$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62613a3a2f34372d3438203d3e20323132343730.roa File: 326130623a346530373a62613a3a2f34372d3438203d3e20323132343730.roa (raw, json) Hash identifier: mAyynEP8OPuKEarj2eo1C7LhXfxkzG0qQG3Yl1PkdSw= Subject key identifier: AC:B1:A8:35:77:1E:B2:0F:22:C2:12:B5:CF:37:D7:11:C1:6F:0D:C4 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 70BAFD30C329DEA5078017598F8D89021C861DAC Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62613a3a2f34372d3438203d3e20323132343730.roa Signing time: Fri 11 Apr 2025 19:43:22 +0000 ROA not before: Fri 11 Apr 2025 19:38:22 +0000 ROA not after: Fri 10 Apr 2026 19:43:22 +0000 asID: 212470 IP address blocks: 2a0b:4e07:ba::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ba:fd:30:c3:29:de:a5:07:80:17:59:8f:8d:89:02:1c:86:1d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 19:38:22 2025 GMT Not After : Apr 10 19:43:22 2026 GMT Subject: CN=ACB1A835771EB20F22C212B5CF37D711C16F0DC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:40:e1:28:13:78:ac:3d:ec:53:51:e1:20:4d: e7:50:c7:4a:76:f2:02:ef:09:08:b6:8b:4e:6d:98: 86:de:67:64:8b:fd:5c:6f:8f:a4:b7:eb:db:b3:b2: ab:b3:f7:37:3e:4d:90:6f:c1:b9:70:4f:44:05:1c: 7b:d3:9c:6e:09:1b:51:a0:7c:79:71:ec:84:e1:ad: 8c:5c:2c:2b:2e:3c:c5:ef:bf:4d:53:21:e3:da:38: 7a:d3:2c:04:6d:3c:d8:e9:cb:f5:4a:72:8c:c0:93: 6b:85:cc:7c:17:d8:bf:78:ad:6e:16:71:b7:bd:08: 63:cc:aa:14:e5:af:d6:65:bc:f1:3e:fd:01:73:83: 5c:39:cd:5a:a6:78:6f:88:bc:36:a3:2c:f5:8e:d2: c8:97:9d:51:0b:5e:02:e6:1f:96:51:8c:e9:56:6e: 5a:9a:31:41:80:12:52:69:cb:94:a5:37:72:1f:3a: 3b:9b:65:e4:9b:1c:58:a3:1f:25:40:f8:81:52:51: 6a:8a:ba:ee:05:1f:66:48:fc:8f:3f:0e:34:70:10: f3:f1:c3:f6:93:66:62:3b:39:26:97:a5:b8:19:b7: 76:c7:ea:56:fe:59:cf:00:c9:5d:35:ad:ad:bf:1f: 92:6f:c0:9c:2a:b5:c6:82:21:27:c6:f3:7f:4a:1d: 6f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B1:A8:35:77:1E:B2:0F:22:C2:12:B5:CF:37:D7:11:C1:6F:0D:C4 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62613a3a2f34372d3438203d3e20323132343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ba::/47 Signature Algorithm: sha256WithRSAEncryption 88:aa:e8:0f:65:df:95:64:29:e9:33:e6:67:d9:51:6a:bf:6a: 6a:f2:1f:50:10:ea:e7:66:e4:21:bd:5e:cb:6e:8c:40:11:22: b1:79:82:e4:1b:01:eb:98:a1:09:02:f0:92:81:53:e2:34:4e: 6a:37:1c:7a:7e:ff:e4:5b:ef:fb:de:86:9a:8e:31:49:7b:ff: 4e:72:ce:2d:2d:8d:90:7b:d1:0c:30:67:61:11:7f:64:c2:93: ec:51:e3:5e:e0:c6:0e:f1:ca:3f:dc:81:99:25:c5:52:0e:88: 68:37:83:9a:0a:ac:57:8c:fe:65:4d:7f:78:57:8b:c0:80:62: ee:d8:63:63:74:97:6a:d1:85:68:d4:13:44:fa:cd:73:0d:5d: ee:99:9d:1b:de:18:3f:8d:65:df:a8:6d:b5:21:82:aa:d0:98: 5c:a3:d3:77:63:71:4f:9b:1a:18:de:89:e5:d4:59:9f:44:54: a8:e2:59:39:f0:ec:62:62:a6:16:6c:d6:bb:24:ae:67:5e:aa: 36:39:fd:ae:32:83:f2:bb:7f:23:fa:34:01:7f:d3:2b:f6:b1: 1f:b2:4d:e2:44:c1:17:39:36:6c:4c:fe:38:70:a1:42:e1:dc: 72:3b:11:b9:7c:3c:28:3a:b9:39:bd:9f:1b:b7:c6:f1:f8:df: 9c:82:26:35 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUcLr9MMMp3qUHgBdZj42JAhyGHawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExOTM4MjJaFw0yNjA0MTAxOTQzMjJaMDMxMTAvBgNV BAMTKEFDQjFBODM1NzcxRUIyMEYyMkMyMTJCNUNGMzdENzExQzE2RjBEQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXQOEoE3isPexTUeEgTedQx0p2 8gLvCQi2i05tmIbeZ2SL/Vxvj6S369uzsquz9zc+TZBvwblwT0QFHHvTnG4JG1Gg fHlx7IThrYxcLCsuPMXvv01TIePaOHrTLARtPNjpy/VKcozAk2uFzHwX2L94rW4W cbe9CGPMqhTlr9ZlvPE+/QFzg1w5zVqmeG+IvDajLPWO0siXnVELXgLmH5ZRjOlW blqaMUGAElJpy5SlN3IfOjubZeSbHFijHyVA+IFSUWqKuu4FH2ZI/I8/DjRwEPPx w/aTZmI7OSaXpbgZt3bH6lb+Wc8AyV01ra2/H5JvwJwqtcaCISfG839KHW+ZAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUrLGoNXcesg8iwhK1zzfXEcFvDcQwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyNjEzYTNhMmYzNDM3 MmQzNDM4MjAzZDNlMjAzMjMxMzIzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEqC04HALowDQYJ KoZIhvcNAQELBQADggEBAIiq6A9l35VkKekz5mfZUWq/amryH1AQ6udm5CG9Xstu jEARIrF5guQbAeuYoQkC8JKBU+I0Tmo3HHp+/+Rb7/vehpqOMUl7/05yzi0tjZB7 0QwwZ2ERf2TCk+xR417gxg7xyj/cgZklxVIOiGg3g5oKrFeM/mVNf3hXi8CAYu7Y Y2N0l2rRhWjUE0T6zXMNXe6ZnRveGD+NZd+obbUhgqrQmFyj03djcU+bGhjeieXU WZ9EVKjiWTnw7GJiphZs1rskrmdeqjY5/a4yg/K7fyP6NAF/0yv2sR+yTeJEwRc5 NmxM/jhwoULh3HI7Ebl8PCg6uTm9nxu3xvH435yCJjU= -----END CERTIFICATE-----Generated at Wed Apr 16 02:20:04 2025 by rpki-client