$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366339303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366339303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: abjLQWJ9uFK1aPwMxlO1FyrB3wGhYSS7TYLLbSPcVjA= Subject key identifier: B4:27:8B:DC:58:5C:D0:04:B7:04:00:B3:7F:24:9F:CD:80:2F:04:E2 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 6424A6B8F5C0E03723631DFC0B875B979BADAFF8 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366339303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:39:46 +0000 ROA not before: Sat 01 Feb 2025 21:34:46 +0000 ROA not after: Sat 31 Jan 2026 21:39:46 +0000 asID: 16909 IP address blocks: 2a14:7584:6c90::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 19:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:24:a6:b8:f5:c0:e0:37:23:63:1d:fc:0b:87:5b:97:9b:ad:af:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:34:46 2025 GMT Not After : Jan 31 21:39:46 2026 GMT Subject: CN=B4278BDC585CD004B70400B37F249FCD802F04E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:2b:6e:da:c3:22:d8:fb:94:32:3e:27:17: 03:8a:8c:5e:c7:04:6b:da:c9:8e:4d:e0:24:a9:da: f8:ee:19:4c:e8:ba:6f:e1:8e:04:a6:89:73:cf:b5: 3f:4a:3d:d2:4d:4f:c0:85:aa:86:6b:8c:43:3a:73: 01:cd:56:ae:37:0f:7e:d2:a9:ff:66:90:bd:d2:ad: 58:90:2a:4c:95:30:a1:b6:bc:10:ef:0c:28:81:30: db:b9:62:73:a8:be:74:ad:c3:22:e0:e9:59:f2:76: 49:2e:31:68:fe:63:d3:4b:e9:8b:d9:e0:e4:df:02: 68:4c:10:a9:bc:13:e9:47:20:3e:06:ad:3a:07:b2: 31:ff:59:f3:a0:de:93:1b:d1:05:25:71:5b:27:89: 3b:50:55:7a:e5:3b:58:e4:67:f8:17:84:96:04:77: 40:44:9c:e8:36:6a:30:e4:48:b1:42:1c:15:7f:2e: 71:d8:1c:99:75:71:03:7f:e7:e0:f2:9f:b3:ed:99: 27:78:bb:e2:e6:4f:d5:17:0e:3b:82:3b:e7:28:6d: 93:5d:89:d7:e4:a3:79:d3:e2:5d:4f:d3:60:e6:7f: 0b:7e:6c:22:0f:f0:13:78:cb:35:46:0d:3a:56:d3: 90:07:83:b3:9f:e9:3b:ac:3a:8d:7b:af:ca:e8:72: 39:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:27:8B:DC:58:5C:D0:04:B7:04:00:B3:7F:24:9F:CD:80:2F:04:E2 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366339303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6c90::/48 Signature Algorithm: sha256WithRSAEncryption 69:02:4c:10:8f:8b:30:7f:81:af:be:51:fe:16:d6:66:f8:2c: 06:61:6c:da:47:04:02:0a:cd:89:bd:b2:35:43:3a:21:43:83: 03:1a:94:7d:02:bd:3e:04:a3:60:4b:3a:8c:5e:94:00:f2:a2: 5e:0c:17:a7:ff:af:af:29:70:37:9e:fa:e2:db:5c:9b:5f:6f: 7d:ab:eb:c2:11:bf:c4:ea:87:32:e7:c9:a8:b5:13:ae:45:aa: 9d:6a:5b:62:16:d8:be:04:f7:ec:66:0a:5d:18:8f:8e:e6:0e: 7f:fe:df:92:3f:bf:fb:20:56:eb:b4:53:98:8f:ea:aa:e5:5b: 9c:f0:17:41:35:9e:da:2a:f5:f0:7e:c7:1c:de:34:ac:e9:dc: 9b:a7:36:1e:2f:54:1e:f9:15:f9:0b:cd:09:2c:34:49:a7:60: a7:95:09:ec:57:06:53:cb:40:06:3e:5b:1b:7c:37:4f:70:63: b6:d3:b2:99:48:69:53:30:0e:d8:d4:59:c8:cb:84:a1:56:20: 1f:63:cf:dc:20:3f:8e:d0:f7:e8:bb:9b:c3:3b:3c:ad:42:dc: 71:5b:2c:d3:3f:ca:e8:2c:52:11:f7:14:fb:d3:f3:82:ab:d8: 3e:73:60:ad:a3:52:0a:62:5f:2c:87:03:3b:ae:49:c2:3d:00: 37:17:6f:0a -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUZCSmuPXA4DcjYx38C4dbl5utr/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTM0NDZaFw0yNjAxMzEyMTM5NDZaMDMxMTAvBgNV BAMTKEI0Mjc4QkRDNTg1Q0QwMDRCNzA0MDBCMzdGMjQ5RkNEODAyRjA0RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl1Ctu2sMi2PuUMj4nFwOKjF7H BGvayY5N4CSp2vjuGUzoum/hjgSmiXPPtT9KPdJNT8CFqoZrjEM6cwHNVq43D37S qf9mkL3SrViQKkyVMKG2vBDvDCiBMNu5YnOovnStwyLg6VnydkkuMWj+Y9NL6YvZ 4OTfAmhMEKm8E+lHID4GrToHsjH/WfOg3pMb0QUlcVsniTtQVXrlO1jkZ/gXhJYE d0BEnOg2ajDkSLFCHBV/LnHYHJl1cQN/5+Dyn7PtmSd4u+LmT9UXDjuCO+cobZNd idfko3nT4l1P02Dmfwt+bCIP8BN4yzVGDTpW05AHg7Of6TusOo17r8rocjkTAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUtCeL3Fhc0AS3BACzfySfzYAvBOIwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjMzOTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRskDAN BgkqhkiG9w0BAQsFAAOCAQEAaQJMEI+LMH+Br75R/hbWZvgsBmFs2kcEAgrNib2y NUM6IUODAxqUfQK9PgSjYEs6jF6UAPKiXgwXp/+vrylwN5764ttcm19vfavrwhG/ xOqHMufJqLUTrkWqnWpbYhbYvgT37GYKXRiPjuYOf/7fkj+/+yBW67RTmI/qquVb nPAXQTWe2ir18H7HHN40rOncm6c2Hi9UHvkV+QvNCSw0Sadgp5UJ7FcGU8tABj5b G3w3T3BjttOymUhpUzAO2NRZyMuEoVYgH2PP3CA/jtD36Lubwzs8rULccVss0z/K 6CxSEfcU+9PzgqvYPnNgraNSCmJfLIcDO65Jwj0ANxdvCg== -----END CERTIFICATE-----Generated at Wed Feb 5 06:58:36 2025 by rpki-client