$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa File: AS206216.roa (raw, json) Hash identifier: HAk5VD79Ve6yu4aswaDQ0Ao6qpx5s8gI7I9ZRBRBZcA= Subject key identifier: 08:18:C1:51:BB:C2:38:A8:9B:5C:15:5E:7D:EF:B5:62:BD:77:7C:3B Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 6F09421ABC511044A9C418437DBAAF6309BEB426 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 206216 IP address blocks: 2a07:54c4:174f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:09:42:1a:bc:51:10:44:a9:c4:18:43:7d:ba:af:63:09:be:b4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=0818C151BBC238A89B5C155E7DEFB562BD777C3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b2:9d:1a:9e:d3:9c:fa:d9:fe:c4:12:c3:e8: 54:57:1d:30:82:2f:65:6a:77:11:20:ef:a5:4e:dd: b6:7c:2c:1b:3b:cb:4b:fa:05:c9:73:68:8d:45:d4: e8:70:48:ef:4a:2a:88:18:0e:ef:77:d0:89:d3:ab: c8:db:b2:93:b0:61:26:80:24:d5:62:ca:6c:bf:5d: 70:7c:1d:8a:73:55:a3:9c:2d:51:1f:8b:ff:05:07: ce:4a:c3:af:7c:5f:54:f7:be:fb:02:c3:24:62:fd: 6e:48:08:ab:51:f0:07:3e:b2:9e:06:3d:04:82:d9: 94:dd:5e:9a:17:55:4b:bf:43:b1:98:b5:38:0c:d5: 20:f9:70:e9:14:4d:7a:ff:c7:21:27:39:d3:e9:b6: f7:37:50:8c:24:24:ed:98:91:8a:6f:1c:a8:a1:ca: d9:63:a0:1c:7e:54:39:ab:bc:c3:54:4f:9d:46:0b: a1:19:cc:62:e6:8c:5e:94:da:f1:72:c2:6b:0c:26: 22:51:db:01:13:01:7a:48:bc:54:ef:33:28:46:c9: cd:1f:70:00:32:f1:41:3c:dd:40:7e:8b:ff:88:bd: e2:cc:d6:be:91:78:ba:d0:2b:1f:bf:d3:8b:00:f7: 72:15:7a:07:7b:b0:79:af:e6:d3:1a:95:95:0e:2f: 2f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:18:C1:51:BB:C2:38:A8:9B:5C:15:5E:7D:EF:B5:62:BD:77:7C:3B X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS206216.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174f::/48 Signature Algorithm: sha256WithRSAEncryption 73:fd:b9:56:ba:07:95:c4:7a:0b:b9:02:d4:a7:d4:19:19:33: b0:75:7c:7a:9d:18:97:17:b1:25:3c:70:75:0b:b7:61:53:5a: c6:4c:b4:5d:42:fe:53:2a:c8:52:ea:2d:0d:15:06:b8:9b:17: 7e:8d:16:11:ff:b3:91:92:c0:81:83:97:8b:e2:a1:a0:a5:17: e9:aa:ad:85:c9:c6:7f:4e:fe:6f:a3:7e:61:1a:0b:4c:29:b0: 84:1a:25:5a:43:fc:fd:0a:c7:50:24:5b:51:a5:6b:b6:76:30: 45:88:27:62:f6:94:61:66:4e:c6:34:a1:0d:14:db:86:91:cf: 6f:63:e5:4c:72:06:e6:e2:19:63:78:6a:fd:08:33:05:29:58: bf:be:6d:77:88:64:d4:ec:6f:69:b1:b5:24:89:bb:b4:43:1a: 89:95:39:35:90:34:55:1e:67:05:36:1d:1d:27:5a:51:c2:9a: 51:5a:b2:5f:71:b0:88:40:79:a4:3f:a1:0f:39:78:6d:c7:8a: 69:ad:db:c8:26:9f:16:25:39:09:bc:64:eb:4b:4c:bf:c5:82: 86:42:e5:85:7c:eb:ab:ed:b0:7a:3d:36:ed:49:65:27:01:5f: 6a:91:b5:b2:cb:63:f3:91:ff:87:92:f8:39:15:dc:ec:6a:3c: 02:67:ad:91 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbwlCGrxREESpxBhDfbqvYwm+tCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDA4MThDMTUxQkJDMjM4QTg5QjVDMTU1RTdERUZCNTYyQkQ3NzdDM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChsp0antOc+tn+xBLD6FRXHTCC L2VqdxEg76VO3bZ8LBs7y0v6BclzaI1F1OhwSO9KKogYDu930InTq8jbspOwYSaA JNViymy/XXB8HYpzVaOcLVEfi/8FB85Kw698X1T3vvsCwyRi/W5ICKtR8Ac+sp4G PQSC2ZTdXpoXVUu/Q7GYtTgM1SD5cOkUTXr/xyEnOdPptvc3UIwkJO2YkYpvHKih ytljoBx+VDmrvMNUT51GC6EZzGLmjF6U2vFywmsMJiJR2wETAXpIvFTvMyhGyc0f cAAy8UE83UB+i/+IveLM1r6ReLrQKx+/04sA93IVegd7sHmv5tMalZUOLy/1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCBjBUbvCOKibXBVefe+1Yr13fDswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA2MjE2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU xBdPMA0GCSqGSIb3DQEBCwUAA4IBAQBz/blWugeVxHoLuQLUp9QZGTOwdXx6nRiX F7ElPHB1C7dhU1rGTLRdQv5TKshS6i0NFQa4mxd+jRYR/7ORksCBg5eL4qGgpRfp qq2FycZ/Tv5vo35hGgtMKbCEGiVaQ/z9CsdQJFtRpWu2djBFiCdi9pRhZk7GNKEN FNuGkc9vY+VMcgbm4hljeGr9CDMFKVi/vm13iGTU7G9psbUkibu0QxqJlTk1kDRV HmcFNh0dJ1pRwppRWrJfcbCIQHmkP6EPOXhtx4pprdvIJp8WJTkJvGTrS0y/xYKG QuWFfOur7bB6PTbtSWUnAV9qkbWyy2Pzkf+Hkvg5FdzsajwCZ62R -----END CERTIFICATE-----Generated at Fri Jun 12 00:06:28 2026 by rpki-client