$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366231303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366231303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: +WK/UHBy3w0TbgJHPm7F7rJPPzDURX21tcql7nvALVs= Subject key identifier: AB:5A:C6:EE:1E:99:39:AB:7D:8C:33:66:B5:B1:3E:AF:6A:78:25:69 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 2A1E19F210847102E84F32F9D117CCB36263530C Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366231303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:53:55 +0000 ROA not before: Wed 29 Jan 2025 17:48:55 +0000 ROA not after: Wed 28 Jan 2026 17:53:55 +0000 asID: 16909 IP address blocks: 2a14:7584:6b10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:1e:19:f2:10:84:71:02:e8:4f:32:f9:d1:17:cc:b3:62:63:53:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:48:55 2025 GMT Not After : Jan 28 17:53:55 2026 GMT Subject: CN=AB5AC6EE1E9939AB7D8C3366B5B13EAF6A782569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:33:d3:72:b7:83:87:ab:9f:93:e6:c0:2a: 67:a7:48:10:3c:fc:d7:ce:0e:4b:cc:67:aa:8c:51: 49:d3:94:a5:71:5a:9f:54:dc:98:7c:3b:0f:7f:ea: 46:ed:29:cd:fd:25:2b:7f:b3:59:6a:a6:4b:b1:7c: cc:ca:cf:ad:87:27:87:ff:f2:22:e0:05:93:88:61: 52:ff:7a:cb:c4:3f:4a:3e:53:4d:6b:df:d8:0f:f5: 49:9a:77:ad:1d:45:85:72:21:5f:85:80:2c:38:01: 62:69:e9:94:e3:32:1d:49:fb:0f:2e:ae:10:cb:f7: 10:85:46:50:7e:32:58:9b:80:dc:36:85:f0:61:c0: 21:17:60:76:d0:99:8b:48:43:b3:f9:64:cc:0a:ec: 2a:b1:14:3c:59:5d:25:17:37:fc:03:e6:dd:f0:eb: 82:9a:4e:e7:ae:8c:90:39:57:45:eb:3b:7c:38:6e: c6:4a:93:99:f9:0a:e4:61:be:4c:a4:c8:86:b4:31: 03:4a:42:07:ae:0c:fc:cf:5d:26:58:99:fb:34:7d: aa:07:dc:56:d4:41:8f:b5:4f:4b:00:d5:f8:b6:e9: 1f:07:f9:df:f0:ab:15:c3:62:0d:72:26:7d:c5:5e: 85:fe:7c:7a:57:6b:36:a2:dc:2e:a7:3e:50:b8:39: 58:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:5A:C6:EE:1E:99:39:AB:7D:8C:33:66:B5:B1:3E:AF:6A:78:25:69 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366231303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6b10::/48 Signature Algorithm: sha256WithRSAEncryption 41:6c:34:8e:5f:ab:2f:1e:8c:d1:71:68:72:85:30:b2:2f:c7: c1:75:78:43:f3:4a:5c:97:9c:16:48:b3:2d:fd:c2:d4:e4:c8: 22:44:62:2e:63:e6:28:61:03:3f:9d:5c:2e:e0:d6:70:75:23: 30:62:b1:28:cd:44:53:26:e0:de:b7:10:5c:78:ea:ea:eb:40: e4:c6:e9:52:84:fe:2c:f0:ac:c2:23:39:2e:0f:a0:83:32:65: e3:30:2b:c7:53:1e:b7:03:ae:53:9b:5b:9e:45:74:60:6c:35: 97:32:e9:28:3b:55:6b:48:76:1e:a2:c6:af:55:78:7c:ff:21: 49:2c:6d:27:b0:0e:5a:30:5d:b8:27:87:7a:b7:cd:fa:aa:5e: f7:39:ec:a5:81:2b:40:d8:a8:8b:1e:92:20:f1:e6:d4:d8:aa: 07:bb:ba:66:6d:45:75:cf:8b:99:c2:d4:96:44:95:2f:92:bb: 62:9e:b8:4a:77:68:76:62:7f:10:f6:64:49:7e:2a:62:5f:34: 86:3a:f9:af:46:ba:fa:4e:32:5b:52:ed:3f:62:da:ec:15:45: 79:78:57:d1:48:36:88:4e:eb:0e:56:d1:d7:e0:66:e4:da:3a: fe:da:89:55:da:92:d4:5e:96:e2:40:36:19:c7:8d:a4:bb:47: 7e:2f:93:1d -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUKh4Z8hCEcQLoTzL50RfMs2JjUwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ4NTVaFw0yNjAxMjgxNzUzNTVaMDMxMTAvBgNV BAMTKEFCNUFDNkVFMUU5OTM5QUI3RDhDMzM2NkI1QjEzRUFGNkE3ODI1NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ajPTcreDh6ufk+bAKmenSBA8 /NfODkvMZ6qMUUnTlKVxWp9U3Jh8Ow9/6kbtKc39JSt/s1lqpkuxfMzKz62HJ4f/ 8iLgBZOIYVL/esvEP0o+U01r39gP9Umad60dRYVyIV+FgCw4AWJp6ZTjMh1J+w8u rhDL9xCFRlB+MlibgNw2hfBhwCEXYHbQmYtIQ7P5ZMwK7CqxFDxZXSUXN/wD5t3w 64KaTueujJA5V0XrO3w4bsZKk5n5CuRhvkykyIa0MQNKQgeuDPzPXSZYmfs0faoH 3FbUQY+1T0sA1fi26R8H+d/wqxXDYg1yJn3FXoX+fHpXazai3C6nPlC4OVidAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUq1rG7h6ZOat9jDNmtbE+r2p4JWkwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjIzMTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrEDAN BgkqhkiG9w0BAQsFAAOCAQEAQWw0jl+rLx6M0XFocoUwsi/HwXV4Q/NKXJecFkiz Lf3C1OTIIkRiLmPmKGEDP51cLuDWcHUjMGKxKM1EUybg3rcQXHjq6utA5MbpUoT+ LPCswiM5Lg+ggzJl4zArx1MetwOuU5tbnkV0YGw1lzLpKDtVa0h2HqLGr1V4fP8h SSxtJ7AOWjBduCeHerfN+qpe9znspYErQNioix6SIPHm1NiqB7u6Zm1Fdc+LmcLU lkSVL5K7Yp64SndodmJ/EPZkSX4qYl80hjr5r0a6+k4yW1LtP2La7BVFeXhX0Ug2 iE7rDlbR1+Bm5No6/tqJVdqS1F6W4kA2GceNpLtHfi+THQ== -----END CERTIFICATE-----Generated at Wed Feb 5 06:36:14 2025 by rpki-client