$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366161303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366161303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: tsww2TzVSIAaLZIUgxZGzjSO8PcJ0o//3/vsWUXt0LM= Subject key identifier: 90:A5:B9:C3:08:5C:B4:B3:AD:90:3F:7B:C2:CD:FB:18:73:76:B0:3B Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 655C23FB672E444177F883D49DEA756DBCAFAFA3 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366161303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:52:18 +0000 ROA not before: Wed 29 Jan 2025 17:47:18 +0000 ROA not after: Wed 28 Jan 2026 17:52:18 +0000 asID: 16909 IP address blocks: 2a14:7584:6aa0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:5c:23:fb:67:2e:44:41:77:f8:83:d4:9d:ea:75:6d:bc:af:af:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:47:18 2025 GMT Not After : Jan 28 17:52:18 2026 GMT Subject: CN=90A5B9C3085CB4B3AD903F7BC2CDFB187376B03B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:7e:78:ef:3b:6b:17:f0:9b:35:34:52:21: 7f:ea:c0:6c:12:e1:3a:09:26:27:90:a3:9f:c7:73: 87:dd:97:33:3c:6e:50:6f:11:4e:bb:f1:f3:2a:08: 03:ac:ad:1c:8a:ba:aa:b9:68:b7:b1:f2:23:70:8a: 14:b7:43:e1:49:33:0f:63:7e:6a:f4:1a:b1:5b:fa: 01:48:c9:25:af:2d:80:ba:99:a0:9c:27:5e:07:84: b2:63:e5:b1:ce:d1:1a:e4:f5:d0:69:f2:b9:ea:19: 75:aa:c8:04:c5:9c:b7:86:33:ca:88:7f:cc:11:00: 0d:1c:5f:bb:7b:ad:9d:af:b0:f7:14:fb:49:2b:11: 70:b1:d4:24:01:c5:ea:96:8e:5c:41:ad:5c:a6:5a: af:69:36:6b:f4:cf:5a:a9:ff:88:a0:b9:ca:fd:47: 89:ce:9b:cc:eb:46:f1:65:74:00:54:90:b9:d3:81: 29:dd:a8:db:4d:71:b5:c9:08:75:08:2d:50:62:bb: 7b:42:2f:59:0e:83:ef:8b:46:44:34:02:f0:8a:2c: bc:3d:6a:b0:ac:17:1e:5d:da:d4:c8:99:45:0e:04: 5a:55:ae:15:48:3e:32:aa:84:3e:8e:53:c5:e3:b5: f8:7a:c4:87:eb:42:f3:8f:8b:a2:81:dc:d7:51:06: 51:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A5:B9:C3:08:5C:B4:B3:AD:90:3F:7B:C2:CD:FB:18:73:76:B0:3B X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366161303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6aa0::/48 Signature Algorithm: sha256WithRSAEncryption 08:99:b3:1d:d2:fe:69:08:29:ac:f5:03:7b:10:a4:3e:66:f1: e7:bb:9e:f6:a2:8a:59:c8:49:68:5a:76:71:c8:56:f1:11:ab: d6:3d:cc:f3:77:66:43:4f:c9:b4:d4:f8:79:57:54:cb:df:cf: 18:54:d0:9c:7a:c1:00:91:ac:99:c8:22:84:23:db:26:aa:7e: 43:2a:14:3e:71:89:c4:cb:48:9f:67:3d:e3:47:e6:01:55:56: 4b:8d:b6:3e:bc:74:cb:e0:69:54:f6:9c:c9:4a:55:8d:b1:db: 30:28:5d:66:ae:ea:37:b3:e8:bc:c8:59:8e:88:dc:f4:e3:4c: 15:32:28:43:23:4f:71:d6:db:1a:9e:ff:b9:07:f3:0e:b6:bf: fd:f0:25:ab:3f:59:15:24:fe:b1:51:b2:04:76:a4:dc:ae:b9: d8:b3:51:e6:f9:be:ae:cc:e9:6b:d1:cc:62:91:27:33:5e:fd: c4:f4:fb:03:8e:ea:19:d7:c6:64:dd:b7:33:3e:a6:16:69:0a: c8:dd:70:53:bf:f3:3c:9d:d7:e2:56:0f:15:07:f3:80:60:56: 7d:0d:ba:1e:c5:b6:00:75:a3:1b:49:49:c8:5a:95:25:69:6f: 59:2f:88:68:d8:eb:b0:46:73:4b:60:ca:ff:da:c3:82:cd:80: 82:04:e5:c2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUZVwj+2cuREF3+IPUnep1bbyvr6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ3MThaFw0yNjAxMjgxNzUyMThaMDMxMTAvBgNV BAMTKDkwQTVCOUMzMDg1Q0I0QjNBRDkwM0Y3QkMyQ0RGQjE4NzM3NkIwM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8n547ztrF/CbNTRSIX/qwGwS 4ToJJieQo5/Hc4fdlzM8blBvEU678fMqCAOsrRyKuqq5aLex8iNwihS3Q+FJMw9j fmr0GrFb+gFIySWvLYC6maCcJ14HhLJj5bHO0Rrk9dBp8rnqGXWqyATFnLeGM8qI f8wRAA0cX7t7rZ2vsPcU+0krEXCx1CQBxeqWjlxBrVymWq9pNmv0z1qp/4igucr9 R4nOm8zrRvFldABUkLnTgSndqNtNcbXJCHUILVBiu3tCL1kOg++LRkQ0AvCKLLw9 arCsFx5d2tTImUUOBFpVrhVIPjKqhD6OU8Xjtfh6xIfrQvOPi6KB3NdRBlHRAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUkKW5wwhctLOtkD97ws37GHN2sDswHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjE2MTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRqoDAN BgkqhkiG9w0BAQsFAAOCAQEACJmzHdL+aQgprPUDexCkPmbx57ue9qKKWchJaFp2 cchW8RGr1j3M83dmQ0/JtNT4eVdUy9/PGFTQnHrBAJGsmcgihCPbJqp+QyoUPnGJ xMtIn2c940fmAVVWS422Prx0y+BpVPacyUpVjbHbMChdZq7qN7PovMhZjojc9ONM FTIoQyNPcdbbGp7/uQfzDra//fAlqz9ZFST+sVGyBHak3K652LNR5vm+rszpa9HM YpEnM179xPT7A47qGdfGZN23Mz6mFmkKyN1wU7/zPJ3X4lYPFQfzgGBWfQ26HsW2 AHWjG0lJyFqVJWlvWS+IaNjrsEZzS2DK/9rDgs2AggTlwg== -----END CERTIFICATE-----Generated at Wed Feb 5 06:46:33 2025 by rpki-client