$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: IOXva+A3mhcvZskz0SxpQ6SaZqB3qTiTYgYv4YNKcP0= Subject key identifier: 75:86:A7:81:5D:5C:75:B0:07:B1:76:8E:92:67:58:42:84:4C:26:91 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 239AC588094E718F5DB249EA1B518E4FA046B791 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 210667 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9a:c5:88:09:4e:71:8f:5d:b2:49:ea:1b:51:8e:4f:a0:46:b7:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=7586A7815D5C75B007B1768E92675842844C2691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d6:6a:b1:4f:68:0e:dd:55:af:90:90:36:6e: 67:d7:4d:6c:34:b3:cc:d0:39:6d:16:1d:3a:ba:c2: 23:7b:5f:e2:5b:45:9c:c9:f6:fc:08:b5:3f:3b:99: ba:b6:19:98:84:ac:51:08:e9:6c:b2:6b:91:05:9e: d7:05:9d:2b:de:62:15:83:31:f3:05:3b:a6:9d:03: 33:d8:df:99:68:76:93:e1:5a:91:5d:82:43:1d:a3: 54:6d:93:7c:87:50:52:2a:b3:9a:05:1a:e4:5a:1b: 5d:01:51:41:3c:e1:63:70:ca:43:a3:10:46:38:06: a2:c8:6f:fc:62:c5:e1:5b:b3:08:29:e8:97:18:7c: 44:09:ec:55:49:32:fe:70:2b:ea:6d:2a:cf:84:0f: d0:3f:8d:52:89:4d:9c:e2:cd:00:12:7c:47:b4:bb: e2:af:5b:98:bd:ab:ff:ce:f3:71:0a:f4:38:b9:49: 2c:9e:25:dc:d2:cc:57:e5:5e:e1:7d:a8:97:4f:d5: 5b:8a:82:d5:de:30:8b:bd:16:c4:e7:d9:54:90:0d: c8:c9:59:19:bf:9e:3b:37:f1:45:52:b8:1a:d3:ba: d9:31:99:48:6b:09:39:b8:69:fb:8b:63:ae:fa:6f: c9:29:e6:cc:7a:63:ea:b4:d2:f4:fb:88:55:54:4b: 1d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:86:A7:81:5D:5C:75:B0:07:B1:76:8E:92:67:58:42:84:4C:26:91 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 6a:92:10:e9:0d:0e:da:09:b4:e9:65:a0:f1:b3:40:a6:5e:e5: b9:e0:1d:d7:91:57:54:c8:9d:6f:bb:66:c8:26:47:46:e2:79: c2:cb:c3:ba:ef:74:c0:71:3f:07:9b:77:6f:43:cb:6d:71:12: d8:ce:b2:70:58:23:2a:fc:04:ff:a7:99:20:06:f0:43:17:09: d4:ad:a2:61:77:d4:3a:14:2c:ec:c1:1d:c1:0c:93:40:a9:b6: a3:6e:14:6e:a6:31:16:99:77:49:03:02:2f:eb:3b:d5:74:cd: f0:95:b7:a3:de:42:85:7a:89:5c:f6:dd:a7:ab:48:f8:4d:9f: 40:e5:38:86:9c:29:28:93:a4:6b:ee:16:1d:b6:e0:c2:f3:14: ed:a9:21:bf:65:84:7a:2c:31:06:80:3f:ec:f9:42:90:de:98: 89:4e:5e:d4:06:10:5e:a8:98:13:a4:19:1c:31:a5:38:ec:47: e8:69:05:c7:32:d5:42:56:be:a1:33:02:9c:ae:1c:ea:7e:3e: e1:68:67:21:c6:6f:74:7a:78:12:bb:70:df:bd:e5:4c:47:48: 42:5b:5f:2a:8d:40:f9:14:ea:41:e7:10:1e:14:5c:ed:71:ef: ce:6b:b7:f4:b7:9d:0d:8a:d4:1d:e6:3a:d9:3e:4f:6e:92:fc: bd:39:09:3b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUI5rFiAlOcY9dsknqG1GOT6BGt5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDc1ODZBNzgxNUQ1Qzc1QjAwN0IxNzY4RTkyNjc1ODQyODQ0QzI2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe1mqxT2gO3VWvkJA2bmfXTWw0 s8zQOW0WHTq6wiN7X+JbRZzJ9vwItT87mbq2GZiErFEI6Wyya5EFntcFnSveYhWD MfMFO6adAzPY35lodpPhWpFdgkMdo1Rtk3yHUFIqs5oFGuRaG10BUUE84WNwykOj EEY4BqLIb/xixeFbswgp6JcYfEQJ7FVJMv5wK+ptKs+ED9A/jVKJTZzizQASfEe0 u+KvW5i9q//O83EK9Di5SSyeJdzSzFflXuF9qJdP1VuKgtXeMIu9FsTn2VSQDcjJ WRm/njs38UVSuBrTutkxmUhrCTm4afuLY676b8kp5sx6Y+q00vT7iFVUSx1tAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdYangV1cdbAHsXaOkmdYQoRMJpEwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBqkhDpDQ7aCbTpZaDxs0CmXuW54B3XkVdU yJ1vu2bIJkdG4nnCy8O673TAcT8Hm3dvQ8ttcRLYzrJwWCMq/AT/p5kgBvBDFwnU raJhd9Q6FCzswR3BDJNAqbajbhRupjEWmXdJAwIv6zvVdM3wlbej3kKFeolc9t2n q0j4TZ9A5TiGnCkok6Rr7hYdtuDC8xTtqSG/ZYR6LDEGgD/s+UKQ3piJTl7UBhBe qJgTpBkcMaU47EfoaQXHMtVCVr6hMwKcrhzqfj7haGchxm90engSu3DfveVMR0hC W18qjUD5FOpB5xAeFFztce/Oa7f0t50NitQd5jrZPk9ukvy9OQk7 -----END CERTIFICATE-----Generated at Fri Jun 5 23:33:56 2026 by rpki-client