$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366137303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366137303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: CSoZMCm7Dod7tdqz9waDn8JLsOAu1s1w4H0eXyLUjf4= Subject key identifier: 6C:A6:25:A6:D4:E5:BD:1D:64:EF:6D:C9:32:0E:8E:32:1D:D1:3B:53 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 2586FFCA754B8F0126152D66936C703EE8CEFF49 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366137303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:52:15 +0000 ROA not before: Wed 29 Jan 2025 17:47:15 +0000 ROA not after: Wed 28 Jan 2026 17:52:15 +0000 asID: 16909 IP address blocks: 2a14:7584:6a70::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 19:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:86:ff:ca:75:4b:8f:01:26:15:2d:66:93:6c:70:3e:e8:ce:ff:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:47:15 2025 GMT Not After : Jan 28 17:52:15 2026 GMT Subject: CN=6CA625A6D4E5BD1D64EF6DC9320E8E321DD13B53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:86:49:39:ed:6e:81:69:76:45:71:d7:54: 8e:4b:58:ee:32:45:3a:7f:66:94:b5:38:20:71:d8: 94:40:41:a4:1c:5a:1d:55:52:04:fe:c4:a7:de:b8: 3c:58:7a:26:03:2e:dc:69:a3:c2:ca:08:b9:3f:f0: 03:c3:cb:ba:4d:07:ff:51:c3:f6:79:4d:ac:a1:d8: 12:45:fc:4d:40:9a:73:8c:d1:5c:f7:7d:20:91:04: 8a:a6:51:4a:ff:1e:13:50:ff:62:1d:1c:9e:56:fe: 5e:b5:ab:da:d1:5d:cd:0a:e9:49:3b:6d:86:e9:50: 7a:3e:c2:a3:10:a5:91:98:51:c5:85:a6:b1:17:85: 9e:39:cd:74:a2:70:bb:11:6f:2b:a4:ca:d0:a5:0b: 3b:b1:c4:47:f0:c8:16:51:85:84:2a:06:77:fd:f6: 0c:8f:78:3c:28:94:f7:71:d9:fc:b8:cf:e6:02:af: 0b:86:9f:3d:a8:d9:ac:03:01:27:e7:73:8e:0f:46: ca:be:f1:9b:62:7d:06:0c:cd:b9:f5:ab:e2:30:ef: 57:e0:70:23:f8:e6:5e:f5:0f:04:5e:d2:7c:48:e0: 54:e6:9e:55:00:01:e5:c8:d4:b5:0a:75:2e:a7:1c: 49:0a:af:2b:88:97:81:1e:cc:5d:48:cf:7c:7c:b9: 37:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A6:25:A6:D4:E5:BD:1D:64:EF:6D:C9:32:0E:8E:32:1D:D1:3B:53 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366137303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6a70::/48 Signature Algorithm: sha256WithRSAEncryption 27:6c:cb:b8:72:10:f2:5a:75:68:2f:dd:7c:c7:5b:48:a7:9b: 39:4b:58:31:f1:f9:5a:57:c8:45:aa:0f:f7:76:ad:d9:44:05: 21:fb:d4:a9:90:36:7b:a9:71:40:eb:ff:79:f9:28:48:67:5c: 9e:ec:69:03:6d:ab:0d:fc:35:b0:cf:b1:5c:ad:1e:00:43:81: 34:6d:d5:af:8c:da:87:bf:7e:cf:9c:24:9c:df:0f:9f:df:fe: 43:a2:e2:57:13:58:e8:5d:8d:77:3a:2c:7e:af:c1:b5:b1:7f: e4:02:72:d7:d5:76:e8:40:69:4e:00:64:b9:b6:74:b7:55:ff: ac:d9:0a:39:a4:cb:6d:2a:15:42:b2:f5:66:1e:0b:1f:1a:9d: 06:85:8d:80:32:55:b4:12:e5:b6:cc:b5:7f:7f:1f:70:10:f7: df:bb:d8:2e:bc:ab:56:e6:70:d7:46:08:11:ad:4c:db:eb:b9: e4:fc:fb:2f:bc:a5:dd:f9:63:b9:b0:d2:e8:54:b3:fc:ad:8d: 4b:f4:ec:3f:6d:c2:3e:c0:34:5d:6b:15:72:a7:cc:c2:08:60: 80:79:4e:06:06:44:6d:9a:68:31:a3:7e:7b:9c:59:ae:54:00: ce:2a:68:89:63:72:1b:fc:37:8c:90:58:c0:65:7e:7f:a2:2d: cc:2b:17:1e -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUJYb/ynVLjwEmFS1mk2xwPujO/0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ3MTVaFw0yNjAxMjgxNzUyMTVaMDMxMTAvBgNV BAMTKDZDQTYyNUE2RDRFNUJEMUQ2NEVGNkRDOTMyMEU4RTMyMUREMTNCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5eIZJOe1ugWl2RXHXVI5LWO4y RTp/ZpS1OCBx2JRAQaQcWh1VUgT+xKfeuDxYeiYDLtxpo8LKCLk/8APDy7pNB/9R w/Z5Tayh2BJF/E1AmnOM0Vz3fSCRBIqmUUr/HhNQ/2IdHJ5W/l61q9rRXc0K6Uk7 bYbpUHo+wqMQpZGYUcWFprEXhZ45zXSicLsRbyukytClCzuxxEfwyBZRhYQqBnf9 9gyPeDwolPdx2fy4z+YCrwuGnz2o2awDASfnc44PRsq+8ZtifQYMzbn1q+Iw71fg cCP45l71DwRe0nxI4FTmnlUAAeXI1LUKdS6nHEkKryuIl4EezF1Iz3x8uTevAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUbKYlptTlvR1k723JMg6OMh3RO1MwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjEzNzMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRqcDAN BgkqhkiG9w0BAQsFAAOCAQEAJ2zLuHIQ8lp1aC/dfMdbSKebOUtYMfH5WlfIRaoP 93at2UQFIfvUqZA2e6lxQOv/efkoSGdcnuxpA22rDfw1sM+xXK0eAEOBNG3Vr4za h79+z5wknN8Pn9/+Q6LiVxNY6F2Ndzosfq/BtbF/5AJy19V26EBpTgBkubZ0t1X/ rNkKOaTLbSoVQrL1Zh4LHxqdBoWNgDJVtBLltsy1f38fcBD337vYLryrVuZw10YI Ea1M2+u55Pz7L7yl3fljubDS6FSz/K2NS/TsP23CPsA0XWsVcqfMwghggHlOBgZE bZpoMaN+e5xZrlQAzipoiWNyG/w3jJBYwGV+f6ItzCsXHg== -----END CERTIFICATE-----Generated at Wed Feb 5 07:00:28 2025 by rpki-client