$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3561313a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a3561313a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: ho2GDYs887wwddfptt8eqYldcwS2T3Eh6iy4CkkTZr0= Subject key identifier: 09:20:7A:13:6C:C1:39:14:31:09:7A:90:D0:A5:1A:F6:66:30:81:F9 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 0A63280CEA7AD819D15D470F05118566307D50E3 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3561313a3a2f34382d3438203d3e20323134353433.roa Signing time: Fri 11 Apr 2025 20:52:33 +0000 ROA not before: Fri 11 Apr 2025 20:47:33 +0000 ROA not after: Fri 10 Apr 2026 20:52:33 +0000 asID: 214543 IP address blocks: 2a0b:4e07:5a1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:63:28:0c:ea:7a:d8:19:d1:5d:47:0f:05:11:85:66:30:7d:50:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:47:33 2025 GMT Not After : Apr 10 20:52:33 2026 GMT Subject: CN=09207A136CC1391431097A90D0A51AF6663081F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:9a:8c:9c:41:66:34:b2:87:1d:52:9e:01:e7: fc:32:8a:db:e1:39:48:69:53:31:c9:7d:8c:b8:60: ce:e1:9d:b9:16:ed:7d:a9:85:ab:16:fd:bf:e8:42: 00:6b:bd:bf:50:00:f2:f3:13:0f:7f:4a:1e:82:ab: a0:5b:af:ee:4b:c6:0a:cc:7b:93:b8:55:ac:33:97: 6c:92:3b:d0:08:39:ef:87:9d:01:d9:6a:02:a6:25: 49:34:c8:f7:47:ed:99:59:cd:e7:93:ff:88:a3:a3: 83:83:e1:b4:8a:bc:ae:54:59:ad:02:bf:11:6c:56: 2d:47:2c:8f:40:65:01:e2:c8:be:9e:fa:6a:74:e2: 68:06:68:92:b9:11:05:cb:b5:3a:46:ba:93:54:96: 17:34:5a:fc:88:87:6c:91:43:c3:d4:0e:7f:20:38: b3:61:f9:ba:88:3a:8d:4e:9a:68:79:bc:c6:0e:b1: 68:93:75:95:ff:04:ba:92:7b:5e:01:6c:03:d6:27: e5:0d:cf:41:cb:73:63:c8:8b:e0:66:3f:34:97:a9: 88:71:4b:20:7d:ab:9d:13:1d:91:7c:c3:8a:ba:ff: 19:3d:3f:66:d3:87:3c:ae:f3:db:9c:fa:37:70:30: cc:14:ec:29:9c:28:56:10:35:92:c7:6a:a3:a8:61: 97:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:20:7A:13:6C:C1:39:14:31:09:7A:90:D0:A5:1A:F6:66:30:81:F9 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3561313a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:5a1::/48 Signature Algorithm: sha256WithRSAEncryption 9e:81:d1:9f:76:d3:da:b5:08:6e:7f:7b:8d:74:66:9c:dd:40: 9d:e6:0f:d2:4d:2e:c7:cc:57:98:b8:38:f5:07:a5:16:90:52: 7f:e2:65:e6:10:64:e0:5d:61:39:e9:91:d7:dd:86:e7:e5:39: f6:8d:48:88:e5:a6:b7:12:8a:22:57:01:b9:a6:6a:10:81:11: dc:fa:01:3b:cf:d8:25:42:bf:81:74:3f:35:e5:49:50:ac:80: da:48:77:0a:be:53:07:eb:ce:c1:a5:ea:b0:cc:99:93:73:fb: c4:da:b1:63:92:0e:aa:e3:68:1a:c8:0a:da:e6:47:45:f9:35: 24:57:43:91:c2:b7:cd:4b:c2:4f:c4:b6:ce:66:3a:62:3b:48: 27:3e:30:0c:67:c8:0e:63:4b:ef:70:6b:08:80:4d:5f:25:c9: e1:20:a3:51:00:f9:89:98:78:ec:ca:31:33:9d:fe:25:1f:a7: 98:9d:8a:76:21:b6:90:1a:88:d4:c3:60:fb:87:79:0e:ea:c5: f2:31:fc:62:c2:a8:1f:a1:16:51:59:a8:b4:94:a8:63:23:80: 56:aa:77:93:2b:78:36:fc:63:ed:fe:bf:67:01:6e:e2:36:8f: df:ab:0f:40:56:ee:33:77:79:d9:9c:12:e6:1b:93:3c:cc:29: c5:ba:2e:f3 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCmMoDOp62BnRXUcPBRGFZjB9UOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDQ3MzNaFw0yNjA0MTAyMDUyMzNaMDMxMTAvBgNV BAMTKDA5MjA3QTEzNkNDMTM5MTQzMTA5N0E5MEQwQTUxQUY2NjYzMDgxRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLmoycQWY0socdUp4B5/wyitvh OUhpUzHJfYy4YM7hnbkW7X2phasW/b/oQgBrvb9QAPLzEw9/Sh6Cq6Bbr+5LxgrM e5O4Vawzl2ySO9AIOe+HnQHZagKmJUk0yPdH7ZlZzeeT/4ijo4OD4bSKvK5UWa0C vxFsVi1HLI9AZQHiyL6e+mp04mgGaJK5EQXLtTpGupNUlhc0WvyIh2yRQ8PUDn8g OLNh+bqIOo1Ommh5vMYOsWiTdZX/BLqSe14BbAPWJ+UNz0HLc2PIi+BmPzSXqYhx SyB9q50THZF8w4q6/xk9P2bThzyu89uc+jdwMMwU7CmcKFYQNZLHaqOoYZfJAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUCSB6E2zBORQxCXqQ0KUa9mYwgfkwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM1NjEzMTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcFoTAN BgkqhkiG9w0BAQsFAAOCAQEAnoHRn3bT2rUIbn97jXRmnN1AneYP0k0ux8xXmLg4 9QelFpBSf+Jl5hBk4F1hOemR192G5+U59o1IiOWmtxKKIlcBuaZqEIER3PoBO8/Y JUK/gXQ/NeVJUKyA2kh3Cr5TB+vOwaXqsMyZk3P7xNqxY5IOquNoGsgK2uZHRfk1 JFdDkcK3zUvCT8S2zmY6YjtIJz4wDGfIDmNL73BrCIBNXyXJ4SCjUQD5iZh47Mox M53+JR+nmJ2KdiG2kBqI1MNg+4d5DurF8jH8YsKoH6EWUVmotJSoYyOAVqp3kyt4 Nvxj7f6/ZwFu4jaP36sPQFbuM3d52ZwS5huTPMwpxbou8w== -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:03 2025 by rpki-client