$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63343a3a2f34362d3436203d3e20323134383231.roa File: 326130623a346530373a63343a3a2f34362d3436203d3e20323134383231.roa (raw, json) Hash identifier: XDt5UM0ARyvD2PqI5uhiH61hcAKvFbpRiJ6oZwTg13Y= Subject key identifier: EF:06:1E:A2:B5:F4:DF:92:21:EA:9A:4E:ED:C2:08:E7:F9:54:A6:03 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 39E861DEEE3014107FB85AAC25B5FA8B267D97C5 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63343a3a2f34362d3436203d3e20323134383231.roa Signing time: Fri 11 Apr 2025 14:29:51 +0000 ROA not before: Fri 11 Apr 2025 14:24:51 +0000 ROA not after: Fri 10 Apr 2026 14:29:51 +0000 asID: 214821 IP address blocks: 2a0b:4e07:c4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e8:61:de:ee:30:14:10:7f:b8:5a:ac:25:b5:fa:8b:26:7d:97:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 14:24:51 2025 GMT Not After : Apr 10 14:29:51 2026 GMT Subject: CN=EF061EA2B5F4DF9221EA9A4EEDC208E7F954A603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:dd:ca:26:d0:85:f0:6f:68:5e:f7:12:a7:37: e6:31:36:92:b4:31:4a:59:89:4e:b7:50:54:0e:1b: e8:7b:4a:58:45:9c:7a:95:ae:6a:e6:2a:ff:2a:f5: 6a:0f:bf:13:4e:63:1a:8a:fc:29:fd:6c:80:40:a9: 0c:45:e8:fa:90:c7:39:6c:bb:ff:84:5a:93:70:89: e5:8f:44:e0:eb:04:d5:4e:06:bc:02:d4:b3:26:1e: 28:65:23:05:07:56:0b:31:78:92:4b:17:41:d5:b2: d2:29:8e:80:10:c6:65:03:c0:29:99:e4:7e:3c:ff: ac:5e:ae:eb:80:aa:26:bf:d3:cb:77:68:8d:01:18: cc:64:72:66:35:87:5d:df:3d:26:f0:ce:27:d9:f9: 22:35:3d:3a:84:9c:5e:e6:16:72:ac:a9:a7:ef:80: e3:5c:fc:a8:3c:d0:9c:8a:d4:de:e9:4c:40:16:80: 22:f5:ef:b1:5d:9c:cc:39:ba:57:d4:fe:92:9d:a1: 82:3f:7e:ba:fb:97:07:ae:a2:8b:ef:cf:5f:68:89: 04:83:75:d4:b1:28:00:91:76:29:64:9a:01:94:a4: 55:03:8e:50:d1:0a:d8:20:21:4a:e8:74:f7:3a:14: d9:3b:c2:6b:d2:2e:c5:b0:6d:6a:1c:3e:cb:78:d1: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:06:1E:A2:B5:F4:DF:92:21:EA:9A:4E:ED:C2:08:E7:F9:54:A6:03 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63343a3a2f34362d3436203d3e20323134383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c4::/46 Signature Algorithm: sha256WithRSAEncryption 99:50:f5:57:6e:37:dd:74:d5:d9:c9:ed:23:73:cd:f2:93:02: 3a:4c:51:78:dc:78:22:a6:0e:62:98:d9:c8:2b:cd:f6:eb:fc: c6:29:39:a0:01:08:68:04:dc:0e:d8:30:56:c1:c3:f8:95:ae: 55:c6:64:57:02:b8:59:6c:63:7b:d1:97:45:60:13:41:b3:32: a0:ae:ef:a0:92:79:bf:0e:c2:2d:ba:f5:ff:fc:54:21:f7:57: 79:3e:3a:84:60:ec:d2:ca:94:22:15:bb:33:9e:55:c2:cc:c8: 86:95:5c:6a:83:29:6e:16:09:85:29:1d:fa:26:d6:53:68:5e: 4f:76:74:6f:7c:3b:de:e0:68:5b:04:d7:71:84:03:b4:4a:df: 5f:cd:55:fa:48:8d:39:a0:09:1b:77:7c:ad:c7:25:d1:4d:73: 44:86:50:2a:74:f1:04:c1:e1:8f:20:c5:b5:68:b7:ed:6f:75: 61:ae:21:9d:95:fe:d6:8a:cd:78:16:d2:be:43:86:05:12:82: 2c:26:0a:2c:2b:5a:53:fb:d5:72:a1:7a:0d:3a:70:f8:91:fa: de:ab:50:76:80:19:b2:40:8a:12:1f:28:2e:d2:90:f3:60:97: 8d:34:9d:4b:8f:c2:22:6a:01:41:f2:8d:1a:20:9f:ed:42:60: cd:66:e3:84 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUOehh3u4wFBB/uFqsJbX6iyZ9l8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTExNDI0NTFaFw0yNjA0MTAxNDI5NTFaMDMxMTAvBgNV BAMTKEVGMDYxRUEyQjVGNERGOTIyMUVBOUE0RUVEQzIwOEU3Rjk1NEE2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa3com0IXwb2he9xKnN+YxNpK0 MUpZiU63UFQOG+h7SlhFnHqVrmrmKv8q9WoPvxNOYxqK/Cn9bIBAqQxF6PqQxzls u/+EWpNwieWPRODrBNVOBrwC1LMmHihlIwUHVgsxeJJLF0HVstIpjoAQxmUDwCmZ 5H48/6xeruuAqia/08t3aI0BGMxkcmY1h13fPSbwzifZ+SI1PTqEnF7mFnKsqafv gONc/Kg80JyK1N7pTEAWgCL177FdnMw5ulfU/pKdoYI/frr7lweuoovvz19oiQSD ddSxKACRdilkmgGUpFUDjlDRCtggIUrodPc6FNk7wmvSLsWwbWocPst40fdFAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQU7wYeorX035Ih6ppO7cII5/lUpgMwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYzMzQzYTNhMmYzNDM2 MmQzNDM2MjAzZDNlMjAzMjMxMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HAMQwDQYJ KoZIhvcNAQELBQADggEBAJlQ9VduN9101dnJ7SNzzfKTAjpMUXjceCKmDmKY2cgr zfbr/MYpOaABCGgE3A7YMFbBw/iVrlXGZFcCuFlsY3vRl0VgE0GzMqCu76CSeb8O wi269f/8VCH3V3k+OoRg7NLKlCIVuzOeVcLMyIaVXGqDKW4WCYUpHfom1lNoXk92 dG98O97gaFsE13GEA7RK31/NVfpIjTmgCRt3fK3HJdFNc0SGUCp08QTB4Y8gxbVo t+1vdWGuIZ2V/taKzXgW0r5DhgUSgiwmCiwrWlP71XKheg06cPiR+t6rUHaAGbJA ihIfKC7SkPNgl400nUuPwiJqAUHyjRogn+1CYM1m44Q= -----END CERTIFICATE-----Generated at Wed Apr 16 02:24:04 2025 by rpki-client