$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3130303a3a2f34302d3430203d3e20313439303230.roa File: 326130623a346530373a3130303a3a2f34302d3430203d3e20313439303230.roa (raw, json) Hash identifier: TYctFj3nOSWFqMtjZWpI2HNkvwoPbrrf9FPjw/HuyGo= Subject key identifier: EA:26:B4:35:BA:7B:32:71:B9:8C:1C:4F:5A:D7:D7:75:77:C0:46:3C Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 5B592E86C14C4CB80EE9CE9510A6E2228407CEBA Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3130303a3a2f34302d3430203d3e20313439303230.roa Signing time: Fri 11 Apr 2025 19:14:42 +0000 ROA not before: Fri 11 Apr 2025 19:09:42 +0000 ROA not after: Fri 10 Apr 2026 19:14:42 +0000 asID: 149020 IP address blocks: 2a0b:4e07:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:59:2e:86:c1:4c:4c:b8:0e:e9:ce:95:10:a6:e2:22:84:07:ce:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 19:09:42 2025 GMT Not After : Apr 10 19:14:42 2026 GMT Subject: CN=EA26B435BA7B3271B98C1C4F5AD7D77577C0463C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ff:9a:d9:80:60:84:de:45:dc:b5:9a:e9:1c: 63:b7:db:16:62:c8:6c:d4:2b:4d:06:00:e6:ff:fe: 01:69:b2:c1:b5:37:73:71:d6:10:99:66:9a:f7:71: 24:cd:30:56:3a:f8:33:b3:42:84:ef:52:83:9b:9f: 95:77:0f:2c:fa:d7:c9:53:37:d9:c0:67:7f:db:de: 25:27:a6:8a:45:4a:e4:b3:1f:c9:5d:08:90:20:81: 76:ef:00:f0:c6:e8:fb:cf:c1:d0:c6:b7:fc:6c:6b: 68:41:97:36:54:61:16:66:81:df:ae:0e:94:eb:66: 48:40:9f:bb:16:5b:ac:a5:6c:7f:2e:56:56:2c:4e: 43:b5:a8:93:c1:9c:9c:ad:9b:70:61:cc:ab:44:c6: 50:61:16:fa:c2:f3:81:eb:71:2c:60:60:04:ae:95: 4f:64:02:3f:22:5d:84:fc:88:90:07:0d:1c:0f:f3: bb:65:2a:a4:2f:a2:dc:af:b8:3b:4b:f8:7c:26:07: 5b:4a:e4:5e:d6:42:40:90:5f:70:f6:59:b4:f7:ef: 97:bd:70:91:1b:91:59:39:a6:ef:d0:1a:75:85:a7: 19:6d:ec:27:3f:db:27:e2:c7:93:d9:16:69:61:65: 20:e6:8a:83:93:3a:54:c4:2a:63:bb:2b:f8:93:f3: f0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:26:B4:35:BA:7B:32:71:B9:8C:1C:4F:5A:D7:D7:75:77:C0:46:3C X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3130303a3a2f34302d3430203d3e20313439303230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:100::/40 Signature Algorithm: sha256WithRSAEncryption 01:d9:fa:7b:77:92:8f:48:10:9e:1c:b7:73:dc:c6:46:eb:4d: 64:f9:82:f2:ca:d4:b3:a2:7a:c1:f1:0e:29:6f:67:6c:e6:5d: a5:b0:98:3b:39:4d:fd:44:45:f7:0b:6d:77:d2:4c:9a:33:be: b5:fb:77:89:fc:a3:86:e5:97:42:5d:a3:dc:48:3f:84:56:6b: 5c:46:fb:f5:41:84:8f:f7:bc:cd:2c:43:ad:3f:54:4a:61:06: b0:4d:1b:fc:a0:73:3f:1a:0e:53:d0:57:43:7b:45:3a:71:6b: 64:c3:13:53:2e:e7:16:f8:65:42:d1:74:35:b5:41:e9:a6:bc: 66:ae:cf:9e:f1:dd:85:75:d5:14:87:98:ce:3a:cb:d5:f2:72: 1d:a6:52:92:ec:55:29:ec:bc:58:b5:54:c6:79:3c:38:59:42: f2:ae:6e:a3:44:2b:4d:f4:d6:9a:70:7c:c0:99:df:57:62:47: d2:98:37:34:15:a7:c9:19:cd:37:1d:c3:c5:58:14:62:3c:0d: 35:88:4d:c8:62:10:33:f5:13:83:69:fd:3c:24:2d:7b:99:2d: b0:5b:c5:ce:4f:99:e9:ff:25:2c:c0:70:06:c6:2d:04:72:d3: c8:9e:2a:43:93:d3:3c:a0:10:15:7e:0d:75:a9:57:b8:f4:e8: ec:9d:b3:41 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUW1kuhsFMTLgO6c6VEKbiIoQHzrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExOTA5NDJaFw0yNjA0MTAxOTE0NDJaMDMxMTAvBgNV BAMTKEVBMjZCNDM1QkE3QjMyNzFCOThDMUM0RjVBRDdENzc1NzdDMDQ2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA/5rZgGCE3kXctZrpHGO32xZi yGzUK00GAOb//gFpssG1N3Nx1hCZZpr3cSTNMFY6+DOzQoTvUoObn5V3Dyz618lT N9nAZ3/b3iUnpopFSuSzH8ldCJAggXbvAPDG6PvPwdDGt/xsa2hBlzZUYRZmgd+u DpTrZkhAn7sWW6ylbH8uVlYsTkO1qJPBnJytm3BhzKtExlBhFvrC84HrcSxgYASu lU9kAj8iXYT8iJAHDRwP87tlKqQvotyvuDtL+HwmB1tK5F7WQkCQX3D2WbT375e9 cJEbkVk5pu/QGnWFpxlt7Cc/2yfix5PZFmlhZSDmioOTOlTEKmO7K/iT8/DlAgMB AAGjggJnMIICYzAdBgNVHQ4EFgQU6ia0Nbp7MnG5jBxPWtfXdXfARjwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMxMzAzMDNhM2EyZjM0 MzAyZDM0MzAyMDNkM2UyMDMxMzQzOTMwMzIzMC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoLTgcBMA0G CSqGSIb3DQEBCwUAA4IBAQAB2fp7d5KPSBCeHLdz3MZG601k+YLyytSzonrB8Q4p b2ds5l2lsJg7OU39REX3C2130kyaM761+3eJ/KOG5ZdCXaPcSD+EVmtcRvv1QYSP 97zNLEOtP1RKYQawTRv8oHM/Gg5T0FdDe0U6cWtkwxNTLucW+GVC0XQ1tUHpprxm rs+e8d2FddUUh5jOOsvV8nIdplKS7FUp7LxYtVTGeTw4WULyrm6jRCtN9NaacHzA md9XYkfSmDc0FafJGc03HcPFWBRiPA01iE3IYhAz9RODaf08JC17mS2wW8XOT5np /yUswHAGxi0EctPInipDk9M8oBAVfg11qVe49OjsnbNB -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:03 2025 by rpki-client