$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa File: AS52210.roa (raw, json) Hash identifier: y+AlaxmZiN+YrG7ygxR22jkBq/1qTsPmPYWwsD/PY8k= Subject key identifier: 2A:06:74:47:DF:89:04:BB:AA:18:BE:33:14:4A:90:E0:01:17:D3:8A Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4B68E95170620643A77E91F833848641E7BC3DB8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 52210 IP address blocks: 2a07:54c4:174b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 17:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:68:e9:51:70:62:06:43:a7:7e:91:f8:33:84:86:41:e7:bc:3d:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=2A067447DF8904BBAA18BE33144A90E00117D38A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:79:5f:ca:fc:06:f0:10:8f:6f:35:48:fb:de: 91:89:57:93:d7:93:20:a2:71:9d:22:53:b0:29:f3: a0:46:7c:d5:39:ed:4e:30:3c:84:55:39:40:7b:05: 98:e1:77:ad:35:cd:6d:20:97:80:6f:39:6a:24:25: 01:51:82:32:fd:72:0e:e6:00:5e:c0:a9:db:a2:0d: 8d:ca:0b:3f:a8:08:bf:e8:9d:e3:62:05:93:17:73: c3:97:1e:ac:c3:b2:6e:41:f9:7d:38:6b:c6:80:61: b9:af:36:97:d8:ab:9b:a9:14:09:a2:51:9a:26:42: b4:13:cd:a4:38:3b:ba:ab:a3:ce:41:99:d1:28:75: e8:44:15:99:ec:59:da:9c:2c:db:3a:95:8a:f1:1c: c7:ce:2b:af:a7:1b:7c:8f:f6:e6:df:44:eb:45:f3: bd:82:59:f8:9d:3b:b5:62:c1:b0:2e:36:82:77:a3: 85:02:33:6a:de:5c:94:88:3e:b2:97:1a:30:df:93: 3d:60:17:85:1d:a0:b0:18:91:9b:9b:ed:ed:59:d2: cd:84:3e:ae:f8:45:9d:d7:8d:ee:bb:f2:c6:92:3e: 0a:5f:d1:02:7e:d3:f8:2e:57:a2:e4:50:a1:49:bd: 0f:fa:53:bd:9c:0c:55:c5:fd:de:c4:88:d1:44:10: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:06:74:47:DF:89:04:BB:AA:18:BE:33:14:4A:90:E0:01:17:D3:8A X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS52210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c4:174b::/48 Signature Algorithm: sha256WithRSAEncryption 18:a5:1e:a0:11:ef:a2:d3:67:08:35:60:f1:f7:29:75:ef:5a: 5b:bf:a7:d4:7a:da:15:ac:9e:45:3f:66:06:a5:47:39:57:a2: 22:2b:12:8e:b4:c0:5c:66:b0:c0:f8:76:2d:12:2e:4a:3f:69: f9:d0:54:bc:b7:c5:bd:a1:a2:4f:1f:40:2e:37:c0:d3:43:d3: b3:a8:92:a1:6d:04:68:38:eb:6b:86:88:e6:e9:0a:ed:6c:49: bd:08:ee:b8:9a:8b:19:f1:ae:d8:85:49:83:48:7d:40:bc:c7: 01:f0:ee:06:15:69:fb:48:93:f3:d4:b0:9d:8e:d0:f8:00:d1: 6a:b6:dc:a4:a4:ae:65:71:dd:b1:fb:62:75:2b:b9:6e:f2:e8: cb:c2:b9:ba:c9:a4:4d:cb:c0:09:63:2d:ce:fe:89:2d:8d:f6: 8b:af:ea:22:47:ac:f7:a8:6e:97:ab:c6:13:1a:89:b9:d4:fa: 63:96:54:d1:66:b0:d0:89:e3:38:75:c6:c8:f1:14:7a:c5:73: c7:0f:84:5a:d7:92:ea:41:50:bf:68:e2:f4:66:a7:cc:93:5e: 86:71:20:68:37:8f:f3:1f:f0:67:2e:73:ef:41:a7:95:b6:55: d0:73:0d:cf:93:ab:7b:d0:5c:c5:61:f1:7f:86:6a:c6:d5:fb: fe:cb:4a:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS2jpUXBiBkOnfpH4M4SGQee8PbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDJBMDY3NDQ3REY4OTA0QkJBQTE4QkUzMzE0NEE5MEUwMDExN0QzOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDceV/K/AbwEI9vNUj73pGJV5PX kyCicZ0iU7Ap86BGfNU57U4wPIRVOUB7BZjhd601zW0gl4BvOWokJQFRgjL9cg7m AF7AqduiDY3KCz+oCL/oneNiBZMXc8OXHqzDsm5B+X04a8aAYbmvNpfYq5upFAmi UZomQrQTzaQ4O7qro85BmdEodehEFZnsWdqcLNs6lYrxHMfOK6+nG3yP9ubfROtF 872CWfidO7ViwbAuNoJ3o4UCM2reXJSIPrKXGjDfkz1gF4UdoLAYkZub7e1Z0s2E Pq74RZ3Xje678saSPgpf0QJ+0/guV6LkUKFJvQ/6U72cDFXF/d7EiNFEEBmZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKgZ0R9+JBLuqGL4zFEqQ4AEX04owHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTIyMTAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqB1TE F0swDQYJKoZIhvcNAQELBQADggEBABilHqAR76LTZwg1YPH3KXXvWlu/p9R62hWs nkU/ZgalRzlXoiIrEo60wFxmsMD4di0SLko/afnQVLy3xb2hok8fQC43wNND07Oo kqFtBGg462uGiObpCu1sSb0I7riaixnxrtiFSYNIfUC8xwHw7gYVaftIk/PUsJ2O 0PgA0Wq23KSkrmVx3bH7YnUruW7y6MvCubrJpE3LwAljLc7+iS2N9ouv6iJHrPeo bperxhMaibnU+mOWVNFmsNCJ4zh1xsjxFHrFc8cPhFrXkupBUL9o4vRmp8yTXoZx IGg3j/Mf8Gcuc+9Bp5W2VdBzDc+Tq3vQXMVh8X+GasbV+/7LSnY= -----END CERTIFICATE-----Generated at Fri Jun 5 23:33:57 2026 by rpki-client