$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32322d3232203d3e203135333533.roa File: 3139392e34372e3134342e302f32322d3232203d3e203135333533.roa (raw, json) Hash identifier: MQmtuH2bFRvBPR6ARKNKkQU6kF/f6E7TBLwl6mqJZGM= Subject key identifier: 25:FA:46:A5:C3:B5:72:4F:1E:3A:27:9A:51:64:8D:C8:EB:57:D8:EE Certificate issuer: /CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Certificate serial: 1E7A8A7299E1AF36C4BCD91D267AE558D9AEE734 Authority key identifier: BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32322d3232203d3e203135333533.roa Signing time: Thu 03 Jul 2025 20:32:03 +0000 ROA not before: Thu 03 Jul 2025 20:27:03 +0000 ROA not after: Thu 02 Jul 2026 20:32:03 +0000 asID: 15353 IP address blocks: 199.47.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/5138de2d-512a-4692-8c53-d2d9a6ceb549.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 20:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:7a:8a:72:99:e1:af:36:c4:bc:d9:1d:26:7a:e5:58:d9:ae:e7:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6 Validity Not Before: Jul 3 20:27:03 2025 GMT Not After : Jul 2 20:32:03 2026 GMT Subject: CN=25FA46A5C3B5724F1E3A279A51648DC8EB57D8EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:dc:4e:51:89:ed:5b:36:f3:4c:34:cd:0f: 7c:1c:2c:50:ff:72:84:89:17:54:27:aa:99:64:03: d9:e3:f4:c8:a2:93:94:d9:3f:83:bb:89:64:66:03: c4:45:f1:17:23:7c:36:3d:6a:5e:41:57:6f:dc:00: dd:8c:50:da:16:67:c5:a5:35:8b:fb:8f:e2:ae:be: 5a:eb:ac:65:c2:69:e6:a7:ce:13:14:f3:16:ad:7f: 60:ea:fb:f4:97:e4:99:93:13:2d:25:d9:01:76:e4: b3:94:91:e9:4c:ca:0c:8b:69:ce:fd:4e:0d:96:e9: 5c:7a:65:f6:3e:2c:f1:24:ab:d7:08:e7:24:89:9d: 35:39:fa:3e:ee:2a:c1:f6:80:13:0e:1c:1c:e6:3f: 47:34:b7:d9:d1:d1:39:0c:3b:19:a8:12:51:e7:fd: f4:ee:d6:c5:2e:79:22:9d:11:6c:f2:57:81:55:a8: 8c:bc:8a:61:d1:80:21:ae:85:65:ae:36:11:08:92: 5e:a9:cb:70:96:b4:d7:b2:82:6a:a1:75:ef:44:ff: 02:47:9e:cb:fd:94:54:ea:a0:16:5f:c0:46:34:95: 3d:2e:f5:31:74:c3:56:be:97:e8:e6:a8:07:47:2d: 06:db:92:26:2a:04:a3:e4:a2:4a:99:bb:94:c2:e0: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FA:46:A5:C3:B5:72:4F:1E:3A:27:9A:51:64:8D:C8:EB:57:D8:EE X509v3 Authority Key Identifier: keyid:BB:26:2D:2D:06:A5:BB:F4:FF:22:26:5C:7B:4F:55:1F:F0:37:43:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/BB262D2D06A5BBF4FF22265C7B4F551FF037433D.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5138de2d-512a-4692-8c53-d2d9a6ceb549/7c4424b0ef940ae283a399bf40b888b424ed0322e0ce02dad6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/66bd92f1-415b-4765-8a16-dbfc4593c1a8/6/3139392e34372e3134342e302f32322d3232203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.47.144.0/22 Signature Algorithm: sha256WithRSAEncryption 79:60:10:81:46:e4:66:28:f7:d3:2f:5f:b1:53:9c:8e:f9:fb: 50:88:34:9c:e4:28:b9:56:96:93:bc:f9:6a:45:5a:16:fe:7a: 2c:86:63:34:76:ca:9e:1d:eb:3f:1b:9d:76:20:24:4b:4e:a9: 9c:23:e8:79:89:06:bd:a7:f7:81:a8:c4:f7:73:16:b0:75:5c: 41:43:6e:54:c0:87:2d:ba:c3:e4:44:7a:bd:e9:88:a9:e2:66: fd:31:0d:9f:e0:25:53:51:1e:28:bb:8f:cf:b2:7a:b5:bc:06: ec:f1:7a:8f:92:5c:f7:78:fb:b0:d0:1f:d1:98:cc:51:92:9a: 25:cb:5d:f4:ef:35:97:7c:2a:89:f1:e4:97:2e:93:fa:9d:9f: 9a:4d:61:ab:2e:54:2e:33:6a:53:49:3b:29:2d:1d:fa:bc:49: b1:37:a6:02:55:b9:99:47:20:58:6f:32:2d:52:23:ca:ce:e0: 44:60:20:bf:a6:4b:42:c5:3d:7d:d3:05:79:aa:6f:fb:02:27: 13:a6:7b:d2:b2:25:17:bd:bb:48:b8:75:ca:54:30:79:72:16: 99:02:04:10:a1:e3:aa:f1:cd:af:7a:80:17:6d:fa:a8:2b:cf: a1:45:2d:47:02:42:bd:9b:61:85:39:04:c5:cc:d0:a6:14:66: 17:0c:2b:62 -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIUHnqKcpnhrzbEvNkdJnrlWNmu5zQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQy NGVkMDMyMmUwY2UwMmRhZDYwHhcNMjUwNzAzMjAyNzAzWhcNMjYwNzAyMjAzMjAz WjAzMTEwLwYDVQQDEygyNUZBNDZBNUMzQjU3MjRGMUUzQTI3OUE1MTY0OERDOEVC NTdEOEVFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVbcTlGJ7Vs2 80w0zQ98HCxQ/3KEiRdUJ6qZZAPZ4/TIopOU2T+Du4lkZgPERfEXI3w2PWpeQVdv 3ADdjFDaFmfFpTWL+4/irr5a66xlwmnmp84TFPMWrX9g6vv0l+SZkxMtJdkBduSz lJHpTMoMi2nO/U4NlulcemX2PizxJKvXCOckiZ01Ofo+7irB9oATDhwc5j9HNLfZ 0dE5DDsZqBJR5/307tbFLnkinRFs8leBVaiMvIph0YAhroVlrjYRCJJeqctwlrTX soJqoXXvRP8CR57L/ZRU6qAWX8BGNJU9LvUxdMNWvpfo5qgHRy0G25ImKgSj5KJK mbuUwuDN3QIDAQABo4ICzTCCAskwHQYDVR0OBBYEFCX6RqXDtXJPHjonmlFkjcjr V9juMB8GA1UdIwQYMBaAFLsmLS0Gpbv0/yImXHtPVR/wN0M9MA4GA1UdDwEB/wQE AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2 LWRiZmM0NTkzYzFhOC82L0JCMjYyRDJEMDZBNUJCRjRGRjIyMjY1QzdCNEY1NTFG RjAzNzQzM0QuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0 YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzViN2ZiMTIyLWRmZGYt NGMwYy1iOTBkLTNiYzdhNWZlYjgyYi81MTM4ZGUyZC01MTJhLTQ2OTItOGM1My1k MmQ5YTZjZWI1NDkvN2M0NDI0YjBlZjk0MGFlMjgzYTM5OWJmNDBiODg4YjQyNGVk MDMyMmUwY2UwMmRhZDYuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUH MAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY2YmQ5MmYxLTQxNWItNDc2NS04YTE2LWRiZmM0NTkzYzFhOC82LzMxMzkzOTJl MzQzNzJlMzEzNDM0MmUzMDJmMzIzMjJkMzIzMjIwM2QzZTIwMzEzNTMzMzUzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAscvkDANBgkqhkiG9w0BAQsFAAOCAQEAeWAQgUbkZij30y9fsVOc jvn7UIg0nOQouVaWk7z5akVaFv56LIZjNHbKnh3rPxuddiAkS06pnCPoeYkGvaf3 gajE93MWsHVcQUNuVMCHLbrD5ER6vemIqeJm/TENn+AlU1EeKLuPz7J6tbwG7PF6 j5Jc93j7sNAf0ZjMUZKaJctd9O81l3wqifHkly6T+p2fmk1hqy5ULjNqU0k7KS0d +rxJsTemAlW5mUcgWG8yLVIjys7gRGAgv6ZLQsU9fdMFeapv+wInE6Z70rIlF727 SLh1ylQweXIWmQIEEKHjqvHNr3qAF236qCvPoUUtRwJCvZthhTkExczQphRmFwwr Yg== -----END CERTIFICATE-----Generated at Tue Jul 22 04:32:58 2025 by rpki-client