$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366262303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366262303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: Pc+27N/K7zjqwWE+Y/fZtbXHhw62zabSQmbPbbuzkLI= Subject key identifier: D9:6A:8C:F8:B1:1A:5F:5C:D0:70:EA:CC:41:8D:F8:CA:CD:3A:47:D3 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 17B2908D8F6D343A77CFC1421A6D7A692F625DB2 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366262303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 19:33:10 +0000 ROA not before: Sat 01 Feb 2025 19:28:10 +0000 ROA not after: Sat 31 Jan 2026 19:33:10 +0000 asID: 16909 IP address blocks: 2a14:7584:6bb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b2:90:8d:8f:6d:34:3a:77:cf:c1:42:1a:6d:7a:69:2f:62:5d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 19:28:10 2025 GMT Not After : Jan 31 19:33:10 2026 GMT Subject: CN=D96A8CF8B11A5F5CD070EACC418DF8CACD3A47D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:fa:4d:4c:50:65:37:45:67:4f:d1:e4:2b: 97:3b:3d:0b:1e:71:2b:b3:b3:0a:2e:d8:1e:9c:90: fb:94:84:2c:fe:ca:48:0a:ce:ee:e7:e4:6c:60:58: 13:75:2e:d1:bf:66:1c:ec:59:48:3a:81:f1:7a:5d: 3d:a9:73:b2:cf:83:53:c3:3d:85:b8:52:a5:e9:fe: 81:ec:ba:27:48:17:3a:b5:f6:69:86:05:bd:83:4e: ee:df:57:c6:c0:6c:20:d4:3e:44:67:d0:86:0d:58: f5:bf:6e:ea:f4:fa:e1:c5:a1:62:85:90:2f:2f:8d: 3f:fa:44:93:43:d7:86:4f:af:28:11:14:1a:3a:79: 30:3c:81:2c:43:9f:54:17:b2:b5:c7:4c:fe:87:82: 47:0d:e6:fd:b1:1b:b0:31:65:79:f9:27:94:b6:ff: 19:87:3a:82:89:18:5a:8d:98:cb:f2:03:8b:c1:fa: 9a:08:ff:3d:4d:e6:a2:11:e0:0e:38:58:b6:80:b7: 3c:e4:db:c4:c3:37:e9:08:51:5a:b8:49:1e:0c:59: 78:1b:99:f2:a8:b9:b7:e1:94:3a:fd:7f:ca:20:dd: 15:be:99:82:4b:01:b1:65:32:ae:c6:84:5a:d2:43: 30:dd:e0:78:c5:49:62:c8:da:09:4f:7b:c3:52:e0: 78:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6A:8C:F8:B1:1A:5F:5C:D0:70:EA:CC:41:8D:F8:CA:CD:3A:47:D3 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366262303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6bb0::/48 Signature Algorithm: sha256WithRSAEncryption 79:95:3d:32:64:fa:af:d8:dc:ce:d1:0b:8d:9b:76:36:09:60: 33:9a:be:22:c7:65:a5:aa:9c:f6:aa:94:11:7d:40:c8:e0:64: cd:5a:11:1a:12:60:cd:e4:45:35:a0:1c:15:47:93:5a:21:fa: cd:2f:38:86:7f:f3:a4:88:6b:13:1d:a8:27:cd:f9:70:78:08: 42:b5:8c:67:1a:ff:4f:6f:8f:ed:cc:3e:08:5c:03:93:70:70: 33:1f:a0:5e:1e:18:5b:97:87:ec:5e:b7:63:7d:c7:da:d8:6b: e5:87:2b:07:ef:9d:c7:76:60:61:97:2c:f8:bb:39:41:9e:7d: ac:14:e6:de:ab:67:36:ce:91:30:ba:1b:ad:fb:87:c1:32:7e: f5:cf:36:b2:e4:28:40:29:05:35:88:0e:f0:54:f3:45:46:89: 04:c0:d1:e7:ca:a6:e5:25:a4:02:99:af:95:08:7e:4e:0a:3a: 7a:de:d7:83:96:13:d5:a1:f3:f5:3a:f7:da:83:4d:b1:eb:a2: 8d:b6:19:c7:80:a2:9b:32:d6:25:2b:d2:d0:2f:2e:64:be:ce: fa:ad:c9:1e:49:93:25:2f:84:51:d0:e6:6c:11:9c:ab:a7:ca: fd:fd:70:fb:23:9f:65:c2:eb:9b:54:be:47:41:9a:72:57:44: 4f:3e:92:94 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUF7KQjY9tNDp3z8FCGm16aS9iXbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDExOTI4MTBaFw0yNjAxMzExOTMzMTBaMDMxMTAvBgNV BAMTKEQ5NkE4Q0Y4QjExQTVGNUNEMDcwRUFDQzQxOERGOENBQ0QzQTQ3RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp7/pNTFBlN0VnT9HkK5c7PQse cSuzswou2B6ckPuUhCz+ykgKzu7n5GxgWBN1LtG/ZhzsWUg6gfF6XT2pc7LPg1PD PYW4UqXp/oHsuidIFzq19mmGBb2DTu7fV8bAbCDUPkRn0IYNWPW/bur0+uHFoWKF kC8vjT/6RJND14ZPrygRFBo6eTA8gSxDn1QXsrXHTP6HgkcN5v2xG7AxZXn5J5S2 /xmHOoKJGFqNmMvyA4vB+poI/z1N5qIR4A44WLaAtzzk28TDN+kIUVq4SR4MWXgb mfKoubfhlDr9f8og3RW+mYJLAbFlMq7GhFrSQzDd4HjFSWLI2glPe8NS4HiVAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU2WqM+LEaX1zQcOrMQY34ys06R9MwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjI2MjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRrsDAN BgkqhkiG9w0BAQsFAAOCAQEAeZU9MmT6r9jcztELjZt2NglgM5q+Isdlpaqc9qqU EX1AyOBkzVoRGhJgzeRFNaAcFUeTWiH6zS84hn/zpIhrEx2oJ835cHgIQrWMZxr/ T2+P7cw+CFwDk3BwMx+gXh4YW5eH7F63Y33H2thr5YcrB++dx3ZgYZcs+Ls5QZ59 rBTm3qtnNs6RMLobrfuHwTJ+9c82suQoQCkFNYgO8FTzRUaJBMDR58qm5SWkApmv lQh+Tgo6et7Xg5YT1aHz9Tr32oNNseuijbYZx4CimzLWJSvS0C8uZL7O+q3JHkmT JS+EUdDmbBGcq6fK/f1w+yOfZcLrm1S+R0GacldETz6SlA== -----END CERTIFICATE-----Generated at Wed Feb 5 07:00:19 2025 by rpki-client