$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366164303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366164303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: E7NvJ0adr9G2Ei2/D97xnYVnEGaAfEGpPDL2nGtHXSY= Subject key identifier: CE:A3:CB:6E:33:E8:FD:2F:01:97:56:8D:43:F4:89:03:3C:63:3B:93 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 4A6EB588FFBAA0C8B9D7B6A4FFBB7B8D18376AE7 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366164303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:53:00 +0000 ROA not before: Wed 29 Jan 2025 17:48:00 +0000 ROA not after: Wed 28 Jan 2026 17:53:00 +0000 asID: 16909 IP address blocks: 2a14:7584:6ad0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6e:b5:88:ff:ba:a0:c8:b9:d7:b6:a4:ff:bb:7b:8d:18:37:6a:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:48:00 2025 GMT Not After : Jan 28 17:53:00 2026 GMT Subject: CN=CEA3CB6E33E8FD2F0197568D43F489033C633B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:43:51:e7:d5:b8:8a:3a:99:d4:86:c6:94:5d: 63:27:12:fd:03:ee:c8:ee:3b:f4:7e:71:7d:73:41: 10:64:ac:a9:2f:bc:9c:d6:28:88:96:d3:3b:ce:90: 08:8e:d7:79:34:f2:cc:be:1c:69:13:d3:d6:9b:83: a0:cc:15:e3:0b:a0:cf:cb:4f:41:71:92:e4:33:e9: d4:17:03:81:66:e3:05:ef:64:e4:71:52:b9:18:65: 0f:d2:46:cf:85:72:51:c2:d9:2a:cc:db:0a:46:8d: 82:87:a0:b2:49:07:84:30:a0:02:46:96:af:67:04: 59:37:c4:4c:c2:a7:1f:c0:80:27:d9:5a:76:d3:56: c3:bc:53:28:43:79:a7:08:0e:81:c8:c5:09:a9:e6: 01:1e:f0:97:ac:6c:fc:60:82:ce:17:0d:84:83:23: be:c2:55:90:87:bd:45:0b:0b:4f:b7:02:93:ba:31: 43:7a:0f:89:7f:10:ff:9c:41:0e:79:9d:fe:1f:22: 35:f1:11:56:49:c9:64:a1:6f:b9:30:4b:a9:39:0d: ad:30:e4:ad:ca:a7:12:3c:25:08:c7:14:50:1f:bd: 74:b8:fe:6a:06:5e:b3:38:5f:7b:47:40:b0:3c:6f: d2:20:1e:df:8a:d3:fb:41:97:b8:7b:67:23:a4:4e: 70:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A3:CB:6E:33:E8:FD:2F:01:97:56:8D:43:F4:89:03:3C:63:3B:93 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366164303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6ad0::/48 Signature Algorithm: sha256WithRSAEncryption 3d:03:8c:db:ac:fb:c6:4f:16:71:92:84:95:3a:73:3a:a4:5b: e5:3c:53:43:b5:c0:78:a8:26:98:2b:1a:6e:7f:d4:16:4d:df: e0:00:1b:6d:dd:b2:be:54:23:c0:33:e7:d7:9b:d3:48:f7:9c: 60:1b:c8:55:71:35:e7:4a:12:fc:a5:54:d7:10:9c:6a:82:8d: 4a:58:36:b6:e9:3c:bb:d0:95:d7:e9:b9:e6:01:6b:9e:84:74: df:b3:74:c5:d0:85:d7:9b:fe:d2:d4:f9:79:76:01:fc:fd:3b: e2:6e:ab:34:f2:67:bf:3c:1c:af:90:4e:c0:e7:8b:26:4b:b4: 59:c8:d5:55:7e:c3:be:c7:85:fa:bf:81:47:3a:f8:88:2e:29: c8:8e:55:93:89:03:0a:25:a1:b4:3d:ff:a8:a1:b5:7d:f4:c4: b6:a8:3d:39:e8:a3:8b:1e:af:86:2a:1f:55:c9:41:4c:7c:8a: ee:d3:bf:b5:30:4b:a3:c3:45:94:29:32:e4:08:53:6e:b0:49: 18:e4:36:21:a6:84:48:13:df:6e:52:88:76:b8:48:15:69:0d: 7a:30:99:5c:30:55:50:18:56:8a:7e:f5:67:04:40:50:e4:4a: 35:03:99:a6:0d:39:72:92:0d:87:e1:7e:dc:75:00:6f:a6:c9: e4:4c:25:47 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUSm61iP+6oMi517ak/7t7jRg3aucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ4MDBaFw0yNjAxMjgxNzUzMDBaMDMxMTAvBgNV BAMTKENFQTNDQjZFMzNFOEZEMkYwMTk3NTY4RDQzRjQ4OTAzM0M2MzNCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQ1Hn1biKOpnUhsaUXWMnEv0D 7sjuO/R+cX1zQRBkrKkvvJzWKIiW0zvOkAiO13k08sy+HGkT09abg6DMFeMLoM/L T0FxkuQz6dQXA4Fm4wXvZORxUrkYZQ/SRs+FclHC2SrM2wpGjYKHoLJJB4QwoAJG lq9nBFk3xEzCpx/AgCfZWnbTVsO8UyhDeacIDoHIxQmp5gEe8JesbPxggs4XDYSD I77CVZCHvUULC0+3ApO6MUN6D4l/EP+cQQ55nf4fIjXxEVZJyWShb7kwS6k5Da0w 5K3KpxI8JQjHFFAfvXS4/moGXrM4X3tHQLA8b9IgHt+K0/tBl7h7ZyOkTnA3AgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUzqPLbjPo/S8Bl1aNQ/SJAzxjO5MwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjE2NDMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRq0DAN BgkqhkiG9w0BAQsFAAOCAQEAPQOM26z7xk8WcZKElTpzOqRb5TxTQ7XAeKgmmCsa bn/UFk3f4AAbbd2yvlQjwDPn15vTSPecYBvIVXE150oS/KVU1xCcaoKNSlg2tuk8 u9CV1+m55gFrnoR037N0xdCF15v+0tT5eXYB/P074m6rNPJnvzwcr5BOwOeLJku0 WcjVVX7DvseF+r+BRzr4iC4pyI5Vk4kDCiWhtD3/qKG1ffTEtqg9Oeijix6vhiof VclBTHyK7tO/tTBLo8NFlCky5AhTbrBJGOQ2IaaESBPfblKIdrhIFWkNejCZXDBV UBhWin71ZwRAUORKNQOZpg05cpINh+F+3HUAb6bJ5EwlRw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:39:52 2025 by rpki-client