$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134352e302f32342d3234203d3e20333936393933.roa File: 3139392e34372e3134352e302f32342d3234203d3e20333936393933.roa (raw, json) Hash identifier: t7ABXPhl5IT/8+txyrzCAWhdxzN4PvRoRwgjiEI2dwc= Subject key identifier: 9B:3C:E6:5A:14:EF:74:2D:2E:61:C2:29:AE:E5:37:97:D5:8B:7D:F6 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 3B3B139D1FCC0A0FC3D9190BBD069379EFB8066A Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134352e302f32342d3234203d3e20333936393933.roa Signing time: Thu 21 Aug 2025 07:29:54 +0000 ROA not before: Thu 21 Aug 2025 07:24:54 +0000 ROA not after: Thu 20 Aug 2026 07:29:54 +0000 asID: 396993 IP address blocks: 199.47.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 06:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3b:13:9d:1f:cc:0a:0f:c3:d9:19:0b:bd:06:93:79:ef:b8:06:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Aug 21 07:24:54 2025 GMT Not After : Aug 20 07:29:54 2026 GMT Subject: CN=9B3CE65A14EF742D2E61C229AEE53797D58B7DF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:1d:cc:a3:ea:36:b7:fd:7e:db:22:5f:f3: 54:3f:67:58:20:65:15:54:de:55:f2:5e:01:5d:5b: 4c:01:aa:11:eb:4b:34:ab:3f:65:c2:94:c2:c3:c9: 4f:93:d8:d2:3d:7a:3b:46:ae:18:50:49:9a:4d:51: c9:3e:16:d3:e8:09:99:8f:68:38:ce:0b:94:b7:1b: 18:5c:f6:f5:95:ca:94:d8:f9:34:71:38:41:64:99: 6b:79:c4:d4:db:a1:f8:68:3e:fb:76:4a:b2:04:e6: 0e:a0:35:5a:a5:a3:15:51:6f:5d:e3:36:ae:6b:57: aa:7e:0a:a9:48:44:0b:7d:ac:94:a6:a6:93:09:19: 5f:fe:fa:52:49:fd:e3:0e:5f:72:cb:dd:31:86:5b: 91:04:4e:de:e6:30:63:ef:76:6d:1e:33:76:54:f1: 03:0b:25:f5:38:3b:57:aa:f7:0c:3d:73:c4:0b:07: eb:38:12:12:3b:ea:3b:d7:97:30:a3:85:53:38:45: 2a:b7:ce:ff:3e:f9:9a:6f:aa:0a:6d:a8:e8:7b:da: f3:27:69:4a:78:f0:01:da:fb:b0:b7:7c:26:c8:11: 45:ed:78:88:a3:e3:2f:02:b1:dd:ed:4f:ea:6a:38: 5d:6b:7a:e5:20:16:6a:e4:17:cb:a9:1b:37:72:fa: 2d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3C:E6:5A:14:EF:74:2D:2E:61:C2:29:AE:E5:37:97:D5:8B:7D:F6 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134352e302f32342d3234203d3e20333936393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.145.0/24 Signature Algorithm: sha256WithRSAEncryption 57:72:be:1a:63:ea:69:38:7f:5e:fa:8d:92:b5:5a:e1:d7:1a: ad:a7:0e:53:28:5c:c0:e4:4d:39:e3:fb:c5:f6:d1:b8:70:49: 86:7f:8f:61:77:d0:b7:e7:13:59:a2:a1:06:b6:e3:fa:69:50: ae:08:e2:25:6f:f6:8e:17:9f:65:62:24:64:9b:4b:9f:be:be: e6:6a:94:ba:e3:ec:fb:a1:8b:96:ab:24:05:9b:b3:0c:6d:1f: f6:d6:2d:3e:e7:02:28:17:00:b7:42:97:5b:71:ee:e7:7c:c9: 86:48:87:69:2a:6a:80:60:0e:fc:7b:62:7b:79:68:17:6d:ef: 2f:a3:3e:9a:d6:e9:b7:1a:26:a8:a7:52:e6:7e:4f:19:38:03: fe:ad:23:2d:76:02:97:0c:bc:5b:a7:be:14:06:f6:fc:8a:de: 18:aa:d3:e2:c6:ce:29:03:2a:2f:9e:df:ae:fa:b6:63:74:52: da:6e:b8:fe:3c:b8:dc:36:60:e5:09:7b:63:14:11:c4:c3:73: ab:40:da:31:39:a2:62:2b:29:4c:4a:7a:9f:ba:2f:ee:2c:88: 6b:11:90:08:2d:1d:40:8c:e9:0f:de:82:ab:a9:9a:25:04:d2: c6:da:9d:d8:46:f6:91:c3:b4:a9:2f:5c:fd:f9:35:62:71:15: 28:a6:b8:b7 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUOzsTnR/MCg/D2RkLvQaTee+4BmowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwODIxMDcyNDU0WhcNMjYwODIwMDcyOTU0 WjAzMTEwLwYDVQQDEyg5QjNDRTY1QTE0RUY3NDJEMkU2MUMyMjlBRUU1Mzc5N0Q1 OEI3REY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzwdzKPqNrf9 ftsiX/NUP2dYIGUVVN5V8l4BXVtMAaoR60s0qz9lwpTCw8lPk9jSPXo7Rq4YUEma TVHJPhbT6AmZj2g4zguUtxsYXPb1lcqU2Pk0cThBZJlrecTU26H4aD77dkqyBOYO oDVapaMVUW9d4zaua1eqfgqpSEQLfayUpqaTCRlf/vpSSf3jDl9yy90xhluRBE7e 5jBj73ZtHjN2VPEDCyX1ODtXqvcMPXPECwfrOBISO+o715cwo4VTOEUqt87/Pvma b6oKbajoe9rzJ2lKePAB2vuwt3wmyBFF7XiIo+MvArHd7U/qajhda3rlIBZq5BfL qRs3cvot7QIDAQABo4ICzzCCAsswHQYDVR0OBBYEFJs85loU73QtLmHCKa7lN5fV i332MB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMxMzkzOTJl MzQzNzJlMzEzNDM1MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzOTMz LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAxy+RMA0GCSqGSIb3DQEBCwUAA4IBAQBXcr4aY+ppOH9e+o2S tVrh1xqtpw5TKFzA5E054/vF9tG4cEmGf49hd9C35xNZoqEGtuP6aVCuCOIlb/aO F59lYiRkm0ufvr7mapS64+z7oYuWqyQFm7MMbR/21i0+5wIoFwC3Qpdbce7nfMmG SIdpKmqAYA78e2J7eWgXbe8voz6a1um3Giaop1Lmfk8ZOAP+rSMtdgKXDLxbp74U Bvb8it4YqtPixs4pAyovnt+u+rZjdFLabrj+PLjcNmDlCXtjFBHEw3OrQNoxOaJi KylMSnqfui/uLIhrEZAILR1AjOkP3oKrqZolBNLG2p3YRvaRw7SpL1z9+TVicRUo pri3 -----END CERTIFICATE-----Generated at Sun Aug 24 10:59:20 2025 by rpki-client