$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630363a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a3630363a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: 58q+Ul9njHLPilkSf/z0Fg4xvXnvj9BiIupjhA6JrEQ= Subject key identifier: FA:9E:6C:2D:C7:04:1E:0F:02:F9:A0:68:CC:A6:FA:EC:AE:C6:D8:AB Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 02114B888A64BB5849BEC5F6504C6D63DAB46349 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630363a3a2f34382d3438203d3e20323134353433.roa Signing time: Fri 11 Apr 2025 14:29:12 +0000 ROA not before: Fri 11 Apr 2025 14:24:12 +0000 ROA not after: Fri 10 Apr 2026 14:29:12 +0000 asID: 214543 IP address blocks: 2a0b:4e07:606::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:11:4b:88:8a:64:bb:58:49:be:c5:f6:50:4c:6d:63:da:b4:63:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:24:12 2025 GMT Not After : Apr 10 14:29:12 2026 GMT Subject: CN=FA9E6C2DC7041E0F02F9A068CCA6FAECAEC6D8AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1e:67:5e:57:13:77:0d:50:6b:d9:b9:55:2a: 56:58:7d:28:81:da:5e:38:77:47:55:17:72:3f:99: f9:91:14:a9:09:29:8d:ef:63:6c:92:09:5e:f9:0e: f7:49:26:22:27:87:9b:30:f1:64:86:9a:cb:37:77: f5:38:67:21:d0:c9:3a:50:fc:96:9d:07:88:b2:45: 56:64:1b:1b:e6:06:27:f1:35:28:b0:6d:84:a6:d7: 53:8c:01:38:47:f4:44:66:5e:dd:d4:1a:17:dc:2a: 2a:53:e5:aa:16:c3:2d:eb:10:97:1c:0e:70:10:95: 0d:b8:2b:e0:c6:05:43:b5:00:e1:52:7b:57:d3:d9: e9:99:0a:82:7a:d7:5f:98:e0:cb:6e:49:7a:af:ad: 93:c1:7f:28:ba:f7:50:ce:97:4c:a2:98:18:22:00: 4a:98:3d:58:1f:15:e5:5c:5f:45:76:16:d6:c6:c3: 33:67:2c:48:c7:02:4d:27:cd:9d:10:85:4d:3a:2a: 84:3c:11:ad:8b:52:ba:05:37:bf:cc:95:9a:1d:d1: 18:2f:ee:bc:ec:11:84:bc:37:a1:2a:5a:72:be:2e: 40:6e:15:cb:0e:1c:a5:2f:49:99:a5:3c:25:29:88: d3:34:1d:12:ff:8f:cf:a6:cf:63:07:37:23:0c:ce: f0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9E:6C:2D:C7:04:1E:0F:02:F9:A0:68:CC:A6:FA:EC:AE:C6:D8:AB X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630363a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:606::/48 Signature Algorithm: sha256WithRSAEncryption 87:ce:39:a2:36:e8:f3:7b:0c:da:ea:fb:3c:d9:74:5e:f1:3e: d6:39:30:d9:d1:43:05:6d:b7:43:71:86:11:4d:fe:9b:09:19: 89:f1:84:51:ff:19:4f:91:e5:54:33:e7:7c:5a:c3:aa:4f:2d: 77:09:cb:a1:9c:e6:de:6e:e4:60:25:bc:09:51:a6:67:5b:85: 5b:31:e8:61:cc:57:4d:bb:97:39:90:d4:57:90:29:7e:60:c7: c0:49:ad:26:e5:9c:0b:1b:f2:c2:3a:d3:37:35:2d:7f:92:32: 68:d0:82:42:e1:59:63:f1:ae:07:fb:a0:ed:bc:5d:57:40:ef: 14:2d:82:7d:7f:f1:23:47:b0:d7:45:25:cc:6c:d5:64:d1:f3: 1d:41:f3:5a:9e:0a:66:65:db:67:92:76:0a:7f:44:d1:c8:49: 99:b0:31:19:72:07:82:56:89:44:ad:4f:4c:a3:37:96:52:a8: 80:0a:a9:b2:f3:e2:a2:81:d9:e5:41:f8:77:ad:4a:91:14:dc: d6:ec:a0:8e:3b:ec:75:22:3c:09:2a:40:cc:d9:d3:29:20:c0: 35:0a:73:0c:f4:f2:ac:c2:c3:ca:25:de:2b:2b:82:3a:b7:dd: b2:83:7d:ec:38:ff:1c:2c:20:38:92:64:60:8e:c4:08:a9:52: 33:2d:fd:a0 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUAhFLiIpku1hJvsX2UExtY9q0Y0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI0MTJaFw0yNjA0MTAxNDI5MTJaMDMxMTAvBgNV BAMTKEZBOUU2QzJEQzcwNDFFMEYwMkY5QTA2OENDQTZGQUVDQUVDNkQ4QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7HmdeVxN3DVBr2blVKlZYfSiB 2l44d0dVF3I/mfmRFKkJKY3vY2ySCV75DvdJJiInh5sw8WSGmss3d/U4ZyHQyTpQ /JadB4iyRVZkGxvmBifxNSiwbYSm11OMAThH9ERmXt3UGhfcKipT5aoWwy3rEJcc DnAQlQ24K+DGBUO1AOFSe1fT2emZCoJ611+Y4MtuSXqvrZPBfyi691DOl0yimBgi AEqYPVgfFeVcX0V2FtbGwzNnLEjHAk0nzZ0QhU06KoQ8Ea2LUroFN7/MlZod0Rgv 7rzsEYS8N6EqWnK+LkBuFcsOHKUvSZmlPCUpiNM0HRL/j8+mz2MHNyMMzvBHAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU+p5sLccEHg8C+aBozKb67K7G2KswHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM2MzAzNjNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcGBjAN BgkqhkiG9w0BAQsFAAOCAQEAh845ojbo83sM2ur7PNl0XvE+1jkw2dFDBW23Q3GG EU3+mwkZifGEUf8ZT5HlVDPnfFrDqk8tdwnLoZzm3m7kYCW8CVGmZ1uFWzHoYcxX TbuXOZDUV5ApfmDHwEmtJuWcCxvywjrTNzUtf5IyaNCCQuFZY/GuB/ug7bxdV0Dv FC2CfX/xI0ew10UlzGzVZNHzHUHzWp4KZmXbZ5J2Cn9E0chJmbAxGXIHglaJRK1P TKM3llKogAqpsvPiooHZ5UH4d61KkRTc1uygjjvsdSI8CSpAzNnTKSDANQpzDPTy rMLDyiXeKyuCOrfdsoN97Dj/HCwgOJJkYI7ECKlSMy39oA== -----END CERTIFICATE-----Generated at Wed Apr 16 02:26:23 2025 by rpki-client