$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33303a3a2f34362d3438203d3e20323131303636.roa File: 326130623a346530373a33303a3a2f34362d3438203d3e20323131303636.roa (raw, json) Hash identifier: 6xMW+60T1XqymyxoFZEYum165N+irQUQk+Z9MFzvnQI= Subject key identifier: 07:6A:D4:8B:99:89:8F:4F:C0:C6:1B:34:7D:5E:E3:ED:A1:F6:08:6C Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 7E96880D7F15C6FDC70C43EA6447749630D8631C Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33303a3a2f34362d3438203d3e20323131303636.roa Signing time: Mon 21 Jul 2025 21:05:37 +0000 ROA not before: Mon 21 Jul 2025 21:00:37 +0000 ROA not after: Mon 20 Jul 2026 21:05:37 +0000 asID: 211066 IP address blocks: 2a0b:4e07:30::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 13:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:96:88:0d:7f:15:c6:fd:c7:0c:43:ea:64:47:74:96:30:d8:63:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jul 21 21:00:37 2025 GMT Not After : Jul 20 21:05:37 2026 GMT Subject: CN=076AD48B99898F4FC0C61B347D5EE3EDA1F6086C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bb:7c:d7:df:c0:eb:e8:4e:48:da:0a:e2:2f: 95:8b:52:20:29:22:4f:b4:ee:a9:6f:83:6d:95:b8: 37:1b:cf:6b:d8:46:2d:81:b1:b9:13:94:e8:0d:7b: b1:56:6e:1f:f4:ed:8e:b9:b5:6d:39:4b:4c:92:c6: 24:6a:2e:6f:22:31:f5:80:fc:45:00:68:af:b2:b5: 63:ac:eb:36:5d:63:0f:9a:c8:f4:16:05:4c:ee:93: 01:dd:74:b0:4c:b3:1c:c8:bf:24:9e:8c:fe:26:64: 84:65:7e:f0:ac:bb:3a:41:8c:bc:af:b3:0e:6d:8a: 55:21:e2:9b:7d:af:0c:96:6e:e3:f9:ec:b7:94:64: 70:b9:4e:8f:3b:d8:79:9e:e5:74:c0:ad:4e:45:06: 00:07:2e:ec:2c:4a:13:78:e4:56:13:99:a6:97:fc: 70:ef:74:98:6d:7d:c8:87:e4:a5:ce:e1:2a:9b:85: 1c:c5:71:7c:2a:b7:b4:d2:20:f8:f3:73:f2:29:69: 92:e8:ed:94:47:2b:78:4b:fe:e0:64:35:28:9c:1a: d2:66:d3:94:06:6a:5e:b4:a3:06:8b:07:02:0d:2c: 86:68:a9:5f:8c:c6:63:52:43:11:8c:6b:7f:fb:44: 6a:96:4d:ab:e8:6e:9f:34:ff:2c:2b:74:e5:9d:01: 60:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6A:D4:8B:99:89:8F:4F:C0:C6:1B:34:7D:5E:E3:ED:A1:F6:08:6C X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33303a3a2f34362d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:30::/46 Signature Algorithm: sha256WithRSAEncryption 5d:0b:b5:f3:8b:50:bf:ba:2f:91:25:f0:6e:42:25:58:c1:e0: e9:36:06:a8:45:15:07:61:4e:b8:9c:5b:96:ab:47:b5:21:08: 4a:2c:8e:6d:9b:fb:ba:c7:f6:d2:72:5f:4c:ae:ba:b7:57:c3: e5:c5:65:38:d2:8b:c1:b8:20:56:93:93:c4:f8:ca:19:8c:ab: 48:c2:dc:69:fd:a4:01:0d:4b:0f:cb:eb:61:92:6c:b9:67:e7: 1f:59:61:1b:f1:f2:6b:c5:b0:58:e8:1f:99:3f:63:83:d2:36: ab:22:6a:91:ea:0e:b1:74:6b:67:ec:07:e0:62:07:3b:16:3e: f7:ab:6a:f9:fe:f5:ba:e4:aa:ad:46:30:90:14:26:5a:c3:15: 68:7d:5c:41:e3:42:a3:8d:f3:cb:1b:e8:01:68:43:b6:9d:2e: 12:74:8e:68:65:4b:8b:44:51:cc:43:d4:65:cd:ac:b1:f2:84: 4a:d0:bb:70:72:7f:f8:b8:59:ff:73:42:a0:81:9e:9b:a0:36: 86:26:f5:11:ad:57:a1:cf:09:a1:86:43:1a:3e:43:ff:57:5e: 5d:7f:39:d3:3d:0e:94:05:d6:86:34:23:42:25:08:a8:95:4f: ca:75:55:fb:62:16:de:76:ba:8e:bb:cb:08:7c:a6:9f:25:83: db:ab:21:e2 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUfpaIDX8Vxv3HDEPqZEd0ljDYYxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA3MjEyMTAwMzdaFw0yNjA3MjAyMTA1MzdaMDMxMTAvBgNV BAMTKDA3NkFENDhCOTk4OThGNEZDMEM2MUIzNDdENUVFM0VEQTFGNjA4NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKu3zX38Dr6E5I2griL5WLUiAp Ik+07qlvg22VuDcbz2vYRi2BsbkTlOgNe7FWbh/07Y65tW05S0ySxiRqLm8iMfWA /EUAaK+ytWOs6zZdYw+ayPQWBUzukwHddLBMsxzIvySejP4mZIRlfvCsuzpBjLyv sw5tilUh4pt9rwyWbuP57LeUZHC5To872Hme5XTArU5FBgAHLuwsShN45FYTmaaX /HDvdJhtfciH5KXO4SqbhRzFcXwqt7TSIPjzc/IpaZLo7ZRHK3hL/uBkNSicGtJm 05QGal60owaLBwINLIZoqV+MxmNSQxGMa3/7RGqWTavobp80/ywrdOWdAWDJAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUB2rUi5mJj0/Axhs0fV7j7aH2CGwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMzMzAzYTNhMmYzNDM2 MmQzNDM4MjAzZDNlMjAzMjMxMzEzMDM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HADAwDQYJ KoZIhvcNAQELBQADggEBAF0LtfOLUL+6L5El8G5CJVjB4Ok2BqhFFQdhTricW5ar R7UhCEosjm2b+7rH9tJyX0yuurdXw+XFZTjSi8G4IFaTk8T4yhmMq0jC3Gn9pAEN Sw/L62GSbLln5x9ZYRvx8mvFsFjoH5k/Y4PSNqsiapHqDrF0a2fsB+BiBzsWPver avn+9brkqq1GMJAUJlrDFWh9XEHjQqON88sb6AFoQ7adLhJ0jmhlS4tEUcxD1GXN rLHyhErQu3Byf/i4Wf9zQqCBnpugNoYm9RGtV6HPCaGGQxo+Q/9XXl1/OdM9DpQF 1oY0I0IlCKiVT8p1VftiFt52uo67ywh8pp8lg9urIeI= -----END CERTIFICATE-----Generated at Tue Jul 22 20:06:57 2025 by rpki-client