$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363637.roa File: 326130373a353463303a666665653a3a2f34382d3438203d3e20323130363637.roa (raw, json) Hash identifier: 1ZgtWW2xjr7VBEwKzMNHNQuXo93+fPMgr8xEinwSABw= Subject key identifier: 8D:B0:CC:E7:BC:41:00:CC:0A:95:95:15:7E:7F:D2:ED:D2:C8:E6:86 Certificate issuer: /CN=892843788777A43273322096510EA10880E7E5EA Certificate serial: 3E00275BBD42218D5A933F2F01C2109355C96CEE Authority key identifier: 89:28:43:78:87:77:A4:32:73:32:20:96:51:0E:A1:08:80:E7:E5:EA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363637.roa Signing time: Mon 27 Jan 2025 12:14:13 +0000 ROA not before: Mon 27 Jan 2025 12:09:13 +0000 ROA not after: Mon 26 Jan 2026 12:14:13 +0000 asID: 210667 IP address blocks: 2a07:54c0:ffee::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.crl rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 15:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:00:27:5b:bd:42:21:8d:5a:93:3f:2f:01:c2:10:93:55:c9:6c:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=892843788777A43273322096510EA10880E7E5EA Validity Not Before: Jan 27 12:09:13 2025 GMT Not After : Jan 26 12:14:13 2026 GMT Subject: CN=8DB0CCE7BC4100CC0A9595157E7FD2EDD2C8E686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:95:d4:a2:b6:f0:83:3d:b8:32:36:b3:4f: 47:ee:f8:fa:ea:0e:d9:2a:9a:be:8d:5e:ff:76:ab: da:8f:48:fa:fd:49:91:a4:a8:40:a7:b4:94:fd:9a: dd:df:20:c8:2f:aa:56:21:3f:24:17:e0:ac:ca:50: 8b:42:74:f3:b4:65:96:c2:df:28:bf:cb:96:2d:74: 15:a5:ea:73:09:9f:31:1a:ab:44:10:cb:a1:d9:6a: 90:2e:e8:43:2d:37:5b:f8:6a:5a:0d:4e:0a:35:ca: 7f:be:cf:65:68:78:4b:9d:4b:a9:0e:46:d4:c0:93: 63:f5:5e:d5:76:87:2b:8e:37:14:92:d6:6e:d6:51: c0:a3:61:55:dd:ae:b7:cb:c3:de:23:43:5b:e9:d4: cf:e1:02:fb:ec:72:32:6a:0e:a9:4c:16:bf:87:ee: 96:06:ce:52:92:8d:86:95:f7:0b:ba:bc:b2:cd:9f: 59:0a:f1:f0:1c:f8:b0:44:b5:4e:42:cf:04:ee:58: 9b:0d:52:ad:35:c7:55:c1:35:07:07:27:07:6a:74: ae:4f:01:93:d2:da:68:79:07:97:5e:fa:c2:47:24: c0:34:fa:2b:e8:c4:f7:19:bc:3d:e4:bd:50:fe:a2: 45:8d:72:6e:5a:70:2b:55:e1:51:65:cd:e6:65:0c: 66:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B0:CC:E7:BC:41:00:CC:0A:95:95:15:7E:7F:D2:ED:D2:C8:E6:86 X509v3 Authority Key Identifier: keyid:89:28:43:78:87:77:A4:32:73:32:20:96:51:0E:A1:08:80:E7:E5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/892843788777A43273322096510EA10880E7E5EA.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/892843788777A43273322096510EA10880E7E5EA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade88e39bfa01890c9feec1249e/2/326130373a353463303a666665653a3a2f34382d3438203d3e20323130363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:ffee::/48 Signature Algorithm: sha256WithRSAEncryption 62:78:3f:d5:5c:c1:e1:5e:69:ea:ac:01:ba:18:42:6d:c8:7f: e0:20:19:14:cd:78:d6:98:0c:f9:1b:71:5e:47:6b:69:b5:b8: d2:00:41:d8:ee:c9:53:f1:90:f7:9f:75:a3:14:4b:05:d1:16: 25:fd:49:6a:ed:8b:5a:ed:07:73:49:76:8d:de:66:55:29:dc: 58:f8:75:62:a1:68:87:87:11:76:b2:86:b8:33:59:54:2a:41: 68:8e:7a:f5:3d:8a:d4:f7:16:15:95:5d:b3:a4:c5:a5:d0:62: e8:77:0f:46:c1:ce:ef:63:b6:82:d9:e4:16:5d:dd:95:69:40: 81:20:22:2f:18:5e:76:b9:dd:99:a7:da:eb:d4:a9:8a:86:d4: ba:82:5e:4e:c2:ab:94:9a:d5:5a:b4:a1:3e:07:85:f4:8a:d4: 96:45:af:bd:a8:e4:bf:d4:7b:53:41:b5:ea:54:8d:29:73:6f: e8:29:48:f1:31:d8:42:9c:48:04:24:04:58:18:f7:7f:62:f9: 95:9f:7e:3e:a4:64:bc:6c:98:0a:b6:cd:2b:d1:19:d8:c2:2f: d5:55:09:94:18:4d:26:fb:c4:12:20:34:61:a5:74:07:57:5c: 4f:9c:16:fa:b6:d5:9e:20:41:e3:e0:66:eb:97:ed:68:5b:e2: 8c:10:d5:df -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUPgAnW71CIY1akz8vAcIQk1XJbO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkyODQzNzg4Nzc3QTQzMjczMzIyMDk2NTEwRUExMDg4 MEU3RTVFQTAeFw0yNTAxMjcxMjA5MTNaFw0yNjAxMjYxMjE0MTNaMDMxMTAvBgNV BAMTKDhEQjBDQ0U3QkM0MTAwQ0MwQTk1OTUxNTdFN0ZEMkVERDJDOEU2ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvbpXUorbwgz24MjazT0fu+Prq Dtkqmr6NXv92q9qPSPr9SZGkqECntJT9mt3fIMgvqlYhPyQX4KzKUItCdPO0ZZbC 3yi/y5YtdBWl6nMJnzEaq0QQy6HZapAu6EMtN1v4aloNTgo1yn++z2VoeEudS6kO RtTAk2P1XtV2hyuONxSS1m7WUcCjYVXdrrfLw94jQ1vp1M/hAvvscjJqDqlMFr+H 7pYGzlKSjYaV9wu6vLLNn1kK8fAc+LBEtU5CzwTuWJsNUq01x1XBNQcHJwdqdK5P AZPS2mh5B5de+sJHJMA0+ivoxPcZvD3kvVD+okWNcm5acCtV4VFlzeZlDGZTAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUjbDM57xBAMwKlZUVfn/S7dLI5oYwHwYDVR0j BBgwFoAUiShDeId3pDJzMiCWUQ6hCIDn5eowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGU4OGUzOWJmYTAxODkwYzlmZWVjMTI0OWUvMi84OTI4NDM3ODg3 NzdBNDMyNzMzMjIwOTY1MTBFQTEwODgwRTdFNUVBLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWItNGRiNS1iYmQzLTVjY2E2MzNj YWUzZi8wLzg5Mjg0Mzc4ODc3N0E0MzI3MzMyMjA5NjUxMEVBMTA4ODBFN0U1RUEu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGU4OGUzOWJmYTAxODkw YzlmZWVjMTI0OWUvMi8zMjYxMzAzNzNhMzUzNDYzMzAzYTY2NjY2NTY1M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzIzMTMwMzYzNjM3LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwP/u MA0GCSqGSIb3DQEBCwUAA4IBAQBieD/VXMHhXmnqrAG6GEJtyH/gIBkUzXjWmAz5 G3FeR2tptbjSAEHY7slT8ZD3n3WjFEsF0RYl/Ulq7Yta7QdzSXaN3mZVKdxY+HVi oWiHhxF2soa4M1lUKkFojnr1PYrU9xYVlV2zpMWl0GLodw9Gwc7vY7aC2eQWXd2V aUCBICIvGF52ud2Zp9rr1KmKhtS6gl5OwquUmtVatKE+B4X0itSWRa+9qOS/1HtT QbXqVI0pc2/oKUjxMdhCnEgEJARYGPd/YvmVn34+pGS8bJgKts0r0RnYwi/VVQmU GE0m+8QSIDRhpXQHV1xPnBb6ttWeIEHj4Gbrl+1oW+KMENXf -----END CERTIFICATE-----Generated at Sun Apr 6 08:44:58 2025 by rpki-client