$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366431303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366431303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 9YiYTdaxflS3vgayLXvmA8etXrYqqoRBj7nyZ/Rnjx0= Subject key identifier: 5A:40:3D:1C:BE:9C:BA:D7:51:83:0D:4E:84:7F:F3:7F:23:21:5A:00 Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 48850C5CF0E9E769FE815B71676381C8CCDF3C44 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366431303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:54:03 +0000 ROA not before: Sat 01 Feb 2025 21:49:03 +0000 ROA not after: Sat 31 Jan 2026 21:54:03 +0000 asID: 16909 IP address blocks: 2a14:7584:6d10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 19:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:85:0c:5c:f0:e9:e7:69:fe:81:5b:71:67:63:81:c8:cc:df:3c:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:49:03 2025 GMT Not After : Jan 31 21:54:03 2026 GMT Subject: CN=5A403D1CBE9CBAD751830D4E847FF37F23215A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:80:d1:da:db:f4:54:47:92:0c:a2:ac:01:ad: 05:6d:a1:a9:8c:fe:9a:94:c1:e3:2b:53:f7:fd:16: 56:74:eb:8f:76:0b:5c:66:42:91:2b:37:82:22:4d: 4b:f1:60:74:7a:64:26:7b:9b:47:7c:28:bf:d4:0c: d7:d9:37:a0:cc:7e:91:f3:30:96:35:8e:ac:74:73: f0:1b:b2:30:a5:bb:25:ea:f2:5a:e2:24:0d:80:da: 01:8e:81:b8:3c:2b:0e:9b:ea:cd:20:a8:0b:f2:db: 8d:a3:e9:21:3e:e7:b3:34:ef:26:5c:8f:ab:b9:63: 6e:e3:3e:b4:63:b5:94:72:63:ec:68:f8:47:de:a1: 0e:fb:5d:9e:31:db:8e:d4:c7:c2:be:a2:55:b1:96: 88:0c:77:ef:d4:86:86:31:88:f3:cd:a7:a9:42:44: ea:00:9b:de:38:1f:f4:ce:2c:a2:e7:2e:7f:a2:39: e1:6e:d3:1c:9d:86:2b:1e:f8:a0:51:58:04:11:a5: a4:d3:eb:00:51:3e:9e:94:50:d0:a7:a0:57:3e:61: 50:cd:f0:f9:1b:19:4d:ac:48:ba:8c:a4:dd:7f:dd: e3:de:28:c1:37:af:c0:0f:b5:26:3b:14:91:34:62: 14:8d:4e:4d:52:50:dd:64:34:ae:b8:0a:14:bd:43: 2b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:40:3D:1C:BE:9C:BA:D7:51:83:0D:4E:84:7F:F3:7F:23:21:5A:00 X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366431303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6d10::/48 Signature Algorithm: sha256WithRSAEncryption 2e:9e:16:4a:ca:85:87:7b:12:d9:5c:aa:04:59:ca:25:4e:07: 84:b8:48:88:28:10:31:28:b4:f0:3d:78:ec:0d:ad:43:5c:4e: 80:92:40:cb:75:09:82:8e:47:fa:04:23:5f:d8:8b:68:fa:2e: 47:f3:61:11:39:b6:b3:2a:c5:4c:57:89:a5:6e:61:0d:ee:ce: da:d7:b3:19:13:36:5e:44:2c:2e:0b:b5:de:fe:82:7e:27:0e: 82:d1:78:21:21:bb:61:0c:3c:0e:0a:2a:45:df:2e:eb:84:f9: fb:ab:5c:81:ad:1c:e8:0d:c9:a6:7a:bb:84:ec:af:b8:84:41: 7a:43:a5:c7:6f:d0:5c:ac:23:54:13:c6:d7:5f:15:2f:ea:60: ad:d4:27:fa:2d:fe:99:87:83:6d:6a:a1:ce:9b:19:bf:96:5d: da:26:b9:50:c3:8c:a9:4e:6c:53:de:09:d4:25:dc:3e:e6:50: 6c:1a:5b:67:dd:ec:f5:21:f4:5d:e4:c0:7a:50:fb:64:c6:a1: 6a:27:40:01:c9:19:44:77:f7:d7:f3:a2:27:be:a3:66:84:46: be:a2:c1:e5:2e:73:0f:34:5e:de:6e:16:cf:5c:33:fd:57:c5: 62:4b:f6:24:f8:7c:92:6a:14:21:74:15:89:4f:fc:9c:6e:f9: 0a:e1:59:ae -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUSIUMXPDp52n+gVtxZ2OByMzfPEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTQ5MDNaFw0yNjAxMzEyMTU0MDNaMDMxMTAvBgNV BAMTKDVBNDAzRDFDQkU5Q0JBRDc1MTgzMEQ0RTg0N0ZGMzdGMjMyMTVBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDigNHa2/RUR5IMoqwBrQVtoamM /pqUweMrU/f9FlZ06492C1xmQpErN4IiTUvxYHR6ZCZ7m0d8KL/UDNfZN6DMfpHz MJY1jqx0c/AbsjCluyXq8lriJA2A2gGOgbg8Kw6b6s0gqAvy242j6SE+57M07yZc j6u5Y27jPrRjtZRyY+xo+EfeoQ77XZ4x247Ux8K+olWxlogMd+/UhoYxiPPNp6lC ROoAm944H/TOLKLnLn+iOeFu0xydhise+KBRWAQRpaTT6wBRPp6UUNCnoFc+YVDN 8PkbGU2sSLqMpN1/3ePeKME3r8APtSY7FJE0YhSNTk1SUN1kNK64ChS9QyspAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUWkA9HL6cutdRgw1OhH/zfyMhWgAwHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjQzMTMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRtEDAN BgkqhkiG9w0BAQsFAAOCAQEALp4WSsqFh3sS2VyqBFnKJU4HhLhIiCgQMSi08D14 7A2tQ1xOgJJAy3UJgo5H+gQjX9iLaPouR/NhETm2syrFTFeJpW5hDe7O2tezGRM2 XkQsLgu13v6CficOgtF4ISG7YQw8DgoqRd8u64T5+6tcga0c6A3Jpnq7hOyvuIRB ekOlx2/QXKwjVBPG118VL+pgrdQn+i3+mYeDbWqhzpsZv5Zd2ia5UMOMqU5sU94J 1CXcPuZQbBpbZ93s9SH0XeTAelD7ZMahaidAAckZRHf31/OiJ76jZoRGvqLB5S5z DzRe3m4Wz1wz/VfFYkv2JPh8kmoUIXQViU/8nG75CuFZrg== -----END CERTIFICATE-----Generated at Wed Feb 5 07:00:29 2025 by rpki-client