$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62383a3a2f34372d3437203d3e20323135303037.roa File: 326130623a346530373a62383a3a2f34372d3437203d3e20323135303037.roa (raw, json) Hash identifier: dd95XRDymLXwDavUd0KgyBEY9RkOe8TKnYouuN9yY/k= Subject key identifier: 4A:A5:9C:8F:4F:3B:3A:74:0F:C2:4E:AD:CA:78:AD:F8:C6:3E:38:6F Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 124C7C1A1CA59E4BB35D1709B89732E540E908D0 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62383a3a2f34372d3437203d3e20323135303037.roa Signing time: Fri 11 Apr 2025 14:29:57 +0000 ROA not before: Fri 11 Apr 2025 14:24:57 +0000 ROA not after: Fri 10 Apr 2026 14:29:57 +0000 asID: 215007 IP address blocks: 2a0b:4e07:b8::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:4c:7c:1a:1c:a5:9e:4b:b3:5d:17:09:b8:97:32:e5:40:e9:08:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:24:57 2025 GMT Not After : Apr 10 14:29:57 2026 GMT Subject: CN=4AA59C8F4F3B3A740FC24EADCA78ADF8C63E386F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:65:8b:48:9d:8f:20:75:53:fb:30:4c:0c: af:97:fb:00:15:c6:31:37:52:4a:a7:50:b3:62:69: 56:84:e0:de:09:70:92:8e:7e:a4:0a:1e:5a:f3:8a: c8:7e:30:4a:09:9a:53:15:61:4f:7b:75:00:8b:18: d8:b4:5d:b9:b9:30:4b:f0:f3:87:3c:4c:d8:98:72: b8:e9:5f:9d:5e:aa:ea:df:57:48:56:37:7f:6c:f0: 90:08:83:e6:17:3f:cc:58:21:78:ff:82:87:c1:d5: 9c:51:f6:16:11:73:f8:bc:ea:c3:5d:ec:e2:26:6b: b1:06:25:c1:56:3d:0f:73:28:62:f4:da:16:d4:16: 56:98:d0:30:6f:53:28:6d:67:dc:bd:06:a9:74:14: 7c:7e:2e:bf:69:06:17:cb:ea:e1:7d:9e:06:26:23: b8:c4:c5:bd:04:95:26:f7:a7:38:54:92:0c:70:84: f2:7e:5e:5e:d4:db:84:2d:33:86:8d:89:75:5b:7f: d6:7e:c2:1d:ed:fe:2a:f7:d6:ef:50:c5:95:e3:02: 08:c6:be:7f:1d:f9:46:a1:ff:e7:7c:be:86:31:0c: 89:c4:84:9d:52:74:a2:ba:30:ce:05:e7:4d:e0:8a: 66:75:48:3c:78:7e:2e:02:34:2f:b5:f5:da:f9:50: 37:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A5:9C:8F:4F:3B:3A:74:0F:C2:4E:AD:CA:78:AD:F8:C6:3E:38:6F X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62383a3a2f34372d3437203d3e20323135303037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b8::/47 Signature Algorithm: sha256WithRSAEncryption 6a:82:dd:42:ed:14:37:5a:c5:e2:0f:c9:96:79:b8:f4:68:87: 9d:15:18:99:71:d8:fd:3e:1e:99:92:cd:2a:76:49:e7:4a:ba: dc:fb:6b:fa:d8:e6:85:7b:32:4c:cc:66:95:07:61:aa:75:54: 3a:71:58:5d:ad:7d:0e:82:be:e0:9a:32:79:42:2c:a1:8d:dd: a9:60:b2:2c:00:a6:aa:42:b2:90:f2:dc:b4:86:a1:c5:2e:3f: 49:88:a2:2d:fd:f7:ff:d8:3e:a4:5d:c6:f7:93:2c:f0:77:cf: 4a:a7:d7:22:de:d8:53:51:2c:55:67:cd:47:1d:e3:b3:04:7c: 2f:72:99:89:12:e8:3e:e0:85:04:3e:99:28:00:89:0a:00:b4: 40:3d:81:06:a3:b0:2e:4d:2d:cc:68:a2:5e:7a:c8:af:0b:ed: 8e:e0:5f:89:a6:2a:a7:66:bf:a6:71:66:73:40:fa:2c:c6:31: c2:da:3e:70:5c:53:34:51:9d:1a:49:66:11:51:59:e5:e0:23: fb:84:82:b7:b6:09:b8:16:30:14:2a:99:c5:3c:c1:6b:61:b7: b9:a7:bc:25:76:15:c8:85:77:2e:68:a7:1e:86:68:db:42:bc: 45:62:f7:a5:3e:26:40:dd:57:06:95:a1:27:97:2b:f9:30:3e: 35:16:4c:a8 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUEkx8GhylnkuzXRcJuJcy5UDpCNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI0NTdaFw0yNjA0MTAxNDI5NTdaMDMxMTAvBgNV BAMTKDRBQTU5QzhGNEYzQjNBNzQwRkMyNEVBRENBNzhBREY4QzYzRTM4NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkemWLSJ2PIHVT+zBMDK+X+wAV xjE3UkqnULNiaVaE4N4JcJKOfqQKHlrzish+MEoJmlMVYU97dQCLGNi0Xbm5MEvw 84c8TNiYcrjpX51equrfV0hWN39s8JAIg+YXP8xYIXj/gofB1ZxR9hYRc/i86sNd 7OIma7EGJcFWPQ9zKGL02hbUFlaY0DBvUyhtZ9y9Bql0FHx+Lr9pBhfL6uF9ngYm I7jExb0ElSb3pzhUkgxwhPJ+Xl7U24QtM4aNiXVbf9Z+wh3t/ir31u9QxZXjAgjG vn8d+Uah/+d8voYxDInEhJ1SdKK6MM4F503gimZ1SDx4fi4CNC+19dr5UDfXAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUSqWcj087OnQPwk6tynit+MY+OG8wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyMzgzYTNhMmYzNDM3 MmQzNDM3MjAzZDNlMjAzMjMxMzUzMDMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEqC04HALgwDQYJ KoZIhvcNAQELBQADggEBAGqC3ULtFDdaxeIPyZZ5uPRoh50VGJlx2P0+HpmSzSp2 SedKutz7a/rY5oV7MkzMZpUHYap1VDpxWF2tfQ6CvuCaMnlCLKGN3algsiwApqpC spDy3LSGocUuP0mIoi399//YPqRdxveTLPB3z0qn1yLe2FNRLFVnzUcd47MEfC9y mYkS6D7ghQQ+mSgAiQoAtEA9gQajsC5NLcxool56yK8L7Y7gX4mmKqdmv6ZxZnNA +izGMcLaPnBcUzRRnRpJZhFRWeXgI/uEgre2CbgWMBQqmcU8wWtht7mnvCV2FciF dy5opx6GaNtCvEVi96U+JkDdVwaVoSeXK/kwPjUWTKg= -----END CERTIFICATE-----Generated at Wed Apr 16 02:19:58 2025 by rpki-client