$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366235303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366235303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 2nMUSq0SsZTN63LtfGcbvlnD86jfCG8rCZtulgWHzps= Subject key identifier: 1E:EF:94:A6:03:D3:3F:40:C2:0B:54:FB:F4:E9:2F:BB:8E:56:DC:62 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 4EF0FD1FD1911FC4B59A18E7BB67E9C037AFB308 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366235303a3a2f34382d3438203d3e203136393039.roa Signing time: Wed 29 Jan 2025 17:53:58 +0000 ROA not before: Wed 29 Jan 2025 17:48:58 +0000 ROA not after: Wed 28 Jan 2026 17:53:58 +0000 asID: 16909 IP address blocks: 2a14:7584:6b50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f0:fd:1f:d1:91:1f:c4:b5:9a:18:e7:bb:67:e9:c0:37:af:b3:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Jan 29 17:48:58 2025 GMT Not After : Jan 28 17:53:58 2026 GMT Subject: CN=1EEF94A603D33F40C20B54FBF4E92FBB8E56DC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:27:69:e3:44:d6:97:af:60:fd:01:ac:ef:db: 14:a1:7f:68:7b:c8:db:fd:36:e6:48:53:39:e3:e9: 0b:c8:e0:32:6e:30:b2:ba:cc:af:67:ce:29:bb:04: 89:0b:80:1a:c7:9b:2e:e6:c5:c3:a3:7e:a0:fe:1f: cc:b0:0e:03:04:f8:97:83:bf:55:fe:11:e7:16:16: 40:73:27:a6:3d:3b:ae:67:df:c0:a5:8a:a4:79:13: 1d:f4:71:2e:f1:7c:67:46:af:9c:f4:f3:c3:22:61: 60:35:24:9f:35:eb:fb:93:f5:3d:58:66:e8:2f:17: 00:bb:4e:10:4a:f1:9f:36:7e:b6:86:fb:b3:1a:b1: af:00:a0:a5:2d:b4:24:11:2d:3e:f6:d0:39:1f:89: 65:e5:36:2a:c2:2a:02:d8:3d:2c:08:c8:02:ac:56: 53:88:ff:0c:79:cb:6c:df:bb:ca:8e:7a:c2:e6:25: 1f:cd:7a:bc:ce:3e:22:be:97:c4:e6:5a:97:b4:1c: a6:0e:20:c0:d3:d9:23:f9:83:ce:cc:c4:5e:7a:1c: 89:8e:bf:6d:ba:ba:47:1e:1d:1c:6f:bc:2a:2d:ac: cd:7c:fa:7c:18:99:2e:0f:ad:5b:68:e1:48:6d:6e: c0:cd:6e:e3:6c:1d:68:3b:9c:35:ad:8f:0b:86:f1: c0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EF:94:A6:03:D3:3F:40:C2:0B:54:FB:F4:E9:2F:BB:8E:56:DC:62 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366235303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6b50::/48 Signature Algorithm: sha256WithRSAEncryption 17:04:f7:c4:3a:a8:35:39:b6:a9:30:1d:28:0f:05:7d:68:44: a5:2e:ab:78:28:53:a8:9d:53:5a:b9:6d:b6:32:7a:23:ed:41: e6:72:c4:98:41:e0:17:85:d1:20:0f:ae:65:28:77:8f:c6:b5: 5c:40:24:31:22:29:64:f7:71:b9:6e:a4:05:0b:91:f9:3f:84: a7:f9:07:ad:cc:bb:a3:a0:02:6e:6f:fb:58:2b:85:33:6c:e7: ad:57:2e:7b:23:cf:23:da:17:f3:90:d4:d1:64:83:5f:74:9b: 5c:b1:90:c2:cc:95:5f:4e:d1:3c:11:77:0a:09:d5:79:20:ed: 5a:cc:c7:3d:41:9b:57:01:d5:93:3b:26:c4:84:45:13:eb:2e: 75:a9:d3:e5:ea:76:cb:db:3b:83:ec:ed:81:a8:2e:b4:14:52: f0:12:6f:82:ff:e5:8c:6d:be:11:94:d2:90:f8:b8:ca:01:83: d1:f8:78:ff:c1:8f:dd:92:a1:f1:33:22:36:51:1b:a7:13:c2: 82:11:65:84:10:6c:f4:d7:65:3a:61:fe:1b:5c:0f:ff:1b:27: 6c:f1:52:92:aa:08:e3:e3:8f:06:c1:07:80:05:67:3a:c2:77: 35:43:35:7b:b4:44:a6:1f:33:54:98:07:12:7c:93:b4:b5:30: c0:d8:50:ab -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUTvD9H9GRH8S1mhjnu2fpwDevswgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAxMjkxNzQ4NThaFw0yNjAxMjgxNzUzNThaMDMxMTAvBgNV BAMTKDFFRUY5NEE2MDNEMzNGNDBDMjBCNTRGQkY0RTkyRkJCOEU1NkRDNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWJ2njRNaXr2D9Aazv2xShf2h7 yNv9NuZIUznj6QvI4DJuMLK6zK9nzim7BIkLgBrHmy7mxcOjfqD+H8ywDgME+JeD v1X+EecWFkBzJ6Y9O65n38CliqR5Ex30cS7xfGdGr5z088MiYWA1JJ816/uT9T1Y ZugvFwC7ThBK8Z82fraG+7Masa8AoKUttCQRLT720DkfiWXlNirCKgLYPSwIyAKs VlOI/wx5y2zfu8qOesLmJR/NerzOPiK+l8TmWpe0HKYOIMDT2SP5g87MxF56HImO v226ukceHRxvvCotrM18+nwYmS4PrVto4UhtbsDNbuNsHWg7nDWtjwuG8cDPAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUHu+UpgPTP0DCC1T79Okvu45W3GIwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjIzNTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrUDAN BgkqhkiG9w0BAQsFAAOCAQEAFwT3xDqoNTm2qTAdKA8FfWhEpS6reChTqJ1TWrlt tjJ6I+1B5nLEmEHgF4XRIA+uZSh3j8a1XEAkMSIpZPdxuW6kBQuR+T+Ep/kHrcy7 o6ACbm/7WCuFM2znrVcueyPPI9oX85DU0WSDX3SbXLGQwsyVX07RPBF3CgnVeSDt WszHPUGbVwHVkzsmxIRFE+sudanT5ep2y9s7g+ztgagutBRS8BJvgv/ljG2+EZTS kPi4ygGD0fh4/8GP3ZKh8TMiNlEbpxPCghFlhBBs9NdlOmH+G1wP/xsnbPFSkqoI 4+OPBsEHgAVnOsJ3NUM1e7REph8zVJgHEnyTtLUwwNhQqw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:39:04 2025 by rpki-client