$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa File: AS60639.roa (raw, json) Hash identifier: pt/br9JVZ06aY5YBYKR/PYJ0s7WsJJTSog6x1RgS54U= Subject key identifier: 1F:E5:ED:F3:90:D7:CD:AA:21:50:E3:78:4E:F5:6B:E3:BC:3A:B6:5E Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1F34D756408CAD1422273B321984EA4DFDE3F9B5 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa Signing time: Fri 05 Jun 2026 08:45:51 +0000 ROA not before: Fri 05 Jun 2026 08:40:51 +0000 ROA not after: Fri 04 Jun 2027 08:45:51 +0000 asID: 60639 IP address blocks: 2a07:54c7:7000::/36 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:34:d7:56:40:8c:ad:14:22:27:3b:32:19:84:ea:4d:fd:e3:f9:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:51 2026 GMT Not After : Jun 4 08:45:51 2027 GMT Subject: CN=1FE5EDF390D7CDAA2150E3784EF56BE3BC3AB65E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7a:46:d2:f8:6e:c1:e9:4e:43:d4:79:c0:33: e1:40:45:00:4e:e6:ca:3f:ab:ec:41:dc:26:e8:ec: fe:dd:df:69:a9:72:cc:c6:16:4c:09:33:54:e9:0a: 8d:21:01:44:47:59:90:28:52:c8:51:9b:3b:d3:34: 54:15:6d:97:0c:89:4d:29:cd:da:3f:f4:f9:f4:59: b0:2d:6b:5b:3b:2f:6f:82:3e:5c:fd:86:39:38:4b: 25:d5:7b:62:fc:4b:15:18:27:53:b7:f1:3e:36:ea: 74:c2:48:6d:38:43:b1:0a:6f:7f:01:fc:18:43:0c: 64:64:d8:9d:b5:2b:21:2d:05:1f:dc:60:dc:7d:8a: c5:5e:a2:dc:d0:6d:76:bb:96:a3:1b:46:6b:c4:3f: 4e:c4:d7:49:3e:f5:51:44:e7:53:eb:c4:61:f1:61: 67:e4:e4:8a:c8:05:f2:1c:da:c2:bf:ab:0c:56:f9: 2f:a0:07:85:0c:b1:bd:46:0a:ca:a2:f5:f0:8d:30: 82:f7:c2:65:8e:03:37:f5:fa:a5:35:e8:38:58:04: d4:17:6e:c9:4a:80:01:9d:4c:82:01:09:e6:df:3c: 36:db:6b:d3:dc:c7:32:f4:ce:28:0e:7e:88:dd:db: fe:e4:c5:fa:b6:37:9e:7d:fe:6f:f4:c7:dd:ad:62: 8f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E5:ED:F3:90:D7:CD:AA:21:50:E3:78:4E:F5:6B:E3:BC:3A:B6:5E X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:7000::/36 Signature Algorithm: sha256WithRSAEncryption 79:2b:38:41:88:5d:61:7e:af:58:40:d1:ec:44:58:0f:8a:f6: 73:e9:cb:50:da:ba:24:8c:e7:0d:05:d5:4e:fa:10:0c:8d:a8: 30:5e:51:8e:3c:f2:d2:2a:2a:2b:a0:ea:b7:c9:c0:e3:ff:a6: 7d:b9:b8:ab:87:d0:a1:0f:bb:59:1a:4a:e2:9c:fa:1f:ee:86: 96:69:b3:a0:15:79:27:2d:4c:2b:86:6e:e7:3c:66:bf:a2:22: 05:5c:9b:e6:77:3f:36:be:64:c2:74:17:7b:be:24:c2:7b:75: 8d:ec:f7:b9:84:b2:e9:cc:07:ef:18:fe:c2:8b:77:c1:e7:4e: 25:82:c7:cf:ba:d3:0e:53:17:a5:b9:3e:dd:65:dc:41:14:5e: 5a:8a:57:98:7d:79:15:0b:92:25:56:cc:96:e7:c7:81:ef:be: f5:f0:a8:88:7c:f9:aa:78:31:c5:0c:d2:f2:75:e5:e8:15:32: 1b:76:1a:fb:00:9d:27:3e:16:4a:55:79:0d:fa:a3:00:1f:4b: a2:65:b2:a8:55:24:65:24:ca:dd:1b:14:b4:9b:d8:54:48:04: 87:bf:06:9f:4c:4c:d5:14:08:c8:83:9f:4f:0b:7d:52:68:45: fa:67:e5:3d:61:35:21:ac:ae:ea:a4:d7:82:35:4d:e5:79:2c: 62:12:d8:d8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHzTXVkCMrRQiJzsyGYTqTf3j+bUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTFaFw0yNzA2MDQwODQ1NTFaMDMxMTAvBgNV BAMTKDFGRTVFREYzOTBEN0NEQUEyMTUwRTM3ODRFRjU2QkUzQkMzQUI2NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUekbS+G7B6U5D1HnAM+FARQBO 5so/q+xB3Cbo7P7d32mpcszGFkwJM1TpCo0hAURHWZAoUshRmzvTNFQVbZcMiU0p zdo/9Pn0WbAta1s7L2+CPlz9hjk4SyXVe2L8SxUYJ1O38T426nTCSG04Q7EKb38B /BhDDGRk2J21KyEtBR/cYNx9isVeotzQbXa7lqMbRmvEP07E10k+9VFE51PrxGHx YWfk5IrIBfIc2sK/qwxW+S+gB4UMsb1GCsqi9fCNMIL3wmWOAzf1+qU16DhYBNQX bslKgAGdTIIBCebfPDbba9PcxzL0zigOfojd2/7kxfq2N559/m/0x92tYo8hAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUH+Xt85DXzaohUON4TvVr47w6tl4wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjA2Mzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQqB1TH cDANBgkqhkiG9w0BAQsFAAOCAQEAeSs4QYhdYX6vWEDR7ERYD4r2c+nLUNq6JIzn DQXVTvoQDI2oMF5Rjjzy0ioqK6Dqt8nA4/+mfbm4q4fQoQ+7WRpK4pz6H+6Glmmz oBV5Jy1MK4Zu5zxmv6IiBVyb5nc/Nr5kwnQXe74kwnt1jez3uYSy6cwH7xj+wot3 wedOJYLHz7rTDlMXpbk+3WXcQRReWopXmH15FQuSJVbMlufHge++9fCoiHz5qngx xQzS8nXl6BUyG3Ya+wCdJz4WSlV5DfqjAB9LomWyqFUkZSTK3RsUtJvYVEgEh78G n0xM1RQIyIOfTwt9UmhF+mflPWE1Iayu6qTXgjVN5XksYhLY2A== -----END CERTIFICATE-----Generated at Sat Jun 13 09:25:56 2026 by rpki-client