$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366238303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366238303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: uwrNn8jk5TJpWCcqUw/PXrjyCrRVJDx137NLAgebzpY= Subject key identifier: B0:0E:40:8C:A9:7C:08:EC:84:85:4D:47:C2:FD:ED:F0:CB:62:85:E2 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 5C4C0F9DEE9ACBEC1AD3711AB2368F8E1C171172 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366238303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 19:33:07 +0000 ROA not before: Sat 01 Feb 2025 19:28:07 +0000 ROA not after: Sat 31 Jan 2026 19:33:07 +0000 asID: 16909 IP address blocks: 2a14:7584:6b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4c:0f:9d:ee:9a:cb:ec:1a:d3:71:1a:b2:36:8f:8e:1c:17:11:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 19:28:07 2025 GMT Not After : Jan 31 19:33:07 2026 GMT Subject: CN=B00E408CA97C08EC84854D47C2FDEDF0CB6285E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:3d:10:07:90:a9:5a:3a:36:0d:71:b5:37: 4a:39:57:ae:10:c0:4d:ec:c7:d7:a7:02:7a:77:82: 33:e9:26:dd:00:ab:89:bf:d9:aa:c6:54:0c:8c:92: 7d:85:7d:8a:59:21:87:92:b4:3c:3c:4c:77:d8:87: 45:55:b9:3e:d0:cc:a1:c7:15:1d:8b:7f:0d:64:04: db:3d:5e:bf:bf:fb:03:d2:21:40:37:50:49:eb:e0: 61:e3:a1:72:69:82:20:6d:1c:b6:f6:e3:22:f8:0e: 39:23:83:bd:c3:0c:ef:52:86:d8:99:5a:22:f7:b9: 0c:fc:b4:50:9f:0f:77:fa:43:8a:14:b8:7a:89:65: 04:e5:38:a8:df:df:25:38:77:15:1f:3f:af:cf:dc: d5:f4:27:da:d2:44:0c:6f:dd:cd:da:55:c0:60:9d: 4c:bb:8e:d7:3c:62:86:ff:7c:34:8a:38:b8:1f:4d: 49:42:37:3f:0c:68:c5:c1:8e:18:94:7d:73:91:1a: 25:62:97:2e:3f:fc:9c:f0:9e:6e:35:cf:da:13:3a: 68:30:27:83:8f:08:a7:8a:c1:04:61:2a:48:0b:7c: 51:d7:b3:60:0e:55:5b:d2:a4:8b:3e:85:ef:c2:54: b4:82:70:da:36:2f:b9:5e:07:0a:4c:78:63:1b:2c: a4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0E:40:8C:A9:7C:08:EC:84:85:4D:47:C2:FD:ED:F0:CB:62:85:E2 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366238303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6b80::/48 Signature Algorithm: sha256WithRSAEncryption 11:6a:e5:07:a3:76:d2:0e:5c:99:a1:0d:3a:3d:04:18:ba:e8: 8a:e4:2c:47:13:4b:ca:9b:12:f1:13:7e:26:ee:8c:fa:5f:42: 73:da:2b:c1:01:2b:27:9a:84:8b:0e:7e:99:c4:50:da:00:d5: 81:dd:c0:ae:08:a2:2c:41:3e:b8:21:8e:70:59:1f:8b:a4:2b: 92:27:72:3f:7c:c9:4d:e6:82:37:e8:5c:48:af:05:df:05:ae: b4:4e:5f:fe:52:e9:b9:5f:f1:58:8c:87:44:ff:e8:d3:7a:d2: b1:7d:cc:00:00:86:ac:26:52:1d:85:57:67:5b:17:a5:20:9f: 65:0f:21:a1:7f:6e:d2:12:31:19:06:90:a6:5b:69:e0:31:f8: e3:69:c5:ed:78:77:8c:4c:ea:db:7c:39:ca:f7:e7:00:44:d3: 96:b7:84:2f:8e:d7:ab:c6:56:95:a9:d5:71:9e:1a:69:df:f4: 5c:5e:b8:92:e6:78:46:37:6d:cc:b1:95:a8:7d:e8:b1:0d:ac: 7c:67:c6:c9:e0:e2:9d:c3:2d:95:1a:09:88:c6:99:a5:a1:5e: 42:ab:1e:07:b4:2a:96:9f:9a:f0:6e:90:a4:b1:e6:43:ba:18: 61:e0:de:92:c3:93:f4:71:0c:a4:c6:e1:91:bf:f2:4b:67:b5: 1a:b4:2d:2b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUXEwPne6ay+wa03EasjaPjhwXEXIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDExOTI4MDdaFw0yNjAxMzExOTMzMDdaMDMxMTAvBgNV BAMTKEIwMEU0MDhDQTk3QzA4RUM4NDg1NEQ0N0MyRkRFREYwQ0I2Mjg1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvyD0QB5CpWjo2DXG1N0o5V64Q wE3sx9enAnp3gjPpJt0Aq4m/2arGVAyMkn2FfYpZIYeStDw8THfYh0VVuT7QzKHH FR2Lfw1kBNs9Xr+/+wPSIUA3UEnr4GHjoXJpgiBtHLb24yL4Djkjg73DDO9ShtiZ WiL3uQz8tFCfD3f6Q4oUuHqJZQTlOKjf3yU4dxUfP6/P3NX0J9rSRAxv3c3aVcBg nUy7jtc8Yob/fDSKOLgfTUlCNz8MaMXBjhiUfXORGiVily4//Jzwnm41z9oTOmgw J4OPCKeKwQRhKkgLfFHXs2AOVVvSpIs+he/CVLSCcNo2L7leBwpMeGMbLKQ5AgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUsA5AjKl8COyEhU1Hwv3t8MtiheIwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjIzODMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrgDAN BgkqhkiG9w0BAQsFAAOCAQEAEWrlB6N20g5cmaENOj0EGLroiuQsRxNLypsS8RN+ Ju6M+l9Cc9orwQErJ5qEiw5+mcRQ2gDVgd3ArgiiLEE+uCGOcFkfi6QrkidyP3zJ TeaCN+hcSK8F3wWutE5f/lLpuV/xWIyHRP/o03rSsX3MAACGrCZSHYVXZ1sXpSCf ZQ8hoX9u0hIxGQaQpltp4DH442nF7Xh3jEzq23w5yvfnAETTlreEL47Xq8ZWlanV cZ4aad/0XF64kuZ4RjdtzLGVqH3osQ2sfGfGyeDincMtlRoJiMaZpaFeQqseB7Qq lp+a8G6QpLHmQ7oYYeDeksOT9HEMpMbhkb/yS2e1GrQtKw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:55:26 2025 by rpki-client