$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363063393a3a2f34382d3438203d3e20343031353037.roa File: 326131343a373538343a363063393a3a2f34382d3438203d3e20343031353037.roa (raw, json) Hash identifier: ayycU4WXUf5+MinTmuDEyj3LjeQ+SKEiWLJ3588xTZ4= Subject key identifier: 61:7A:CC:81:6E:21:C8:42:82:0C:4C:17:87:F4:2E:D6:37:70:57:05 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 695B3F4199ED1911F768F05A6E6D7C31C28A22B9 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363063393a3a2f34382d3438203d3e20343031353037.roa Signing time: Sat 22 Mar 2025 15:21:29 +0000 ROA not before: Sat 22 Mar 2025 15:16:29 +0000 ROA not after: Sat 21 Mar 2026 15:21:29 +0000 asID: 401507 IP address blocks: 2a14:7584:60c9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 20:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5b:3f:41:99:ed:19:11:f7:68:f0:5a:6e:6d:7c:31:c2:8a:22:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Mar 22 15:16:29 2025 GMT Not After : Mar 21 15:21:29 2026 GMT Subject: CN=617ACC816E21C842820C4C1787F42ED637705705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e0:d9:84:05:a8:17:68:0b:26:20:4f:cf:63: 1a:a4:60:1c:a8:27:3d:97:d5:80:95:04:03:3f:c5: 56:34:6a:8f:fd:c2:88:6f:c7:9f:47:8c:94:fd:12: 10:98:53:c1:a1:8e:53:30:85:b2:cb:f6:03:64:0d: 7a:50:85:22:b2:b3:f1:78:dd:6f:e8:b9:86:b2:2f: 64:68:c1:08:1b:f2:b1:cc:e4:fe:c4:f8:09:42:a1: f9:12:0e:8f:d1:83:07:62:2a:55:95:fb:49:4f:0a: cd:2e:8f:dc:3f:b3:b3:a7:fc:03:32:5e:2e:81:a6: c9:59:2c:23:d8:35:14:94:ee:9e:56:86:29:16:b2: b7:c2:7c:3e:76:de:c0:79:5d:06:eb:3d:de:60:f2: f3:ea:ae:3a:69:fa:d9:8b:ec:8b:15:bc:d6:43:a8: 34:e9:79:4f:24:55:fb:4d:87:24:ef:ac:03:bb:ca: c5:cb:1e:3c:c7:c8:ab:41:72:67:cb:cb:ed:d4:c7: 3b:21:95:95:8c:b9:60:00:77:eb:1d:12:4e:62:0d: 05:62:38:94:30:29:36:fd:4f:b0:36:fc:e3:a0:01: 9c:64:73:0f:06:5d:9e:b5:c2:d8:9e:20:d1:f2:13: d9:5e:ce:86:99:e5:45:ff:c7:3a:bf:2d:e9:8a:b3: 94:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7A:CC:81:6E:21:C8:42:82:0C:4C:17:87:F4:2E:D6:37:70:57:05 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363063393a3a2f34382d3438203d3e20343031353037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:60c9::/48 Signature Algorithm: sha256WithRSAEncryption b2:90:62:79:80:1a:82:28:e7:4a:05:b3:70:59:0f:78:c5:98: 91:4a:70:d4:a5:2b:8b:23:2d:d2:f8:a2:d1:19:e2:28:0a:10: 77:67:a3:cb:b7:25:16:e8:0c:89:e9:f9:f1:ce:a7:2f:c9:d0: 33:f3:fe:05:a6:5e:31:a0:98:b3:21:5c:1a:2a:fc:02:c6:bb: fd:6b:4e:ab:3a:df:c3:46:35:58:df:6b:6e:a6:97:06:24:6c: ff:26:bb:85:d4:fe:23:97:70:6f:49:73:19:53:2e:05:9f:09: 6c:ff:6d:59:fd:31:b9:6b:38:70:19:70:57:97:ea:fa:1f:c8: ff:35:b0:e1:28:e5:38:ab:94:ca:c2:83:23:ca:88:4c:5a:bf: bf:6e:d4:39:4f:a8:29:18:74:4b:eb:a8:1b:af:15:c8:ed:8a: ea:e0:ff:1e:c9:af:c4:52:c1:68:f9:78:cb:59:2d:97:f7:da: 79:00:91:71:ca:02:36:5e:05:6a:a9:bc:cf:1b:07:dc:96:b9: f8:c4:88:b8:83:19:36:fa:77:cc:b5:4c:cd:97:ff:92:b6:c7: 4b:61:b0:81:66:51:4a:8b:79:86:2e:49:1a:04:a6:1e:83:75: b6:48:4a:46:8c:33:17:43:65:fd:b3:b2:0b:74:82:9b:cf:6c: 93:3f:5a:a2 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUaVs/QZntGRH3aPBabm18McKKIrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAzMjIxNTE2MjlaFw0yNjAzMjExNTIxMjlaMDMxMTAvBgNV BAMTKDYxN0FDQzgxNkUyMUM4NDI4MjBDNEMxNzg3RjQyRUQ2Mzc3MDU3MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/4NmEBagXaAsmIE/PYxqkYByo Jz2X1YCVBAM/xVY0ao/9wohvx59HjJT9EhCYU8GhjlMwhbLL9gNkDXpQhSKys/F4 3W/ouYayL2RowQgb8rHM5P7E+AlCofkSDo/RgwdiKlWV+0lPCs0uj9w/s7On/AMy Xi6BpslZLCPYNRSU7p5WhikWsrfCfD523sB5XQbrPd5g8vPqrjpp+tmL7IsVvNZD qDTpeU8kVftNhyTvrAO7ysXLHjzHyKtBcmfLy+3UxzshlZWMuWAAd+sdEk5iDQVi OJQwKTb9T7A2/OOgAZxkcw8GXZ61wtieINHyE9lezoaZ5UX/xzq/LemKs5SDAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUYXrMgW4hyEKCDEwXh/Qu1jdwVwUwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2MzA2MzM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzQzMDMxMzUzMDM3LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1hGDJ MA0GCSqGSIb3DQEBCwUAA4IBAQCykGJ5gBqCKOdKBbNwWQ94xZiRSnDUpSuLIy3S +KLRGeIoChB3Z6PLtyUW6AyJ6fnxzqcvydAz8/4Fpl4xoJizIVwaKvwCxrv9a06r Ot/DRjVY32tuppcGJGz/JruF1P4jl3BvSXMZUy4Fnwls/21Z/TG5azhwGXBXl+r6 H8j/NbDhKOU4q5TKwoMjyohMWr+/btQ5T6gpGHRL66gbrxXI7Yrq4P8eya/EUsFo +XjLWS2X99p5AJFxygI2XgVqqbzPGwfclrn4xIi4gxk2+nfMtUzNl/+StsdLYbCB ZlFKi3mGLkkaBKYeg3W2SEpGjDMXQ2X9s7ILdIKbz2yTP1qi -----END CERTIFICATE-----Generated at Thu Apr 3 07:36:57 2025 by rpki-client