$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61633a3a2f34382d3438203d3e20333937363538.roa File: 326130623a346530373a61633a3a2f34382d3438203d3e20333937363538.roa (raw, json) Hash identifier: DoHrU/Atn285QTshDuDhxUTny5Zb2cOALjBaZUjHYrk= Subject key identifier: 1E:70:96:11:3E:55:D5:65:C4:03:D9:64:22:8E:EC:F0:FB:22:D8:DC Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 6B3C56AA3296D1FB008953408DE93EAFE8208429 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61633a3a2f34382d3438203d3e20333937363538.roa Signing time: Fri 11 Jul 2025 19:55:38 +0000 ROA not before: Fri 11 Jul 2025 19:50:38 +0000 ROA not after: Fri 10 Jul 2026 19:55:38 +0000 asID: 397658 IP address blocks: 2a0b:4e07:ac::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 13:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3c:56:aa:32:96:d1:fb:00:89:53:40:8d:e9:3e:af:e8:20:84:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jul 11 19:50:38 2025 GMT Not After : Jul 10 19:55:38 2026 GMT Subject: CN=1E7096113E55D565C403D964228EECF0FB22D8DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:c0:ac:df:a0:53:88:ed:53:02:2d:11:40: 8a:74:9a:e0:02:cf:14:bc:a4:bc:d1:ca:da:51:09: 0a:9b:b0:83:cc:ab:6a:aa:cc:e6:9e:52:00:b2:b5: 7a:54:45:58:88:96:19:98:62:c6:e8:c6:cc:df:b3: cc:b3:1c:51:09:d0:5b:c4:05:c0:5a:14:c7:01:d2: 09:c5:28:44:97:d8:74:04:f2:10:2c:70:05:25:fa: 6d:b5:0c:40:3c:2f:08:b6:42:80:a3:85:61:96:c3: 93:6c:f9:84:b9:23:88:a5:8a:e2:64:86:31:fd:4b: 4b:7f:36:71:7c:2a:7a:6d:14:ee:70:fb:b2:ca:d7: 18:07:2b:20:a5:36:96:a2:b8:9a:82:46:7f:47:d1: 65:7c:f2:dc:24:45:ec:ce:0e:1a:c1:e2:88:8c:c0: 4f:3b:6c:8c:6f:81:e8:07:10:fb:a9:d0:b3:52:e6: 9d:c9:bd:65:94:c3:5e:23:89:b1:87:1a:33:84:8a: 56:a7:cc:79:73:12:9a:fa:7f:7a:b0:bd:28:17:e6: a9:b5:ef:7d:2c:74:ee:c2:cf:d3:14:5c:09:cf:c7: 59:74:96:bc:db:cb:fc:d2:ed:d4:a0:d5:ba:e8:0c: 8a:23:21:3f:87:ff:1f:17:70:2f:c9:ae:2a:75:8d: a9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:70:96:11:3E:55:D5:65:C4:03:D9:64:22:8E:EC:F0:FB:22:D8:DC X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61633a3a2f34382d3438203d3e20333937363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ac::/48 Signature Algorithm: sha256WithRSAEncryption 5f:1f:8a:eb:4e:6b:ba:ea:e3:b5:8b:49:c7:28:f0:05:cd:63: d4:60:d0:f5:b7:cc:8b:7c:19:bb:ee:85:14:bc:f5:0e:f2:83: 79:82:c5:0a:39:a1:84:f0:f2:8f:f8:2f:f0:d3:f9:2b:0f:95: 8f:b7:07:b5:5f:72:e4:9d:3b:fa:b1:df:b0:87:06:8d:ec:7d: 7c:14:eb:bf:fb:d3:b6:b3:0b:17:58:9d:65:4e:88:ae:4c:84: 99:51:9d:89:a0:4e:48:f9:ac:b4:49:91:f3:77:b6:73:c8:00: 14:6b:53:84:f9:24:9a:ac:e6:3d:96:28:7b:d4:d9:7b:5d:7e: 86:2d:ca:14:04:af:1f:4b:d9:7c:b6:7f:cb:9c:35:0e:49:3f: ea:1d:a4:ee:d3:eb:02:3c:35:b6:77:da:62:10:3b:04:f8:ca: 74:ca:1b:43:06:f9:27:c2:43:93:6c:d2:4a:38:80:3a:9b:e0: 93:7a:ad:4e:91:52:01:6b:c6:af:85:2a:58:66:a0:a8:05:4e: d5:e6:23:5c:38:36:01:11:1a:6c:b2:9f:8e:af:6d:ec:0f:e9: fb:f6:fc:04:04:ec:f3:46:53:0e:bf:4a:09:cb:2e:07:0c:22: 46:67:40:96:4b:f0:1d:5f:e1:9f:ff:bf:e2:0c:80:53:47:60: 59:01:ca:ff -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUazxWqjKW0fsAiVNAjek+r+gghCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA3MTExOTUwMzhaFw0yNjA3MTAxOTU1MzhaMDMxMTAvBgNV BAMTKDFFNzA5NjExM0U1NUQ1NjVDNDAzRDk2NDIyOEVFQ0YwRkIyMkQ4REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7fMCs36BTiO1TAi0RQIp0muAC zxS8pLzRytpRCQqbsIPMq2qqzOaeUgCytXpURViIlhmYYsboxszfs8yzHFEJ0FvE BcBaFMcB0gnFKESX2HQE8hAscAUl+m21DEA8Lwi2QoCjhWGWw5Ns+YS5I4iliuJk hjH9S0t/NnF8KnptFO5w+7LK1xgHKyClNpaiuJqCRn9H0WV88twkRezODhrB4oiM wE87bIxvgegHEPup0LNS5p3JvWWUw14jibGHGjOEilanzHlzEpr6f3qwvSgX5qm1 730sdO7Cz9MUXAnPx1l0lrzby/zS7dSg1broDIojIT+H/x8XcC/Jrip1jakbAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUHnCWET5V1WXEA9lkIo7s8Psi2NwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYxNjMzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMzM5MzczNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAKwwDQYJ KoZIhvcNAQELBQADggEBAF8fiutOa7rq47WLScco8AXNY9Rg0PW3zIt8GbvuhRS8 9Q7yg3mCxQo5oYTw8o/4L/DT+SsPlY+3B7VfcuSdO/qx37CHBo3sfXwU67/707az CxdYnWVOiK5MhJlRnYmgTkj5rLRJkfN3tnPIABRrU4T5JJqs5j2WKHvU2XtdfoYt yhQErx9L2Xy2f8ucNQ5JP+odpO7T6wI8NbZ32mIQOwT4ynTKG0MG+SfCQ5Ns0ko4 gDqb4JN6rU6RUgFrxq+FKlhmoKgFTtXmI1w4NgERGmyyn46vbewP6fv2/AQE7PNG Uw6/SgnLLgcMIkZnQJZL8B1f4Z//v+IMgFNHYFkByv8= -----END CERTIFICATE-----Generated at Tue Jul 22 20:06:43 2025 by rpki-client