$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa File: 326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa (raw, json) Hash identifier: j1Vpfj+VhbwLwG6Lhf4bvyTz1o2/eov8NdZ9PBugutI= Subject key identifier: 8F:39:6A:CE:25:BE:EF:56:A9:45:63:0F:BE:FA:27:80:AA:29:F7:59 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 25F18ED888AE25C03083D857EB8B20BB274A606F Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa Signing time: Fri 11 Apr 2025 20:46:25 +0000 ROA not before: Fri 11 Apr 2025 20:41:25 +0000 ROA not after: Fri 10 Apr 2026 20:46:25 +0000 asID: 214675 IP address blocks: 2a0b:4e07:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f1:8e:d8:88:ae:25:c0:30:83:d8:57:eb:8b:20:bb:27:4a:60:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:41:25 2025 GMT Not After : Apr 10 20:46:25 2026 GMT Subject: CN=8F396ACE25BEEF56A945630FBEFA2780AA29F759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:f7:7e:f1:f0:51:2a:bd:bb:fe:c3:22:21: 65:26:0d:9a:24:6e:9f:83:44:b0:41:91:db:72:13: 70:e2:69:84:1d:25:24:a9:0e:1b:65:54:50:2c:c1: 78:79:6d:7c:6d:8d:83:d2:bf:55:7c:b6:50:91:2f: 06:be:a0:96:91:bf:96:79:50:21:bb:10:3a:6e:48: 1c:03:8f:5d:fe:2c:c4:fd:eb:d9:c7:70:d5:f8:1b: 27:75:c0:7a:ab:39:a8:e5:d0:9f:27:82:19:ce:88: 44:e8:72:a6:05:66:8d:16:63:fe:40:ab:a7:15:73: 6e:bc:41:bf:ce:9e:33:b9:43:9e:94:ce:10:bf:54: 00:9f:1f:84:42:b0:71:de:4b:44:92:4d:a1:7c:f6: 48:04:c0:cd:1d:c2:7b:ef:53:c2:ca:a3:37:68:1b: f0:fa:85:c8:95:df:79:4f:f2:5a:ef:01:c5:2b:c4: c7:86:f9:69:33:91:7a:bc:f8:9c:75:ec:52:12:90: 92:1a:f6:4a:91:ca:95:09:4b:a8:ed:a0:2b:e4:1b: 85:55:0d:6d:ae:53:6b:12:b6:96:48:0a:89:ae:ca: 1d:bb:3b:36:09:9f:96:a6:8c:3c:94:39:ad:e8:1a: 24:96:0c:5d:6a:17:f5:1e:67:04:c6:33:84:bf:a3: 7a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:39:6A:CE:25:BE:EF:56:A9:45:63:0F:BE:FA:27:80:AA:29:F7:59 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:300::/40 Signature Algorithm: sha256WithRSAEncryption 22:ae:f8:93:e0:8d:bb:f3:51:71:5d:a9:7c:78:38:95:0a:78: 17:3b:9b:e3:72:f8:7a:87:e8:3d:e7:64:4f:a5:80:15:26:bb: b2:9d:7c:8c:8f:68:dd:dd:1d:ff:17:09:76:d3:a8:cb:47:eb: b3:d3:3a:3a:a5:ba:48:d8:78:5a:13:d8:15:69:20:1c:5a:e2: 48:f4:25:a2:6a:bf:48:c5:18:29:03:8c:47:51:b2:f8:84:70: bb:c0:97:d3:31:00:a1:3e:2b:d6:be:76:8b:45:82:33:ac:90: 21:68:78:bc:84:83:67:2c:39:a4:b1:d5:74:68:f2:62:1c:80: a9:63:ab:8e:24:5b:35:5b:ee:24:8d:c4:99:68:07:d3:68:96: 38:89:e4:9d:c6:fe:74:01:ba:ca:bf:c2:03:7e:52:58:c1:68: 56:28:39:31:ba:8d:1e:df:99:d2:dd:09:1c:8b:6a:43:c9:8c: 36:2f:4e:f2:66:e1:e5:8b:54:de:30:5f:8f:ad:ce:90:d3:bc: 38:a8:15:d3:5d:9c:c3:a0:40:24:42:b1:7d:60:19:2f:ad:0e: 6c:78:00:7a:0e:53:c6:98:c7:a1:50:1e:6a:6c:9e:0c:b8:44: 24:b3:b9:c2:df:f8:ba:d0:d2:bb:85:6e:70:38:b9:6a:d5:b8: ec:0b:78:25 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgIUJfGO2IiuJcAwg9hX64sguydKYG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDQxMjVaFw0yNjA0MTAyMDQ2MjVaMDMxMTAvBgNV BAMTKDhGMzk2QUNFMjVCRUVGNTZBOTQ1NjMwRkJFRkEyNzgwQUEyOUY3NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+pfd+8fBRKr27/sMiIWUmDZok bp+DRLBBkdtyE3DiaYQdJSSpDhtlVFAswXh5bXxtjYPSv1V8tlCRLwa+oJaRv5Z5 UCG7EDpuSBwDj13+LMT969nHcNX4Gyd1wHqrOajl0J8nghnOiETocqYFZo0WY/5A q6cVc268Qb/OnjO5Q56UzhC/VACfH4RCsHHeS0SSTaF89kgEwM0dwnvvU8LKozdo G/D6hciV33lP8lrvAcUrxMeG+WkzkXq8+Jx17FISkJIa9kqRypUJS6jtoCvkG4VV DW2uU2sStpZIComuyh27OzYJn5amjDyUOa3oGiSWDF1qF/UeZwTGM4S/o3rzAgMB AAGjggJnMIICYzAdBgNVHQ4EFgQUjzlqziW+71apRWMPvvongKop91kwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMzMzAzMDNhM2EyZjM0 MzAyZDM0MzgyMDNkM2UyMDMyMzEzNDM2MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoLTgcDMA0G CSqGSIb3DQEBCwUAA4IBAQAirviT4I2781FxXal8eDiVCngXO5vjcvh6h+g952RP pYAVJruynXyMj2jd3R3/Fwl206jLR+uz0zo6pbpI2HhaE9gVaSAcWuJI9CWiar9I xRgpA4xHUbL4hHC7wJfTMQChPivWvnaLRYIzrJAhaHi8hINnLDmksdV0aPJiHICp Y6uOJFs1W+4kjcSZaAfTaJY4ieSdxv50AbrKv8IDflJYwWhWKDkxuo0e35nS3Qkc i2pDyYw2L07yZuHli1TeMF+Prc6Q07w4qBXTXZzDoEAkQrF9YBkvrQ5seAB6DlPG mMehUB5qbJ4MuEQks7nC3/i60NK7hW5wOLlq1bjsC3gl -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:03 2025 by rpki-client