$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366362303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366362303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: kfG2Mdm7pd1ObJs5aMWoJxIg9PubpwChOLnloZzkGrI= Subject key identifier: B3:65:DA:D8:A9:6E:F4:AD:05:08:E0:89:0F:02:DD:EF:67:81:D6:3C Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 5D0B05A685CE74D57C40DA72A14FAF52DC77E63C Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366362303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:39:48 +0000 ROA not before: Sat 01 Feb 2025 21:34:48 +0000 ROA not after: Sat 31 Jan 2026 21:39:48 +0000 asID: 16909 IP address blocks: 2a14:7584:6cb0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:0b:05:a6:85:ce:74:d5:7c:40:da:72:a1:4f:af:52:dc:77:e6:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:34:48 2025 GMT Not After : Jan 31 21:39:48 2026 GMT Subject: CN=B365DAD8A96EF4AD0508E0890F02DDEF6781D63C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:6d:36:d3:9e:a6:d1:1f:31:4e:cd:c3:2b:25: 81:bc:bb:1a:85:43:f2:0a:fe:8a:b2:4f:4d:ef:0e: 79:3a:b5:cc:80:ec:82:c8:1b:f4:ad:34:08:b5:0c: c0:98:9c:c6:93:0d:c4:75:5c:72:2d:3c:fd:a5:8d: 90:fd:6a:d0:1c:55:58:ff:92:b7:dc:05:1c:aa:d8: 59:fa:b3:5d:2f:a0:5f:d3:78:a0:a3:10:b6:62:4b: fa:8d:36:6d:b5:43:d5:9b:c2:c1:ca:4b:b1:12:34: 47:13:45:9b:61:98:2d:22:42:0d:9e:08:7f:29:47: 8d:3c:2e:7e:62:94:39:16:87:03:40:d8:28:ef:4d: f5:ff:f5:87:73:f0:f6:e1:d3:64:df:07:43:b6:51: e8:fa:6a:eb:4d:6b:ca:5a:2f:07:aa:5b:7f:66:52: 7e:0e:29:dc:bf:c7:2c:10:07:1d:f3:ed:77:b6:c6: bb:33:87:a6:6b:d5:82:76:86:d4:15:94:c5:35:e9: 7c:2c:e4:9c:c0:8a:6b:bf:35:80:ad:13:e9:ef:00: e5:c1:7b:7f:23:cc:a2:f1:9e:70:6a:bd:f9:da:5b: c3:d7:da:62:8c:5e:31:cb:e0:be:2b:25:56:67:96: 68:5c:bc:6c:74:eb:84:20:7e:43:e1:e4:f1:73:49: ad:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:65:DA:D8:A9:6E:F4:AD:05:08:E0:89:0F:02:DD:EF:67:81:D6:3C X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366362303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6cb0::/48 Signature Algorithm: sha256WithRSAEncryption 9e:eb:8b:9b:1d:71:dd:7a:ab:47:09:a2:39:1d:05:c7:3b:1b: 54:ed:b0:af:6b:fd:b7:72:b5:e6:fb:c2:39:77:be:6d:96:d2: 1e:89:5a:20:70:a4:3e:33:2c:ef:ae:13:2f:88:0a:18:9e:c8: a5:66:4f:5b:55:b5:0d:ca:56:7e:f7:95:f5:00:9a:3a:1a:50: 25:fc:70:22:0b:d9:db:fd:cb:c6:2e:02:76:11:34:c2:49:a8: d9:28:46:c9:bf:5d:1c:b4:d8:5f:80:d5:b6:cd:ad:1b:6c:03: 49:db:d4:0d:56:e3:8f:71:bf:84:b5:99:7c:ef:fb:33:17:d8: 15:f5:74:67:b7:f4:75:cd:90:1e:9d:64:e1:24:b6:78:1b:0b: d1:b2:9d:5e:30:4f:3b:bf:be:a1:0e:93:29:26:7e:fa:af:af: 35:34:b7:63:8e:be:23:93:fd:4c:15:b0:d9:cf:50:36:b4:a9: 27:2a:94:14:9a:89:09:ba:f6:42:19:d7:5f:95:e9:f9:68:93: a4:50:25:ab:ea:24:88:a3:48:71:9b:a7:93:08:27:5c:d6:a2: 62:96:bf:85:02:55:cc:a3:59:9f:19:45:54:b9:2e:98:29:29: c4:90:8f:63:04:f3:e2:12:65:ba:31:6b:2e:7f:90:aa:47:2d: a0:58:21:39 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUXQsFpoXOdNV8QNpyoU+vUtx35jwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTM0NDhaFw0yNjAxMzEyMTM5NDhaMDMxMTAvBgNV BAMTKEIzNjVEQUQ4QTk2RUY0QUQwNTA4RTA4OTBGMDJEREVGNjc4MUQ2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLbTbTnqbRHzFOzcMrJYG8uxqF Q/IK/oqyT03vDnk6tcyA7ILIG/StNAi1DMCYnMaTDcR1XHItPP2ljZD9atAcVVj/ krfcBRyq2Fn6s10voF/TeKCjELZiS/qNNm21Q9WbwsHKS7ESNEcTRZthmC0iQg2e CH8pR408Ln5ilDkWhwNA2CjvTfX/9Ydz8Pbh02TfB0O2Uej6autNa8paLweqW39m Un4OKdy/xywQBx3z7Xe2xrszh6Zr1YJ2htQVlMU16Xws5JzAimu/NYCtE+nvAOXB e38jzKLxnnBqvfnaW8PX2mKMXjHL4L4rJVZnlmhcvGx064QgfkPh5PFzSa0tAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUs2Xa2Klu9K0FCOCJDwLd72eB1jwwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjM2MjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRssDAN BgkqhkiG9w0BAQsFAAOCAQEAnuuLmx1x3XqrRwmiOR0FxzsbVO2wr2v9t3K15vvC OXe+bZbSHolaIHCkPjMs764TL4gKGJ7IpWZPW1W1DcpWfveV9QCaOhpQJfxwIgvZ 2/3Lxi4CdhE0wkmo2ShGyb9dHLTYX4DVts2tG2wDSdvUDVbjj3G/hLWZfO/7MxfY FfV0Z7f0dc2QHp1k4SS2eBsL0bKdXjBPO7++oQ6TKSZ++q+vNTS3Y46+I5P9TBWw 2c9QNrSpJyqUFJqJCbr2QhnXX5Xp+WiTpFAlq+okiKNIcZunkwgnXNaiYpa/hQJV zKNZnxlFVLkumCkpxJCPYwTz4hJlujFrLn+QqkctoFghOQ== -----END CERTIFICATE-----Generated at Wed Feb 5 06:40:05 2025 by rpki-client