$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366335303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366335303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 3/QtzkHnl3THH2R3PjpcKLwWmdmhvdlBxxjGkZnu2l8= Subject key identifier: E4:DA:12:19:8B:6B:72:6D:BD:2B:89:06:6B:42:9E:F4:1A:D1:4A:66 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 73F65505AA1AD52369661795B1B194FEA0700978 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366335303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 19:34:18 +0000 ROA not before: Sat 01 Feb 2025 19:29:18 +0000 ROA not after: Sat 31 Jan 2026 19:34:18 +0000 asID: 16909 IP address blocks: 2a14:7584:6c50::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f6:55:05:aa:1a:d5:23:69:66:17:95:b1:b1:94:fe:a0:70:09:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 19:29:18 2025 GMT Not After : Jan 31 19:34:18 2026 GMT Subject: CN=E4DA12198B6B726DBD2B89066B429EF41AD14A66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:80:93:03:ff:bf:19:09:b4:8d:21:ec:33: 8e:b8:73:de:2f:a0:d3:02:6d:37:c5:21:f5:b3:ba: c7:56:9c:9e:99:bb:e5:27:8d:f3:2c:75:be:e2:81: c1:6a:b2:65:9e:8a:a1:fe:03:63:88:f5:1f:02:b6: c7:52:36:80:ac:72:9f:b2:cc:8b:ab:d4:08:80:5c: ff:70:71:8d:0a:10:50:a2:c9:fe:de:20:cf:d4:38: f2:9d:d8:59:2c:59:bb:60:18:6b:fc:9e:a0:00:b0: dc:e2:24:62:b5:12:b9:fd:5f:76:8a:be:0f:c0:f1: 2a:bd:6f:2d:f7:b2:bf:f3:2a:20:0f:6c:4c:1b:ce: eb:43:eb:2a:2d:59:13:59:75:08:81:58:08:16:02: aa:4c:ec:88:9c:b5:2b:c8:02:52:ad:68:bb:c7:86: b8:68:da:0e:24:e6:0e:3b:87:98:d7:cf:86:6c:c4: 1c:3d:4d:84:87:29:9b:be:77:b4:06:da:08:d1:9b: 07:f5:e8:95:35:1a:a3:45:13:b2:dc:f1:49:4c:e8: 53:e6:de:01:86:8a:20:3c:f9:0d:ee:3a:ac:09:cf: e9:81:9e:0f:7f:10:98:df:2c:3c:c1:80:43:1e:1e: 64:78:94:ae:39:23:e6:92:d7:f4:4f:e9:85:ab:58: 37:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DA:12:19:8B:6B:72:6D:BD:2B:89:06:6B:42:9E:F4:1A:D1:4A:66 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366335303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6c50::/48 Signature Algorithm: sha256WithRSAEncryption 3a:c8:40:8b:3b:0c:64:37:92:18:d0:ee:a5:4f:37:35:5e:a3: 22:67:00:c2:e6:df:32:1c:81:67:9d:d5:83:2c:82:ac:b1:39: 78:7e:fa:29:d6:47:25:4a:ff:45:c7:fe:03:81:03:15:06:18: 47:1e:f8:5e:e5:ef:e2:61:a0:d3:d7:53:55:28:4f:ad:bf:42: 27:2e:40:a9:41:d8:90:df:c1:78:54:dd:1c:ee:f0:07:07:59: 9e:c7:5d:6a:c3:cb:32:73:0e:f3:f2:94:58:71:01:c1:59:b0: 8b:e5:2a:4c:29:07:52:16:40:28:d5:78:6d:d4:51:03:50:02: 87:1b:d9:81:db:99:c0:dc:6d:95:86:2c:04:0b:96:94:97:53: 93:3f:1a:7e:31:4b:21:53:fc:dd:83:74:9e:0e:13:dd:c1:cc: f5:59:bb:f9:c0:ae:aa:0b:c6:03:e8:8f:7a:12:3d:65:39:cd: e4:8c:c5:0a:88:be:d0:cf:33:33:7c:c0:ad:a8:6f:aa:33:d0: 9b:a1:3f:0e:51:00:e2:96:b5:d5:ae:71:68:e0:ca:15:39:8b: 22:df:ec:e1:81:ec:88:8e:c6:d6:46:00:1a:d9:e4:0a:2f:f3: f0:7b:56:87:38:c8:18:0d:d3:a5:1c:14:7f:c7:db:f7:e2:22: 4d:f1:37:76 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUc/ZVBaoa1SNpZheVsbGU/qBwCXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDExOTI5MThaFw0yNjAxMzExOTM0MThaMDMxMTAvBgNV BAMTKEU0REExMjE5OEI2QjcyNkRCRDJCODkwNjZCNDI5RUY0MUFEMTRBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8SYCTA/+/GQm0jSHsM464c94v oNMCbTfFIfWzusdWnJ6Zu+UnjfMsdb7igcFqsmWeiqH+A2OI9R8CtsdSNoCscp+y zIur1AiAXP9wcY0KEFCiyf7eIM/UOPKd2FksWbtgGGv8nqAAsNziJGK1Ern9X3aK vg/A8Sq9by33sr/zKiAPbEwbzutD6yotWRNZdQiBWAgWAqpM7IictSvIAlKtaLvH hrho2g4k5g47h5jXz4ZsxBw9TYSHKZu+d7QG2gjRmwf16JU1GqNFE7Lc8UlM6FPm 3gGGiiA8+Q3uOqwJz+mBng9/EJjfLDzBgEMeHmR4lK45I+aS1/RP6YWrWDclAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQU5NoSGYtrcm29K4kGa0Ke9BrRSmYwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjMzNTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRsUDAN BgkqhkiG9w0BAQsFAAOCAQEAOshAizsMZDeSGNDupU83NV6jImcAwubfMhyBZ53V gyyCrLE5eH76KdZHJUr/Rcf+A4EDFQYYRx74XuXv4mGg09dTVShPrb9CJy5AqUHY kN/BeFTdHO7wBwdZnsddasPLMnMO8/KUWHEBwVmwi+UqTCkHUhZAKNV4bdRRA1AC hxvZgduZwNxtlYYsBAuWlJdTkz8afjFLIVP83YN0ng4T3cHM9Vm7+cCuqgvGA+iP ehI9ZTnN5IzFCoi+0M8zM3zArahvqjPQm6E/DlEA4pa11a5xaODKFTmLIt/s4YHs iI7G1kYAGtnkCi/z8HtWhzjIGA3TpRwUf8fb9+IiTfE3dg== -----END CERTIFICATE-----Generated at Wed Feb 5 06:43:55 2025 by rpki-client