$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa File: AS210645.roa (raw, json) Hash identifier: 9bWRlqUgbOaFPdfmy+BNwGbF5ZgjMrIhVwRBNODk54U= Subject key identifier: 10:8C:79:FD:B9:2F:57:E2:21:A3:B6:F3:EB:B0:AD:BC:71:E9:E2:72 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 428FE722B1F51EA3EC23A61160CB9D91B245FFA3 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 210645 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:8f:e7:22:b1:f5:1e:a3:ec:23:a6:11:60:cb:9d:91:b2:45:ff:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=108C79FDB92F57E221A3B6F3EBB0ADBC71E9E272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:0d:3e:aa:15:82:78:07:42:47:c8:97:a4: 84:1c:95:6a:5c:ec:16:c9:f3:75:d6:79:9c:fe:37: 8b:52:ef:ff:35:9f:09:1d:2f:60:86:e0:b7:7a:89: 8f:de:9b:dd:d3:af:4f:b7:05:62:f0:48:b2:8c:d4: fe:72:17:1b:86:04:2c:57:0d:e9:99:dd:f4:73:62: 08:b5:eb:23:65:41:29:dc:f7:e8:a5:58:4a:5c:5c: 89:f8:e3:53:49:cb:37:b5:e5:22:7b:23:ec:99:86: e6:b8:64:7e:70:59:01:3e:d9:fa:48:06:16:8d:bd: 0e:d1:34:13:b9:d7:c5:1b:23:51:23:84:ad:3c:f4: c6:36:cc:b1:1a:17:1d:8c:d1:50:82:45:1b:3e:21: 22:b8:2b:82:4f:91:9d:ae:d1:ad:43:a9:2c:56:10: d3:45:0c:16:d9:cd:40:5f:4c:fd:ac:c2:b5:11:22: 7d:ad:80:77:27:94:c9:dd:26:08:ad:d7:56:f6:0f: a9:f5:a6:b8:3b:94:d9:a4:c7:8a:b6:36:c9:ae:a0: 1e:e0:f0:c0:24:65:8a:24:62:f5:9a:42:fa:58:07: 12:b9:70:9b:68:c0:a4:65:da:d9:e5:e4:3f:2a:e1: a0:5c:a2:93:dc:2b:9d:a6:a6:66:3f:a8:1c:2a:a1: ce:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8C:79:FD:B9:2F:57:E2:21:A3:B6:F3:EB:B0:AD:BC:71:E9:E2:72 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210645.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption aa:4b:38:9e:3d:9b:d9:06:32:81:08:f7:9f:0d:5b:fe:af:3d: 34:28:ea:7b:03:14:d7:9f:90:ba:94:3b:b6:97:34:82:68:e5: 56:fd:5f:12:50:b0:af:a5:6d:82:11:86:5a:68:5f:c3:4e:94: 5b:03:0d:d5:0f:68:ea:c9:9b:2c:ed:b0:be:50:15:d4:e3:86: f6:5e:a4:f3:68:e8:7b:c7:c3:52:f3:78:b7:2a:31:b5:c1:89: 23:2c:71:33:3e:b5:34:2b:f0:b7:ac:ae:e3:67:fd:c2:41:4f: 29:97:12:fa:a2:e6:24:d2:e7:26:22:20:23:3b:fa:63:b4:e9: e0:63:18:56:77:c3:8f:37:34:3a:81:c6:4c:bf:74:7e:62:32: 21:7a:2f:3f:d7:a5:f7:98:5e:41:48:9e:f9:cd:58:f0:a3:2a: a6:58:9b:62:7d:14:ce:a7:bf:a1:d7:22:0f:9d:ee:be:1e:39: 4a:71:99:61:49:bf:5a:6f:f9:9a:b8:1d:a2:93:4b:1b:91:5f: a0:5b:ff:b5:43:33:16:64:a3:88:87:d7:92:a9:3a:fc:a3:c0: f2:d9:74:3e:39:f5:c5:cc:3d:db:5a:81:7e:2b:9d:2c:03:93: f1:d6:ad:a4:60:c5:74:62:2a:5e:68:6f:89:e6:4b:ff:42:66: f8:eb:99:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQo/nIrH1HqPsI6YRYMudkbJF/6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDEwOEM3OUZEQjkyRjU3RTIyMUEzQjZGM0VCQjBBREJDNzFFOUUyNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLbA0+qhWCeAdCR8iXpIQclWpc 7BbJ83XWeZz+N4tS7/81nwkdL2CG4Ld6iY/em93Tr0+3BWLwSLKM1P5yFxuGBCxX DemZ3fRzYgi16yNlQSnc9+ilWEpcXIn441NJyze15SJ7I+yZhua4ZH5wWQE+2fpI BhaNvQ7RNBO518UbI1EjhK089MY2zLEaFx2M0VCCRRs+ISK4K4JPkZ2u0a1DqSxW ENNFDBbZzUBfTP2swrURIn2tgHcnlMndJgit11b2D6n1prg7lNmkx4q2NsmuoB7g 8MAkZYokYvWaQvpYBxK5cJtowKRl2tnl5D8q4aBcopPcK52mpmY/qBwqoc6hAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEIx5/bkvV+Iho7bz67CtvHHp4nIwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNjQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQCqSziePZvZBjKBCPefDVv+rz00KOp7AxTX n5C6lDu2lzSCaOVW/V8SULCvpW2CEYZaaF/DTpRbAw3VD2jqyZss7bC+UBXU44b2 XqTzaOh7x8NS83i3KjG1wYkjLHEzPrU0K/C3rK7jZ/3CQU8plxL6ouYk0ucmIiAj O/pjtOngYxhWd8OPNzQ6gcZMv3R+YjIhei8/16X3mF5BSJ75zVjwoyqmWJtifRTO p7+h1yIPne6+HjlKcZlhSb9ab/mauB2ik0sbkV+gW/+1QzMWZKOIh9eSqTr8o8Dy 2XQ+OfXFzD3bWoF+K50sA5Px1q2kYMV0YipeaG+J5kv/Qmb465n3 -----END CERTIFICATE-----Generated at Sat Jun 6 05:41:44 2026 by rpki-client