$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630383a3a2f34362d3436203d3e20323134353433.roa File: 326130623a346530373a3630383a3a2f34362d3436203d3e20323134353433.roa (raw, json) Hash identifier: bnDYU+3/UUNqNPRJz3U2jxeDJGc98AytcgmEq5tUCLw= Subject key identifier: C3:99:06:7A:4B:BE:7E:71:85:DE:6C:8D:C6:D5:65:DD:7E:4E:3A:DF Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 5B15B68CBFB73277712926A326D5D0928158B45B Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630383a3a2f34362d3436203d3e20323134353433.roa Signing time: Fri 11 Apr 2025 14:29:18 +0000 ROA not before: Fri 11 Apr 2025 14:24:18 +0000 ROA not after: Fri 10 Apr 2026 14:29:18 +0000 asID: 214543 IP address blocks: 2a0b:4e07:608::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:15:b6:8c:bf:b7:32:77:71:29:26:a3:26:d5:d0:92:81:58:b4:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:24:18 2025 GMT Not After : Apr 10 14:29:18 2026 GMT Subject: CN=C399067A4BBE7E7185DE6C8DC6D565DD7E4E3ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:08:75:2e:82:31:fd:87:3b:1a:45:bd:83: 17:1b:be:39:7f:56:09:39:91:6b:da:df:57:c9:6e: 09:80:58:98:54:37:e5:29:84:41:22:82:9e:5d:f9: 23:6c:ef:e6:1e:c4:b3:91:51:fa:85:cd:23:c0:b5: f0:01:c3:16:f5:8d:9e:bd:79:65:9b:6e:73:49:c5: 4d:cb:32:97:84:6f:84:bf:2f:98:00:fb:46:fc:fa: b0:e5:cb:5f:87:a7:fb:4d:5b:54:b2:1d:fa:6b:1b: d8:bf:86:6b:ba:95:21:3f:87:42:3e:a0:28:08:ca: f1:e0:51:8c:48:f4:66:1a:9f:64:fd:c3:8b:d1:bf: 9c:da:85:a2:e0:18:95:49:66:08:32:d8:b3:cb:a6: 97:d6:ef:f9:87:74:ee:a5:0b:ca:a8:35:14:d1:f5: ca:2c:49:64:ca:38:ed:25:1e:d0:67:94:06:3a:a2: 6f:95:30:3f:ea:30:4e:a8:46:7e:ce:07:e3:b9:4f: b8:54:00:f6:a0:55:df:fd:84:8c:2e:25:88:f1:f0: cf:bb:bd:7d:f6:8a:df:bf:df:4a:44:79:fd:3e:22: 1a:e7:44:7f:eb:d9:f0:5a:8f:27:f6:cf:de:a1:5b: 58:a1:4f:42:60:07:b4:7a:c0:cb:37:98:26:05:ea: 9e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:99:06:7A:4B:BE:7E:71:85:DE:6C:8D:C6:D5:65:DD:7E:4E:3A:DF X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3630383a3a2f34362d3436203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:608::/46 Signature Algorithm: sha256WithRSAEncryption 29:49:6c:66:77:41:b8:de:47:da:dc:ee:76:fd:cb:74:1f:19: 4e:8b:5a:e7:c4:0f:ab:80:aa:f3:e4:43:49:3e:e6:09:b4:db: e2:99:7e:39:4a:71:c0:db:86:8a:35:a1:e2:1c:ab:b1:d5:75: 69:ee:57:f2:e4:f6:98:00:d4:d9:e4:95:67:18:aa:11:a0:b8: 11:86:3a:5e:f1:41:5b:69:01:dc:e1:52:fe:5d:69:c2:1b:7c: f8:96:22:30:74:ea:cd:ba:78:32:f4:ff:21:73:37:ae:a3:4b: 2c:8f:85:c8:be:9a:30:fd:f5:75:a2:e5:e0:03:08:06:e3:d7: 66:7b:a8:ea:c3:14:c8:04:58:66:4f:88:49:86:72:1b:71:08: f6:f8:a5:3f:f2:a8:a0:43:d2:10:4b:4d:f2:5f:5e:af:32:c4: 7a:a1:51:95:e2:8c:68:58:7f:f5:20:af:13:6d:34:6e:cb:50: 52:dd:53:c7:5e:28:6a:5b:54:36:c0:fc:fc:8a:34:4b:bf:73: bd:94:30:2a:c9:03:4c:fd:4a:f9:67:73:a5:3f:1f:64:ec:30: 9e:af:01:d4:bc:1d:39:7c:18:bf:96:3a:3b:51:32:c2:7c:b5: f2:32:1b:b6:67:da:28:02:13:54:bf:62:9e:78:0f:d7:ea:2b: 96:41:a2:8a -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUWxW2jL+3MndxKSajJtXQkoFYtFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI0MThaFw0yNjA0MTAxNDI5MThaMDMxMTAvBgNV BAMTKEMzOTkwNjdBNEJCRTdFNzE4NURFNkM4REM2RDU2NUREN0U0RTNBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49wh1LoIx/Yc7GkW9gxcbvjl/ Vgk5kWva31fJbgmAWJhUN+UphEEigp5d+SNs7+YexLORUfqFzSPAtfABwxb1jZ69 eWWbbnNJxU3LMpeEb4S/L5gA+0b8+rDly1+Hp/tNW1SyHfprG9i/hmu6lSE/h0I+ oCgIyvHgUYxI9GYan2T9w4vRv5zahaLgGJVJZggy2LPLppfW7/mHdO6lC8qoNRTR 9cosSWTKOO0lHtBnlAY6om+VMD/qME6oRn7OB+O5T7hUAPagVd/9hIwuJYjx8M+7 vX32it+/30pEef0+IhrnRH/r2fBajyf2z96hW1ihT0JgB7R6wMs3mCYF6p4HAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUw5kGeku+fnGF3myNxtVl3X5OOt8wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM2MzAzODNhM2EyZjM0 MzYyZDM0MzYyMDNkM2UyMDMyMzEzNDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioLTgcGCDAN BgkqhkiG9w0BAQsFAAOCAQEAKUlsZndBuN5H2tzudv3LdB8ZTota58QPq4Cq8+RD ST7mCbTb4pl+OUpxwNuGijWh4hyrsdV1ae5X8uT2mADU2eSVZxiqEaC4EYY6XvFB W2kB3OFS/l1pwht8+JYiMHTqzbp4MvT/IXM3rqNLLI+FyL6aMP31daLl4AMIBuPX Znuo6sMUyARYZk+ISYZyG3EI9vilP/KooEPSEEtN8l9erzLEeqFRleKMaFh/9SCv E200bstQUt1Tx14oaltUNsD8/Io0S79zvZQwKskDTP1K+WdzpT8fZOwwnq8B1Lwd OXwYv5Y6O1Eywny18jIbtmfaKAITVL9inngP1+orlkGiig== -----END CERTIFICATE-----Generated at Wed Apr 16 02:26:25 2025 by rpki-client