$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366136303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366136303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 1GuVTFxW5yleEfqrumeV/GwPQBotUjaD83bAczyC27I= Subject key identifier: DE:7A:71:59:36:7A:62:D8:4B:83:3A:B9:38:9F:FA:44:A1:14:59:82 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 5316433FB0D6AA98D566C4DDC546C0874B71937E Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366136303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:52:14 +0000 ROA not before: Wed 29 Jan 2025 17:47:14 +0000 ROA not after: Wed 28 Jan 2026 17:52:14 +0000 asID: 16909 IP address blocks: 2a14:7584:6a60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:16:43:3f:b0:d6:aa:98:d5:66:c4:dd:c5:46:c0:87:4b:71:93:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:47:14 2025 GMT Not After : Jan 28 17:52:14 2026 GMT Subject: CN=DE7A7159367A62D84B833AB9389FFA44A1145982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:31:76:dd:a7:96:2e:5b:f7:8b:18:30:fe:d4: 1d:18:79:f7:1c:08:09:7a:79:35:c4:48:8a:63:97: fb:e7:cf:67:2a:37:1f:c8:dd:e2:09:85:42:69:66: 00:e1:0f:40:35:14:11:f1:94:ea:8b:3e:a6:1d:b1: e8:b9:b5:06:59:3e:c0:a2:76:9e:ec:d3:f6:79:82: 3f:ff:cc:5b:78:10:b3:14:16:92:75:e1:4d:1c:8c: 37:b2:e3:36:ec:57:1f:3c:9e:ac:37:f1:11:66:ee: 95:b4:52:54:ee:7e:12:bd:24:bf:7a:76:79:8d:d9: c0:8a:96:73:3c:ef:30:d6:c4:08:1e:7d:8f:23:4d: 50:f2:6b:c6:27:b7:67:c6:7d:58:9e:4f:74:1e:44: 68:1f:c0:6f:f3:ac:88:0c:46:e2:5b:59:46:8c:62: 4c:e5:64:cb:4d:e1:8e:50:fb:bb:e1:ae:6a:e4:de: 12:fb:26:7c:19:75:81:1e:91:25:ed:6d:2b:68:a2: be:75:8c:5c:22:30:6e:9e:25:8c:80:bf:9d:6a:5c: 86:94:c7:09:8b:d9:7c:98:dd:bd:d7:d2:47:07:71: 36:8c:7d:bb:5b:e8:c9:93:9a:6c:9c:f8:bc:f5:f9: 32:36:fb:b8:e7:0b:41:ab:5a:bb:da:3f:1c:93:2f: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7A:71:59:36:7A:62:D8:4B:83:3A:B9:38:9F:FA:44:A1:14:59:82 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366136303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6a60::/48 Signature Algorithm: sha256WithRSAEncryption 1d:89:af:37:ce:78:b7:18:54:0a:d8:da:e4:39:a5:82:e7:b4: 66:80:dd:5f:07:d1:59:0d:89:bd:a6:0f:6a:75:f4:bb:64:3e: 9f:59:b5:35:2f:bf:54:11:9f:e3:d6:d3:40:0a:cd:51:50:36: 4f:50:a6:45:50:75:bc:24:b8:35:47:47:e9:f4:cf:4a:f9:09: 24:c4:0f:6c:10:6a:77:a9:e1:7e:74:b3:04:c6:fa:ee:e8:cd: 30:a6:77:58:51:99:c5:72:84:8a:5f:37:86:c2:e5:cd:cb:9c: 1a:c1:2b:89:04:fd:3e:89:98:7d:04:ee:f1:d3:5f:f7:38:3e: c8:ac:75:8e:d9:51:8c:4e:19:a6:00:6e:dd:e2:85:5f:db:54: 8d:4b:34:fe:3e:6d:e9:9a:f1:ed:73:83:0b:a7:89:5c:f8:15: a5:8d:b7:28:02:d2:52:0d:22:09:da:43:c1:d2:c7:91:b2:49: 52:e3:d8:22:43:2b:af:44:8e:fd:05:10:50:5a:10:76:e5:e7: d8:23:dd:e0:f3:b3:58:2a:8b:42:66:76:01:99:c8:2a:c3:9e: 62:ca:89:67:d7:cc:c7:af:e3:74:30:48:b6:1e:c2:00:2a:0b: 17:16:f4:fa:d0:70:70:0f:f5:e2:47:62:4a:09:c8:8d:9c:a2: 16:f3:57:bf -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUUxZDP7DWqpjVZsTdxUbAh0txk34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ3MTRaFw0yNjAxMjgxNzUyMTRaMDMxMTAvBgNV BAMTKERFN0E3MTU5MzY3QTYyRDg0QjgzM0FCOTM4OUZGQTQ0QTExNDU5ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8MXbdp5YuW/eLGDD+1B0Yefcc CAl6eTXESIpjl/vnz2cqNx/I3eIJhUJpZgDhD0A1FBHxlOqLPqYdsei5tQZZPsCi dp7s0/Z5gj//zFt4ELMUFpJ14U0cjDey4zbsVx88nqw38RFm7pW0UlTufhK9JL96 dnmN2cCKlnM87zDWxAgefY8jTVDya8Ynt2fGfVieT3QeRGgfwG/zrIgMRuJbWUaM YkzlZMtN4Y5Q+7vhrmrk3hL7JnwZdYEekSXtbStoor51jFwiMG6eJYyAv51qXIaU xwmL2XyY3b3X0kcHcTaMfbtb6MmTmmyc+Lz1+TI2+7jnC0GrWrvaPxyTL/krAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU3npxWTZ6YthLgzq5OJ/6RKEUWYIwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjEzNjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRqYDAN BgkqhkiG9w0BAQsFAAOCAQEAHYmvN854txhUCtja5Dmlgue0ZoDdXwfRWQ2JvaYP anX0u2Q+n1m1NS+/VBGf49bTQArNUVA2T1CmRVB1vCS4NUdH6fTPSvkJJMQPbBBq d6nhfnSzBMb67ujNMKZ3WFGZxXKEil83hsLlzcucGsEriQT9PomYfQTu8dNf9zg+ yKx1jtlRjE4ZpgBu3eKFX9tUjUs0/j5t6Zrx7XODC6eJXPgVpY23KALSUg0iCdpD wdLHkbJJUuPYIkMrr0SO/QUQUFoQduXn2CPd4POzWCqLQmZ2AZnIKsOeYsqJZ9fM x6/jdDBIth7CACoLFxb0+tBwcA/14kdiSgnIjZyiFvNXvw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:54:42 2025 by rpki-client