$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa File: 326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: 0ktoDuIDDWMkzrratDFbPmnCTqZcuFyep07WMkWMFho= Subject key identifier: 90:1C:32:1D:6B:17:D8:15:5D:5B:70:7A:74:96:00:06:C1:CD:32:45 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 77C7A302D31B96E5645BFC2A8F984B40070039AC Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa Signing time: Fri 11 Apr 2025 20:56:51 +0000 ROA not before: Fri 11 Apr 2025 20:51:51 +0000 ROA not after: Fri 10 Apr 2026 20:56:51 +0000 asID: 31898 IP address blocks: 2a0b:4e07:6fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c7:a3:02:d3:1b:96:e5:64:5b:fc:2a:8f:98:4b:40:07:00:39:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:51:51 2025 GMT Not After : Apr 10 20:56:51 2026 GMT Subject: CN=901C321D6B17D8155D5B707A74960006C1CD3245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:fe:30:56:43:4d:ed:04:60:e5:d2:9a:07: 5d:c2:45:00:01:41:fe:c4:de:86:c5:c6:47:e2:20: 7a:2e:1f:d1:db:f9:8b:4f:68:ef:60:64:a2:5d:72: 07:7a:3a:e0:fd:3d:e3:2a:11:95:39:d6:6d:57:0c: 41:15:0d:6e:59:67:59:55:bb:ea:b0:fb:94:23:fc: 57:83:2f:2f:39:43:af:1a:66:f3:93:e2:9e:0b:38: 04:38:5a:c2:4b:1c:10:fd:32:88:7f:48:80:98:45: 5e:39:44:4f:a8:9f:fe:44:19:5e:28:51:71:bb:6b: 79:b0:60:70:a5:84:10:36:50:35:65:e2:49:a4:95: 29:38:bb:0d:68:5c:30:46:0f:09:a4:d7:a2:16:60: 47:4c:6e:1e:e8:57:36:9b:6b:a2:ee:81:5e:7b:c5: ea:07:24:60:25:80:0f:fc:97:da:6f:be:b9:1b:99: bc:e7:f3:91:6d:9e:86:0a:72:85:96:dc:19:f0:03: e0:e8:f7:08:c5:b8:4e:b1:d9:60:a8:be:a6:71:dd: e9:bb:14:d8:38:2d:fd:a4:9c:88:03:8c:25:5d:6b: 15:68:ea:69:16:77:bc:2a:f6:ab:f9:29:ad:46:8b: c6:19:e5:2d:a7:2f:1a:f4:60:f9:e9:85:7b:2a:84: ad:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1C:32:1D:6B:17:D8:15:5D:5B:70:7A:74:96:00:06:C1:CD:32:45 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:6fc::/48 Signature Algorithm: sha256WithRSAEncryption 91:97:15:73:36:e6:52:00:f4:42:b3:d3:34:94:a8:7a:82:9e: 01:ca:27:88:bc:5a:9b:c6:6a:e1:26:1d:d9:96:31:7c:6c:c1: ce:b2:f9:fe:68:00:90:b9:52:29:44:92:ee:6d:1f:7d:bc:78: c0:d9:86:5b:b9:14:2d:37:09:a4:19:5f:f3:73:25:0d:10:64: 09:99:65:25:91:b1:25:6f:62:8b:3c:88:a3:ad:90:5c:ea:39: e2:5d:9f:28:1b:9b:d7:cb:96:a6:8c:9d:d3:db:72:29:6b:62: 44:a7:d9:da:60:9a:49:11:44:23:ba:06:9c:62:78:fc:fd:37: 1d:c8:06:ea:fb:f4:25:ac:56:84:e9:0a:02:51:7f:a8:56:90: aa:98:b5:e1:33:cc:ec:78:5d:c3:04:a6:48:cc:50:dc:6a:96: 7c:dc:25:43:eb:39:b5:5b:b0:1a:66:11:00:4c:a4:0b:5c:55: 64:63:e0:b1:4c:d5:ef:27:de:13:92:4f:71:cf:3a:70:59:40: c7:87:5a:f4:25:86:03:fe:35:87:fd:64:00:41:69:59:6a:0f: c2:82:c2:27:3a:cc:75:34:cd:d9:36:07:3a:a2:82:4b:90:14: 27:9e:75:c7:46:e6:4b:1b:43:be:47:8c:68:04:2f:21:58:8a: 5d:5f:f3:fe -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUd8ejAtMbluVkW/wqj5hLQAcAOawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDUxNTFaFw0yNjA0MTAyMDU2NTFaMDMxMTAvBgNV BAMTKDkwMUMzMjFENkIxN0Q4MTU1RDVCNzA3QTc0OTYwMDA2QzFDRDMyNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2f4wVkNN7QRg5dKaB13CRQAB Qf7E3obFxkfiIHouH9Hb+YtPaO9gZKJdcgd6OuD9PeMqEZU51m1XDEEVDW5ZZ1lV u+qw+5Qj/FeDLy85Q68aZvOT4p4LOAQ4WsJLHBD9Moh/SICYRV45RE+on/5EGV4o UXG7a3mwYHClhBA2UDVl4kmklSk4uw1oXDBGDwmk16IWYEdMbh7oVzaba6LugV57 xeoHJGAlgA/8l9pvvrkbmbzn85FtnoYKcoWW3BnwA+Do9wjFuE6x2WCovqZx3em7 FNg4Lf2knIgDjCVdaxVo6mkWd7wq9qv5Ka1Gi8YZ5S2nLxr0YPnphXsqhK0BAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUkBwyHWsX2BVdW3B6dJYABsHNMkUwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM2NjY2MzNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMzMzEzODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HBvwwDQYJ KoZIhvcNAQELBQADggEBAJGXFXM25lIA9EKz0zSUqHqCngHKJ4i8WpvGauEmHdmW MXxswc6y+f5oAJC5UilEku5tH328eMDZhlu5FC03CaQZX/NzJQ0QZAmZZSWRsSVv Yos8iKOtkFzqOeJdnygbm9fLlqaMndPbcilrYkSn2dpgmkkRRCO6BpxiePz9Nx3I Bur79CWsVoTpCgJRf6hWkKqYteEzzOx4XcMEpkjMUNxqlnzcJUPrObVbsBpmEQBM pAtcVWRj4LFM1e8n3hOST3HPOnBZQMeHWvQlhgP+NYf9ZABBaVlqD8KCwic6zHU0 zdk2BzqigkuQFCeedcdG5ksbQ75HjGgELyFYil1f8/4= -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:02 2025 by rpki-client