$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366432303a3a2f34382d3438203d3e203136393039.roa File: 326131343a373538343a366432303a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 9OMdiXDl9JwJSbDH8sD31Avgk9DCgpBugXHnJklnW50= Subject key identifier: A2:41:D8:C1:45:2A:9E:A4:CE:56:AF:86:5D:68:14:F6:08:C8:B3:8E Certificate issuer: /CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Certificate serial: 333860549BE98F39235B31C1FF94582B3367F974 Authority key identifier: 7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366432303a3a2f34382d3438203d3e203136393039.roa Signing time: Sat 01 Feb 2025 21:54:04 +0000 ROA not before: Sat 01 Feb 2025 21:49:04 +0000 ROA not after: Sat 31 Jan 2026 21:54:04 +0000 asID: 16909 IP address blocks: 2a14:7584:6d20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 13:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:38:60:54:9b:e9:8f:39:23:5b:31:c1:ff:94:58:2b:33:67:f9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45 Validity Not Before: Feb 1 21:49:04 2025 GMT Not After : Jan 31 21:54:04 2026 GMT Subject: CN=A241D8C1452A9EA4CE56AF865D6814F608C8B38E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4d:75:59:09:e2:bc:e3:4d:24:26:57:fd:5b: 1c:80:09:c5:60:96:2d:6a:83:4b:b9:68:3d:82:e2: b4:5e:18:35:fd:03:96:1b:fc:06:42:7f:e6:d8:fb: 77:98:02:0a:8a:54:dc:e4:6c:ac:4b:b3:80:de:43: 76:ce:43:0b:63:0a:52:4c:ac:70:2b:0a:ae:b4:fc: 58:3e:30:6a:b8:0e:92:3a:1c:54:e5:c8:a8:a5:0d: 79:a2:49:99:2a:44:6f:79:08:55:bd:a4:a2:57:f4: e5:5b:5a:a4:86:1e:7f:5f:e5:5a:a6:e3:b1:db:94: 8c:54:00:67:73:d8:b3:95:72:cf:a8:68:e6:ec:6b: 88:26:05:13:81:06:c5:d8:e6:2f:1e:44:17:b1:c5: 72:6d:85:a5:4c:b7:d7:a4:da:5f:4b:82:51:e3:88: 23:d0:33:25:14:da:b0:2d:37:ce:f5:21:79:10:2c: d0:29:50:6a:5f:70:c9:de:56:22:53:f4:d4:7e:80: e4:a2:61:4a:16:29:7f:39:60:e3:4e:ac:7c:4a:0d: 2f:95:da:d5:8b:2f:b7:cd:0f:16:8d:0c:19:39:f8: 45:12:6a:4d:41:b2:8b:13:47:39:cf:72:b7:12:a3: f7:7d:a0:e4:e2:3a:af:5a:e2:d4:49:e3:5b:50:78: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:41:D8:C1:45:2A:9E:A4:CE:56:AF:86:5D:68:14:F6:08:C8:B3:8E X509v3 Authority Key Identifier: keyid:7C:B2:6F:76:42:FD:6B:4C:BF:35:FB:EE:45:5F:1E:FB:0C:9F:0A:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/7CB26F7642FD6B4CBF35FBEE455F1EFB0C9F0A45.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/1/326131343a373538343a366432303a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:6d20::/48 Signature Algorithm: sha256WithRSAEncryption 17:aa:98:55:41:d2:90:a1:fa:db:cc:96:89:04:fa:60:a5:28: 3d:82:a6:ec:59:61:23:b0:95:12:56:fd:96:cf:92:fc:4a:06: ab:8d:8c:4e:d1:f1:6f:8e:70:8f:71:47:a6:c9:b7:b3:07:43: 13:05:1d:86:30:16:86:be:34:39:ff:16:cb:8d:e9:4e:8b:b1: 5d:06:7b:5a:ae:90:32:52:f4:9c:5f:8c:5b:4a:5a:19:e9:2a: 7e:4e:ee:37:61:6e:ac:05:ae:df:5b:88:a4:d4:01:51:11:39: e4:7c:47:e1:c1:a2:49:62:63:71:7f:f3:ce:0e:5e:8a:d8:f9: 99:62:3a:1c:51:6f:4d:ff:32:ee:b1:1f:57:3d:9b:47:a7:ae: 14:1c:f3:07:0d:73:06:56:0b:3f:28:bc:5d:60:38:d6:3d:87: 4c:2e:e0:8e:d1:fe:86:d3:56:f3:cc:e0:99:b5:bf:85:a0:ab: 25:87:24:bd:32:08:a4:9d:64:87:9c:49:39:05:eb:3c:f0:d2: df:1f:6a:ea:f1:9d:70:12:40:a1:e5:30:a8:b5:8f:ea:af:07: b3:43:b9:c8:4f:e8:0a:00:83:64:2d:86:88:ae:e2:f5:67:3c: e0:17:34:c3:78:cf:2d:b8:e4:74:58:9d:ee:ad:99:eb:30:d6: a8:5d:92:08 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUMzhgVJvpjzkjWzHB/5RYKzNn+XQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NCMjZGNzY0MkZENkI0Q0JGMzVGQkVFNDU1RjFFRkIw QzlGMEE0NTAeFw0yNTAyMDEyMTQ5MDRaFw0yNjAxMzEyMTU0MDRaMDMxMTAvBgNV BAMTKEEyNDFEOEMxNDUyQTlFQTRDRTU2QUY4NjVENjgxNEY2MDhDOEIzOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoTXVZCeK8400kJlf9WxyACcVg li1qg0u5aD2C4rReGDX9A5Yb/AZCf+bY+3eYAgqKVNzkbKxLs4DeQ3bOQwtjClJM rHArCq60/Fg+MGq4DpI6HFTlyKilDXmiSZkqRG95CFW9pKJX9OVbWqSGHn9f5Vqm 47HblIxUAGdz2LOVcs+oaObsa4gmBROBBsXY5i8eRBexxXJthaVMt9ek2l9LglHj iCPQMyUU2rAtN871IXkQLNApUGpfcMneViJT9NR+gOSiYUoWKX85YONOrHxKDS+V 2tWLL7fNDxaNDBk5+EUSak1BsosTRznPcrcSo/d9oOTiOq9a4tRJ41tQeOQHAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUokHYwUUqnqTOVq+GXWgU9gjIs44wHwYDVR0j BBgwFoAUfLJvdkL9a0y/NfvuRV8e+wyfCkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMS83Q0IyNkY3NjQy RkQ2QjRDQkYzNUZCRUU0NTVGMUVGQjBDOUYwQTQ1LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUtNDI5OS1iMDc5LTMwOWVkOTdm MzgyNC8wLzdDQjI2Rjc2NDJGRDZCNENCRjM1RkJFRTQ1NUYxRUZCMEM5RjBBNDUu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMS8zMjYxMzEzNDNhMzczNTM4MzQzYTM2NjQzMjMwM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoUdYRtIDAN BgkqhkiG9w0BAQsFAAOCAQEAF6qYVUHSkKH628yWiQT6YKUoPYKm7FlhI7CVElb9 ls+S/EoGq42MTtHxb45wj3FHpsm3swdDEwUdhjAWhr40Of8Wy43pTouxXQZ7Wq6Q MlL0nF+MW0paGekqfk7uN2FurAWu31uIpNQBURE55HxH4cGiSWJjcX/zzg5eitj5 mWI6HFFvTf8y7rEfVz2bR6euFBzzBw1zBlYLPyi8XWA41j2HTC7gjtH+htNW88zg mbW/haCrJYckvTIIpJ1kh5xJOQXrPPDS3x9q6vGdcBJAoeUwqLWP6q8Hs0O5yE/o CgCDZC2GiK7i9Wc84Bc0w3jPLbjkdFid7q2Z6zDWqF2SCA== -----END CERTIFICATE-----Generated at Wed Feb 5 06:41:13 2025 by rpki-client