$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa File: 326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa (raw, json) Hash identifier: mXENr0L3Kf1Xskw9V1nwK5wOx6+ogd42dSK4p6Pw/yE= Subject key identifier: 5D:02:E6:42:8C:94:58:78:0D:91:13:C1:AA:34:A0:4B:89:0B:7F:06 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 6E9D789EAC9D44A7110F3B272F59176A6FB0A331 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa Signing time: Fri 11 Apr 2025 21:03:25 +0000 ROA not before: Fri 11 Apr 2025 20:58:25 +0000 ROA not after: Fri 10 Apr 2026 21:03:25 +0000 asID: 214999 IP address blocks: 2a0b:4e07:91c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9d:78:9e:ac:9d:44:a7:11:0f:3b:27:2f:59:17:6a:6f:b0:a3:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:58:25 2025 GMT Not After : Apr 10 21:03:25 2026 GMT Subject: CN=5D02E6428C9458780D9113C1AA34A04B890B7F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:66:bd:a8:4a:69:7c:4c:84:5d:02:f7:b3: 1c:56:b3:a6:f0:dd:7b:cf:a1:76:fa:1b:20:03:53: af:28:e5:de:0e:c1:96:6f:e0:aa:bb:6d:02:c8:45: f4:af:80:29:57:af:63:93:47:25:36:8a:25:3f:5b: 53:c2:f3:33:c1:53:71:bd:c7:f8:0b:19:0e:58:c4: 28:50:18:2d:69:c4:df:d5:69:b0:2c:dd:57:3a:e3: 66:13:e3:7c:d3:18:1d:dc:2e:58:a6:f5:df:bf:0c: 36:4b:b2:d4:37:41:21:7b:85:e8:b0:9b:63:1c:a4: 7c:00:eb:ea:a7:94:2d:af:c3:7f:3b:2f:49:08:89: 26:83:f7:ee:7a:26:e9:ad:8d:f9:9d:76:05:3c:98: f4:aa:a6:61:ce:20:31:11:1f:5e:f4:20:21:a8:5e: 80:00:18:85:c5:b9:70:da:5a:3d:32:e2:45:6a:a3: bb:4d:23:f0:67:ec:1f:1c:02:e4:7d:0c:7a:30:48: b1:92:fc:2e:5d:19:13:a6:fc:fd:ac:c5:4e:bc:93: 2b:88:e7:29:60:64:a3:71:7d:76:ab:ab:96:26:09: 63:28:6d:6b:4d:21:fe:25:ff:d0:76:2e:a9:c1:40: 7d:6a:c9:2b:6f:64:64:a8:6d:f8:f2:12:60:6b:d4: c9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:02:E6:42:8C:94:58:78:0D:91:13:C1:AA:34:A0:4B:89:0B:7F:06 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:91c::/48 Signature Algorithm: sha256WithRSAEncryption 95:aa:94:86:3f:67:92:20:3e:0d:18:8e:e8:f3:30:b4:a4:93: 1a:33:8e:d4:a9:aa:1d:81:f6:b1:17:1b:dc:92:3b:f0:48:c2: 89:bc:ed:68:fc:96:18:34:50:2b:36:fb:76:47:12:30:c2:b8: da:2b:b7:3e:79:c1:0e:97:ed:b5:ea:a8:10:32:ff:2a:2d:b9: c8:7b:89:8f:ee:5a:c3:c2:e9:f7:6d:20:99:14:1f:7f:74:1c: a6:8e:65:c0:59:5a:2e:8c:dd:89:f7:e6:be:d2:66:9d:37:ee: da:35:d5:1d:72:2c:92:a0:83:bc:91:68:46:48:4b:f2:ef:24: a5:20:67:15:73:b8:f3:23:22:a6:fb:bf:9c:0f:c0:38:88:8b: 84:91:fa:68:f1:c0:93:28:da:fb:97:3a:ee:85:44:2f:6a:ca: a2:8f:a5:c7:db:88:96:cd:4c:68:09:a2:4f:1c:19:2a:f2:ce: d0:50:d9:0c:34:52:1e:eb:65:68:51:e0:2b:28:ac:a1:17:f8: e2:38:af:9e:4a:48:30:c5:45:4d:c9:31:55:ff:49:df:2a:06: 5e:25:59:a0:ac:0c:c4:d4:75:4c:b6:7f:fa:48:3b:33:02:30: a8:ff:a4:c0:71:43:0b:65:af:2b:52:1d:2a:38:65:3f:2e:f1: c3:50:d9:15 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbp14nqydRKcRDzsnL1kXam+wozEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDU4MjVaFw0yNjA0MTAyMTAzMjVaMDMxMTAvBgNV BAMTKDVEMDJFNjQyOEM5NDU4NzgwRDkxMTNDMUFBMzRBMDRCODkwQjdGMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+kGa9qEppfEyEXQL3sxxWs6bw 3XvPoXb6GyADU68o5d4OwZZv4Kq7bQLIRfSvgClXr2OTRyU2iiU/W1PC8zPBU3G9 x/gLGQ5YxChQGC1pxN/VabAs3Vc642YT43zTGB3cLlim9d+/DDZLstQ3QSF7heiw m2McpHwA6+qnlC2vw387L0kIiSaD9+56JumtjfmddgU8mPSqpmHOIDERH170ICGo XoAAGIXFuXDaWj0y4kVqo7tNI/Bn7B8cAuR9DHowSLGS/C5dGROm/P2sxU68kyuI 5ylgZKNxfXarq5YmCWMobWtNIf4l/9B2LqnBQH1qyStvZGSobfjyEmBr1MnDAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUXQLmQoyUWHgNkRPBqjSgS4kLfwYwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM5MzE2MzNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM5MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcJHDAN BgkqhkiG9w0BAQsFAAOCAQEAlaqUhj9nkiA+DRiO6PMwtKSTGjOO1KmqHYH2sRcb 3JI78EjCibztaPyWGDRQKzb7dkcSMMK42iu3PnnBDpftteqoEDL/Ki25yHuJj+5a w8Lp920gmRQff3Qcpo5lwFlaLozdiffmvtJmnTfu2jXVHXIskqCDvJFoRkhL8u8k pSBnFXO48yMipvu/nA/AOIiLhJH6aPHAkyja+5c67oVEL2rKoo+lx9uIls1MaAmi TxwZKvLO0FDZDDRSHutlaFHgKyisoRf44jivnkpIMMVFTckxVf9J3yoGXiVZoKwM xNR1TLZ/+kg7MwIwqP+kwHFDC2WvK1IdKjhlPy7xw1DZFQ== -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:04 2025 by rpki-client