$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366236303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366236303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: S2sdiXdMa/XKP4qwzLcjJZio0s+e9/T8xFmODZuTeTI= Subject key identifier: F3:4C:44:16:68:D0:13:5E:A8:04:19:22:1C:DC:56:B0:62:12:2A:3E Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 3C355F44ACCD3161D097C44587D30285AFBD7677 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366236303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 19:33:05 +0000 ROA not before: Sat 01 Feb 2025 19:28:05 +0000 ROA not after: Sat 31 Jan 2026 19:33:05 +0000 asID: 16909 IP address blocks: 2a14:7584:6b60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:35:5f:44:ac:cd:31:61:d0:97:c4:45:87:d3:02:85:af:bd:76:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 19:28:05 2025 GMT Not After : Jan 31 19:33:05 2026 GMT Subject: CN=F34C441668D0135EA80419221CDC56B062122A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a0:3f:f1:b8:26:98:95:cd:30:2f:28:f5:ed: 00:8d:d7:1b:4c:63:e7:05:e3:cb:4d:68:85:4f:2d: 54:28:33:b9:bd:3c:88:bf:cb:27:69:94:fa:06:ec: 87:bc:f5:be:ca:69:71:b5:08:18:c9:32:50:d0:38: 37:5b:be:5a:2f:53:8c:fd:2a:0b:67:cb:a2:48:41: dd:82:bb:da:c1:6c:da:46:b1:25:82:e9:11:97:d9: 58:32:05:85:a0:0e:35:48:a4:1e:f5:98:e7:ad:13: c4:67:b7:a6:fb:ae:02:56:52:73:0a:fc:06:ef:4b: 78:3a:1d:2d:af:bb:e8:a6:f7:c4:3a:e2:cd:17:23: ad:7c:04:42:ca:5a:91:18:46:ea:c8:7d:07:a2:b6: 60:9a:eb:4e:4f:e6:d9:c9:d9:9f:03:a4:2f:91:ba: 15:7e:26:94:ce:0b:51:55:6c:3f:5a:84:3c:8d:6f: 05:e3:75:fe:98:df:97:0c:af:18:10:8a:c8:bd:7e: 21:a2:0d:c9:7d:8f:fe:38:cc:ef:18:3c:7f:75:48: 08:e7:b3:e9:1d:da:ff:30:b6:36:fc:3b:1d:03:f7: aa:90:5c:35:69:0c:6d:86:23:72:f1:8c:61:39:a2: 18:23:8e:c9:99:72:c1:c6:56:45:e2:63:49:fa:96: 5c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4C:44:16:68:D0:13:5E:A8:04:19:22:1C:DC:56:B0:62:12:2A:3E X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366236303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6b60::/48 Signature Algorithm: sha256WithRSAEncryption 71:ab:3e:25:36:04:05:10:f7:97:8e:32:bb:cf:9e:cc:27:8d: 98:6b:56:72:2f:b5:ac:53:d1:4d:a9:a5:0c:66:1d:fa:bd:fa: 57:a8:fd:71:9e:6d:4d:2c:57:d7:c5:62:04:f0:21:28:20:d3: 1b:fa:e2:7f:4f:77:1f:42:ef:c0:c8:05:34:5b:28:d7:6a:9d: fc:af:35:aa:d8:ff:65:e1:9b:aa:4a:56:4e:98:e8:6e:56:c2: 0b:6f:96:2d:e2:a1:b7:a7:48:c7:bb:0d:1c:b1:97:c9:80:de: 99:d5:c8:7f:e1:90:17:d6:eb:a4:bb:32:f0:20:64:59:11:a7: 16:e2:97:aa:31:d0:71:10:8f:33:b0:cc:e5:74:1a:88:e8:0e: 23:f1:d1:35:40:c2:7a:41:fd:5e:14:32:17:0d:c3:32:e7:15: 71:20:f3:03:5b:01:32:9c:81:10:c7:5f:5d:e7:38:92:b2:f0: 26:0f:4b:d4:4a:c3:88:62:ec:25:4d:b5:30:45:fc:64:9a:a0: 48:1b:81:aa:18:b8:ee:ae:b5:44:7f:5f:f2:11:0f:47:95:bc: d3:d3:1f:84:18:ba:fc:10:1c:e9:19:9b:84:cd:73:2e:e3:dc: 5e:bd:05:92:58:7c:94:b6:33:3d:36:14:b5:9e:0f:32:1c:2a: 7a:55:08:ac -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUPDVfRKzNMWHQl8RFh9MCha+9dncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDExOTI4MDVaFw0yNjAxMzExOTMzMDVaMDMxMTAvBgNV BAMTKEYzNEM0NDE2NjhEMDEzNUVBODA0MTkyMjFDREM1NkIwNjIxMjJBM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKoD/xuCaYlc0wLyj17QCN1xtM Y+cF48tNaIVPLVQoM7m9PIi/yydplPoG7Ie89b7KaXG1CBjJMlDQODdbvlovU4z9 Kgtny6JIQd2Cu9rBbNpGsSWC6RGX2VgyBYWgDjVIpB71mOetE8Rnt6b7rgJWUnMK /AbvS3g6HS2vu+im98Q64s0XI618BELKWpEYRurIfQeitmCa605P5tnJ2Z8DpC+R uhV+JpTOC1FVbD9ahDyNbwXjdf6Y35cMrxgQisi9fiGiDcl9j/44zO8YPH91SAjn s+kd2v8wtjb8Ox0D96qQXDVpDG2GI3LxjGE5ohgjjsmZcsHGVkXiY0n6llxZAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU80xEFmjQE16oBBkiHNxWsGISKj4wHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjIzNjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrYDAN BgkqhkiG9w0BAQsFAAOCAQEAcas+JTYEBRD3l44yu8+ezCeNmGtWci+1rFPRTaml DGYd+r36V6j9cZ5tTSxX18ViBPAhKCDTG/rif093H0LvwMgFNFso12qd/K81qtj/ ZeGbqkpWTpjoblbCC2+WLeKht6dIx7sNHLGXyYDemdXIf+GQF9brpLsy8CBkWRGn FuKXqjHQcRCPM7DM5XQaiOgOI/HRNUDCekH9XhQyFw3DMucVcSDzA1sBMpyBEMdf Xec4krLwJg9L1ErDiGLsJU21MEX8ZJqgSBuBqhi47q61RH9f8hEPR5W809MfhBi6 /BAc6RmbhM1zLuPcXr0Fklh8lLYzPTYUtZ4PMhwqelUIrA== -----END CERTIFICATE-----Generated at Wed Feb 5 07:00:57 2025 by rpki-client