$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa File: AS60639.roa (raw, json) Hash identifier: qo+Ssen5XcjmHZpoDTl/xxn1k9kcNCfRySExgkN6hfM= Subject key identifier: 74:01:73:24:67:76:00:09:31:9A:B1:56:0B:B3:A5:94:38:F6:75:FC Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 1379FCF6E08161C021DF999331D64763DF79231C Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 60639 IP address blocks: 2a07:54c7:7000::/36 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:79:fc:f6:e0:81:61:c0:21:df:99:93:31:d6:47:63:df:79:23:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=7401732467760009319AB1560BB3A59438F675FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c8:6c:68:94:ad:18:5d:52:93:a7:32:8f:db: 26:a2:33:bc:1e:3d:29:99:8a:75:c6:ee:78:d9:76: 0d:2f:20:29:64:25:5b:08:50:e8:c8:89:df:2a:6a: e3:77:2d:dc:e1:88:bd:6d:2a:c5:03:07:24:10:0f: 2f:f9:6d:c8:15:25:9a:4a:e3:35:c7:43:09:70:20: 0b:dd:25:9a:2d:d0:a5:b6:ea:f0:16:ce:d7:eb:3f: 83:e8:69:93:ec:77:56:73:02:ef:f3:fe:21:d1:ca: 09:79:d6:14:f5:fe:90:ce:3d:63:4e:81:07:34:d5: fb:6e:4d:66:6e:c8:20:7b:cc:aa:de:d3:74:d5:5f: c8:c3:ee:4b:7f:bf:e2:3f:65:ff:ca:38:42:f6:86: a7:4b:61:32:53:57:89:98:dd:98:cf:67:83:8b:f6: 1f:df:da:29:b0:7d:de:71:69:28:60:9e:7b:f4:99: 87:32:3c:27:0b:13:55:95:11:de:21:90:c8:15:1e: cf:65:04:f5:f1:7f:b7:d6:8f:31:7e:79:fc:de:14: 8d:a4:3f:bc:7b:fa:d3:3c:2a:7a:75:fb:86:f5:6a: 4b:a3:f8:54:fb:1f:a3:44:35:b7:dc:2c:c9:16:eb: a2:4a:35:ed:fb:b1:97:3e:22:dc:d5:cc:ef:a3:49: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:01:73:24:67:76:00:09:31:9A:B1:56:0B:B3:A5:94:38:F6:75:FC X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:7000::/36 Signature Algorithm: sha256WithRSAEncryption 00:4d:9c:a1:fd:6b:41:1c:cf:bb:91:23:c7:af:7e:ff:f7:62: 3e:80:c4:62:30:ba:a1:2a:80:42:89:27:1a:bf:dd:85:cf:80: ad:56:1d:84:d3:92:c4:8b:89:5a:f5:ff:89:ff:a1:5c:e2:53: fa:c8:79:bc:f4:18:46:ce:32:a7:9f:19:38:f8:57:b7:bc:f7: db:df:e5:42:ce:c0:64:f0:bf:de:86:f4:6d:a8:f9:c6:d0:93: b7:a9:b7:91:10:b7:10:59:48:45:94:f9:7b:2a:dd:f1:60:b5: d0:4e:6c:f4:75:af:be:73:86:72:92:7d:20:c6:d2:52:b3:c9: 4c:39:c6:1d:b0:1e:61:d6:93:6b:ca:80:f7:c4:01:49:6b:ed: 52:0b:8e:22:e6:fb:b9:d1:ba:7e:dd:1d:34:02:e7:f2:9b:cb: ff:30:a3:97:7a:d4:ff:3f:20:86:b7:0d:5e:c2:46:de:70:35: 01:34:f6:ca:67:c1:15:45:12:30:2c:84:8e:43:ef:60:00:87: 40:77:e6:70:5a:d9:dd:f6:f9:8b:b9:62:bd:a8:c7:c6:3a:62: 02:65:ea:bb:32:2f:6f:52:50:e6:4c:25:ef:b9:29:70:ac:54: af:44:46:88:5e:53:0e:3f:80:ab:3d:96:45:a7:22:24:fe:75: f9:2a:db:cc -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUE3n89uCBYcAh35mTMdZHY995IxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKDc0MDE3MzI0Njc3NjAwMDkzMTlBQjE1NjBCQjNBNTk0MzhGNjc1RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkyGxolK0YXVKTpzKP2yaiM7we PSmZinXG7njZdg0vIClkJVsIUOjIid8qauN3LdzhiL1tKsUDByQQDy/5bcgVJZpK 4zXHQwlwIAvdJZot0KW26vAWztfrP4PoaZPsd1ZzAu/z/iHRygl51hT1/pDOPWNO gQc01ftuTWZuyCB7zKre03TVX8jD7kt/v+I/Zf/KOEL2hqdLYTJTV4mY3ZjPZ4OL 9h/f2imwfd5xaShgnnv0mYcyPCcLE1WVEd4hkMgVHs9lBPXxf7fWjzF+efzeFI2k P7x7+tM8Knp1+4b1akuj+FT7H6NENbfcLMkW66JKNe37sZc+ItzVzO+jSRRNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUdAFzJGd2AAkxmrFWC7OllDj2dfwwHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjA2Mzkucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQqB1TH cDANBgkqhkiG9w0BAQsFAAOCAQEAAE2cof1rQRzPu5Ejx69+//diPoDEYjC6oSqA QoknGr/dhc+ArVYdhNOSxIuJWvX/if+hXOJT+sh5vPQYRs4yp58ZOPhXt7z329/l Qs7AZPC/3ob0baj5xtCTt6m3kRC3EFlIRZT5eyrd8WC10E5s9HWvvnOGcpJ9IMbS UrPJTDnGHbAeYdaTa8qA98QBSWvtUguOIub7udG6ft0dNALn8pvL/zCjl3rU/z8g hrcNXsJG3nA1ATT2ymfBFUUSMCyEjkPvYACHQHfmcFrZ3fb5i7livajHxjpiAmXq uzIvb1JQ5kwl77kpcKxUr0RGiF5TDj+Aqz2WRaciJP51+SrbzA== -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:41 2025 by rpki-client