$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363435.roa File: 326130373a353463303a666665653a3a2f34382d3438203d3e20323130363435.roa (raw, json) Hash identifier: rqetBuuccm/GSfTFJJNyN5N8yNjrOm5JLkGGm2U41eU= Subject key identifier: 14:5B:C5:FD:0B:3A:1D:F4:62:11:78:A4:C0:FC:AA:99:C3:46:7C:AD Certificate issuer: /CN=892843788777A43273322096510EA10880E7E5EA Certificate serial: 59FBDAC679BD0AF55C2AC80A7922C04814657825 Authority key identifier: 89:28:43:78:87:77:A4:32:73:32:20:96:51:0E:A1:08:80:E7:E5:EA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363435.roa Signing time: Mon 27 Jan 2025 12:14:14 +0000 ROA not before: Mon 27 Jan 2025 12:09:14 +0000 ROA not after: Mon 26 Jan 2026 12:14:14 +0000 asID: 210645 IP address blocks: 2a07:54c0:ffee::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.crl rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 09 Apr 2025 03:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:fb:da:c6:79:bd:0a:f5:5c:2a:c8:0a:79:22:c0:48:14:65:78:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=892843788777A43273322096510EA10880E7E5EA Validity Not Before: Jan 27 12:09:14 2025 GMT Not After : Jan 26 12:14:14 2026 GMT Subject: CN=145BC5FD0B3A1DF4621178A4C0FCAA99C3467CAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8a:38:66:25:1f:42:f8:ce:68:5c:87:b2:31: 65:37:6a:d2:70:13:a1:14:24:cc:81:5f:39:54:39: 15:8d:6f:ff:29:00:85:33:f9:65:4f:55:d3:8a:c5: d4:77:db:7d:69:85:06:27:f1:93:8f:ff:31:c7:bc: 19:f7:e4:d1:99:39:a0:77:ad:3e:b5:24:76:d4:ad: ed:5b:2b:48:6a:86:cb:0c:f7:9c:5b:69:c4:20:30: fa:a2:72:d3:f8:f4:4b:58:3f:a9:d3:77:5f:0d:ce: 89:07:aa:3d:8c:73:17:21:af:db:62:1c:1b:cf:b5: db:ea:32:ba:c7:9f:69:cc:d3:06:75:d5:d9:74:00: 9e:a3:cf:93:b6:6c:41:37:40:27:3a:79:4d:63:31: 4e:8c:cb:fd:81:8a:09:f0:56:e5:ff:0d:75:3d:03: cf:66:f3:1c:e4:5f:a3:93:1a:37:5a:66:6c:d5:14: 0a:84:8e:ea:53:e8:76:6b:72:58:e8:17:c1:ab:58: 65:49:77:19:f2:56:e4:8a:4a:38:49:a1:c4:51:c0: d6:f2:79:2a:60:c9:3d:89:d8:61:b4:5c:79:29:63: 50:7c:3b:7c:a6:68:c7:f1:b5:6e:65:26:a6:3f:a8: ed:60:23:c1:c0:c2:18:67:6b:13:ac:71:27:f7:2a: 55:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5B:C5:FD:0B:3A:1D:F4:62:11:78:A4:C0:FC:AA:99:C3:46:7C:AD X509v3 Authority Key Identifier: keyid:89:28:43:78:87:77:A4:32:73:32:20:96:51:0E:A1:08:80:E7:E5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:ffee::/48 Signature Algorithm: sha256WithRSAEncryption 68:5d:cd:f9:65:18:fe:66:d7:f5:ba:0b:22:59:e9:c5:85:96: 45:7a:79:a2:b3:f2:7c:bd:21:01:dc:b9:06:a4:3e:4e:30:d0: 1a:ec:41:12:0a:68:ce:96:58:e4:51:44:83:a7:73:08:99:fa: c1:42:d4:c7:f0:46:bc:d4:72:e0:74:22:37:a5:c5:df:59:ff: b5:2b:e3:cf:36:fd:81:84:f0:13:db:ef:99:01:16:ac:ff:2c: e9:4d:14:87:23:66:6e:92:53:72:e3:6b:2d:aa:2f:d5:ea:a7: b9:14:67:0c:3f:3c:dc:4a:b1:e8:ba:04:65:ef:4c:ee:de:8b: e6:6f:b9:b1:7e:16:09:de:34:a4:45:6e:ce:ee:99:77:42:76: 0d:72:41:4a:53:13:f1:e7:be:3d:f6:dc:3a:79:5a:81:d3:8e: 01:bd:8c:14:0f:06:d3:3f:59:1f:71:d9:22:d4:dc:48:f0:fb: 47:60:90:cd:6a:4e:e0:f7:e3:f9:4b:64:4b:0a:72:c0:76:7e: 6c:26:9e:67:48:bf:52:c4:06:d4:27:ef:68:7b:a2:77:23:c1: 33:9e:1e:25:c5:38:79:96:ff:e3:cc:9e:5b:8f:cd:e3:5e:c2: 8e:fd:5e:1a:84:80:7d:36:37:6f:bd:31:8d:f2:c5:36:f0:5d: 98:9c:37:70 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUWfvaxnm9CvVcKsgKeSLASBRleCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkyODQzNzg4Nzc3QTQzMjczMzIyMDk2NTEwRUExMDg4 MEU3RTVFQTAeFw0yNTAxMjcxMjA5MTRaFw0yNjAxMjYxMjE0MTRaMDMxMTAvBgNV BAMTKDE0NUJDNUZEMEIzQTFERjQ2MjExNzhBNEMwRkNBQTk5QzM0NjdDQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaijhmJR9C+M5oXIeyMWU3atJw E6EUJMyBXzlUORWNb/8pAIUz+WVPVdOKxdR3231phQYn8ZOP/zHHvBn35NGZOaB3 rT61JHbUre1bK0hqhssM95xbacQgMPqictP49EtYP6nTd18NzokHqj2Mcxchr9ti HBvPtdvqMrrHn2nM0wZ11dl0AJ6jz5O2bEE3QCc6eU1jMU6My/2BignwVuX/DXU9 A89m8xzkX6OTGjdaZmzVFAqEjupT6HZrcljoF8GrWGVJdxnyVuSKSjhJocRRwNby eSpgyT2J2GG0XHkpY1B8O3ymaMfxtW5lJqY/qO1gI8HAwhhnaxOscSf3KlWXAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUFFvF/Qs6HfRiEXikwPyqmcNGfK0wHwYDVR0j BBgwFoAUiShDeId3pDJzMiCWUQ6hCIDn5eowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGU4OGUzOWJmYTAxODkwYzlmZWVjMTI0OWUvMi84OTI4NDM3ODg3 NzdBNDMyNzMzMjIwOTY1MTBFQTEwODgwRTdFNUVBLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWItNGRiNS1iYmQzLTVjY2E2MzNj YWUzZi8wLzg5Mjg0Mzc4ODc3N0E0MzI3MzMyMjA5NjUxMEVBMTA4ODBFN0U1RUEu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4OGUzOWJmYTAxODkw YzlmZWVjMTI0OWUvMi8zMjYxMzAzNzNhMzUzNDYzMzAzYTY2NjY2NTY1M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzIzMTMwMzYzNDM1LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwP/u MA0GCSqGSIb3DQEBCwUAA4IBAQBoXc35ZRj+Ztf1ugsiWenFhZZFenmis/J8vSEB 3LkGpD5OMNAa7EESCmjOlljkUUSDp3MImfrBQtTH8Ea81HLgdCI3pcXfWf+1K+PP Nv2BhPAT2++ZARas/yzpTRSHI2ZuklNy42stqi/V6qe5FGcMPzzcSrHougRl70zu 3ovmb7mxfhYJ3jSkRW7O7pl3QnYNckFKUxPx57499tw6eVqB044BvYwUDwbTP1kf cdki1NxI8PtHYJDNak7g9+P5S2RLCnLAdn5sJp5nSL9SxAbUJ+9oe6J3I8Eznh4l xTh5lv/jzJ5bj83jXsKO/V4ahIB9NjdvvTGN8sU28F2YnDdw -----END CERTIFICATE-----Generated at Tue Apr 8 19:00:30 2025 by rpki-client