$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366239303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366239303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: iQsccz5a4BUJx9eiTw2F8EWvXO71y8+LmTOk6gnQ6lc= Subject key identifier: 3C:8D:F6:61:20:83:1E:DC:47:AE:92:7C:87:99:F0:59:9B:FF:B6:4A Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 0966E65C3DD339AC69A66474FF7039C63FC137EE Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366239303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 19:33:08 +0000 ROA not before: Sat 01 Feb 2025 19:28:08 +0000 ROA not after: Sat 31 Jan 2026 19:33:08 +0000 asID: 16909 IP address blocks: 2a14:7584:6b90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 19:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:66:e6:5c:3d:d3:39:ac:69:a6:64:74:ff:70:39:c6:3f:c1:37:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 19:28:08 2025 GMT Not After : Jan 31 19:33:08 2026 GMT Subject: CN=3C8DF66120831EDC47AE927C8799F0599BFFB64A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:26:51:e8:12:bb:b4:56:93:2c:27:57:53: 52:b3:8f:5c:f0:6e:ee:b7:cf:45:b1:e0:f2:ad:20: 9a:62:ef:44:cd:38:2e:5c:2a:dd:52:83:eb:e1:2d: 46:6d:41:70:ce:54:32:5e:60:63:54:c7:02:93:a5: 77:bd:d4:bd:16:ee:a0:0b:41:0f:55:08:28:06:87: ae:e7:2b:8b:82:35:26:c3:46:cf:e7:6e:e1:f5:a5: 46:cc:ec:ac:09:08:55:b3:61:22:a3:3d:7d:8a:ea: a6:c0:15:1c:15:bd:d7:40:3a:49:6e:90:46:7d:e5: 3b:21:91:8a:64:53:33:eb:05:91:63:cc:4c:65:98: e5:e2:aa:0f:1a:db:6d:a5:77:3b:71:e7:81:0c:b0: a6:41:1d:ec:6f:14:74:9a:0c:b8:c6:15:63:79:21: c7:24:6d:ed:49:bb:a3:99:37:a0:95:ff:49:81:0b: 25:3d:8d:3e:f3:c2:b7:46:3c:02:41:f9:80:ae:38: da:8c:04:54:38:73:16:35:33:10:6a:40:59:65:20: 7f:d7:de:9c:c9:3c:53:c6:5a:15:83:f4:3b:e4:92: d7:21:3d:16:ad:15:86:45:89:a7:19:58:84:dd:36: 0a:32:72:3f:ff:49:e9:b7:f2:93:4b:1f:b6:ac:7d: 62:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8D:F6:61:20:83:1E:DC:47:AE:92:7C:87:99:F0:59:9B:FF:B6:4A X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366239303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6b90::/48 Signature Algorithm: sha256WithRSAEncryption 0d:77:94:98:c9:ba:6f:da:9b:8b:58:55:e2:d7:3e:76:2c:04: 8f:13:a1:91:de:db:a1:10:1b:12:a0:e0:b7:58:f8:2d:4b:06: 51:26:51:57:c0:f3:21:c6:dc:ac:99:e8:e6:6a:9a:84:96:c6: 00:d6:fb:fd:5a:dd:7f:5e:7c:09:16:94:4c:ac:1f:a3:ab:ea: 13:10:f2:4a:f5:d7:1b:81:31:64:7b:b2:68:7b:36:ba:5b:ac: 4c:13:f5:b5:8a:0f:5f:81:a0:ba:5a:2b:30:21:04:e1:c2:7b: 0c:3b:80:4c:32:7c:09:a2:b8:5e:4b:11:b0:47:1a:95:e0:19: 48:e3:4d:e5:5a:7c:44:46:c2:87:7d:73:2f:b2:5b:49:7b:1d: 77:1d:34:2a:20:26:51:af:8f:c1:a8:52:98:26:32:a6:70:b7: ee:c4:6d:54:c3:44:09:0b:4b:93:61:90:17:99:2d:20:2a:57: f2:c9:15:ca:b4:3d:9a:15:76:40:8a:60:5c:9b:8e:99:aa:38: 37:f2:32:47:e9:1b:04:6a:3a:eb:f7:59:ab:09:70:46:e9:3a: 4b:73:a6:3d:0e:cf:53:e8:75:65:a6:a6:b5:d6:90:13:eb:78: 30:3e:2b:47:5b:24:00:a7:76:2a:ca:85:dd:ce:b8:17:c5:06: 33:a6:58:33 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUCWbmXD3TOaxppmR0/3A5xj/BN+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDExOTI4MDhaFw0yNjAxMzExOTMzMDhaMDMxMTAvBgNV BAMTKDNDOERGNjYxMjA4MzFFREM0N0FFOTI3Qzg3OTlGMDU5OUJGRkI2NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoYSZR6BK7tFaTLCdXU1Kzj1zw bu63z0Wx4PKtIJpi70TNOC5cKt1Sg+vhLUZtQXDOVDJeYGNUxwKTpXe91L0W7qAL QQ9VCCgGh67nK4uCNSbDRs/nbuH1pUbM7KwJCFWzYSKjPX2K6qbAFRwVvddAOklu kEZ95TshkYpkUzPrBZFjzExlmOXiqg8a222ldztx54EMsKZBHexvFHSaDLjGFWN5 Icckbe1Ju6OZN6CV/0mBCyU9jT7zwrdGPAJB+YCuONqMBFQ4cxY1MxBqQFllIH/X 3pzJPFPGWhWD9DvkktchPRatFYZFiacZWITdNgoycj//Sem38pNLH7asfWIbAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUPI32YSCDHtxHrpJ8h5nwWZv/tkowHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjIzOTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrkDAN BgkqhkiG9w0BAQsFAAOCAQEADXeUmMm6b9qbi1hV4tc+diwEjxOhkd7boRAbEqDg t1j4LUsGUSZRV8DzIcbcrJno5mqahJbGANb7/Vrdf158CRaUTKwfo6vqExDySvXX G4ExZHuyaHs2ulusTBP1tYoPX4GgulorMCEE4cJ7DDuATDJ8CaK4XksRsEcaleAZ SONN5Vp8REbCh31zL7JbSXsddx00KiAmUa+PwahSmCYypnC37sRtVMNECQtLk2GQ F5ktICpX8skVyrQ9mhV2QIpgXJuOmao4N/IyR+kbBGo66/dZqwlwRuk6S3OmPQ7P U+h1ZaamtdaQE+t4MD4rR1skAKd2KsqF3c64F8UGM6ZYMw== -----END CERTIFICATE-----Generated at Wed Feb 5 06:59:36 2025 by rpki-client