$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134362e302f32342d3234203d3e20333936393933.roa File: 3139392e34372e3134362e302f32342d3234203d3e20333936393933.roa (raw, json) Hash identifier: KEmt4/K57Ba6zbyuwv8lOA0Jb/iJ3Z4xSUBdxeyBgkM= Subject key identifier: 43:80:46:DA:88:6E:3E:60:DF:01:4A:7F:4A:C4:D2:4C:3E:41:B9:13 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 40EF5526C03D8F4D3297C8E8B6CDA7FCEBF8D40E Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134362e302f32342d3234203d3e20333936393933.roa Signing time: Thu 21 Aug 2025 07:30:14 +0000 ROA not before: Thu 21 Aug 2025 07:25:14 +0000 ROA not after: Thu 20 Aug 2026 07:30:14 +0000 asID: 396993 IP address blocks: 199.47.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 06:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ef:55:26:c0:3d:8f:4d:32:97:c8:e8:b6:cd:a7:fc:eb:f8:d4:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Aug 21 07:25:14 2025 GMT Not After : Aug 20 07:30:14 2026 GMT Subject: CN=438046DA886E3E60DF014A7F4AC4D24C3E41B913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6d:3c:b7:ea:86:e7:03:a3:6b:32:1f:46:bc: ec:a8:ce:89:ec:83:81:49:d1:e8:04:f2:d6:c2:fe: b9:af:85:d2:93:8a:48:59:d8:3f:68:e0:61:c9:50: 73:a7:9e:ef:f0:8a:2a:ea:f6:54:be:2e:fa:5e:8c: a9:8c:5d:36:a0:cf:0f:9b:ab:61:3b:63:c2:c5:70: 57:ac:52:64:a4:35:62:84:31:44:ab:5d:71:4d:8b: e2:8b:25:0e:57:e2:08:81:df:b5:61:d8:af:2a:da: a4:63:80:98:db:98:28:c1:d7:37:fb:92:ee:aa:d8: c0:84:e6:db:87:62:43:76:28:42:a9:19:7a:7b:94: 17:eb:dc:71:42:7d:e8:29:18:79:a2:e4:45:53:48: b1:10:ec:37:3f:ab:85:51:79:cf:4b:bc:4e:b7:c9: de:77:5a:7c:2c:2a:00:ae:1e:02:0a:7a:c2:07:09: be:1d:e1:49:06:82:85:db:2d:6a:06:1a:cf:ef:fd: 6d:ea:d5:d5:b6:32:bf:3f:c6:13:fa:ff:58:a9:aa: 8e:87:cb:e4:0d:0a:7f:97:c2:db:f5:07:2b:ec:5f: 03:93:7e:5f:b4:33:ab:0d:f1:05:c0:ab:74:c3:40: 8e:60:33:3e:09:a6:0c:eb:9f:67:a6:c1:45:d6:48: 72:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:80:46:DA:88:6E:3E:60:DF:01:4A:7F:4A:C4:D2:4C:3E:41:B9:13 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134362e302f32342d3234203d3e20333936393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.146.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:77:0f:e1:e1:11:50:70:f2:15:62:30:ad:3f:98:c1:53:4d: 95:76:e5:45:f2:65:b3:ec:0d:43:10:1e:fc:bd:49:ea:b9:b0: e1:99:3a:f0:61:05:e8:e6:9f:e6:93:c6:41:36:44:ee:b9:5e: ab:c9:80:2c:bc:c7:88:43:30:59:e2:c5:14:8e:55:c0:06:cd: cd:42:16:2a:0a:97:c4:50:61:c0:96:f5:3c:72:4d:d7:d2:65: 86:8f:b8:72:b8:43:41:c6:d2:84:5a:da:72:b5:e4:e5:25:b4: 82:94:07:54:ec:b0:5a:96:17:b6:8e:41:2f:49:06:39:88:23: f3:56:a1:84:a5:55:10:fd:f6:76:f4:da:05:50:d3:17:0f:9f: 9c:4b:6a:77:8c:ce:45:43:fd:de:3b:a5:13:5e:81:f8:db:aa: 6a:6e:d8:08:e1:96:4e:18:42:e7:d2:9b:7e:38:52:66:1d:a5: c1:19:7e:71:35:58:2f:44:78:3c:81:54:07:0e:2a:69:aa:1b: 0d:20:9c:ea:1c:bd:84:1d:5a:12:23:a6:a4:f4:a8:92:9e:03: 0b:4d:60:9e:3a:da:b4:dd:0b:cc:55:c2:e7:c3:e6:d7:3c:e0: b5:c8:1e:ff:fc:33:15:9d:80:8e:f8:f2:1f:e0:36:b5:06:92: e2:19:00:e8 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUQO9VJsA9j00yl8jots2n/Ov41A4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwODIxMDcyNTE0WhcNMjYwODIwMDczMDE0 WjAzMTEwLwYDVQQDEyg0MzgwNDZEQTg4NkUzRTYwREYwMTRBN0Y0QUM0RDI0QzNF NDFCOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArG08t+qG5wOj azIfRrzsqM6J7IOBSdHoBPLWwv65r4XSk4pIWdg/aOBhyVBzp57v8Ioq6vZUvi76 XoypjF02oM8Pm6thO2PCxXBXrFJkpDVihDFEq11xTYviiyUOV+IIgd+1YdivKtqk Y4CY25gowdc3+5LuqtjAhObbh2JDdihCqRl6e5QX69xxQn3oKRh5ouRFU0ixEOw3 P6uFUXnPS7xOt8ned1p8LCoArh4CCnrCBwm+HeFJBoKF2y1qBhrP7/1t6tXVtjK/ P8YT+v9YqaqOh8vkDQp/l8Lb9Qcr7F8Dk35ftDOrDfEFwKt0w0COYDM+CaYM659n psFF1khyMwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFEOARtqIbj5g3wFKf0rE0kw+ QbkTMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMxMzkzOTJl MzQzNzJlMzEzNDM2MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzOTMz LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAxy+SMA0GCSqGSIb3DQEBCwUAA4IBAQAKdw/h4RFQcPIVYjCt P5jBU02VduVF8mWz7A1DEB78vUnqubDhmTrwYQXo5p/mk8ZBNkTuuV6ryYAsvMeI QzBZ4sUUjlXABs3NQhYqCpfEUGHAlvU8ck3X0mWGj7hyuENBxtKEWtpyteTlJbSC lAdU7LBalhe2jkEvSQY5iCPzVqGEpVUQ/fZ29NoFUNMXD5+cS2p3jM5FQ/3eO6UT XoH426pqbtgI4ZZOGELn0pt+OFJmHaXBGX5xNVgvRHg8gVQHDippqhsNIJzqHL2E HVoSI6ak9KiSngMLTWCeOtq03QvMVcLnw+bXPOC1yB7//DMVnYCO+PIf4Da1BpLi GQDo -----END CERTIFICATE-----Generated at Sun Aug 24 10:59:21 2025 by rpki-client