$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa File: AS213045.roa (raw, json) Hash identifier: UlJ4voG1HH0VtkalTVjm/hD+u4yf5zSN0zC6TkXPLM4= Subject key identifier: 0A:0E:90:2C:C6:56:CB:87:7A:FF:D6:6A:11:8A:B5:F5:F1:8C:61:58 Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 5F80D0530E12A5042B7581069BFDBE59749EE21F Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 213045 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:80:d0:53:0e:12:a5:04:2b:75:81:06:9b:fd:be:59:74:9e:e2:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=0A0E902CC656CB877AFFD66A118AB5F5F18C6158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cb:07:1b:39:b4:01:7a:a1:54:c4:9d:4c:30: 94:be:82:a4:09:db:c3:36:e2:be:63:9d:b1:ee:7d: de:90:2c:3d:11:1a:54:5d:fb:b0:a6:0a:23:a4:75: ae:b9:a2:97:ec:26:1a:87:c6:b6:86:06:96:7e:b5: a4:bf:7d:ae:cb:e3:63:96:49:60:a4:c8:37:73:c0: e5:53:ab:14:5d:88:00:00:e5:9e:c2:19:57:c6:3b: e5:0e:ce:88:de:bd:f6:fe:14:00:7d:2f:2b:76:54: 04:0e:32:e4:79:5a:39:43:aa:4c:de:b3:c2:92:65: 75:69:a4:f4:88:61:64:a5:fc:bd:7a:ca:dd:8c:9c: b7:85:2e:1c:87:fa:71:76:3f:44:2b:e3:0b:fc:56: 5c:12:56:58:21:bb:10:e8:20:18:59:cd:f0:3f:cf: 04:a9:de:5e:4b:b2:7b:ce:b8:b1:69:00:bf:04:f2: 3e:04:8d:44:be:95:68:a7:a5:9f:ed:3e:54:35:46: 64:78:18:15:0a:e2:9d:e9:f7:71:7f:35:fd:5d:dc: 73:3a:3e:e3:34:59:96:53:3c:04:92:c7:db:bf:93: e1:b9:9f:02:0f:43:aa:0f:72:87:fb:24:69:fa:85: b4:b0:7d:6c:9c:38:35:28:68:12:12:1e:27:4b:88: 07:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0E:90:2C:C6:56:CB:87:7A:FF:D6:6A:11:8A:B5:F5:F1:8C:61:58 X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS213045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 60:2f:7b:b7:6b:84:79:a8:74:64:13:42:ea:c9:6c:5d:b7:a0: c9:85:95:44:72:8b:ac:ef:97:34:38:8f:1f:d7:08:63:09:1d: 88:6e:92:94:54:af:4e:62:fe:91:54:a7:01:e2:bc:9c:79:66: 81:6b:18:16:b5:2a:a7:69:e2:d4:67:a8:45:58:7b:5b:d0:43: 20:dc:54:fa:0b:43:38:89:97:70:de:d5:ce:16:dd:65:8f:22: 09:3f:b7:36:32:d6:64:c5:9a:bd:70:23:e2:4e:29:ef:e4:91: a9:af:f9:0c:aa:de:f8:6d:36:55:56:68:90:e4:3e:9e:8e:26: 3d:9a:f4:cb:b5:fa:b8:d2:11:01:59:87:b7:23:06:cb:fe:34: 1c:aa:42:6c:3f:b6:00:26:4a:3e:02:95:97:3b:67:aa:95:31: 7f:e0:68:3d:0b:f9:f9:ac:95:11:ba:62:78:0f:d8:96:82:26: fd:86:38:bf:08:dd:4c:a5:6e:87:16:a9:69:23:af:e7:ff:ca: e1:34:2b:c9:61:bf:9b:1c:19:0e:b7:43:6a:8e:85:7b:9e:d2: f9:56:91:e2:eb:11:44:f2:a0:e0:eb:9d:44:59:87:d4:e8:e4: 9d:8f:ec:9f:08:43:b2:42:2a:de:7d:26:a8:7b:e5:7e:30:74: db:52:10:36 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUX4DQUw4SpQQrdYEGm/2+WXSe4h8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDBBMEU5MDJDQzY1NkNCODc3QUZGRDY2QTExOEFCNUY1RjE4QzYxNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpywcbObQBeqFUxJ1MMJS+gqQJ 28M24r5jnbHufd6QLD0RGlRd+7CmCiOkda65opfsJhqHxraGBpZ+taS/fa7L42OW SWCkyDdzwOVTqxRdiAAA5Z7CGVfGO+UOzojevfb+FAB9Lyt2VAQOMuR5WjlDqkze s8KSZXVppPSIYWSl/L16yt2MnLeFLhyH+nF2P0Qr4wv8VlwSVlghuxDoIBhZzfA/ zwSp3l5LsnvOuLFpAL8E8j4EjUS+lWinpZ/tPlQ1RmR4GBUK4p3p93F/Nf1d3HM6 PuM0WZZTPASSx9u/k+G5nwIPQ6oPcof7JGn6hbSwfWycODUoaBISHidLiAeVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCg6QLMZWy4d6/9ZqEYq19fGMYVgwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjEzMDQ1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdU wrALMA0GCSqGSIb3DQEBCwUAA4IBAQBgL3u3a4R5qHRkE0LqyWxdt6DJhZVEcous 75c0OI8f1whjCR2IbpKUVK9OYv6RVKcB4ryceWaBaxgWtSqnaeLUZ6hFWHtb0EMg 3FT6C0M4iZdw3tXOFt1ljyIJP7c2MtZkxZq9cCPiTinv5JGpr/kMqt74bTZVVmiQ 5D6ejiY9mvTLtfq40hEBWYe3IwbL/jQcqkJsP7YAJko+ApWXO2eqlTF/4Gg9C/n5 rJURumJ4D9iWgib9hji/CN1MpW6HFqlpI6/n/8rhNCvJYb+bHBkOt0NqjoV7ntL5 VpHi6xFE8qDg651EWYfU6OSdj+yfCEOyQirefSaoe+V+MHTbUhA2 -----END CERTIFICATE-----Generated at Fri Jun 12 00:06:29 2026 by rpki-client