$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366336303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366336303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: LtfzfUkAKOKQqfG/UxtHOc/N90VC8boRsMKHr20ouQE= Subject key identifier: 23:3B:FF:20:3F:7A:D0:95:A1:A9:AD:27:BD:EE:05:77:18:76:AB:6B Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 6F1A0BFF48F0F469AA34D4367CE9EC6643F1907B Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366336303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:39:44 +0000 ROA not before: Sat 01 Feb 2025 21:34:44 +0000 ROA not after: Sat 31 Jan 2026 21:39:44 +0000 asID: 16909 IP address blocks: 2a14:7584:6c60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 19:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:1a:0b:ff:48:f0:f4:69:aa:34:d4:36:7c:e9:ec:66:43:f1:90:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:34:44 2025 GMT Not After : Jan 31 21:39:44 2026 GMT Subject: CN=233BFF203F7AD095A1A9AD27BDEE05771876AB6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:56:7b:38:da:f6:98:7d:3b:e5:21:f7:ea:9b: f3:3e:63:46:63:b0:2b:a8:e8:5c:d4:fc:3b:90:62: da:81:99:c0:0b:4b:3b:f7:39:89:08:8f:1f:97:08: 9e:47:41:6b:cb:fe:f2:91:e8:2a:01:8a:34:fb:5e: 36:a8:b7:f7:d8:28:91:c5:43:69:6e:8c:01:c8:96: 39:d5:30:d5:98:8e:f3:ac:8b:79:02:a3:e3:b6:e8: 56:c3:3d:98:be:ee:19:75:bf:dd:0f:5f:48:8f:f2: 0c:09:0e:ce:76:cb:64:d0:62:36:84:b7:d7:6d:3d: df:49:fd:da:1d:cf:e2:f1:0e:30:ef:be:49:ee:9b: d0:1c:6c:c4:bc:dc:0b:70:30:fe:42:bd:87:49:64: e1:81:1a:12:d2:df:32:18:3b:b4:7e:a3:33:d0:56: c5:6f:54:f1:6c:42:b1:f0:f1:85:fe:65:73:28:31: 04:a6:44:41:1f:31:d0:1c:c9:40:44:50:b0:30:ba: e7:f5:5b:a9:df:09:8d:be:a5:86:96:92:08:0c:d3: e3:5d:04:19:9f:43:97:14:59:e6:55:b9:f3:28:14: 0b:32:9d:58:b1:76:1b:8a:3b:5f:8d:18:fb:2b:99: 7b:b9:a7:c2:7e:7c:2f:6a:28:cd:39:50:65:e1:2c: 6d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3B:FF:20:3F:7A:D0:95:A1:A9:AD:27:BD:EE:05:77:18:76:AB:6B X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366336303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6c60::/48 Signature Algorithm: sha256WithRSAEncryption a3:1d:47:ca:a1:28:89:77:26:f2:db:aa:1d:9c:9f:78:32:d3: 2d:36:7a:04:e2:cd:d5:6c:c6:04:79:60:23:42:00:f5:7d:77: 15:3d:98:07:08:93:67:f3:e2:0f:1c:10:ea:55:b2:ae:69:6d: ab:6a:fa:3a:f3:0b:ed:55:1e:f7:d9:7d:a5:57:60:0b:10:ab: 3e:6c:fc:37:58:15:57:ae:3d:e6:f2:da:c2:76:77:4c:7a:c0: 0e:ff:49:5d:d2:be:f1:08:7a:ac:2c:85:39:dd:6d:b5:44:b2: 79:70:57:f3:bb:46:03:82:f4:39:3b:af:37:f3:b5:9a:56:55: 20:4e:85:c8:e7:73:a3:0f:54:5f:ba:51:f2:25:be:2d:09:2c: 6e:78:4d:04:d2:45:45:5c:af:c2:b3:1c:48:2d:07:d9:d4:7a: 95:9d:f7:0e:ff:a5:6c:10:6f:48:58:3d:c4:b8:67:76:29:1f: 1f:88:e9:7e:49:02:3c:1d:35:77:9f:05:73:c8:a9:79:ff:38: 01:26:b8:4f:bc:06:cb:72:e5:10:81:5f:7c:77:4e:f2:1c:a9: 53:11:79:3d:1a:f4:83:24:1e:d0:96:20:9b:c1:b2:13:da:f5: 2b:a9:40:10:dd:52:53:f6:96:e7:6c:94:32:95:ad:1a:bd:a6: da:13:93:81 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUbxoL/0jw9GmqNNQ2fOnsZkPxkHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTM0NDRaFw0yNjAxMzEyMTM5NDRaMDMxMTAvBgNV BAMTKDIzM0JGRjIwM0Y3QUQwOTVBMUE5QUQyN0JERUUwNTc3MTg3NkFCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnVns42vaYfTvlIffqm/M+Y0Zj sCuo6FzU/DuQYtqBmcALSzv3OYkIjx+XCJ5HQWvL/vKR6CoBijT7Xjaot/fYKJHF Q2lujAHIljnVMNWYjvOsi3kCo+O26FbDPZi+7hl1v90PX0iP8gwJDs52y2TQYjaE t9dtPd9J/dodz+LxDjDvvknum9AcbMS83AtwMP5CvYdJZOGBGhLS3zIYO7R+ozPQ VsVvVPFsQrHw8YX+ZXMoMQSmREEfMdAcyUBEULAwuuf1W6nfCY2+pYaWkggM0+Nd BBmfQ5cUWeZVufMoFAsynVixdhuKO1+NGPsrmXu5p8J+fC9qKM05UGXhLG1vAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUIzv/ID960JWhqa0nve4Fdxh2q2swHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjMzNjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRsYDAN BgkqhkiG9w0BAQsFAAOCAQEAox1HyqEoiXcm8tuqHZyfeDLTLTZ6BOLN1WzGBHlg I0IA9X13FT2YBwiTZ/PiDxwQ6lWyrmltq2r6OvML7VUe99l9pVdgCxCrPmz8N1gV V6495vLawnZ3THrADv9JXdK+8Qh6rCyFOd1ttUSyeXBX87tGA4L0OTuvN/O1mlZV IE6FyOdzow9UX7pR8iW+LQksbnhNBNJFRVyvwrMcSC0H2dR6lZ33Dv+lbBBvSFg9 xLhndikfH4jpfkkCPB01d58Fc8ipef84ASa4T7wGy3LlEIFffHdO8hypUxF5PRr0 gyQe0JYgm8GyE9r1K6lAEN1SU/aW52yUMpWtGr2m2hOTgQ== -----END CERTIFICATE-----Generated at Wed Feb 5 06:59:01 2025 by rpki-client