$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363932303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a363932303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 6uZuxt145ogJ4qU9lQGc42DE5V7HcChXwL2VsjXsSPU= Subject key identifier: F5:46:1C:8E:C0:00:41:06:FD:C4:F2:5B:5E:EB:E2:34:12:BC:03:9F Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 09FFA5EB90B57BF72B97A5BC28A9AA32BF91BB70 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363932303a3a2f34382d3438203d3e203136393039.roa Signing time: Fri 24 Jan 2025 11:27:21 +0000 ROA not before: Fri 24 Jan 2025 11:22:21 +0000 ROA not after: Fri 23 Jan 2026 11:27:21 +0000 asID: 16909 IP address blocks: 2a14:7584:6920::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ff:a5:eb:90:b5:7b:f7:2b:97:a5:bc:28:a9:aa:32:bf:91:bb:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 24 11:22:21 2025 GMT Not After : Jan 23 11:27:21 2026 GMT Subject: CN=F5461C8EC0004106FDC4F25B5EEBE23412BC039F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:42:7c:69:b9:f2:cc:6c:d8:48:82:38:a4:c4: 5c:ec:84:76:0e:d5:3b:e8:0b:80:ed:d5:b0:b6:69: d4:ff:80:f0:1a:7e:f7:c7:56:b5:1d:1a:7b:03:5e: e2:93:3d:57:d8:bd:0f:41:7c:c5:59:a6:92:58:b0: 37:b4:41:ba:27:75:49:08:44:f5:2a:1c:0c:d7:1e: ff:21:48:88:62:b8:f2:93:b9:8f:fa:86:29:25:93: 95:94:0f:3f:64:7b:eb:0b:cf:d7:cb:db:9c:46:c7: eb:26:00:9b:cf:15:fc:67:c4:37:eb:59:ca:dc:b9: 94:56:79:5e:da:20:ea:28:93:dd:cf:32:53:a3:d7: 98:fe:0b:83:9d:32:dd:0f:6e:5a:e7:70:bc:a9:ac: ba:a0:f3:43:e7:43:c7:aa:d9:a4:1b:7e:68:64:d5: af:20:66:76:54:4a:03:38:fb:e8:2c:a7:cb:3f:94: 82:d4:50:93:9e:e8:21:fb:b9:a6:0b:49:98:f9:b3: f7:71:66:3e:82:19:34:2f:f8:39:72:b1:3e:c3:52: 51:03:d8:92:97:6f:53:e1:a9:ab:a4:6a:49:8b:b6: 3e:a1:57:04:08:fe:d1:17:0c:16:15:82:50:88:64: c5:b9:76:a9:37:82:38:41:c2:b2:f6:52:e2:d3:f4: 05:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:46:1C:8E:C0:00:41:06:FD:C4:F2:5B:5E:EB:E2:34:12:BC:03:9F X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363932303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6920::/48 Signature Algorithm: sha256WithRSAEncryption 69:3f:c3:db:2f:d5:2c:35:dd:ce:bc:97:31:9d:7b:67:ef:49: cf:10:71:bf:c0:00:c1:dc:9c:bd:51:fe:5d:01:62:12:3a:8a: 08:33:74:11:3d:9a:88:68:5a:f2:ea:cf:8e:6b:b9:14:80:f5: 10:aa:6e:80:12:05:0f:c7:09:17:db:26:45:af:99:a5:9c:f2: 0d:ca:23:1e:76:58:77:63:7a:24:e9:c2:96:16:35:b1:c5:05: 03:dc:d8:fc:b8:2d:84:e1:bd:77:c4:c5:ad:5b:05:df:cb:7d: aa:68:e9:e2:3e:56:95:5b:58:56:c5:ac:2e:25:ae:9d:ec:3a: c2:0c:86:78:e3:65:a9:16:0c:3a:87:e6:7d:ff:e8:e4:6a:8d: d1:82:f2:bf:0f:2f:53:c7:fc:19:a0:c6:af:ba:7a:4e:13:cf: 35:30:b2:73:47:11:9c:b0:0c:31:cd:e3:d9:44:b8:4b:03:9d: 05:a6:a4:09:56:d0:e4:14:bb:51:72:2f:5e:e9:99:e0:62:7b: 5b:f2:5e:cb:4a:20:ec:c5:a6:da:c2:51:c7:7e:8c:24:2e:11: 38:5f:e8:68:64:9c:da:c6:64:41:c5:67:c2:ea:98:46:60:78: 4a:c9:1a:57:ea:ba:2d:5b:9a:ad:f5:b4:19:14:6f:30:67:ff: 7a:d7:d6:60 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCf+l65C1e/crl6W8KKmqMr+Ru3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjQxMTIyMjFaFw0yNjAxMjMxMTI3MjFaMDMxMTAvBgNV BAMTKEY1NDYxQzhFQzAwMDQxMDZGREM0RjI1QjVFRUJFMjM0MTJCQzAzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyQnxpufLMbNhIgjikxFzshHYO 1TvoC4Dt1bC2adT/gPAafvfHVrUdGnsDXuKTPVfYvQ9BfMVZppJYsDe0QbondUkI RPUqHAzXHv8hSIhiuPKTuY/6hiklk5WUDz9ke+sLz9fL25xGx+smAJvPFfxnxDfr WcrcuZRWeV7aIOook93PMlOj15j+C4OdMt0PblrncLyprLqg80PnQ8eq2aQbfmhk 1a8gZnZUSgM4++gsp8s/lILUUJOe6CH7uaYLSZj5s/dxZj6CGTQv+DlysT7DUlED 2JKXb1PhqaukakmLtj6hVwQI/tEXDBYVglCIZMW5dqk3gjhBwrL2UuLT9AUvAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU9UYcjsAAQQb9xPJbXuviNBK8A58wHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2MzkzMjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRpIDAN BgkqhkiG9w0BAQsFAAOCAQEAaT/D2y/VLDXdzryXMZ17Z+9JzxBxv8AAwdycvVH+ XQFiEjqKCDN0ET2aiGha8urPjmu5FID1EKpugBIFD8cJF9smRa+ZpZzyDcojHnZY d2N6JOnClhY1scUFA9zY/LgthOG9d8TFrVsF38t9qmjp4j5WlVtYVsWsLiWunew6 wgyGeONlqRYMOofmff/o5GqN0YLyvw8vU8f8GaDGr7p6ThPPNTCyc0cRnLAMMc3j 2US4SwOdBaakCVbQ5BS7UXIvXumZ4GJ7W/Jey0og7MWm2sJRx36MJC4ROF/oaGSc 2sZkQcVnwuqYRmB4SskaV+q6LVuarfW0GRRvMGf/etfWYA== -----END CERTIFICATE-----Generated at Wed Feb 5 06:47:34 2025 by rpki-client