$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653138373a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653138373a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: qJUzxJSGNhUsu7VUKGiXMMPvLgbjKh/Os9LTWXZPOUU= Subject key identifier: C7:4B:03:A6:AC:FF:A9:A1:C9:2B:78:B9:6C:10:C8:DC:59:5F:1C:8A Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 7A1E548FC47AE633833989958489980131E52584 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653138373a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:47 +0000 ROA not before: Fri 04 Jul 2025 00:42:47 +0000 ROA not after: Fri 03 Jul 2026 00:47:47 +0000 asID: 396968 IP address blocks: 2a0f:6287:e187::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1e:54:8f:c4:7a:e6:33:83:39:89:95:84:89:98:01:31:e5:25:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:47 2025 GMT Not After : Jul 3 00:47:47 2026 GMT Subject: CN=C74B03A6ACFFA9A1C92B78B96C10C8DC595F1C8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:81:ee:c0:92:23:40:61:dc:6a:fd:6e:fd: 25:b5:ce:35:09:79:f4:7c:ed:58:e3:c8:71:13:52: ad:31:a0:b8:25:d1:81:5b:0d:28:e3:65:cd:cc:ad: 00:e6:af:2a:40:32:d3:eb:df:53:84:56:13:b9:d2: 61:c3:c3:f2:df:9e:31:ac:aa:42:77:8d:53:06:a7: ed:50:36:05:8c:56:39:49:3a:ba:fa:0a:bc:0e:9c: a1:4b:24:bb:dc:4b:a1:78:c3:7e:5f:fc:d1:df:47: 3e:6b:88:78:fa:d8:aa:16:50:ad:9b:eb:ac:83:fb: c1:a2:a6:f3:6e:8a:bf:77:24:bc:55:85:51:d0:05: 43:93:11:f4:31:75:a7:33:d7:16:a4:4e:a1:28:6b: eb:1b:2e:a5:fc:df:8d:d5:70:ae:94:7e:a1:08:2b: ba:08:9a:c7:dd:bf:ca:e1:91:95:aa:ef:da:31:fa: 45:76:0f:e5:58:9d:8b:f5:b7:cf:fa:cf:76:4a:57: ef:f4:35:a8:9d:1f:5a:1c:8f:67:e3:03:67:44:14: 0a:d3:69:94:fb:cb:06:a9:c3:5c:e3:e6:13:13:ec: 04:de:70:98:66:7c:76:48:50:d7:31:01:75:10:2b: ff:42:a5:43:78:86:b5:7d:45:6f:b7:f0:05:23:b3: c6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4B:03:A6:AC:FF:A9:A1:C9:2B:78:B9:6C:10:C8:DC:59:5F:1C:8A X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653138373a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e187::/48 Signature Algorithm: sha256WithRSAEncryption 92:7f:ea:73:9c:7f:0b:b7:34:24:42:d2:cc:f3:81:9e:a4:85: d0:09:e5:90:a6:f8:c0:2a:20:b5:50:f1:59:4e:fd:f0:44:dc: e1:26:92:18:9c:c1:cf:32:16:88:b5:5e:12:c8:28:86:23:3e: c8:15:9c:05:5f:84:8f:48:5c:0b:a4:5f:67:eb:cc:b0:74:0f: 0e:01:3b:85:eb:e6:be:ab:0a:c3:25:e3:38:d3:f2:dd:dc:27: c2:a2:17:73:16:6c:72:3f:3f:7e:88:85:37:75:d0:c4:ce:34: f4:9d:f9:43:97:e5:76:b6:e8:61:28:96:5c:38:97:4e:9d:95: 83:1e:ef:fa:31:f9:76:40:ec:98:58:65:55:32:a5:c4:53:b0: 2a:86:c4:81:da:16:58:5e:2a:9c:9e:fd:7f:87:1c:57:b6:14: 90:8f:ba:e2:12:9f:b1:ab:ec:6f:39:35:51:27:0a:c4:5c:ac: 49:f3:ad:00:50:fd:18:f6:d1:9e:f7:51:a1:f1:87:16:1f:c9: f6:ee:a9:e8:34:63:c3:81:78:69:79:bc:57:82:30:79:22:82: 43:65:4d:bd:f3:d8:23:1e:2f:f4:9a:73:97:a9:b8:0d:1d:29: 36:a7:e3:81:7a:4b:b6:c7:81:2b:35:6b:0b:6d:4e:88:2a:71: f9:a5:56:ef -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUeh5Uj8R65jODOYmVhImYATHlJYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDdaFw0yNjA3MDMwMDQ3NDdaMDMxMTAvBgNV BAMTKEM3NEIwM0E2QUNGRkE5QTFDOTJCNzhCOTZDMTBDOERDNTk1RjFDOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOqoHuwJIjQGHcav1u/SW1zjUJ efR87VjjyHETUq0xoLgl0YFbDSjjZc3MrQDmrypAMtPr31OEVhO50mHDw/LfnjGs qkJ3jVMGp+1QNgWMVjlJOrr6CrwOnKFLJLvcS6F4w35f/NHfRz5riHj62KoWUK2b 66yD+8GipvNuir93JLxVhVHQBUOTEfQxdacz1xakTqEoa+sbLqX8343VcK6UfqEI K7oImsfdv8rhkZWq79ox+kV2D+VYnYv1t8/6z3ZKV+/0NaidH1ocj2fjA2dEFArT aZT7ywapw1zj5hMT7ATecJhmfHZIUNcxAXUQK/9CpUN4hrV9RW+38AUjs8ajAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUx0sDpqz/qaHJK3i5bBDI3FlfHIowHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzEzODM3M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+GH MA0GCSqGSIb3DQEBCwUAA4IBAQCSf+pznH8LtzQkQtLM84GepIXQCeWQpvjAKiC1 UPFZTv3wRNzhJpIYnMHPMhaItV4SyCiGIz7IFZwFX4SPSFwLpF9n68ywdA8OATuF 6+a+qwrDJeM40/Ld3CfCohdzFmxyPz9+iIU3ddDEzjT0nflDl+V2tuhhKJZcOJdO nZWDHu/6Mfl2QOyYWGVVMqXEU7AqhsSB2hZYXiqcnv1/hxxXthSQj7riEp+xq+xv OTVRJwrEXKxJ860AUP0Y9tGe91Gh8YcWH8n27qnoNGPDgXhpebxXgjB5IoJDZU29 89gjHi/0mnOXqbgNHSk2p+OBeku2x4ErNWsLbU6IKnH5pVbv -----END CERTIFICATE-----Generated at Fri Jul 4 14:54:20 2025 by rpki-client