$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa File: 326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa (raw, json) Hash identifier: cNdXoC3j/cy9V+3vHDmGralZjbNKrBlZ6yzXECOMYSA= Subject key identifier: C5:FC:69:AC:6A:64:89:42:3C:52:21:15:E8:76:0C:C4:E3:D9:90:57 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 2206B34FA463B0C08F0C3C602179D1D21C505CC5 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa Signing time: Fri 11 Apr 2025 20:18:52 +0000 ROA not before: Fri 11 Apr 2025 20:13:52 +0000 ROA not after: Fri 10 Apr 2026 20:18:52 +0000 asID: 215953 IP address blocks: 2a0b:4e07:cc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 13:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:06:b3:4f:a4:63:b0:c0:8f:0c:3c:60:21:79:d1:d2:1c:50:5c:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Apr 11 20:13:52 2025 GMT Not After : Apr 10 20:18:52 2026 GMT Subject: CN=C5FC69AC6A6489423C522115E8760CC4E3D99057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:6c:9a:b5:60:37:1e:85:7c:40:bb:f4:f9: 7f:cc:c8:e9:c2:40:de:71:5c:27:95:49:0a:d6:ec: cf:78:33:f4:0e:fe:33:a4:7e:88:51:d9:1a:f7:31: 60:86:32:77:74:1d:0b:f5:ff:f2:3f:97:26:e5:fb: b0:b2:d7:0b:29:e1:27:8e:80:ab:4b:a5:92:53:42: e6:d9:92:60:39:68:e0:a2:35:d7:01:f0:cd:8b:24: 7f:1d:a5:ff:a9:c7:d8:15:c3:9e:14:bb:29:ed:2b: 91:3c:a0:63:e5:56:99:fe:ca:9f:d5:a9:c6:58:45: 17:58:0f:3f:9c:c2:af:a9:12:73:94:2f:27:45:19: ac:40:3c:5f:5b:50:f9:5b:3c:20:a0:67:c1:43:5e: ba:30:9e:15:33:16:d4:53:0f:99:89:9d:5e:50:14: 03:bb:81:35:8c:73:2b:25:c7:ca:9d:51:73:49:9c: fe:b8:eb:e4:f8:ff:fc:d1:ea:9b:fc:15:d6:3b:62: 62:9d:9d:48:90:3d:77:0a:e4:f4:6a:ff:9c:44:98: 93:d2:71:56:b7:f2:6f:55:77:59:fe:e4:30:a0:35: 3f:8f:f7:17:46:50:49:85:bd:41:0d:72:a4:f4:c9: e9:2d:5c:2f:6c:a8:43:9c:8f:2d:2c:57:16:fd:fb: fb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FC:69:AC:6A:64:89:42:3C:52:21:15:E8:76:0C:C4:E3:D9:90:57 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:cc::/48 Signature Algorithm: sha256WithRSAEncryption 32:14:97:08:d2:0e:4e:45:81:2a:d1:71:1e:f8:a7:92:c0:34: 20:2b:f7:f5:36:08:4b:ec:8a:d9:05:6a:11:55:17:ec:5d:ae: 5b:f7:07:54:a9:fa:1b:5d:3c:5e:f3:63:71:d0:f8:b4:97:db: 20:96:9b:f4:d2:0d:05:fd:ab:9f:bb:52:1b:45:58:23:0a:9f: de:f6:b6:fd:92:55:70:f3:0d:e4:14:93:26:0d:dd:7b:a0:05: c3:c1:1c:9d:18:fc:78:37:89:84:12:fa:1b:b2:2d:82:9c:78: 63:05:05:2e:d2:7f:62:da:db:47:86:c6:bf:a7:38:29:af:a8: 31:7b:c7:bb:c2:33:8b:39:16:25:cb:c9:cb:46:a2:dd:aa:97: 7f:3b:96:85:ef:98:db:4c:e9:d9:da:4a:db:e0:f1:e1:b2:8c: a3:58:fc:ea:12:85:5b:4b:24:1a:4a:67:f0:a9:94:30:9b:f4: d8:be:82:f5:09:08:44:b4:a2:b3:55:3e:d9:12:5f:5e:f7:fb: 9b:25:a8:af:83:19:84:38:42:54:e1:4b:59:2e:3d:d3:35:07: 4c:8a:a7:55:9c:50:7a:1c:9e:22:5f:9a:c3:4b:c1:16:17:e5: 29:ba:9d:5c:98:ee:38:eb:1c:99:50:c8:a8:21:86:f0:c6:29: 21:80:66:d9 -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUIgazT6RjsMCPDDxgIXnR0hxQXMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA0MTEyMDEzNTJaFw0yNjA0MTAyMDE4NTJaMDMxMTAvBgNV BAMTKEM1RkM2OUFDNkE2NDg5NDIzQzUyMjExNUU4NzYwQ0M0RTNEOTkwNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0TmyatWA3HoV8QLv0+X/MyOnC QN5xXCeVSQrW7M94M/QO/jOkfohR2Rr3MWCGMnd0HQv1//I/lybl+7Cy1wsp4SeO gKtLpZJTQubZkmA5aOCiNdcB8M2LJH8dpf+px9gVw54UuyntK5E8oGPlVpn+yp/V qcZYRRdYDz+cwq+pEnOULydFGaxAPF9bUPlbPCCgZ8FDXrownhUzFtRTD5mJnV5Q FAO7gTWMcyslx8qdUXNJnP646+T4//zR6pv8FdY7YmKdnUiQPXcK5PRq/5xEmJPS cVa38m9Vd1n+5DCgNT+P9xdGUEmFvUENcqT0yektXC9sqEOcjy0sVxb9+/sJAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUxfxprGpkiUI8UiEV6HYMxOPZkFcwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYzNjMzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMjMxMzUzOTM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqC04HAMwwDQYJ KoZIhvcNAQELBQADggEBADIUlwjSDk5FgSrRcR74p5LANCAr9/U2CEvsitkFahFV F+xdrlv3B1Sp+htdPF7zY3HQ+LSX2yCWm/TSDQX9q5+7UhtFWCMKn972tv2SVXDz DeQUkyYN3XugBcPBHJ0Y/Hg3iYQS+huyLYKceGMFBS7Sf2La20eGxr+nOCmvqDF7 x7vCM4s5FiXLyctGot2ql387loXvmNtM6dnaStvg8eGyjKNY/OoShVtLJBpKZ/Cp lDCb9Ni+gvUJCES0orNVPtkSX173+5slqK+DGYQ4QlThS1kuPdM1B0yKp1WcUHoc niJfmsNLwRYX5Sm6nVyY7jjrHJlQyKghhvDGKSGAZtk= -----END CERTIFICATE-----Generated at Wed Apr 16 02:26:25 2025 by rpki-client