$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653137623a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653137623a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: qDXt57W+N+aiv1sxcbP4xtMab5bF/QwMOlwJAKk0ZpQ= Subject key identifier: 28:C0:1A:AB:CE:7B:C2:18:D3:24:56:BF:D4:89:27:AD:63:1D:AE:44 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 208553C3A839EEDFD3B03500F194B9CEFAFB7E07 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653137623a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:46 +0000 ROA not before: Fri 04 Jul 2025 00:42:46 +0000 ROA not after: Fri 03 Jul 2026 00:47:46 +0000 asID: 396968 IP address blocks: 2a0f:6287:e17b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:85:53:c3:a8:39:ee:df:d3:b0:35:00:f1:94:b9:ce:fa:fb:7e:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:46 2025 GMT Not After : Jul 3 00:47:46 2026 GMT Subject: CN=28C01AABCE7BC218D32456BFD48927AD631DAE44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:35:4f:16:2d:e7:ac:06:44:ee:f2:cf:7d:44: d8:60:c8:d8:1d:20:33:46:ee:79:48:97:6e:ee:4f: 15:40:26:92:fc:c5:f2:1b:b4:90:e5:33:77:3f:f7: 7a:d4:03:dd:3c:0f:72:22:c2:92:d5:70:c8:a8:7a: 70:85:f4:b4:24:3f:e4:16:1f:1e:a2:e2:02:cb:8f: fe:2c:83:36:5e:4b:36:5a:f4:47:d2:a3:be:38:08: f2:68:81:66:b1:79:69:d7:e1:2a:70:9c:fd:f6:0f: 7a:5b:a3:d0:a0:94:c8:83:73:49:44:39:af:4b:18: 56:3e:cf:e7:77:eb:81:06:3b:40:58:4f:15:1e:6c: d0:e7:96:b1:0f:2c:c8:ff:2e:e4:d5:2f:d5:e7:06: 13:dd:01:d2:c4:a3:a2:d1:73:d7:31:a2:d6:28:81: 6f:d8:d4:28:27:24:74:b0:80:92:d1:c6:e5:94:32: e4:65:87:c9:fe:bf:04:ff:67:30:91:19:7a:1d:fd: cc:f5:66:44:28:7e:7c:24:b8:20:d4:ae:2e:e7:0f: e8:c5:03:8d:88:a7:f7:b1:9e:e7:c6:58:1c:5f:ea: 99:4f:e2:2e:df:f8:a9:8a:bb:23:4f:57:fe:3b:db: 6d:7a:b7:31:e6:ea:54:0c:1a:73:62:04:7f:49:76: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C0:1A:AB:CE:7B:C2:18:D3:24:56:BF:D4:89:27:AD:63:1D:AE:44 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653137623a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e17b::/48 Signature Algorithm: sha256WithRSAEncryption a1:61:77:90:53:c2:12:f9:2c:58:46:db:20:8b:b9:e0:f6:aa: fb:92:a3:3f:3b:a5:e5:88:1a:b0:e0:f1:e3:bb:9f:e4:04:4b: 73:b5:80:1c:75:56:a0:65:0f:e4:8d:74:c9:1c:3e:04:51:48: a0:00:d9:4f:68:6d:16:32:42:52:6f:7d:c4:9f:d3:16:77:66: 6d:dd:cc:b2:dd:8d:5e:73:bf:c1:96:e8:9c:6a:2a:91:79:33: e2:d5:1f:a4:45:99:bf:d9:bb:15:08:7e:f7:f4:ff:a6:5e:95: ed:5d:fb:d7:2a:15:83:81:11:13:fc:c2:4f:6c:d5:ea:ee:81: 86:29:f3:0f:b2:cc:5a:07:c3:4e:a3:86:c2:37:23:bb:d8:e1: a2:fe:07:90:44:a9:fd:a2:7a:40:6a:a5:58:54:1b:f6:61:49: 76:be:00:72:fd:df:4d:91:73:54:4f:cd:0c:94:53:eb:aa:ee: d2:46:39:a4:fb:ee:76:4b:d0:88:df:50:65:64:84:7a:65:ff: 0f:a2:66:8f:c8:87:29:eb:a5:38:71:31:e1:73:96:7f:ea:ae: 46:bc:2c:1b:f3:88:5b:0f:38:56:1e:b2:c6:f3:ca:b0:45:ad: cb:79:ce:23:51:c8:d4:ef:53:4e:98:28:0f:7c:55:27:8d:68: 3d:cc:95:82 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUIIVTw6g57t/TsDUA8ZS5zvr7fgcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDZaFw0yNjA3MDMwMDQ3NDZaMDMxMTAvBgNV BAMTKDI4QzAxQUFCQ0U3QkMyMThEMzI0NTZCRkQ0ODkyN0FENjMxREFFNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRNU8WLeesBkTu8s99RNhgyNgd IDNG7nlIl27uTxVAJpL8xfIbtJDlM3c/93rUA908D3IiwpLVcMioenCF9LQkP+QW Hx6i4gLLj/4sgzZeSzZa9EfSo744CPJogWaxeWnX4SpwnP32D3pbo9CglMiDc0lE Oa9LGFY+z+d364EGO0BYTxUebNDnlrEPLMj/LuTVL9XnBhPdAdLEo6LRc9cxotYo gW/Y1CgnJHSwgJLRxuWUMuRlh8n+vwT/ZzCRGXod/cz1ZkQofnwkuCDUri7nD+jF A42Ip/exnufGWBxf6plP4i7f+KmKuyNPV/472216tzHm6lQMGnNiBH9Jdi61AgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUKMAaq857whjTJFa/1IknrWMdrkQwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzEzNzYyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+F7 MA0GCSqGSIb3DQEBCwUAA4IBAQChYXeQU8IS+SxYRtsgi7ng9qr7kqM/O6XliBqw 4PHju5/kBEtztYAcdVagZQ/kjXTJHD4EUUigANlPaG0WMkJSb33En9MWd2Zt3cyy 3Y1ec7/BluicaiqReTPi1R+kRZm/2bsVCH739P+mXpXtXfvXKhWDgRET/MJPbNXq 7oGGKfMPssxaB8NOo4bCNyO72OGi/geQRKn9onpAaqVYVBv2YUl2vgBy/d9NkXNU T80MlFPrqu7SRjmk++52S9CI31BlZIR6Zf8PomaPyIcp66U4cTHhc5Z/6q5GvCwb 84hbDzhWHrLG88qwRa3Lec4jUcjU71NOmCgPfFUnjWg9zJWC -----END CERTIFICATE-----Generated at Fri Jul 4 14:30:21 2025 by rpki-client