$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa File: AS209018.roa (raw, json) Hash identifier: m7Ng76zYGu3AIDSF6ns4ozE19BKd07x7op3/tDYjvko= Subject key identifier: 7E:34:B3:2D:55:7F:59:63:7B:73:0E:07:E8:5C:58:2A:FB:4A:18:F3 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 5171195601A714FF6134E45C1B14CF57367F4C96 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 209018 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 22:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:71:19:56:01:a7:14:ff:61:34:e4:5c:1b:14:cf:57:36:7f:4c:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=7E34B32D557F59637B730E07E85C582AFB4A18F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:12:e3:1c:51:ad:18:98:b1:b6:81:3c:d3:76: 72:2b:67:d1:8a:05:9f:fc:a6:72:24:18:3b:2c:d3: 2e:da:6d:49:c7:00:62:9a:49:92:e2:6b:18:f4:1f: 57:4d:fa:ed:0a:b5:a9:2f:47:ef:ae:85:bc:58:f2: df:fb:9a:0b:8a:e7:dd:5d:64:ad:12:c9:9f:44:36: 86:7e:cc:2a:ec:7d:90:e1:a2:3f:85:16:7d:c6:6e: ae:93:84:f4:84:4d:b2:0c:c9:39:5e:35:6c:1a:6c: 55:90:59:f9:a5:dc:09:7f:89:50:0d:2f:ac:4d:82: 7b:d5:a5:3f:20:b4:f1:a3:1d:71:65:88:02:5c:f7: c3:c9:86:fa:3d:d4:b1:17:09:5f:ba:6b:da:04:c5: 0e:ac:e1:03:90:ef:20:83:e1:e3:33:19:4d:96:c1: 2b:f6:b5:1d:c3:6e:fd:58:66:91:23:b5:ce:a9:9f: 70:89:07:12:61:eb:ad:93:e8:14:27:5d:fa:b9:ab: cf:0e:dd:4a:bc:ad:22:80:d4:64:eb:47:14:eb:22: 15:76:28:b1:fd:5d:fe:ca:cb:89:a2:8d:06:ca:8b: 91:07:d8:f3:95:75:a7:62:80:36:73:c6:95:bb:41: 5b:b9:db:6e:ad:fd:2a:53:f7:26:1c:da:ad:19:22: 70:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:34:B3:2D:55:7F:59:63:7B:73:0E:07:E8:5C:58:2A:FB:4A:18:F3 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS209018.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 14:37:77:a8:ed:22:63:3f:75:68:c5:bf:e3:9a:40:bd:bb:e0: 8b:2d:f1:46:94:3f:02:2e:12:87:d9:db:9f:1e:84:78:7f:b8: d2:e2:98:8a:f1:8e:a4:d5:d4:aa:9b:7f:17:f7:d3:a8:0d:72: fc:ef:ab:6a:12:08:66:5a:f4:f5:f1:64:ce:4a:80:1f:db:45: 66:a2:6b:7d:2c:32:a7:8a:35:bd:25:63:db:c0:42:21:9d:6c: 2d:e6:f9:0f:a9:82:b5:be:d2:81:3d:a5:d5:e5:b8:f1:10:1f: 12:88:38:12:00:a0:69:bf:b6:12:1a:05:a0:8f:49:b5:26:d5: 4a:9d:a2:05:b2:bb:07:0a:73:c3:59:5f:e8:58:79:43:c2:34: 14:72:75:77:9d:d3:8d:f8:52:93:dc:3f:fa:45:ce:e5:ad:ef: 63:17:86:38:62:be:5a:e2:78:ae:2d:85:d1:08:75:53:77:a8: 5d:36:17:4e:8e:ab:f7:0e:a2:f1:81:99:b1:b7:6d:30:f7:6d: a4:c2:4d:06:6f:6d:c5:b2:8d:0e:a9:05:7b:c6:b2:03:78:14: 90:4d:ba:79:ce:d4:f1:bf:a3:f2:53:4b:ab:09:c7:01:9e:89: 38:0f:fc:95:75:02:03:d7:8a:cb:f2:85:b3:2d:df:16:d8:e2: 87:a3:ea:20 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUXEZVgGnFP9hNORcGxTPVzZ/TJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDdFMzRCMzJENTU3RjU5NjM3QjczMEUwN0U4NUM1ODJBRkI0QTE4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMEuMcUa0YmLG2gTzTdnIrZ9GK BZ/8pnIkGDss0y7abUnHAGKaSZLiaxj0H1dN+u0KtakvR++uhbxY8t/7mguK591d ZK0SyZ9ENoZ+zCrsfZDhoj+FFn3Gbq6ThPSETbIMyTleNWwabFWQWfml3Al/iVAN L6xNgnvVpT8gtPGjHXFliAJc98PJhvo91LEXCV+6a9oExQ6s4QOQ7yCD4eMzGU2W wSv2tR3Dbv1YZpEjtc6pn3CJBxJh662T6BQnXfq5q88O3Uq8rSKA1GTrRxTrIhV2 KLH9Xf7Ky4mijQbKi5EH2POVdadigDZzxpW7QVu5226t/SpT9yYc2q0ZInCJAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfjSzLVV/WWN7cw4H6FxYKvtKGPMwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjA5MDE4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQAUN3eo7SJjP3Voxb/jmkC9u+CLLfFGlD8C LhKH2dufHoR4f7jS4piK8Y6k1dSqm38X99OoDXL876tqEghmWvT18WTOSoAf20Vm omt9LDKnijW9JWPbwEIhnWwt5vkPqYK1vtKBPaXV5bjxEB8SiDgSAKBpv7YSGgWg j0m1JtVKnaIFsrsHCnPDWV/oWHlDwjQUcnV3ndON+FKT3D/6Rc7lre9jF4Y4Yr5a 4niuLYXRCHVTd6hdNhdOjqv3DqLxgZmxt20w922kwk0Gb23Fso0OqQV7xrIDeBSQ Tbp5ztTxv6PyU0urCccBnok4D/yVdQID14rL8oWzLd8W2OKHo+og -----END CERTIFICATE-----Generated at Fri Jun 12 07:25:26 2026 by rpki-client