZXgDabTBbj004nr3NmQX rA0R3UFZ/6M= -----END CERTIFICATE-----Generated at Thu Jun 11 23:49:37 2026 by rpki-client