$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32342d3234203d3e20333936393933.roa File: 3139392e34372e3134342e302f32342d3234203d3e20333936393933.roa (raw, json) Hash identifier: AtbG18VbLYnPq2jSvFzCYj51XxAXZcGCs2laPf8uz9g= Subject key identifier: 2B:72:A5:8A:99:65:5F:24:5A:D7:51:C6:2A:D0:01:2F:32:33:D0:F6 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 2EA32BE532E7586BB170615D256093759DF21E1A Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32342d3234203d3e20333936393933.roa Signing time: Thu 21 Aug 2025 07:29:45 +0000 ROA not before: Thu 21 Aug 2025 07:24:45 +0000 ROA not after: Thu 20 Aug 2026 07:29:45 +0000 asID: 396993 IP address blocks: 199.47.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 06:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a3:2b:e5:32:e7:58:6b:b1:70:61:5d:25:60:93:75:9d:f2:1e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Aug 21 07:24:45 2025 GMT Not After : Aug 20 07:29:45 2026 GMT Subject: CN=2B72A58A99655F245AD751C62AD0012F3233D0F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:48:80:30:58:bb:dd:7a:41:e1:5f:be:29:ff: 9d:55:ce:12:20:10:d8:2b:b8:35:d5:90:07:d9:f1: ca:78:9a:27:8e:a1:20:9b:c8:43:42:19:50:9e:a1: 54:06:53:09:39:0e:93:7f:59:f8:c4:ca:a7:f9:25: d7:c6:ff:c7:9d:9f:b8:95:1b:23:07:6c:bc:97:93: 91:11:a8:13:30:86:24:06:ce:24:71:e5:17:76:d4: cf:48:b3:f0:0d:75:7f:3b:05:c9:92:ee:73:19:ef: 11:bf:b3:4d:79:ac:a2:2d:71:17:30:df:a2:9f:b6: ee:8c:ea:d5:6a:5a:44:16:2e:81:87:99:15:c1:aa: 46:ec:7e:38:e5:44:64:af:31:a8:ec:5a:95:95:4c: 98:b1:4c:1c:e8:c0:61:b6:8e:0f:6b:aa:f0:06:a5: ba:66:c5:c7:3f:13:0a:61:2f:97:ec:a7:ba:3f:5e: ee:26:db:87:3c:4d:3e:b2:a1:81:72:07:68:ae:65: e4:2b:33:b9:42:59:20:cc:f6:7f:b8:00:ea:10:b3: 4f:4f:77:25:68:7d:9d:ab:69:e7:73:da:bf:1b:71: fd:11:89:28:d2:3f:de:4c:30:11:1f:7a:bb:96:fa: b3:70:98:fa:82:e6:70:9c:f3:73:9e:5d:b9:40:68: 71:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:72:A5:8A:99:65:5F:24:5A:D7:51:C6:2A:D0:01:2F:32:33:D0:F6 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32342d3234203d3e20333936393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.144.0/24 Signature Algorithm: sha256WithRSAEncryption 05:0c:c1:9b:f1:34:c1:5e:30:40:1b:ae:ad:39:45:95:a9:d2: 05:f0:03:27:0d:57:52:94:b9:ce:03:86:6b:9c:f6:0c:f5:28: d2:25:88:0a:91:13:9e:b4:4b:4b:fb:15:1b:ec:5e:2a:fc:24: ef:1b:1f:ab:cd:a8:f6:ca:ba:87:b2:74:5d:bb:1a:a3:05:ec: ee:c7:df:0b:07:db:d9:e6:cb:a1:69:ff:ea:ab:65:ab:f9:43: e8:b2:7d:54:c4:21:92:c7:e8:bc:e1:ce:b8:db:72:0a:db:d6: 85:80:3b:ba:2b:3c:b8:39:3d:28:9c:5c:2d:36:48:3e:ce:3a: 99:1c:7e:ef:93:99:f5:06:93:cd:5b:9c:4b:6a:92:8b:92:ad: ca:d9:a7:e7:27:a2:6f:6f:44:3a:61:33:87:2f:2b:e0:11:ee: ac:fd:62:b4:71:b2:fb:81:19:91:d5:eb:02:bc:b4:8d:f5:66: 83:71:c9:bc:04:b9:2d:6d:6d:c2:07:56:0c:16:33:2e:03:65: d4:d5:f9:95:db:59:b0:3d:3f:95:51:53:83:06:e5:19:31:08: 73:ac:cf:a2:f4:b9:d0:1d:36:e3:dd:4f:07:4f:21:33:eb:57: a6:fb:99:cf:78:46:b3:13:cb:49:49:60:2d:b6:79:ea:fa:8d: ee:63:c7:ee -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIULqMr5TLnWGuxcGFdJWCTdZ3yHhowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwODIxMDcyNDQ1WhcNMjYwODIwMDcyOTQ1 WjAzMTEwLwYDVQQDEygyQjcyQTU4QTk5NjU1RjI0NUFENzUxQzYyQUQwMDEyRjMy MzNEMEY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEiAMFi73XpB 4V++Kf+dVc4SIBDYK7g11ZAH2fHKeJonjqEgm8hDQhlQnqFUBlMJOQ6Tf1n4xMqn +SXXxv/HnZ+4lRsjB2y8l5OREagTMIYkBs4kceUXdtTPSLPwDXV/OwXJku5zGe8R v7NNeayiLXEXMN+in7bujOrValpEFi6Bh5kVwapG7H445URkrzGo7FqVlUyYsUwc 6MBhto4Pa6rwBqW6ZsXHPxMKYS+X7Ke6P17uJtuHPE0+sqGBcgdormXkKzO5Qlkg zPZ/uADqELNPT3claH2dq2nnc9q/G3H9EYko0j/eTDARH3q7lvqzcJj6guZwnPNz nl25QGhxxwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFCtypYqZZV8kWtdRxirQAS8y M9D2MB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMxMzkzOTJl MzQzNzJlMzEzNDM0MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzOTMz LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAxy+QMA0GCSqGSIb3DQEBCwUAA4IBAQAFDMGb8TTBXjBAG66t OUWVqdIF8AMnDVdSlLnOA4ZrnPYM9SjSJYgKkROetEtL+xUb7F4q/CTvGx+rzaj2 yrqHsnRduxqjBezux98LB9vZ5suhaf/qq2Wr+UPosn1UxCGSx+i84c6423IK29aF gDu6Kzy4OT0onFwtNkg+zjqZHH7vk5n1BpPNW5xLapKLkq3K2afnJ6Jvb0Q6YTOH LyvgEe6s/WK0cbL7gRmR1esCvLSN9WaDccm8BLktbW3CB1YMFjMuA2XU1fmV21mw PT+VUVODBuUZMQhzrM+i9LnQHTbj3U8HTyEz61em+5nPeEazE8tJSWAttnnq+o3u Y8fu -----END CERTIFICATE-----Generated at Sun Aug 24 10:58:23 2025 by rpki-client