$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3531313a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a3531313a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: GZlHbjcEFvfRvoaBVQkGSyoBlQlP7mHteiBFK0TFOrQ= Subject key identifier: 64:9C:7D:9A:77:41:B9:E9:40:AA:05:BA:9B:FB:59:DE:26:A7:E3:34 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 744C79C44BF41B0E75CBD5C93500AB6FB2034E85 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3531313a3a2f34382d3438203d3e20323134353433.roa Signing time: Fri 11 Apr 2025 20:51:56 +0000 ROA not before: Fri 11 Apr 2025 20:46:56 +0000 ROA not after: Fri 10 Apr 2026 20:51:56 +0000 asID: 214543 IP address blocks: 2a0b:4e07:511::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:4c:79:c4:4b:f4:1b:0e:75:cb:d5:c9:35:00:ab:6f:b2:03:4e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:46:56 2025 GMT Not After : Apr 10 20:51:56 2026 GMT Subject: CN=649C7D9A7741B9E940AA05BA9BFB59DE26A7E334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:a2:8d:70:8a:b3:cc:4f:62:bf:da:1f:0d:ea: af:7b:25:4a:74:0c:63:82:3f:03:07:f7:4b:13:24: cf:67:44:94:4a:96:d9:fb:00:23:96:2c:60:a3:d2: 48:41:4a:4d:71:74:4e:bf:a7:f8:01:fb:a0:d2:05: 4c:ce:d5:cf:10:0d:69:0b:44:0a:8a:f4:29:e1:aa: 2c:9f:84:8f:5b:a3:6f:2d:a2:4d:82:bd:f2:0f:14: b1:99:02:02:a3:ac:57:fd:84:61:51:c5:5f:93:18: 94:48:e0:bb:e4:c9:c5:00:78:2a:d7:21:2c:e5:56: 4e:90:85:44:9b:92:b9:60:be:08:60:4c:ea:d7:cd: e8:7e:30:78:a3:1b:6d:dd:e3:28:16:af:1d:d4:b0: 80:40:5d:0e:96:f3:95:40:2d:54:92:6b:70:d7:65: 23:b2:35:a9:f8:4b:ef:f6:65:c5:52:9e:a7:60:95: 0f:c9:66:f2:86:c0:d4:9e:1c:da:79:3d:8c:39:ca: 14:99:56:14:5e:d7:ab:3a:da:b3:2b:f6:c5:c9:b0: ea:b3:61:e5:51:bd:04:23:d0:41:3a:6a:fa:94:21: c1:66:dd:d8:7d:5d:47:2c:b6:b5:9f:2e:a0:17:ad: 76:8e:ad:f6:59:5c:36:de:49:b5:79:e2:ec:25:62: 07:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9C:7D:9A:77:41:B9:E9:40:AA:05:BA:9B:FB:59:DE:26:A7:E3:34 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3531313a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:511::/48 Signature Algorithm: sha256WithRSAEncryption 00:1b:17:2f:72:b1:32:5f:3f:29:35:4a:e5:a9:b6:57:2c:4b: f3:19:b2:06:04:17:ae:03:e2:db:7f:8d:f2:cc:72:e3:fc:f0: 18:d4:e6:26:3d:c2:6e:63:8b:7b:0f:b0:db:1d:21:f8:7e:f2: 62:ad:1b:99:4a:1a:6b:f5:66:ff:30:fd:d3:5b:2b:d4:9f:d5: 30:95:68:29:bd:ab:f4:61:f5:83:3f:ff:ea:95:5e:8a:56:9e: e4:10:1d:81:13:20:34:61:61:77:fb:9c:d2:0f:26:ad:b9:3d: e4:62:f4:61:eb:04:bb:03:4e:b6:36:e2:84:15:cb:25:4b:89: 67:56:21:a4:87:1a:b5:b4:03:d6:f0:94:56:bc:4d:af:75:18: 15:99:84:94:38:6d:5b:ec:30:d5:2e:5c:d1:e3:0b:a7:eb:fd: 34:47:28:0e:65:24:55:56:41:d8:ad:d2:f7:cc:73:4c:26:a1: 24:5a:52:c1:a7:a8:91:74:a7:40:cf:c0:f7:3c:8d:61:c6:7e: 81:a8:68:4d:22:3f:2e:6b:23:38:f2:37:44:9b:f9:4f:70:f8: 0d:e1:43:34:4f:74:a5:6d:d3:1d:80:7a:90:73:5f:7a:91:4a: 18:a5:c6:92:f5:eb:62:40:1e:ff:b9:c8:e3:1f:9d:ec:6e:49: 91:ca:7d:8b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUdEx5xEv0Gw51y9XJNQCrb7IDToUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDQ2NTZaFw0yNjA0MTAyMDUxNTZaMDMxMTAvBgNV BAMTKDY0OUM3RDlBNzc0MUI5RTk0MEFBMDVCQTlCRkI1OURFMjZBN0UzMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWoo1wirPMT2K/2h8N6q97JUp0 DGOCPwMH90sTJM9nRJRKltn7ACOWLGCj0khBSk1xdE6/p/gB+6DSBUzO1c8QDWkL RAqK9CnhqiyfhI9bo28tok2CvfIPFLGZAgKjrFf9hGFRxV+TGJRI4LvkycUAeCrX ISzlVk6QhUSbkrlgvghgTOrXzeh+MHijG23d4ygWrx3UsIBAXQ6W85VALVSSa3DX ZSOyNan4S+/2ZcVSnqdglQ/JZvKGwNSeHNp5PYw5yhSZVhRe16s62rMr9sXJsOqz YeVRvQQj0EE6avqUIcFm3dh9XUcstrWfLqAXrXaOrfZZXDbeSbV54uwlYgcXAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUZJx9mndBuelAqgW6m/tZ3ian4zQwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM1MzEzMTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcFETAN BgkqhkiG9w0BAQsFAAOCAQEAABsXL3KxMl8/KTVK5am2VyxL8xmyBgQXrgPi23+N 8sxy4/zwGNTmJj3CbmOLew+w2x0h+H7yYq0bmUoaa/Vm/zD901sr1J/VMJVoKb2r 9GH1gz//6pVeilae5BAdgRMgNGFhd/uc0g8mrbk95GL0YesEuwNOtjbihBXLJUuJ Z1YhpIcatbQD1vCUVrxNr3UYFZmElDhtW+ww1S5c0eMLp+v9NEcoDmUkVVZB2K3S 98xzTCahJFpSwaeokXSnQM/A9zyNYcZ+gahoTSI/LmsjOPI3RJv5T3D4DeFDNE90 pW3THYB6kHNfepFKGKXGkvXrYkAe/7nI4x+d7G5Jkcp9iw== -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:03 2025 by rpki-client