$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134372e302f32342d3234203d3e20333936393933.roa File: 3139392e34372e3134372e302f32342d3234203d3e20333936393933.roa (raw, json) Hash identifier: pbl1j9K8noAAVh8O/5u2GAzouxzIlq5KWUTc8DeFwts= Subject key identifier: 11:BC:4C:3D:33:F6:9C:AD:C3:B4:27:6A:BB:17:6E:DD:72:4D:28:A1 Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 55C571C433FD54F8EDA3DB88CD933C35AE1DE0D2 Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134372e302f32342d3234203d3e20333936393933.roa Signing time: Thu 21 Aug 2025 07:30:24 +0000 ROA not before: Thu 21 Aug 2025 07:25:24 +0000 ROA not after: Thu 20 Aug 2026 07:30:24 +0000 asID: 396993 IP address blocks: 199.47.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 06:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c5:71:c4:33:fd:54:f8:ed:a3:db:88:cd:93:3c:35:ae:1d:e0:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Aug 21 07:25:24 2025 GMT Not After : Aug 20 07:30:24 2026 GMT Subject: CN=11BC4C3D33F69CADC3B4276ABB176EDD724D28A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b5:ea:b6:35:f3:f8:75:2c:5f:e3:a2:7e:ce: 9b:07:e1:ac:21:18:3e:7b:60:94:13:7e:1f:ef:cf: 34:ab:bc:f3:63:d7:b8:01:8d:b4:8a:4e:4a:7b:60: b2:cf:e3:d2:fb:c1:73:e1:48:86:65:ca:bb:a0:ef: 2c:1e:26:89:8e:9d:72:e2:51:85:93:e3:f3:65:90: 08:d9:0c:ef:fc:6d:78:8e:8e:f5:a0:aa:21:aa:07: 89:73:ff:07:79:85:55:a1:32:5f:6c:91:f3:f2:0b: 81:d3:34:6c:a1:5d:ca:c4:57:cb:ee:7f:8e:c3:e3: 53:7d:30:c4:fd:69:0a:49:7e:3d:17:6c:f3:ac:7f: d8:ed:3d:59:6c:86:7e:53:04:7e:37:95:7c:9b:c2: c1:8b:4b:61:c2:83:43:d6:b9:b5:ce:97:57:21:ce: bd:dc:f4:a5:95:14:6e:9c:66:9d:2a:c0:ef:5e:98: 4f:6f:63:d1:59:57:d9:a4:4d:1a:8c:b9:e0:95:62: 8d:66:67:17:25:9c:5e:48:ac:2f:b5:9f:8c:b0:fc: e9:4b:71:3c:9e:53:e4:c0:87:5c:52:7a:b7:8b:27: b0:29:43:af:bc:de:33:2e:77:65:24:bb:2d:6d:5a: fa:6e:4b:c8:0d:bb:9f:46:a9:ac:a8:45:00:63:36: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BC:4C:3D:33:F6:9C:AD:C3:B4:27:6A:BB:17:6E:DD:72:4D:28:A1 X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134372e302f32342d3234203d3e20333936393933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.147.0/24 Signature Algorithm: sha256WithRSAEncryption 43:87:d6:5f:8f:4a:24:5e:5a:5d:aa:ac:32:d9:49:35:ba:70: a5:03:2b:7d:9b:b0:d0:dc:76:77:7f:fa:3b:fc:35:85:06:20: c3:6a:30:a7:e7:92:c5:52:95:b5:0b:e9:5a:79:25:28:41:13: ec:51:60:c1:3e:6b:cc:6d:9e:99:fb:22:1a:c4:0a:ce:cb:2e: 38:a6:13:40:84:8a:47:0e:03:bf:a2:9b:b3:61:5b:be:81:e7: ad:d2:ea:dc:ab:d5:61:89:37:72:9a:87:5a:48:de:65:47:95: 53:c3:9a:f5:44:76:0a:7f:fd:53:f5:b1:39:25:b9:06:60:79: 29:ae:c4:59:f8:a2:f7:21:78:f4:ed:0f:22:d9:ee:6a:5f:23: fe:2f:36:0f:20:12:1f:2d:5c:56:d8:dc:cf:1d:53:60:43:ea: ef:7e:28:8f:6b:a6:22:7e:92:87:3f:68:ea:5b:98:06:b4:25: 40:40:06:f9:75:aa:32:12:24:a7:67:cb:a9:26:30:25:b9:cc: e8:5d:f0:1e:c9:26:21:aa:6d:63:ac:f0:7a:ca:33:09:ce:74: b3:05:1f:0b:1d:72:e3:62:36:c7:40:90:cb:cb:8f:85:41:d9: 8c:95:7a:b2:47:a9:55:b0:1c:86:0a:6a:1a:32:60:3f:2f:ab: 31:d5:68:b9 -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIUVcVxxDP9VPjto9uIzZM8Na4d4NIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwODIxMDcyNTI0WhcNMjYwODIwMDczMDI0 WjAzMTEwLwYDVQQDEygxMUJDNEMzRDMzRjY5Q0FEQzNCNDI3NkFCQjE3NkVERDcy NEQyOEExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrXqtjXz+HUs X+Oifs6bB+GsIRg+e2CUE34f7880q7zzY9e4AY20ik5Ke2Cyz+PS+8Fz4UiGZcq7 oO8sHiaJjp1y4lGFk+PzZZAI2Qzv/G14jo71oKohqgeJc/8HeYVVoTJfbJHz8guB 0zRsoV3KxFfL7n+Ow+NTfTDE/WkKSX49F2zzrH/Y7T1ZbIZ+UwR+N5V8m8LBi0th woND1rm1zpdXIc693PSllRRunGadKsDvXphPb2PRWVfZpE0ajLnglWKNZmcXJZxe SKwvtZ+MsPzpS3E8nlPkwIdcUnq3iyewKUOvvN4zLndlJLstbVr6bkvIDbufRqms qEUAYzZNAQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFBG8TD0z9pytw7QnarsXbt1y TSihMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMxMzkzOTJl MzQzNzJlMzEzNDM3MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzMzOTM2MzkzOTMz LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw DjAMBAIAATAGAwQAxy+TMA0GCSqGSIb3DQEBCwUAA4IBAQBDh9Zfj0okXlpdqqwy 2Uk1unClAyt9m7DQ3HZ3f/o7/DWFBiDDajCn55LFUpW1C+laeSUoQRPsUWDBPmvM bZ6Z+yIaxArOyy44phNAhIpHDgO/opuzYVu+geet0urcq9VhiTdymodaSN5lR5VT w5r1RHYKf/1T9bE5JbkGYHkprsRZ+KL3IXj07Q8i2e5qXyP+LzYPIBIfLVxW2NzP HVNgQ+rvfiiPa6YifpKHP2jqW5gGtCVAQAb5daoyEiSnZ8upJjAluczoXfAeySYh qm1jrPB6yjMJznSzBR8LHXLjYjbHQJDLy4+FQdmMlXqyR6lVsByGCmoaMmA/L6sx 1Wi5 -----END CERTIFICATE-----Generated at Sun Aug 24 10:58:22 2025 by rpki-client