$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa File: AS216339.roa (raw, json) Hash identifier: L3oi0qQqsO0Pb0xZ8OiU/APNOlBI/zN62sgZU93oh4s= Subject key identifier: 69:83:B3:0D:19:03:47:0D:AB:AD:FC:11:FF:60:14:C7:21:3D:87:0E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4B20E8125BB2ABBF18A4998B5E86F3834D763DFA Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa Signing time: Fri 05 Jun 2026 08:45:53 +0000 ROA not before: Fri 05 Jun 2026 08:40:53 +0000 ROA not after: Fri 04 Jun 2027 08:45:53 +0000 asID: 216339 IP address blocks: 2a07:54c1:3900::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:20:e8:12:5b:b2:ab:bf:18:a4:99:8b:5e:86:f3:83:4d:76:3d:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:53 2026 GMT Not After : Jun 4 08:45:53 2027 GMT Subject: CN=6983B30D1903470DABADFC11FF6014C7213D870E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a9:15:df:09:5a:9e:32:54:cb:c4:93:92:f3: 92:9c:41:58:99:26:f5:54:6f:fd:61:a6:1b:b9:12: 78:72:3d:73:40:97:34:e2:87:c1:9e:f2:8b:ff:67: 76:15:76:74:d8:a4:f9:75:39:7e:81:a6:a9:e9:94: 10:e2:a5:84:82:29:df:89:00:5c:e4:76:05:09:19: dc:a5:42:ea:dd:65:6f:77:97:40:b8:3b:3d:d4:cc: fa:c7:11:e4:f1:19:58:7d:cc:23:97:fb:af:cb:f0: 72:37:09:0e:31:78:2a:52:18:48:73:25:74:da:ae: 76:95:8a:51:95:a9:4f:30:44:11:7d:47:a3:72:d6: b7:46:02:0b:39:1e:ef:04:7a:f4:aa:36:33:46:9c: 7f:ac:24:62:0b:9f:89:89:77:3c:41:44:17:33:cf: f4:42:bb:93:4b:2f:1b:5d:fc:5b:9e:2f:ef:8b:5f: 3e:5a:b0:f9:e0:06:ee:ed:42:34:c4:52:ef:e5:60: ff:a6:89:07:26:a9:62:5f:88:5b:eb:e6:a3:8b:60: 03:d9:b9:b5:96:09:27:48:f3:c1:fd:dd:c1:f0:79: c8:8c:d9:96:13:f1:c7:5f:bd:cd:54:3c:36:09:c6: b3:bf:d8:9f:44:6c:d9:62:58:73:51:16:be:e6:19: 1c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:83:B3:0D:19:03:47:0D:AB:AD:FC:11:FF:60:14:C7:21:3D:87:0E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS216339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:3900::/40 Signature Algorithm: sha256WithRSAEncryption 69:94:a9:ee:e5:b7:2a:c9:9a:b9:2b:45:aa:d3:a8:a8:01:98: 2d:9c:c2:bb:bb:2d:23:43:7f:fc:fd:1d:30:f8:0d:0c:70:40: 72:16:99:8c:78:ff:a2:fe:fb:08:9e:96:ae:ca:09:d6:e1:c4: 95:a0:81:83:b9:dc:54:34:63:d5:86:04:f7:b4:94:cb:87:53: 7f:7b:13:72:21:c8:6e:be:35:f8:1a:5b:7c:09:36:75:b7:60: 22:fa:a3:f3:fe:b7:3f:18:fa:55:2c:75:c7:ae:77:be:aa:1b: 04:e8:c6:f1:07:e0:f4:36:2b:12:9a:63:5b:8a:ce:5a:a2:8d: ca:8a:11:90:ff:9b:eb:62:1c:c7:90:ea:bc:55:e0:cd:24:d3: 84:78:dc:92:d0:f5:9a:f4:cf:c1:b7:8c:7e:29:ff:af:bf:0d: 32:c7:2b:44:05:7d:a6:9f:b0:15:ca:dd:ae:f6:a6:4c:7f:9d: ab:cd:a0:3c:22:36:13:9e:a6:10:20:40:11:db:95:4c:af:d9: 5a:d9:ad:ba:e2:15:64:04:c5:95:d4:ff:9f:3d:0f:4c:c4:c8: 6c:dd:18:7b:80:c1:01:a0:38:d4:fa:ed:68:a7:01:99:23:92: dc:b3:b4:78:12:1f:95:e6:96:24:73:8e:00:e3:bf:d7:45:40: 18:dc:37:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSyDoEluyq78YpJmLXobzg012PfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTNaFw0yNzA2MDQwODQ1NTNaMDMxMTAvBgNV BAMTKDY5ODNCMzBEMTkwMzQ3MERBQkFERkMxMUZGNjAxNEM3MjEzRDg3MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2qRXfCVqeMlTLxJOS85KcQViZ JvVUb/1hphu5EnhyPXNAlzTih8Ge8ov/Z3YVdnTYpPl1OX6BpqnplBDipYSCKd+J AFzkdgUJGdylQurdZW93l0C4Oz3UzPrHEeTxGVh9zCOX+6/L8HI3CQ4xeCpSGEhz JXTarnaVilGVqU8wRBF9R6Ny1rdGAgs5Hu8EevSqNjNGnH+sJGILn4mJdzxBRBcz z/RCu5NLLxtd/FueL++LXz5asPngBu7tQjTEUu/lYP+miQcmqWJfiFvr5qOLYAPZ ubWWCSdI88H93cHweciM2ZYT8cdfvc1UPDYJxrO/2J9EbNliWHNRFr7mGRwhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaYOzDRkDRw2rrfwR/2AUxyE9hw4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTMjE2MzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgdU wTkwDQYJKoZIhvcNAQELBQADggEBAGmUqe7ltyrJmrkrRarTqKgBmC2cwru7LSND f/z9HTD4DQxwQHIWmYx4/6L++wielq7KCdbhxJWggYO53FQ0Y9WGBPe0lMuHU397 E3IhyG6+NfgaW3wJNnW3YCL6o/P+tz8Y+lUsdceud76qGwToxvEH4PQ2KxKaY1uK zlqijcqKEZD/m+tiHMeQ6rxV4M0k04R43JLQ9Zr0z8G3jH4p/6+/DTLHK0QFfaaf sBXK3a72pkx/navNoDwiNhOephAgQBHblUyv2VrZrbriFWQExZXU/589D0zEyGzd GHuAwQGgONT67WinAZkjktyztHgSH5XmliRzjgDjv9dFQBjcN08= -----END CERTIFICATE-----Generated at Sat Jun 6 05:41:43 2026 by rpki-client