$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653136393a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653136393a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: haTzHfhwjMulqwnTd5vMqYhz5Fif2EkcEjIPAPznsfc= Subject key identifier: 92:5E:F2:0F:FF:7D:EB:DB:65:96:C1:DE:A7:A3:24:C5:E9:05:09:4E Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 36F1E0EF07181DCAD21B0C2CF498D786E1EE4B60 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653136393a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:44 +0000 ROA not before: Fri 04 Jul 2025 00:42:44 +0000 ROA not after: Fri 03 Jul 2026 00:47:44 +0000 asID: 396968 IP address blocks: 2a0f:6287:e169::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f1:e0:ef:07:18:1d:ca:d2:1b:0c:2c:f4:98:d7:86:e1:ee:4b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:44 2025 GMT Not After : Jul 3 00:47:44 2026 GMT Subject: CN=925EF20FFF7DEBDB6596C1DEA7A324C5E905094E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:cd:d2:3b:78:8d:f2:c4:46:f9:65:c1:59: b3:df:19:1b:6d:13:f9:66:bb:e5:2f:c8:45:97:ae: e3:c5:40:fd:e9:ea:3b:5f:0f:9b:00:fc:9d:9d:4e: 70:0e:89:32:e8:64:d8:dd:25:f7:d8:b0:2a:ad:74: de:31:50:e2:f4:7f:1f:88:9d:3b:12:f6:56:9b:ac: dc:47:e1:4e:65:1d:6f:bb:18:24:94:6b:5f:45:4e: a6:35:b3:ca:e2:da:4b:09:98:f7:46:bf:dd:05:64: af:7d:74:7e:88:97:78:47:3a:16:08:bd:d9:0d:28: b8:cc:b5:2b:b5:a4:03:40:59:8d:26:72:9e:d5:6c: 9a:ca:d3:5f:8d:82:ff:cc:c4:d4:35:21:d6:21:20: 94:bf:6b:d0:0b:13:4c:08:54:fe:b0:d7:74:88:5d: 87:7b:ce:40:a7:57:9d:d2:e1:3f:01:65:44:f0:7f: a5:e4:94:49:56:3f:c5:09:4c:f7:1a:4c:0e:00:e4: 5f:33:38:af:7f:bc:1f:1f:b5:04:62:a1:1f:99:36: ba:ea:9a:00:e4:86:87:2d:c8:b5:1b:30:95:2a:49: 41:c8:a0:c0:29:c9:88:1d:60:4d:c7:b9:d0:bf:39: 1a:60:f0:35:96:f1:10:17:2f:af:00:83:e8:92:81: fd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5E:F2:0F:FF:7D:EB:DB:65:96:C1:DE:A7:A3:24:C5:E9:05:09:4E X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653136393a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e169::/48 Signature Algorithm: sha256WithRSAEncryption 59:3a:ed:df:f9:15:89:af:0d:0e:db:4b:43:ed:bd:00:9f:56: cd:be:cd:70:80:23:06:45:47:d6:fa:b8:f8:73:65:e2:3c:10: 06:77:e4:13:65:74:5d:ac:32:89:74:c2:48:7f:e9:85:72:c5: e6:22:2f:e0:66:07:9d:f4:b5:7e:fa:0f:04:c0:7f:76:a7:43: fc:50:1f:be:40:14:a0:41:19:00:23:6e:65:d4:9c:31:9b:02: f8:69:bd:af:86:73:f1:86:59:3c:9c:0c:42:57:87:6a:3c:c6: f7:69:bb:e2:76:ea:f0:59:de:37:65:06:7a:68:6e:7e:89:2d: 66:2b:56:d4:97:96:23:a7:d1:cf:d1:5a:5f:87:64:ab:8d:ac: 4f:55:e5:1b:4a:61:f2:f7:89:ef:d2:1a:db:74:42:f2:dc:02: 1a:a1:f1:b5:b4:49:12:ff:61:3f:45:90:e2:b1:51:36:4c:e0: fd:ef:16:63:12:c2:30:34:88:08:18:7f:13:d5:66:eb:f7:a6: 90:77:7f:fe:2a:3c:b4:d0:4e:b8:2c:d9:b7:e2:c5:27:aa:03: 2d:8a:7c:63:1b:06:f1:e6:47:6c:90:fd:f7:f1:ef:01:17:a2: 4c:77:01:64:7f:e6:a1:08:b8:e6:c8:ac:fe:88:ee:9b:cc:0b: 44:b4:f8:79 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUNvHg7wcYHcrSGwws9JjXhuHuS2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDRaFw0yNjA3MDMwMDQ3NDRaMDMxMTAvBgNV BAMTKDkyNUVGMjBGRkY3REVCREI2NTk2QzFERUE3QTMyNEM1RTkwNTA5NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsYM3SO3iN8sRG+WXBWbPfGRtt E/lmu+UvyEWXruPFQP3p6jtfD5sA/J2dTnAOiTLoZNjdJffYsCqtdN4xUOL0fx+I nTsS9labrNxH4U5lHW+7GCSUa19FTqY1s8ri2ksJmPdGv90FZK99dH6Il3hHOhYI vdkNKLjMtSu1pANAWY0mcp7VbJrK01+Ngv/MxNQ1IdYhIJS/a9ALE0wIVP6w13SI XYd7zkCnV53S4T8BZUTwf6XklElWP8UJTPcaTA4A5F8zOK9/vB8ftQRioR+ZNrrq mgDkhoctyLUbMJUqSUHIoMApyYgdYE3HudC/ORpg8DWW8RAXL68Ag+iSgf3pAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUkl7yD/9969tllsHep6MkxekFCU4wHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzEzNjM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+Fp MA0GCSqGSIb3DQEBCwUAA4IBAQBZOu3f+RWJrw0O20tD7b0An1bNvs1wgCMGRUfW +rj4c2XiPBAGd+QTZXRdrDKJdMJIf+mFcsXmIi/gZged9LV++g8EwH92p0P8UB++ QBSgQRkAI25l1JwxmwL4ab2vhnPxhlk8nAxCV4dqPMb3abvidurwWd43ZQZ6aG5+ iS1mK1bUl5Yjp9HP0Vpfh2SrjaxPVeUbSmHy94nv0hrbdELy3AIaofG1tEkS/2E/ RZDisVE2TOD97xZjEsIwNIgIGH8T1Wbr96aQd3/+Kjy00E64LNm34sUnqgMtinxj Gwbx5kdskP338e8BF6JMdwFkf+ahCLjmyKz+iO6bzAtEtPh5 -----END CERTIFICATE-----Generated at Fri Jul 4 14:54:15 2025 by rpki-client