$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33393a3a2f34382d3438203d3e20323134383334.roa File: 326130623a346530373a33393a3a2f34382d3438203d3e20323134383334.roa (raw, json) Hash identifier: 2WJi/eMfoSIMmDTh/P2xg2btAJwyaMRpqayEq00F1CI= Subject key identifier: 95:58:63:92:76:EB:E0:15:6F:9B:0F:26:8C:6B:05:A0:EA:CF:15:0B Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 4B9805D5C7886D927A54594FE0230E5CF276EBFD Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33393a3a2f34382d3438203d3e20323134383334.roa Signing time: Mon 21 Jul 2025 22:16:50 +0000 ROA not before: Mon 21 Jul 2025 22:11:50 +0000 ROA not after: Mon 20 Jul 2026 22:16:50 +0000 asID: 214834 IP address blocks: 2a0b:4e07:39::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 16:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:98:05:d5:c7:88:6d:92:7a:54:59:4f:e0:23:0e:5c:f2:76:eb:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jul 21 22:11:50 2025 GMT Not After : Jul 20 22:16:50 2026 GMT Subject: CN=9558639276EBE0156F9B0F268C6B05A0EACF150B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:19:24:b2:a3:46:9d:8c:54:38:25:d0:af:46: d2:bc:e2:bd:93:c4:71:8e:58:ea:ac:b5:79:33:f8: cd:b1:cf:1c:ac:53:36:e0:3f:2e:dd:86:a6:18:14: 3b:52:c5:b6:fd:be:7e:16:b8:2d:c0:e4:3a:98:51: c6:62:40:a9:55:63:86:47:e5:8c:02:25:fb:dc:5e: 0f:4b:0a:e7:e1:4c:67:8a:50:25:12:b8:a6:fd:24: 8f:b3:85:53:98:8e:37:3c:54:5d:0d:2d:2c:65:d5: 91:60:8c:92:d1:65:d7:3a:13:2d:60:d6:05:3a:37: c7:cd:a2:55:81:28:6c:cf:79:e3:dc:f2:fa:4a:18: 34:1f:73:96:51:24:ce:30:a8:26:a2:87:bd:73:cd: 6c:dc:4c:fc:06:46:2f:9c:78:8d:7d:cc:a9:20:61: cb:a6:50:64:11:36:5c:78:1c:57:4c:dc:59:38:67: 8e:83:a6:8e:ff:24:9e:a9:57:80:1c:28:37:6c:f0: a7:4b:e8:e7:1b:3a:ab:26:c6:b5:8c:69:b9:22:22: d0:b0:85:d0:b5:36:bf:05:7a:da:79:75:0a:9e:10: bc:da:be:27:22:49:26:38:20:98:f6:c0:8e:6d:36: 33:59:1b:01:5b:6a:48:16:c1:62:01:f1:f9:63:0c: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:58:63:92:76:EB:E0:15:6F:9B:0F:26:8C:6B:05:A0:EA:CF:15:0B X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33393a3a2f34382d3438203d3e20323134383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:39::/48 Signature Algorithm: sha256WithRSAEncryption 93:b0:ad:9d:cb:ec:6c:44:77:be:e2:dc:30:82:7d:e2:7e:2a: 91:d8:79:8e:41:1c:94:e5:9f:43:c8:a6:23:01:21:34:d4:8c: 33:16:1e:b8:a4:de:33:79:e6:e6:40:42:bd:97:29:06:86:9c: ea:72:4f:24:68:d7:7a:a3:84:9e:8d:db:3c:aa:a7:35:b6:8a: c4:53:44:d9:2d:3d:7f:86:60:24:62:7f:06:f5:fe:8c:f4:0f: de:7b:ec:e3:82:0a:72:33:4f:ba:06:d2:e3:ae:54:5d:56:a4: 1a:b5:35:04:1c:68:49:69:01:c0:04:07:29:e5:ce:33:46:5d: 2b:39:79:a5:da:bf:75:70:18:7d:6e:27:94:f8:7f:fe:c8:42: 90:fb:a6:75:1e:f7:77:f7:92:1d:13:e2:9f:27:af:6c:7d:fd: 1c:08:b7:e3:80:95:79:b6:29:0d:98:97:1f:98:d3:b7:8a:dc: bf:bb:2f:ed:bc:bf:d0:b1:85:1b:2e:79:da:77:63:7a:a3:c9: 74:91:78:56:25:2d:5c:80:c8:63:81:9d:7c:0f:c7:14:76:3e: 98:c0:f3:ab:7d:1b:60:c1:ca:ec:ef:cb:d7:a2:4c:91:91:b4: 4c:69:f4:dd:e7:91:0e:ec:da:c2:f5:4d:eb:02:dc:9b:e1:15: f8:7e:5d:6b -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUS5gF1ceIbZJ6VFlP4CMOXPJ26/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA3MjEyMjExNTBaFw0yNjA3MjAyMjE2NTBaMDMxMTAvBgNV BAMTKDk1NTg2MzkyNzZFQkUwMTU2RjlCMEYyNjhDNkIwNUEwRUFDRjE1MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhGSSyo0adjFQ4JdCvRtK84r2T xHGOWOqstXkz+M2xzxysUzbgPy7dhqYYFDtSxbb9vn4WuC3A5DqYUcZiQKlVY4ZH 5YwCJfvcXg9LCufhTGeKUCUSuKb9JI+zhVOYjjc8VF0NLSxl1ZFgjJLRZdc6Ey1g 1gU6N8fNolWBKGzPeePc8vpKGDQfc5ZRJM4wqCaih71zzWzcTPwGRi+ceI19zKkg YcumUGQRNlx4HFdM3Fk4Z46Dpo7/JJ6pV4AcKDds8KdL6OcbOqsmxrWMabkiItCw hdC1Nr8Fetp5dQqeELzaviciSSY4IJj2wI5tNjNZGwFbakgWwWIB8fljDP1XAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUlVhjknbr4BVvmw8mjGsFoOrPFQswHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMzMzkzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMjMxMzQzODMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HADkwDQYJ KoZIhvcNAQELBQADggEBAJOwrZ3L7GxEd77i3DCCfeJ+KpHYeY5BHJTln0PIpiMB ITTUjDMWHrik3jN55uZAQr2XKQaGnOpyTyRo13qjhJ6N2zyqpzW2isRTRNktPX+G YCRifwb1/oz0D9577OOCCnIzT7oG0uOuVF1WpBq1NQQcaElpAcAEBynlzjNGXSs5 eaXav3VwGH1uJ5T4f/7IQpD7pnUe93f3kh0T4p8nr2x9/RwIt+OAlXm2KQ2Ylx+Y 07eK3L+7L+28v9CxhRsuedp3Y3qjyXSReFYlLVyAyGOBnXwPxxR2PpjA86t9G2DB yuzvy9eiTJGRtExp9N3nkQ7s2sL1TesC3JvhFfh+XWs= -----END CERTIFICATE-----Generated at Wed Jul 23 01:47:53 2025 by rpki-client