$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653333613a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653333613a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: yk3f56iUhcVhcWv0TL5LQlzo6qYsLk7IimDuZ2J5agg= Subject key identifier: 25:1A:0A:FA:34:D0:24:90:C9:46:A5:48:AA:C9:EE:7C:33:1E:4B:29 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 2D5CAC9437F0C06E69A5E33B550DEFF6FEEAAC49 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653333613a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 05 Jun 2026 01:06:22 +0000 ROA not before: Fri 05 Jun 2026 01:01:22 +0000 ROA not after: Fri 04 Jun 2027 01:06:22 +0000 asID: 396968 IP address blocks: 2a0f:6287:e33a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 20:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5c:ac:94:37:f0:c0:6e:69:a5:e3:3b:55:0d:ef:f6:fe:ea:ac:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jun 5 01:01:22 2026 GMT Not After : Jun 4 01:06:22 2027 GMT Subject: CN=251A0AFA34D02490C946A548AAC9EE7C331E4B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:11:26:35:72:05:9d:fa:79:88:9f:77:5c:f9: 44:ec:c7:9b:3b:1b:6d:70:c6:6e:a0:b2:e8:f1:b8: 9c:a5:03:a5:1d:2a:ea:aa:32:88:6b:44:36:a2:d0: ba:24:7e:d0:fe:d0:b7:13:19:ff:9e:55:c8:4f:09: a5:3a:48:e9:69:22:83:cb:b1:9c:49:01:ba:bd:dd: ff:98:37:1d:7f:e3:36:cb:2a:71:28:41:1c:67:ea: d4:0d:8a:63:68:d3:60:97:8f:29:05:e6:72:d9:10: c6:d8:9b:58:e1:0b:11:10:54:06:a6:d7:6a:db:df: 23:8a:20:cb:95:50:04:f2:b5:f8:38:a5:2e:5d:5f: 80:04:f7:91:a9:f9:10:a6:8f:7e:ec:55:44:b7:6b: a8:32:08:24:0c:fd:c5:83:b0:88:3c:08:b4:0f:2e: 6c:42:76:1c:1f:a6:b8:b4:a4:fc:57:74:4d:04:4a: 39:61:d7:91:d9:91:51:51:0e:ee:a5:6f:c0:51:4d: a4:2b:9d:63:d7:3f:33:e7:4e:00:07:be:5f:6a:d6: 7e:03:e8:3c:4f:b1:4f:de:dd:15:d4:08:88:12:f1: 0c:49:0b:fc:19:87:95:51:04:01:7a:f3:a1:41:3e: 54:df:8b:9b:41:24:3c:c0:9c:2b:86:5d:d4:23:87: d4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1A:0A:FA:34:D0:24:90:C9:46:A5:48:AA:C9:EE:7C:33:1E:4B:29 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653333613a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e33a::/48 Signature Algorithm: sha256WithRSAEncryption 80:89:f0:c7:91:f9:17:46:20:f4:1e:a5:6f:06:69:65:eb:61: a6:ce:36:0d:6f:58:2e:dd:b9:21:14:9b:6d:7f:a8:9c:00:be: 83:f9:81:0a:9e:c2:75:2d:01:ef:8d:90:cd:65:e7:64:45:b2: a7:16:c0:a4:88:c6:9f:28:7f:d3:e6:c3:6a:a1:43:9b:f2:72: b0:c8:4d:19:b5:13:36:90:2d:90:c3:74:40:4c:11:6d:a3:54: 1c:11:5c:ab:28:26:49:b2:0d:72:76:15:0b:c7:74:62:d0:0a: ef:52:3a:de:60:7b:38:5b:88:3f:d9:fd:4d:f5:b6:5a:52:b5: fa:7b:00:35:e1:1e:35:d2:0b:ee:d7:28:ba:f4:7f:37:55:c6: 51:4a:a5:14:1d:4e:83:b5:d5:c0:30:7d:1d:95:6d:ce:11:e5: 20:f0:d0:9f:37:6f:d1:85:2b:1b:f6:d6:ba:c3:34:f0:5f:30: f1:75:0f:eb:40:82:df:29:f8:8b:87:59:9c:64:36:ec:f1:0c: aa:30:a0:cf:43:b6:43:4b:98:7f:39:8c:e9:2e:f9:9d:8a:f9: 45:e5:9c:a5:ce:3b:e9:1d:76:5e:80:5b:01:e0:c8:3f:d4:bc: c4:a3:e6:0a:13:72:56:a3:fb:8f:08:48:bb:40:08:1e:52:68: cd:da:64:85 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIULVyslDfwwG5ppeM7VQ3v9v7qrEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNjA2MDUwMTAxMjJaFw0yNzA2MDQwMTA2MjJaMDMxMTAvBgNV BAMTKDI1MUEwQUZBMzREMDI0OTBDOTQ2QTU0OEFBQzlFRTdDMzMxRTRCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRESY1cgWd+nmIn3dc+UTsx5s7 G21wxm6gsujxuJylA6UdKuqqMohrRDai0LokftD+0LcTGf+eVchPCaU6SOlpIoPL sZxJAbq93f+YNx1/4zbLKnEoQRxn6tQNimNo02CXjykF5nLZEMbYm1jhCxEQVAam 12rb3yOKIMuVUATytfg4pS5dX4AE95Gp+RCmj37sVUS3a6gyCCQM/cWDsIg8CLQP LmxCdhwfpri0pPxXdE0ESjlh15HZkVFRDu6lb8BRTaQrnWPXPzPnTgAHvl9q1n4D 6DxPsU/e3RXUCIgS8QxJC/wZh5VRBAF686FBPlTfi5tBJDzAnCuGXdQjh9SHAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUJRoK+jTQJJDJRqVIqsnufDMeSykwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzMzMzYxM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+M6 MA0GCSqGSIb3DQEBCwUAA4IBAQCAifDHkfkXRiD0HqVvBmll62GmzjYNb1gu3bkh FJttf6icAL6D+YEKnsJ1LQHvjZDNZedkRbKnFsCkiMafKH/T5sNqoUOb8nKwyE0Z tRM2kC2Qw3RATBFto1QcEVyrKCZJsg1ydhULx3Ri0ArvUjreYHs4W4g/2f1N9bZa UrX6ewA14R410gvu1yi69H83VcZRSqUUHU6DtdXAMH0dlW3OEeUg8NCfN2/RhSsb 9ta6wzTwXzDxdQ/rQILfKfiLh1mcZDbs8QyqMKDPQ7ZDS5h/OYzpLvmdivlF5Zyl zjvpHXZegFsB4Mg/1LzEo+YKE3JWo/uPCEi7QAgeUmjN2mSF -----END CERTIFICATE-----Generated at Sat Jun 6 08:23:17 2026 by rpki-client