$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6263363a3a2f34382d3438203d3e20323134333132.roa File: 326130623a346530373a6263363a3a2f34382d3438203d3e20323134333132.roa (raw, json) Hash identifier: RvMJLG6Abn/89dajWdDQ7mJMsc9Lscom1yy/bUX/SdQ= Subject key identifier: 09:2E:DD:3A:33:99:CD:65:76:06:DC:B6:5E:B9:46:D8:8A:75:9F:7A Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 4D62062DB1E93705330EA9CD99C7557C565B1D5A Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6263363a3a2f34382d3438203d3e20323134333132.roa Signing time: Fri 11 Apr 2025 21:13:38 +0000 ROA not before: Fri 11 Apr 2025 21:08:38 +0000 ROA not after: Fri 10 Apr 2026 21:13:38 +0000 asID: 214312 IP address blocks: 2a0b:4e07:bc6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:62:06:2d:b1:e9:37:05:33:0e:a9:cd:99:c7:55:7c:56:5b:1d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 21:08:38 2025 GMT Not After : Apr 10 21:13:38 2026 GMT Subject: CN=092EDD3A3399CD657606DCB65EB946D88A759F7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:00:f8:5a:66:77:05:c8:69:0d:51:46:ce:23: 30:7b:a6:81:69:89:79:d0:d3:41:e1:ae:fb:1a:15: 09:08:ff:d2:04:9e:74:71:68:47:8e:8a:17:e4:8e: 1a:12:64:a7:a2:48:c0:2d:49:96:79:4a:8b:4c:8f: 06:3b:8d:4a:0a:10:4e:2f:dc:cc:ae:08:96:3b:32: 77:d6:d6:30:fd:55:ef:ea:f8:2b:0c:74:9b:ba:39: 71:ec:14:fe:ec:dd:e1:f1:77:85:92:16:9e:97:b0: cc:35:a2:33:3b:19:c7:ec:d3:c7:81:78:9a:4d:08: 28:d9:f5:92:3d:d9:2a:98:b0:4b:34:a1:16:d5:ee: f7:56:49:dd:b0:49:8a:1d:53:ad:a8:02:81:e8:15: af:5f:f4:3b:b7:a3:a5:e8:9f:87:c3:6c:cb:81:04: 68:e5:f1:b0:a1:f8:90:c1:f7:c1:52:1e:ad:e1:c6: 32:0b:9d:e3:cb:b7:4a:4c:16:13:7d:64:81:1d:b0: 4a:8c:3a:45:ab:b7:4e:de:13:e4:0c:56:99:d2:35: 4c:32:a7:4c:f1:f3:d3:20:73:7c:7b:bf:7a:f7:7a: 97:e6:e4:ab:d2:0b:81:f3:a5:23:79:af:ed:06:05: b5:41:a0:ba:81:88:05:51:6f:48:75:3b:bd:43:15: 6f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2E:DD:3A:33:99:CD:65:76:06:DC:B6:5E:B9:46:D8:8A:75:9F:7A X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6263363a3a2f34382d3438203d3e20323134333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:bc6::/48 Signature Algorithm: sha256WithRSAEncryption 8f:63:c2:04:48:e0:c9:1c:3c:8a:2a:41:44:68:d7:e4:e6:77: e3:b7:65:7b:f5:ee:87:38:e0:90:a7:d9:b4:15:88:c8:87:9d: c5:b3:25:3d:b4:ed:73:d4:a0:0a:46:71:07:84:5f:37:42:c3: db:eb:25:ba:e3:05:94:d9:f2:48:34:98:25:fd:6d:bf:76:77: 31:9a:f0:3d:62:d6:4b:ba:27:bc:77:9f:57:67:ca:3e:aa:20: f8:8a:53:d4:03:6c:f4:5f:9d:40:13:22:c5:3c:b8:6a:16:5a: ae:fd:ac:c4:09:6c:12:8f:8d:67:21:03:c3:2e:eb:ed:c9:9b: a9:28:72:42:7f:d2:a6:ee:95:1d:27:59:de:2b:ac:a8:cd:01: f3:78:ce:82:92:bf:fe:30:7f:51:21:f6:c0:3d:47:da:29:b8: bd:fb:ea:76:61:d3:38:f0:92:42:14:74:6f:7f:c6:2d:2b:1c: 96:75:6e:bc:14:ec:16:65:e4:27:4f:f4:12:26:3d:0c:08:13: 02:1d:18:61:02:e2:5b:01:38:b1:cf:73:23:c3:c4:f5:44:ee: d2:d1:50:38:75:84:2b:ba:12:20:6d:62:4d:a3:1f:90:09:6c: 35:4e:cc:2f:36:52:71:98:74:98:37:08:64:2e:4d:7d:0e:ed: 60:21:92:72 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUTWIGLbHpNwUzDqnNmcdVfFZbHVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMTA4MzhaFw0yNjA0MTAyMTEzMzhaMDMxMTAvBgNV BAMTKDA5MkVERDNBMzM5OUNENjU3NjA2RENCNjVFQjk0NkQ4OEE3NTlGN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdAPhaZncFyGkNUUbOIzB7poFp iXnQ00HhrvsaFQkI/9IEnnRxaEeOihfkjhoSZKeiSMAtSZZ5SotMjwY7jUoKEE4v 3MyuCJY7MnfW1jD9Ve/q+CsMdJu6OXHsFP7s3eHxd4WSFp6XsMw1ojM7Gcfs08eB eJpNCCjZ9ZI92SqYsEs0oRbV7vdWSd2wSYodU62oAoHoFa9f9Du3o6Xon4fDbMuB BGjl8bCh+JDB98FSHq3hxjILnePLt0pMFhN9ZIEdsEqMOkWrt07eE+QMVpnSNUwy p0zx89Mgc3x7v3r3epfm5KvSC4HzpSN5r+0GBbVBoLqBiAVRb0h1O71DFW8bAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUCS7dOjOZzWV2Bty2XrlG2Ip1n3owHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyNjMzNjNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMzMzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcLxjAN BgkqhkiG9w0BAQsFAAOCAQEAj2PCBEjgyRw8iipBRGjX5OZ347dle/XuhzjgkKfZ tBWIyIedxbMlPbTtc9SgCkZxB4RfN0LD2+sluuMFlNnySDSYJf1tv3Z3MZrwPWLW S7onvHefV2fKPqog+IpT1ANs9F+dQBMixTy4ahZarv2sxAlsEo+NZyEDwy7r7cmb qShyQn/Spu6VHSdZ3iusqM0B83jOgpK//jB/USH2wD1H2im4vfvqdmHTOPCSQhR0 b3/GLSsclnVuvBTsFmXkJ0/0EiY9DAgTAh0YYQLiWwE4sc9zI8PE9UTu0tFQOHWE K7oSIG1iTaMfkAlsNU7MLzZScZh0mDcIZC5NfQ7tYCGScg== -----END CERTIFICATE-----Generated at Wed Apr 16 02:02:56 2025 by rpki-client