$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61393a3a2f34382d3438203d3e20333937363538.roa File: 326130623a346530373a61393a3a2f34382d3438203d3e20333937363538.roa (raw, json) Hash identifier: oAaQ4AURqsNtWQkpNgm7W0XSfL/Vyt7OoiEaUbiZbHo= Subject key identifier: 40:66:82:36:A2:A2:E9:E1:9D:5C:80:27:52:1B:B4:21:E9:6E:49:C2 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 6324F873305B1E73CD98015E16A89E33366EF2B0 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61393a3a2f34382d3438203d3e20333937363538.roa Signing time: Fri 11 Jul 2025 19:56:35 +0000 ROA not before: Fri 11 Jul 2025 19:51:35 +0000 ROA not after: Fri 10 Jul 2026 19:56:35 +0000 asID: 397658 IP address blocks: 2a0b:4e07:a9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 16:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:24:f8:73:30:5b:1e:73:cd:98:01:5e:16:a8:9e:33:36:6e:f2:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jul 11 19:51:35 2025 GMT Not After : Jul 10 19:56:35 2026 GMT Subject: CN=40668236A2A2E9E19D5C8027521BB421E96E49C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c4:1b:6c:45:a4:40:39:61:61:fb:56:04:2b: 08:aa:c9:ad:5b:38:83:c8:c6:5f:96:94:0a:8e:44: 15:b8:98:d9:6d:15:56:3a:d3:ce:e6:58:02:4d:f1: ac:7a:16:45:58:ae:32:11:c5:25:2d:17:58:93:b0: 9d:63:66:a2:85:90:ce:08:26:1a:a5:b8:e8:5e:90: ee:75:7e:62:95:53:f2:04:a3:80:e4:6e:d2:6f:bf: 28:74:62:b4:c2:50:17:51:ee:b0:95:d2:98:53:a0: d2:33:73:aa:0c:4e:de:c8:da:bc:0a:53:76:67:f4: e6:c7:80:9f:2f:59:63:d0:93:f6:87:b0:b6:93:86: 10:33:fb:a2:0e:4d:17:ef:ed:0a:3b:48:ee:e5:2f: 18:8e:3e:ed:82:91:2c:80:43:df:97:cb:b4:ac:5d: 01:80:e4:72:d3:33:6e:c1:a1:98:d1:30:5c:ea:c5: f7:b9:6d:71:5a:29:69:c5:26:ab:8a:25:78:2b:33: 68:34:54:1a:7a:8c:fa:89:e0:80:1e:ab:3e:9a:d7: 4b:45:f5:65:1d:43:0f:91:97:4f:fa:ff:1d:71:6c: e0:e8:ba:31:72:fe:9e:98:da:d0:c9:0a:1d:89:ce: 25:ec:03:8c:53:68:01:f7:8b:56:bc:30:3f:1a:56: 87:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:66:82:36:A2:A2:E9:E1:9D:5C:80:27:52:1B:B4:21:E9:6E:49:C2 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61393a3a2f34382d3438203d3e20333937363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:a9::/48 Signature Algorithm: sha256WithRSAEncryption 8b:03:0b:e8:3d:da:d0:79:f0:89:89:99:4d:d3:d2:11:a0:ef: 9f:1f:85:56:cc:36:e4:ea:26:32:77:00:b3:de:a7:e5:31:61: 95:ca:45:d3:e1:8a:ff:91:c5:0b:00:18:f4:41:45:4d:43:95: e0:14:53:d8:bd:60:c8:1e:84:ff:b9:64:eb:c7:53:c4:bf:09: 09:d2:44:af:2c:7c:f7:f7:3b:7a:d6:31:89:09:96:f6:16:20: 59:81:3e:84:04:e8:c9:a3:1b:b7:80:cd:33:e8:27:2d:3d:6f: 90:77:b5:d6:a6:fe:08:7f:ea:d4:99:43:3e:fc:da:22:44:7f: 9d:e6:79:ac:88:94:2d:92:9a:74:9b:19:9e:81:15:4f:fd:10: e7:73:56:76:65:ba:24:6c:ca:44:ce:48:46:cc:41:8f:b8:44: 99:53:95:c4:1b:a5:3f:1f:5f:e7:54:30:7c:09:62:4b:e6:4a: 7d:9d:70:1c:b8:a0:00:29:4e:aa:f8:e3:3f:ad:50:4c:76:56: c0:71:ff:a0:58:80:14:73:6a:d1:a7:38:a8:44:6a:dd:f0:a5: 81:be:13:9e:12:e4:c3:0a:a8:87:c7:9e:db:7d:12:0d:ba:cb: b0:6d:41:00:aa:31:3d:34:4d:6c:53:f2:fd:4d:e9:46:8a:7e: 4d:a6:5f:d6 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUYyT4czBbHnPNmAFeFqieMzZu8rAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA3MTExOTUxMzVaFw0yNjA3MTAxOTU2MzVaMDMxMTAvBgNV BAMTKDQwNjY4MjM2QTJBMkU5RTE5RDVDODAyNzUyMUJCNDIxRTk2RTQ5QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaxBtsRaRAOWFh+1YEKwiqya1b OIPIxl+WlAqORBW4mNltFVY6087mWAJN8ax6FkVYrjIRxSUtF1iTsJ1jZqKFkM4I JhqluOhekO51fmKVU/IEo4DkbtJvvyh0YrTCUBdR7rCV0phToNIzc6oMTt7I2rwK U3Zn9ObHgJ8vWWPQk/aHsLaThhAz+6IOTRfv7Qo7SO7lLxiOPu2CkSyAQ9+Xy7Ss XQGA5HLTM27BoZjRMFzqxfe5bXFaKWnFJquKJXgrM2g0VBp6jPqJ4IAeqz6a10tF 9WUdQw+Rl0/6/x1xbODoujFy/p6Y2tDJCh2JziXsA4xTaAH3i1a8MD8aVoeDAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUQGaCNqKi6eGdXIAnUhu0IeluScIwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYxMzkzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMzM5MzczNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAKkwDQYJ KoZIhvcNAQELBQADggEBAIsDC+g92tB58ImJmU3T0hGg758fhVbMNuTqJjJ3ALPe p+UxYZXKRdPhiv+RxQsAGPRBRU1DleAUU9i9YMgehP+5ZOvHU8S/CQnSRK8sfPf3 O3rWMYkJlvYWIFmBPoQE6MmjG7eAzTPoJy09b5B3tdam/gh/6tSZQz782iJEf53m eayIlC2SmnSbGZ6BFU/9EOdzVnZluiRsykTOSEbMQY+4RJlTlcQbpT8fX+dUMHwJ YkvmSn2dcBy4oAApTqr44z+tUEx2VsBx/6BYgBRzatGnOKhEat3wpYG+E54S5MMK qIfHntt9Eg26y7BtQQCqMT00TWxT8v1N6UaKfk2mX9Y= -----END CERTIFICATE-----Generated at Wed Jul 23 01:53:17 2025 by rpki-client