$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363933303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a363933303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: zzvFEGnbEWeHsx/d4cL5BaB8x8hs4VE8LZrirNOW124= Subject key identifier: CA:95:9E:5E:34:C7:7F:7D:D4:0A:D9:EC:27:46:CD:79:D9:6D:61:11 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 5BBCAEA06430B333191D1C58E6DFB565D02D9102 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363933303a3a2f34382d3438203d3e203136393039.roa Signing time: Fri 24 Jan 2025 11:27:22 +0000 ROA not before: Fri 24 Jan 2025 11:22:22 +0000 ROA not after: Fri 23 Jan 2026 11:27:22 +0000 asID: 16909 IP address blocks: 2a14:7584:6930::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bc:ae:a0:64:30:b3:33:19:1d:1c:58:e6:df:b5:65:d0:2d:91:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 24 11:22:22 2025 GMT Not After : Jan 23 11:27:22 2026 GMT Subject: CN=CA959E5E34C77F7DD40AD9EC2746CD79D96D6111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:47:29:a8:39:d3:b5:19:e6:f3:ac:ed:f8:44: 11:aa:8b:2b:f4:b8:bc:d4:b5:c7:5e:1a:bd:68:9b: 41:61:9e:c9:37:8c:70:af:ef:d8:8b:f5:d2:95:c8: 1d:bc:0a:3c:c7:3f:eb:c7:29:36:84:bd:17:7f:fc: 19:ef:2f:71:f8:09:a2:d2:6d:c7:93:09:a3:35:76: 92:b3:d9:fa:c3:1e:a1:30:35:90:dc:46:da:0c:17: 2a:d4:55:73:2d:fe:af:6b:85:06:33:9d:c3:2d:f1: a3:45:a1:e7:66:34:7b:a8:25:95:a6:90:b4:6d:eb: 86:09:c0:c6:aa:fe:8b:a1:eb:0b:64:dd:ef:88:88: 10:b6:0e:5e:05:4d:f5:1d:9a:ca:14:b1:20:2b:f4: 10:dc:c3:e8:aa:ae:c0:fa:4c:38:63:ee:4f:7f:3a: 39:a7:9c:9e:6b:51:49:48:e7:34:0f:71:0c:31:4f: 99:f8:19:8b:3a:23:8b:7b:ac:e1:41:53:6a:76:83: f1:83:40:99:d1:b8:e1:c8:06:21:a3:b5:d9:3f:79: 61:7f:9c:42:07:38:9d:3f:6d:57:42:1a:0c:00:64: 14:ef:e8:40:be:30:e3:ba:b5:46:3e:e8:f2:3d:eb: e9:25:5f:1c:fd:a7:e1:ee:86:a7:f7:53:57:40:97: 17:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:95:9E:5E:34:C7:7F:7D:D4:0A:D9:EC:27:46:CD:79:D9:6D:61:11 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a363933303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6930::/48 Signature Algorithm: sha256WithRSAEncryption 3c:18:9a:8c:af:95:2c:fb:48:91:74:d5:0b:e5:56:30:e4:66: 9a:da:f4:ce:aa:28:35:0b:9d:52:4b:4a:24:ec:80:7c:49:41: 71:b1:db:b2:70:5a:ab:f0:74:72:2e:9b:3a:8c:f2:b1:6e:e9: 6a:bc:07:d8:66:c9:5d:f4:96:40:b1:db:6c:5d:fa:55:f8:b6: 5d:50:3b:5c:05:69:2c:4f:28:94:e9:c0:fe:44:25:65:79:9c: 2f:a1:df:0c:78:14:ef:cd:d4:8b:01:37:e5:ea:70:3c:84:03: 79:52:62:5a:e7:0a:a3:fa:48:54:db:cb:79:11:35:97:0f:b9: 1a:7b:5d:5f:bb:5f:99:bd:00:57:5a:5a:9c:f3:a6:d3:06:7f: 42:da:7d:13:e7:1e:10:de:58:3d:6c:98:c5:0a:d9:1c:d9:29: b4:24:84:a2:78:65:06:f1:34:bd:d5:ae:9a:e7:10:41:9c:c9: 3f:20:76:12:85:0f:ea:b9:87:63:f6:d7:df:73:65:11:8a:3d: 24:3a:c9:5b:de:c6:1e:c1:32:a7:10:be:d8:64:ac:b2:4d:69: e8:25:76:d5:15:29:c5:50:58:92:93:69:fd:fe:04:f4:7d:cb: dc:7f:eb:17:94:66:17:6a:38:38:bd:38:93:f5:52:35:66:8a: 98:ca:8b:16 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUW7yuoGQwszMZHRxY5t+1ZdAtkQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjQxMTIyMjJaFw0yNjAxMjMxMTI3MjJaMDMxMTAvBgNV BAMTKENBOTU5RTVFMzRDNzdGN0RENDBBRDlFQzI3NDZDRDc5RDk2RDYxMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvRymoOdO1GebzrO34RBGqiyv0 uLzUtcdeGr1om0Fhnsk3jHCv79iL9dKVyB28CjzHP+vHKTaEvRd//BnvL3H4CaLS bceTCaM1dpKz2frDHqEwNZDcRtoMFyrUVXMt/q9rhQYzncMt8aNFoedmNHuoJZWm kLRt64YJwMaq/ouh6wtk3e+IiBC2Dl4FTfUdmsoUsSAr9BDcw+iqrsD6TDhj7k9/ OjmnnJ5rUUlI5zQPcQwxT5n4GYs6I4t7rOFBU2p2g/GDQJnRuOHIBiGjtdk/eWF/ nEIHOJ0/bVdCGgwAZBTv6EC+MOO6tUY+6PI96+klXxz9p+Huhqf3U1dAlxftAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUypWeXjTHf33UCtnsJ0bNedltYREwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2MzkzMzMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRpMDAN BgkqhkiG9w0BAQsFAAOCAQEAPBiajK+VLPtIkXTVC+VWMORmmtr0zqooNQudUktK JOyAfElBcbHbsnBaq/B0ci6bOozysW7parwH2GbJXfSWQLHbbF36Vfi2XVA7XAVp LE8olOnA/kQlZXmcL6HfDHgU783UiwE35epwPIQDeVJiWucKo/pIVNvLeRE1lw+5 GntdX7tfmb0AV1panPOm0wZ/Qtp9E+ceEN5YPWyYxQrZHNkptCSEonhlBvE0vdWu mucQQZzJPyB2EoUP6rmHY/bX33NlEYo9JDrJW97GHsEypxC+2GSssk1p6CV21RUp xVBYkpNp/f4E9H3L3H/rF5RmF2o4OL04k/VSNWaKmMqLFg== -----END CERTIFICATE-----Generated at Wed Feb 5 06:49:35 2025 by rpki-client