$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366366303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366366303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: IHTFKT1d24Toy0A6dkbaeoV5C/lNfBBiCGcdvrMhubU= Subject key identifier: 8F:C9:10:F9:0E:06:E0:FA:61:30:17:03:F5:E5:AD:88:2E:AB:C7:CE Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 480BC11BBC4C2DACED9697069F65E605A0430755 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366366303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:54:01 +0000 ROA not before: Sat 01 Feb 2025 21:49:01 +0000 ROA not after: Sat 31 Jan 2026 21:54:01 +0000 asID: 16909 IP address blocks: 2a14:7584:6cf0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:0b:c1:1b:bc:4c:2d:ac:ed:96:97:06:9f:65:e6:05:a0:43:07:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:49:01 2025 GMT Not After : Jan 31 21:54:01 2026 GMT Subject: CN=8FC910F90E06E0FA61301703F5E5AD882EABC7CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d6:fc:e9:03:d0:36:9c:0f:15:13:aa:4b:4f: 31:95:d6:de:79:e2:c1:58:70:90:9a:3e:8c:df:98: 9d:4c:1d:08:09:b0:c9:4c:79:44:ac:4c:9f:4c:9f: e7:f6:d3:d3:c3:c6:6b:85:31:ec:48:88:7b:c8:b5: 54:de:91:f9:74:27:be:b5:59:43:e9:6d:be:eb:c5: e9:54:84:d7:d2:dc:06:1a:40:aa:f0:67:92:73:2f: 28:2e:a5:4f:2a:58:cf:2e:0c:15:a9:4e:04:50:b9: c7:46:ef:c7:a8:eb:b6:bf:d9:f6:62:3b:6b:ba:47: 37:a6:a3:2b:1b:5b:51:87:77:f5:95:27:6b:8c:f7: a9:ff:47:ef:fa:9c:5c:18:b4:76:e4:fa:93:0f:4a: 00:1c:fe:40:8a:3e:f5:56:23:cf:c5:e3:0f:64:c0: f3:30:3d:1c:46:75:66:dc:d9:ba:73:fa:ba:d1:c1: 8d:ce:5f:ca:79:04:81:6f:04:26:19:f0:a0:c6:99: 05:cb:ae:6b:a2:da:2e:7f:24:df:38:be:df:39:d8: 29:86:61:ea:92:36:eb:44:84:86:c7:e1:89:e7:20: ad:df:c2:63:e6:51:3d:26:fd:24:2e:14:72:1e:bf: 8f:26:da:9a:4e:30:3e:85:70:83:ed:08:9b:e3:ed: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C9:10:F9:0E:06:E0:FA:61:30:17:03:F5:E5:AD:88:2E:AB:C7:CE X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366366303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6cf0::/48 Signature Algorithm: sha256WithRSAEncryption 80:ac:b5:11:2a:dc:1d:7f:cb:b5:4c:12:07:1c:a0:cd:52:36: 4a:8e:1f:96:07:6a:98:fb:b9:c5:34:43:73:fd:60:f7:9d:84: e8:b9:61:55:b1:08:c4:2d:b4:b7:f7:3f:1f:8c:f1:80:fd:54: f8:69:a1:02:84:0d:85:b4:2b:c9:a0:f1:e7:b3:c2:4b:87:44: 14:fc:4b:a2:0d:a9:e9:52:5b:5f:df:b3:3f:6a:b7:65:9d:16: f5:60:87:fa:8c:6f:fa:ae:f2:51:c0:92:8a:a6:df:b4:ff:41: 53:c0:cc:50:13:3f:cc:bc:8b:7e:4e:79:ea:fb:7b:27:2b:1c: d5:6a:b3:a5:bf:dd:f7:e4:76:c7:31:49:ff:84:71:1e:56:86: ee:5c:a9:7a:17:de:37:86:c6:c7:b2:c8:8b:e9:66:7a:54:1f: f8:03:79:02:c5:61:3c:82:ac:4c:64:f4:19:51:d2:4b:49:57: b9:45:99:11:bd:e7:61:92:6c:f9:cc:e5:94:66:be:56:48:0e: 4e:74:62:de:19:8c:f9:61:72:67:d7:a6:72:38:8e:95:ca:95: c0:37:e9:72:18:01:c1:a5:f6:d9:5e:8d:88:de:80:96:4b:f7: 24:b0:2a:bf:93:e2:79:1a:d7:4a:8b:34:e8:ea:56:61:70:ee: c2:3b:ce:e5 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUSAvBG7xMLaztlpcGn2XmBaBDB1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTQ5MDFaFw0yNjAxMzEyMTU0MDFaMDMxMTAvBgNV BAMTKDhGQzkxMEY5MEUwNkUwRkE2MTMwMTcwM0Y1RTVBRDg4MkVBQkM3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO1vzpA9A2nA8VE6pLTzGV1t55 4sFYcJCaPozfmJ1MHQgJsMlMeUSsTJ9Mn+f209PDxmuFMexIiHvItVTekfl0J761 WUPpbb7rxelUhNfS3AYaQKrwZ5JzLygupU8qWM8uDBWpTgRQucdG78eo67a/2fZi O2u6RzemoysbW1GHd/WVJ2uM96n/R+/6nFwYtHbk+pMPSgAc/kCKPvVWI8/F4w9k wPMwPRxGdWbc2bpz+rrRwY3OX8p5BIFvBCYZ8KDGmQXLrmui2i5/JN84vt852CmG YeqSNutEhIbH4YnnIK3fwmPmUT0m/SQuFHIev48m2ppOMD6FcIPtCJvj7cLRAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUj8kQ+Q4G4PphMBcD9eWtiC6rx84wHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjM2NjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRs8DAN BgkqhkiG9w0BAQsFAAOCAQEAgKy1ESrcHX/LtUwSBxygzVI2So4flgdqmPu5xTRD c/1g952E6LlhVbEIxC20t/c/H4zxgP1U+GmhAoQNhbQryaDx57PCS4dEFPxLog2p 6VJbX9+zP2q3ZZ0W9WCH+oxv+q7yUcCSiqbftP9BU8DMUBM/zLyLfk556vt7Jysc 1Wqzpb/d9+R2xzFJ/4RxHlaG7lypehfeN4bGx7LIi+lmelQf+AN5AsVhPIKsTGT0 GVHSS0lXuUWZEb3nYZJs+czllGa+VkgOTnRi3hmM+WFyZ9emcjiOlcqVwDfpchgB waX22V6NiN6Alkv3JLAqv5PieRrXSos06OpWYXDuwjvO5Q== -----END CERTIFICATE-----Generated at Wed Feb 5 06:45:08 2025 by rpki-client