$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa File: AS54681.roa (raw, json) Hash identifier: TQ7zaTcGypjWVwrpwHSMap59IaogcLSFQPoovTTq4L8= Subject key identifier: 6D:32:C6:FC:35:F4:5A:02:4C:CC:04:EB:0E:B5:A2:22:22:7B:2E:8C Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 0737F2FF0BAC6D5FE7596DE77AEC376ED64BB51B Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 54681 IP address blocks: 2a07:54c2:b00b::/48 maxlen: 48 2a07:54c4:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:37:f2:ff:0b:ac:6d:5f:e7:59:6d:e7:7a:ec:37:6e:d6:4b:b5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=6D32C6FC35F45A024CCC04EB0EB5A222227B2E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cf:57:38:24:80:67:ab:12:0c:6b:0c:db:87: bc:66:b0:f8:42:b4:1e:01:84:8f:19:6d:22:2e:6c: c4:43:58:5d:2d:1a:53:cd:c7:c6:f0:4e:a1:41:1d: 81:01:bf:16:d6:64:7b:84:28:8f:07:33:c6:bb:8f: e5:d9:f8:0e:78:da:2f:a4:65:38:fa:00:fd:fa:b3: fc:c5:52:71:69:6f:38:00:87:fe:07:09:28:b4:fc: 8b:66:6c:34:ee:b4:30:0e:1d:31:33:1d:3a:99:df: 48:74:b5:e6:b5:72:cb:4c:e2:65:50:dc:cf:c1:89: f4:28:9c:93:e5:32:28:2d:23:fc:d7:54:bf:c8:5a: 6b:26:fd:4d:27:5e:96:99:5e:47:e7:ff:6d:fe:e3: 09:81:6e:1d:da:0d:ed:28:04:99:cf:fb:a3:51:10: cf:a3:f7:fb:db:bf:68:84:b3:4d:dd:ea:a9:ca:49: 62:e7:b6:60:87:53:37:1b:68:60:b9:7e:4f:7e:fd: 8f:68:be:4a:d4:b1:dd:fa:42:80:e6:ad:2a:15:35: 71:61:a9:c5:4c:09:d5:0f:32:5d:16:fa:21:d4:8e: 1a:5c:03:4f:1f:53:22:59:32:0a:c0:c3:94:9f:8c: f4:eb:4f:a3:d2:2f:ba:99:4f:b1:b6:60:2c:a3:2e: ee:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:32:C6:FC:35:F4:5A:02:4C:CC:04:EB:0E:B5:A2:22:22:7B:2E:8C X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS54681.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c2:b00b::/48 2a07:54c4:f000::/36 Signature Algorithm: sha256WithRSAEncryption 85:10:c3:40:a4:aa:aa:32:8d:ee:fd:d5:9e:f8:bd:ca:10:ce: 85:ed:52:47:64:df:fb:78:e7:3d:9e:3a:bb:95:7a:63:9c:c2: e5:6c:1f:a6:c9:6a:c2:9e:83:17:fb:ef:43:ed:89:f5:1c:8e: a1:b6:81:b8:d4:3a:b4:c0:b6:11:7c:58:74:44:32:2a:97:5b: 5e:2d:aa:ef:89:39:25:3a:59:f6:e6:a1:f2:21:87:b9:9d:2e: 57:c7:72:3c:09:66:cd:52:b8:84:88:8c:49:12:20:d1:89:9f: bd:8a:a5:27:3c:c2:be:b1:ea:9c:a4:15:17:31:ba:77:0f:f2: a8:45:f7:f4:1e:5b:ef:cb:de:b2:f2:74:54:62:3c:b4:5c:5e: 7a:4d:2e:a6:5b:a7:bc:e0:07:d8:67:73:ce:e5:de:61:8c:2b: 00:c6:c6:be:17:69:64:8d:ab:d5:83:93:ff:9c:88:fa:b3:f4: 16:3a:10:4b:f4:66:74:f0:1e:fe:97:1d:43:91:a6:31:2c:ee: 6e:f2:b6:28:b8:18:fd:19:da:e8:78:60:51:55:23:2c:ae:f4: ea:f5:d2:ff:d4:7c:6f:c4:20:ca:c9:87:b2:ee:57:c1:bb:67: cf:64:fc:9d:f9:2b:2d:bb:b6:39:9f:23:75:38:ff:f6:8d:da: d6:64:8f:f2 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUBzfy/wusbV/nWW3neuw3btZLtRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKDZEMzJDNkZDMzVGNDVBMDI0Q0NDMDRFQjBFQjVBMjIyMjI3QjJFOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClz1c4JIBnqxIMawzbh7xmsPhC tB4BhI8ZbSIubMRDWF0tGlPNx8bwTqFBHYEBvxbWZHuEKI8HM8a7j+XZ+A542i+k ZTj6AP36s/zFUnFpbzgAh/4HCSi0/ItmbDTutDAOHTEzHTqZ30h0tea1cstM4mVQ 3M/BifQonJPlMigtI/zXVL/IWmsm/U0nXpaZXkfn/23+4wmBbh3aDe0oBJnP+6NR EM+j9/vbv2iEs03d6qnKSWLntmCHUzcbaGC5fk9+/Y9ovkrUsd36QoDmrSoVNXFh qcVMCdUPMl0W+iHUjhpcA08fUyJZMgrAw5SfjPTrT6PSL7qZT7G2YCyjLu5rAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQUbTLG/DX0WgJMzATrDrWiIiJ7LowwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNTQ2ODEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBwAqB1TC sAsDBgQqB1TE8DANBgkqhkiG9w0BAQsFAAOCAQEAhRDDQKSqqjKN7v3Vnvi9yhDO he1SR2Tf+3jnPZ46u5V6Y5zC5Wwfpslqwp6DF/vvQ+2J9RyOobaBuNQ6tMC2EXxY dEQyKpdbXi2q74k5JTpZ9uah8iGHuZ0uV8dyPAlmzVK4hIiMSRIg0YmfvYqlJzzC vrHqnKQVFzG6dw/yqEX39B5b78vesvJ0VGI8tFxeek0uplunvOAH2GdzzuXeYYwr AMbGvhdpZI2r1YOT/5yI+rP0FjoQS/RmdPAe/pcdQ5GmMSzubvK2KLgY/Rna6Hhg UVUjLK706vXS/9R8b8QgysmHsu5Xwbtnz2T8nfkrLbu2OZ8jdTj/9o3a1mSP8g== -----END CERTIFICATE-----Generated at Thu Jun 11 23:49:40 2026 by rpki-client