$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366138303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366138303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: iQQjPoLrvqSKI+ciPKwRBSFodsicWfaf1eqFVpUhI78= Subject key identifier: D3:18:91:23:9E:57:50:83:F7:C9:4D:7D:E6:34:1B:5A:A8:13:89:F1 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 2E6ADCB42D22AFBA07A8180B10AAE05D3ADA28F5 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366138303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:52:16 +0000 ROA not before: Wed 29 Jan 2025 17:47:16 +0000 ROA not after: Wed 28 Jan 2026 17:52:16 +0000 asID: 16909 IP address blocks: 2a14:7584:6a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:6a:dc:b4:2d:22:af:ba:07:a8:18:0b:10:aa:e0:5d:3a:da:28:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:47:16 2025 GMT Not After : Jan 28 17:52:16 2026 GMT Subject: CN=D31891239E575083F7C94D7DE6341B5AA81389F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bf:8e:00:79:fc:f0:2b:9e:80:de:eb:28:83: 55:1d:70:5a:0d:30:48:fb:44:d0:26:65:cb:89:cc: ca:a4:2a:f8:b7:0e:e3:b4:d8:4d:f1:fe:06:c9:65: cf:5f:4f:17:cf:ba:3b:3c:23:a7:97:2f:f6:dd:6e: d3:ba:a3:46:d5:66:97:42:78:45:73:28:60:3a:a7: 56:6e:c1:5d:e2:33:d5:d2:88:73:69:b4:41:5d:3e: 71:16:63:bd:4e:17:db:52:3e:7b:71:00:5c:f0:63: 90:0d:5e:3a:46:12:1a:b2:5d:38:cd:71:1a:a0:d6: 67:54:37:99:51:1f:00:a4:35:cf:b2:a6:d4:f1:4e: b0:77:05:b9:20:32:a5:46:6b:3e:3a:3a:f0:20:ba: 05:8c:15:ad:6c:26:06:54:72:9d:3c:29:f7:12:42: 3b:35:c1:dd:95:69:30:59:96:49:a1:6c:5c:7b:38: 03:45:47:da:d2:62:7e:f5:c9:f9:5a:b5:bd:64:db: 9d:c1:cb:80:df:7a:dc:ee:3f:41:32:d5:2e:75:ec: f5:c3:de:a8:45:5e:64:d6:3f:6d:88:3a:f0:9b:b7: ca:d5:9b:c0:7a:22:4d:fe:a9:34:b8:de:2f:19:ee: 7e:07:ee:10:b2:68:62:24:28:8d:a8:06:f2:88:05: 81:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:18:91:23:9E:57:50:83:F7:C9:4D:7D:E6:34:1B:5A:A8:13:89:F1 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366138303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6a80::/48 Signature Algorithm: sha256WithRSAEncryption 10:df:15:fc:3a:0b:e7:c1:31:ad:6f:7a:0d:85:37:e8:30:2e: ae:6f:16:62:c8:be:7c:77:70:ca:98:11:47:51:96:cb:87:b0: 92:2e:52:95:53:2a:18:a3:bb:2a:f8:67:bf:e6:3d:00:6d:f9: 41:40:9e:c1:c9:af:39:5b:7d:80:d7:bc:b9:03:6f:27:a5:86: db:94:8c:6a:6f:9c:15:fb:4a:f5:ac:d6:64:af:0e:5e:64:e4: 0c:1b:2e:36:6f:e7:93:b3:0a:8d:d5:63:0d:8b:81:97:a5:0a: 62:20:af:ff:6b:35:4d:ca:03:5c:23:8b:0c:02:a7:c2:7f:5c: ae:26:e1:d6:7a:9b:12:d3:ae:a2:6f:07:b5:5c:a8:e9:27:3b: 67:38:87:32:6b:20:9e:31:78:df:e7:2b:07:9e:d8:8a:2c:73: c8:a0:64:5b:a2:0f:76:25:60:8f:c3:2e:bf:73:17:da:30:3c: f8:45:f1:59:a9:da:dc:fc:bd:35:0e:56:f8:5d:0d:07:4e:7d: e1:50:5b:51:c7:f5:af:fb:3d:e2:c1:83:f0:38:7a:2c:59:68: 40:fe:55:f8:ce:02:0a:47:5a:02:cf:9d:e4:8a:e7:ab:90:ce: 28:9b:d0:fd:af:a9:91:21:77:74:87:cb:6b:6c:85:2b:01:4a: 7e:21:5e:3b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIULmrctC0ir7oHqBgLEKrgXTraKPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ3MTZaFw0yNjAxMjgxNzUyMTZaMDMxMTAvBgNV BAMTKEQzMTg5MTIzOUU1NzUwODNGN0M5NEQ3REU2MzQxQjVBQTgxMzg5RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvv44AefzwK56A3usog1UdcFoN MEj7RNAmZcuJzMqkKvi3DuO02E3x/gbJZc9fTxfPujs8I6eXL/bdbtO6o0bVZpdC eEVzKGA6p1ZuwV3iM9XSiHNptEFdPnEWY71OF9tSPntxAFzwY5ANXjpGEhqyXTjN cRqg1mdUN5lRHwCkNc+yptTxTrB3BbkgMqVGaz46OvAgugWMFa1sJgZUcp08KfcS Qjs1wd2VaTBZlkmhbFx7OANFR9rSYn71yflatb1k253By4DfetzuP0Ey1S517PXD 3qhFXmTWP22IOvCbt8rVm8B6Ik3+qTS43i8Z7n4H7hCyaGIkKI2oBvKIBYFjAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU0xiRI55XUIP3yU195jQbWqgTifEwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjEzODMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRqgDAN BgkqhkiG9w0BAQsFAAOCAQEAEN8V/DoL58ExrW96DYU36DAurm8WYsi+fHdwypgR R1GWy4ewki5SlVMqGKO7Kvhnv+Y9AG35QUCewcmvOVt9gNe8uQNvJ6WG25SMam+c FftK9azWZK8OXmTkDBsuNm/nk7MKjdVjDYuBl6UKYiCv/2s1TcoDXCOLDAKnwn9c ribh1nqbEtOuom8HtVyo6Sc7ZziHMmsgnjF43+crB57YiixzyKBkW6IPdiVgj8Mu v3MX2jA8+EXxWana3Py9NQ5W+F0NB0594VBbUcf1r/s94sGD8Dh6LFloQP5V+M4C CkdaAs+d5Irnq5DOKJvQ/a+pkSF3dIfLa2yFKwFKfiFeOw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:46:48 2025 by rpki-client