$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61623a3a2f34382d3438203d3e20333937363538.roa File: 326130623a346530373a61623a3a2f34382d3438203d3e20333937363538.roa (raw, json) Hash identifier: cMrATLHRiuS7c8bYyZqqMr8xRSKDEeVLbk59q9x4KSA= Subject key identifier: 5C:CA:CF:EF:8E:9D:E8:B6:31:B9:31:A9:FC:5E:9C:64:85:F6:BD:BC Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 7A0F513DAD5BFCCD6F490E4DC23F597CDD37A581 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61623a3a2f34382d3438203d3e20333937363538.roa Signing time: Fri 11 Apr 2025 14:30:18 +0000 ROA not before: Fri 11 Apr 2025 14:25:18 +0000 ROA not after: Fri 10 Apr 2026 14:30:18 +0000 asID: 397658 IP address blocks: 2a0b:4e07:ab::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 13 Apr 2025 16:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:0f:51:3d:ad:5b:fc:cd:6f:49:0e:4d:c2:3f:59:7c:dd:37:a5:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:25:18 2025 GMT Not After : Apr 10 14:30:18 2026 GMT Subject: CN=5CCACFEF8E9DE8B631B931A9FC5E9C6485F6BDBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:70:d4:21:00:df:e2:af:41:97:7a:4e:3b:2d: 90:63:8e:c6:63:21:32:97:7c:96:d8:5a:83:e4:e2: 55:ca:56:f4:11:27:a9:9f:e8:d5:d8:06:0b:8c:71: 86:c1:fc:25:81:41:60:dc:31:48:2b:87:fb:24:03: 77:bd:4a:23:0e:5a:5f:45:e7:fa:b8:92:51:db:2a: 69:b7:1b:5d:a6:5c:b9:4c:33:c3:cc:0c:0c:3a:30: 6a:07:75:b5:20:0c:97:9a:12:ee:9d:77:a8:06:71: 67:4b:1e:c9:ce:c2:5c:6f:26:cd:b2:bb:d3:69:14: de:bb:ef:b7:40:61:39:b6:d8:37:30:b9:13:6c:80: 63:c2:1b:84:43:e3:60:18:92:c1:fa:60:3a:21:d8: c1:7c:0a:c8:08:9a:63:50:8e:2f:c9:48:75:f7:70: a2:a2:25:55:43:99:e2:17:b6:c5:95:df:ee:e4:21: a8:c9:d8:59:17:a2:8d:2f:8a:35:81:53:c9:17:79: d1:f6:65:d2:d0:35:50:39:2b:fc:7d:87:82:bd:94: 48:40:b4:ee:5d:3f:ca:14:51:b3:04:b1:25:47:e0: 08:11:cf:ec:4d:d0:ad:34:4a:b5:30:34:cb:0a:19: fb:fa:10:c4:7f:52:fe:9a:9c:83:1c:87:17:5f:2b: 3c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CA:CF:EF:8E:9D:E8:B6:31:B9:31:A9:FC:5E:9C:64:85:F6:BD:BC X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a61623a3a2f34382d3438203d3e20333937363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ab::/48 Signature Algorithm: sha256WithRSAEncryption 54:a7:4b:ec:c8:71:51:4d:b3:a4:b0:f8:f0:05:b5:32:88:01: de:97:d6:92:90:6c:1f:c8:24:0d:e2:b3:31:4d:87:b2:5e:d2: c1:fa:49:ff:df:3d:54:d1:04:9c:08:e0:9d:a1:74:b8:49:e4: 85:59:41:b2:6d:9e:18:8d:3a:9a:5c:4d:cd:fd:00:ee:df:0b: 5e:11:78:bf:e2:fe:db:2f:b0:d4:20:1b:cd:22:17:5a:6a:17: aa:74:4c:42:a5:2b:a2:be:52:d7:3d:52:9d:4b:ad:59:42:d1: 06:86:bc:ab:46:7a:be:0b:f5:8f:54:d4:bb:d9:30:ec:21:96: 28:9a:4c:6a:4b:0d:0b:54:7d:de:0b:65:7b:9b:7c:fe:d1:ee: b9:bc:d7:41:27:56:2d:79:98:44:58:4e:af:fb:18:e5:df:a1: 23:d8:54:e6:cd:42:c6:b1:bf:68:ac:31:57:cd:25:e0:f1:ff: 82:dd:29:e9:1a:22:17:8e:91:4f:a8:2e:63:95:c9:f0:fd:10: 45:c1:80:83:fe:bd:c4:a4:13:5f:79:fc:5a:2e:87:6d:be:c9: e2:d0:94:ab:b6:1e:bc:33:83:01:fb:db:cc:f5:e4:3a:46:bd: 9b:87:96:dd:1f:54:3b:1c:b0:4d:94:3d:3d:23:df:82:ff:b8: 64:3c:10:4e -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUeg9RPa1b/M1vSQ5Nwj9ZfN03pYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI1MThaFw0yNjA0MTAxNDMwMThaMDMxMTAvBgNV BAMTKDVDQ0FDRkVGOEU5REU4QjYzMUI5MzFBOUZDNUU5QzY0ODVGNkJEQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOcNQhAN/ir0GXek47LZBjjsZj ITKXfJbYWoPk4lXKVvQRJ6mf6NXYBguMcYbB/CWBQWDcMUgrh/skA3e9SiMOWl9F 5/q4klHbKmm3G12mXLlMM8PMDAw6MGoHdbUgDJeaEu6dd6gGcWdLHsnOwlxvJs2y u9NpFN6777dAYTm22DcwuRNsgGPCG4RD42AYksH6YDoh2MF8CsgImmNQji/JSHX3 cKKiJVVDmeIXtsWV3+7kIajJ2FkXoo0vijWBU8kXedH2ZdLQNVA5K/x9h4K9lEhA tO5dP8oUUbMEsSVH4AgRz+xN0K00SrUwNMsKGfv6EMR/Uv6anIMchxdfKzyRAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUXMrP746d6LYxuTGp/F6cZIX2vbwwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYxNjIzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMzM5MzczNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAKswDQYJ KoZIhvcNAQELBQADggEBAFSnS+zIcVFNs6Sw+PAFtTKIAd6X1pKQbB/IJA3iszFN h7Je0sH6Sf/fPVTRBJwI4J2hdLhJ5IVZQbJtnhiNOppcTc39AO7fC14ReL/i/tsv sNQgG80iF1pqF6p0TEKlK6K+Utc9Up1LrVlC0QaGvKtGer4L9Y9U1LvZMOwhliia TGpLDQtUfd4LZXubfP7R7rm810EnVi15mERYTq/7GOXfoSPYVObNQsaxv2isMVfN JeDx/4LdKekaIheOkU+oLmOVyfD9EEXBgIP+vcSkE195/Fouh22+yeLQlKu2Hrwz gwH728z15DpGvZuHlt0fVDscsE2UPT0j34L/uGQ8EE4= -----END CERTIFICATE-----Generated at Sun Apr 13 08:55:16 2025 by rpki-client