$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60841.roa File: AS60841.roa (raw, json) Hash identifier: Vi9QZE9pkhO56uNsZb77kO36FmCphLwUHUrLZvvqlV4= Subject key identifier: F7:12:BA:91:6C:40:52:FF:7A:EF:19:F6:55:08:60:6F:F3:33:CF:5F Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 4A522F6F8CD2977C9A79780C5EE951DCDEDABBA8 Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60841.roa Signing time: Fri 05 Jun 2026 08:45:52 +0000 ROA not before: Fri 05 Jun 2026 08:40:52 +0000 ROA not after: Fri 04 Jun 2027 08:45:52 +0000 asID: 60841 IP address blocks: 2a07:54c1:5000::/36 maxlen: 36 2a07:54c1:5000::/36 maxlen: 48 2a07:54c4:174a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 22:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:52:2f:6f:8c:d2:97:7c:9a:79:78:0c:5e:e9:51:dc:de:da:bb:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jun 5 08:40:52 2026 GMT Not After : Jun 4 08:45:52 2027 GMT Subject: CN=F712BA916C4052FF7AEF19F65508606FF333CF5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7a:bc:ea:66:d7:c3:2d:42:42:62:35:6c:b2: 4f:44:94:84:dc:a8:8d:2c:f3:b1:dc:98:f4:7f:8d: 18:a4:cb:1a:2c:a9:ec:4c:6d:94:c8:30:3d:89:a7: b2:da:4d:ab:8b:25:b0:c9:79:bc:49:21:c7:64:9a: 6b:8a:00:4d:9b:1c:f4:91:50:75:96:4a:3d:91:64: 53:88:78:07:a5:d9:23:b9:79:eb:c8:42:f7:fa:26: 83:84:50:50:c0:6d:7d:7a:c6:00:36:97:3d:a6:66: f5:4e:b7:ec:5a:06:2b:5c:26:01:79:86:15:90:96: 4d:85:bf:ef:2e:c7:40:2e:42:5e:8f:29:07:d0:54: 34:cf:9b:f9:37:b4:ae:b8:4c:6d:27:c7:22:e2:d2: 3a:c8:1d:4a:2e:ea:b5:9b:41:57:ba:00:e8:bc:ee: 27:81:3b:ad:7b:63:08:1c:b8:2a:bd:85:8e:fe:f6: c7:15:52:c8:f9:c2:8a:c5:4e:5e:82:58:eb:5f:ab: b9:28:9a:c8:49:7d:6a:f6:57:82:81:ae:43:3c:ac: d2:5a:51:05:fa:87:ef:6f:9e:2b:6e:0c:00:a7:bb: b4:20:83:7c:a2:d4:b0:eb:f1:9f:68:51:7a:1a:25: 47:a1:aa:41:4c:ab:ce:03:4b:3d:fd:0d:ee:14:9f: 35:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:12:BA:91:6C:40:52:FF:7A:EF:19:F6:55:08:60:6F:F3:33:CF:5F X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS60841.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:5000::/36 2a07:54c4:174a::/48 Signature Algorithm: sha256WithRSAEncryption 2f:a5:7f:7f:fd:87:03:28:70:b0:b4:d4:97:6e:fc:32:74:29: 0a:c6:24:61:3e:6e:a3:3e:2d:33:c1:11:38:9e:9f:f3:f5:a9: 43:2b:77:1c:a6:a3:fd:28:ab:24:ab:cb:c0:87:5c:3c:40:66: b1:fc:28:7e:78:9c:d0:de:20:52:3b:2a:3a:d9:a9:b9:5d:7b: d5:e0:97:29:99:f5:95:89:f6:e8:5d:d7:da:be:4f:a5:00:4c: c1:40:77:40:3e:78:35:22:84:56:fc:31:1b:4e:3c:2f:e0:e2: e2:01:73:00:5c:96:61:db:4f:53:7c:a5:e4:69:26:b4:59:a1: af:ec:0c:84:84:a0:1f:05:ab:51:b6:de:3f:ab:ce:92:70:92: ce:3b:16:fb:3e:d6:f1:c7:c1:58:55:cc:31:ce:ca:9a:39:55: 15:ab:22:55:02:48:90:97:82:4b:51:32:82:3b:c2:d3:fe:49: 3b:03:99:fc:d6:d6:08:a5:c9:47:ca:8b:db:8d:3d:52:fb:a5: a8:98:b6:31:01:ed:0e:ca:10:f2:7b:03:e4:e7:85:94:f7:48: 03:b3:90:3f:a6:bc:61:d5:83:88:1b:13:42:c4:6c:c7:46:6f: df:88:bc:1d:76:c2:35:50:de:c6:61:30:fe:23:34:af:3e:ee: 20:45:8a:67 -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIUSlIvb4zSl3yaeXgMXulR3N7au6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNjA2MDUwODQwNTJaFw0yNzA2MDQwODQ1NTJaMDMxMTAvBgNV BAMTKEY3MTJCQTkxNkM0MDUyRkY3QUVGMTlGNjU1MDg2MDZGRjMzM0NGNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCperzqZtfDLUJCYjVssk9ElITc qI0s87HcmPR/jRikyxosqexMbZTIMD2Jp7LaTauLJbDJebxJIcdkmmuKAE2bHPSR UHWWSj2RZFOIeAel2SO5eevIQvf6JoOEUFDAbX16xgA2lz2mZvVOt+xaBitcJgF5 hhWQlk2Fv+8ux0AuQl6PKQfQVDTPm/k3tK64TG0nxyLi0jrIHUou6rWbQVe6AOi8 7ieBO617YwgcuCq9hY7+9scVUsj5worFTl6CWOtfq7komshJfWr2V4KBrkM8rNJa UQX6h+9vnituDACnu7Qgg3yi1LDr8Z9oUXoaJUehqkFMq84DSz39De4UnzVtAgMB AAGjggJEMIICQDAdBgNVHQ4EFgQU9xK6kWxAUv967xn2VQhgb/Mzz18wHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNjA4NDEucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwKgYIKwYBBQUHAQcBAf8EGzAZMBcEAgACMBEDBgQqB1TB UAMHACoHVMQXSjANBgkqhkiG9w0BAQsFAAOCAQEAL6V/f/2HAyhwsLTUl278MnQp CsYkYT5uoz4tM8EROJ6f8/WpQyt3HKaj/SirJKvLwIdcPEBmsfwofnic0N4gUjsq OtmpuV171eCXKZn1lYn26F3X2r5PpQBMwUB3QD54NSKEVvwxG048L+Di4gFzAFyW YdtPU3yl5GkmtFmhr+wMhISgHwWrUbbeP6vOknCSzjsW+z7W8cfBWFXMMc7KmjlV FasiVQJIkJeCS1EygjvC0/5JOwOZ/NbWCKXJR8qL2409UvulqJi2MQHtDsoQ8nsD 5OeFlPdIA7OQP6a8YdWDiBsTQsRsx0Zv34i8HXbCNVDexmEw/iM0rz7uIEWKZw== -----END CERTIFICATE-----Generated at Sat Jun 13 07:58:42 2026 by rpki-client