$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa File: AS204508.roa (raw, json) Hash identifier: NoBMSruNAbtvvy5tOrdZY0AfyFJ8eXesz1TfdBcPRVQ= Subject key identifier: 5D:62:D4:21:FA:50:3A:23:E7:10:22:9D:5E:1B:A8:42:FD:03:AA:8D Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 33DD8A11BE0C5EFC3540A064864CE42E7113680A Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 204508 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 11:48:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dd:8a:11:be:0c:5e:fc:35:40:a0:64:86:4c:e4:2e:71:13:68:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=5D62D421FA503A23E710229D5E1BA842FD03AA8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c4:2d:16:8c:4e:7f:7c:0b:01:67:cf:0a:29: b9:e4:ec:6a:6d:05:64:d4:c2:02:ed:b4:dd:02:8c: 05:5f:49:9c:92:74:40:79:6c:52:cb:ae:b8:85:ea: 66:6f:f6:78:0d:4c:1b:39:31:31:fc:aa:63:c0:85: 7b:c9:36:09:72:f8:ce:c9:d0:d9:ea:1c:f5:00:79: b7:f4:c3:18:30:44:f2:80:eb:57:97:a6:68:39:70: 52:80:95:5b:2a:00:8a:0e:13:5f:78:e2:5b:1c:ee: 53:56:bf:4a:b2:84:bd:1c:f8:0e:7a:68:e7:64:60: 6f:e4:83:3d:bc:07:9a:71:0b:09:2e:22:b5:66:87: 65:83:f7:80:7f:84:1e:20:08:97:97:30:0e:97:d4: f1:70:ce:75:01:54:83:08:25:22:cf:93:0c:18:d7: e8:20:f7:0c:25:fc:95:55:ab:35:36:d5:7b:b7:c2: 88:70:e0:fb:68:f7:b9:e3:30:93:b1:b4:cc:e6:14: 88:2c:05:5b:7a:20:f0:c1:e3:61:f3:2a:11:62:c5: b2:3a:f6:4a:c3:0f:2c:62:c0:be:0a:55:c9:6b:aa: 09:0f:28:c9:b2:f7:b5:0a:29:d6:3e:b6:c5:47:bc: 0d:fd:ab:0e:40:c5:fb:1f:1b:31:34:64:93:00:2e: 69:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:62:D4:21:FA:50:3A:23:E7:10:22:9D:5E:1B:A8:42:FD:03:AA:8D X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS204508.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 93:a5:bf:d7:ef:58:b0:4c:ba:49:d4:1c:30:b5:34:b2:53:4d: 48:40:07:aa:cf:eb:24:a5:49:c4:33:6e:05:13:6f:7c:87:55: fb:43:b6:09:ef:df:92:13:11:56:bc:b6:c1:ca:c4:bf:77:9d: 05:c4:9a:e6:a2:2a:0c:bd:62:a2:de:f0:18:2c:0f:75:91:3b: 78:43:75:7c:e1:18:dc:01:a8:68:f2:d6:69:93:23:e7:1e:46: b3:77:40:05:d1:61:5b:54:3f:1d:85:ff:8b:50:ef:01:5d:69: 2a:a3:4a:1c:32:78:19:86:0d:ba:9e:b9:54:38:b5:9a:07:37: 6a:16:b8:69:54:ab:70:35:60:88:24:0f:4f:16:b4:af:5a:d3: 4a:b4:06:aa:50:22:24:9b:a3:e2:fc:31:19:63:3e:76:11:56: f2:c6:c5:c3:11:27:ed:6e:70:dc:c2:d0:75:28:aa:45:35:b1: 3f:dd:9b:51:03:2b:e9:36:c6:51:db:e7:90:b1:5f:53:1b:4e: c9:c5:8f:43:49:1b:0e:d7:e6:7f:4e:0e:71:06:83:16:5b:b8: dd:eb:b9:80:c2:31:01:27:7b:27:15:50:38:a0:18:8b:9b:c7: 78:ca:5d:37:fe:1f:e0:56:53:64:3b:7f:f7:33:02:10:97:73: e3:12:0e:c2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUM92KEb4MXvw1QKBkhkzkLnETaAowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDVENjJENDIxRkE1MDNBMjNFNzEwMjI5RDVFMUJBODQyRkQwM0FBOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhxC0WjE5/fAsBZ88KKbnk7Gpt BWTUwgLttN0CjAVfSZySdEB5bFLLrriF6mZv9ngNTBs5MTH8qmPAhXvJNgly+M7J 0NnqHPUAebf0wxgwRPKA61eXpmg5cFKAlVsqAIoOE1944lsc7lNWv0qyhL0c+A56 aOdkYG/kgz28B5pxCwkuIrVmh2WD94B/hB4gCJeXMA6X1PFwznUBVIMIJSLPkwwY 1+gg9wwl/JVVqzU21Xu3wohw4Pto97njMJOxtMzmFIgsBVt6IPDB42HzKhFixbI6 9krDDyxiwL4KVclrqgkPKMmy97UKKdY+tsVHvA39qw5AxfsfGzE0ZJMALml1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUXWLUIfpQOiPnECKdXhuoQv0Dqo0wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA0NTA4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCTpb/X71iwTLpJ1BwwtTSyU01IQAeqz+sk pUnEM24FE298h1X7Q7YJ79+SExFWvLbBysS/d50FxJrmoioMvWKi3vAYLA91kTt4 Q3V84RjcAaho8tZpkyPnHkazd0AF0WFbVD8dhf+LUO8BXWkqo0ocMngZhg26nrlU OLWaBzdqFrhpVKtwNWCIJA9PFrSvWtNKtAaqUCIkm6Pi/DEZYz52EVbyxsXDESft bnDcwtB1KKpFNbE/3ZtRAyvpNsZR2+eQsV9TG07JxY9DSRsO1+Z/Tg5xBoMWW7jd 67mAwjEBJ3snFVA4oBiLm8d4yl03/h/gVlNkO3/3MwIQl3PjEg7C -----END CERTIFICATE-----Generated at Sat Jun 6 16:50:01 2026 by rpki-client