$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61613a3a2f34382d3438203d3e20333937363538.roa File: 326130623a346530373a61613a3a2f34382d3438203d3e20333937363538.roa (raw, json) Hash identifier: r8z3MTrfBFPocgGbhWhiar4BbQdiRIeUkRjx04hU+Qo= Subject key identifier: B7:D6:9C:1E:FA:32:17:F6:1A:4B:91:A1:C0:9D:54:86:E4:99:96:F5 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 61CB068EBA3316A3820E8636FA9E0D70D79E9337 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61613a3a2f34382d3438203d3e20333937363538.roa Signing time: Fri 11 Apr 2025 14:30:12 +0000 ROA not before: Fri 11 Apr 2025 14:25:12 +0000 ROA not after: Fri 10 Apr 2026 14:30:12 +0000 asID: 397658 IP address blocks: 2a0b:4e07:aa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 13 Apr 2025 16:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:cb:06:8e:ba:33:16:a3:82:0e:86:36:fa:9e:0d:70:d7:9e:93:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:25:12 2025 GMT Not After : Apr 10 14:30:12 2026 GMT Subject: CN=B7D69C1EFA3217F61A4B91A1C09D5486E49996F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:66:63:bd:57:89:a0:3c:bc:b9:74:b7:49:c6: a3:2c:8d:d0:51:08:33:71:1d:d2:88:18:48:7f:c5: 3a:dd:c7:e2:34:8b:74:d5:e9:12:fe:6a:11:25:d5: 17:f6:65:67:8c:c7:fe:a3:11:e9:a6:d0:40:cb:c1: 16:ab:ba:1a:a0:1f:74:17:6b:95:1b:6f:e3:90:f1: be:4a:57:e7:31:1c:20:c8:48:b6:a7:49:7f:20:ab: ca:12:76:b5:fe:89:a5:b3:cc:8e:5c:c0:f6:0e:dd: ea:0c:12:8b:4d:6b:db:d0:c8:6a:e0:d2:2e:8f:e8: fb:13:4c:80:2a:42:13:17:63:79:fe:04:78:70:3f: b6:e3:8d:d4:7f:e0:c9:10:b8:2d:57:a9:d0:52:b6: 9b:bb:db:22:e2:68:40:3e:3d:ca:5a:86:0c:53:3a: d0:9c:bb:ed:65:ce:30:39:4f:59:ac:11:a8:e8:37: 4f:f2:f6:be:a1:53:56:71:81:ad:fe:7d:92:da:44: bb:ca:0b:e3:18:03:8b:98:61:5c:2f:93:71:81:c7: 44:cc:f9:be:e8:ba:ed:66:53:c4:97:db:bc:68:0f: c9:22:65:a8:af:38:4c:53:ac:9f:b5:83:70:b0:95: 69:f1:1b:80:bf:09:9f:18:a2:3d:40:7a:13:75:51: f9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D6:9C:1E:FA:32:17:F6:1A:4B:91:A1:C0:9D:54:86:E4:99:96:F5 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61613a3a2f34382d3438203d3e20333937363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:aa::/48 Signature Algorithm: sha256WithRSAEncryption 80:01:3a:06:a3:1b:5d:b1:e3:59:31:e9:b4:ad:d7:78:51:17: ed:40:5d:a3:32:f1:25:ef:b2:6b:63:a7:e1:62:98:5c:6a:96: a1:6a:2c:8b:ca:2b:ca:e4:7e:c4:a6:08:4a:89:c3:99:39:90: fb:2c:96:94:cd:24:c4:a4:a9:e3:13:39:85:b7:76:9e:ca:17: 7b:6d:f5:bc:82:f6:38:09:cd:87:ab:47:94:e7:8b:05:36:c2: 71:e0:8b:f0:d7:84:41:d9:4d:a9:70:01:44:68:56:91:97:4f: 3b:c8:68:b3:b8:84:e3:b4:23:62:6c:b4:91:df:e3:68:5a:59: d2:b8:ce:8e:51:64:ac:0a:16:e5:8d:c4:1d:61:e3:80:cb:99: 5d:48:73:b8:e2:63:c2:0c:7c:34:5a:a7:33:cd:89:3c:e5:2d: 13:fa:fc:99:86:e8:b5:f5:d3:20:38:20:e4:cd:ef:43:53:40: 9d:5d:4e:f1:af:51:ea:0f:2e:36:ba:ea:5f:c2:fc:e0:15:1c: 27:6f:69:c0:15:d7:94:2f:31:74:e0:c5:3f:84:35:40:26:eb: d4:b5:89:9b:a9:83:02:a4:61:0f:c6:38:d8:fe:c3:52:d0:3d: e9:3e:bf:99:be:8c:bb:88:47:eb:d3:23:a0:fc:31:5b:17:f7: 98:52:59:80 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUYcsGjrozFqOCDoY2+p4NcNeekzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI1MTJaFw0yNjA0MTAxNDMwMTJaMDMxMTAvBgNV BAMTKEI3RDY5QzFFRkEzMjE3RjYxQTRCOTFBMUMwOUQ1NDg2RTQ5OTk2RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfZmO9V4mgPLy5dLdJxqMsjdBR CDNxHdKIGEh/xTrdx+I0i3TV6RL+ahEl1Rf2ZWeMx/6jEemm0EDLwRaruhqgH3QX a5Ubb+OQ8b5KV+cxHCDISLanSX8gq8oSdrX+iaWzzI5cwPYO3eoMEotNa9vQyGrg 0i6P6PsTTIAqQhMXY3n+BHhwP7bjjdR/4MkQuC1XqdBStpu72yLiaEA+PcpahgxT OtCcu+1lzjA5T1msEajoN0/y9r6hU1Zxga3+fZLaRLvKC+MYA4uYYVwvk3GBx0TM +b7ouu1mU8SX27xoD8kiZaivOExTrJ+1g3CwlWnxG4C/CZ8Yoj1AehN1UfkvAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUt9acHvoyF/YaS5GhwJ1UhuSZlvUwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYxNjEzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMzM5MzczNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAKowDQYJ KoZIhvcNAQELBQADggEBAIABOgajG12x41kx6bSt13hRF+1AXaMy8SXvsmtjp+Fi mFxqlqFqLIvKK8rkfsSmCEqJw5k5kPsslpTNJMSkqeMTOYW3dp7KF3tt9byC9jgJ zYerR5TniwU2wnHgi/DXhEHZTalwAURoVpGXTzvIaLO4hOO0I2JstJHf42haWdK4 zo5RZKwKFuWNxB1h44DLmV1Ic7jiY8IMfDRapzPNiTzlLRP6/JmG6LX10yA4IOTN 70NTQJ1dTvGvUeoPLja66l/C/OAVHCdvacAV15QvMXTgxT+ENUAm69S1iZupgwKk YQ/GONj+w1LQPek+v5m+jLuIR+vTI6D8MVsX95hSWYA= -----END CERTIFICATE-----Generated at Sun Apr 13 08:49:29 2025 by rpki-client