$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653531373a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653531373a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: LxsFgBTlVk1v/HWhIC8OTbbvy22UTftYghMFZYHjxRo= Subject key identifier: 49:26:54:BC:B7:F6:6F:9C:B4:D5:7D:EF:49:6C:23:8D:C3:2C:EE:D8 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 2D496C13215361BDE8292F68BBB206FBCFFD8116 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653531373a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:40 +0000 ROA not before: Fri 04 Jul 2025 00:42:40 +0000 ROA not after: Fri 03 Jul 2026 00:47:40 +0000 asID: 396968 IP address blocks: 2a0f:6287:e517::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:49:6c:13:21:53:61:bd:e8:29:2f:68:bb:b2:06:fb:cf:fd:81:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:40 2025 GMT Not After : Jul 3 00:47:40 2026 GMT Subject: CN=492654BCB7F66F9CB4D57DEF496C238DC32CEED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f6:8e:ea:1c:40:fd:4f:7d:ca:02:bc:e4:f6: 34:f1:74:d3:b2:47:5c:59:c4:b7:a0:e1:3c:f6:96: b7:bb:70:76:a3:f6:9a:b1:2b:75:2a:10:56:eb:f8: c1:6c:d7:4c:8e:7e:0a:a3:ea:58:08:e5:81:c7:fc: cb:84:dc:d3:af:5a:ef:68:d2:d0:96:ff:bd:47:d4: 7c:1b:e6:56:a2:5c:51:1c:8e:00:b5:f7:43:d1:b8: a1:62:5c:c5:42:6b:67:2d:09:07:af:f4:0c:0e:01: 76:d1:e0:a7:11:4f:df:68:a9:35:49:77:79:3b:39: d8:f8:5e:aa:1e:b7:28:a7:40:64:27:67:1e:19:68: ae:8b:33:90:61:3c:f5:df:c8:fe:e3:9b:36:6a:f7: 5d:6a:16:6d:a1:91:d2:8e:d5:8e:b9:33:e0:77:88: cf:89:b1:7a:78:1f:36:da:e1:f9:9d:e1:7d:ad:57: 0d:0a:fe:ce:de:33:a0:28:c6:89:2e:bd:0c:e8:de: b6:cc:0c:95:ed:0f:5a:76:94:6c:92:92:be:e9:42: 52:72:69:e7:2f:7f:e9:35:51:3c:b7:8a:7b:6d:6b: 11:d6:f7:40:91:66:c7:4c:aa:9f:9d:69:9d:43:fc: be:55:ee:0d:81:73:87:1a:5e:2e:10:43:47:a3:f0: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:26:54:BC:B7:F6:6F:9C:B4:D5:7D:EF:49:6C:23:8D:C3:2C:EE:D8 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653531373a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e517::/48 Signature Algorithm: sha256WithRSAEncryption 88:b4:a1:a3:23:76:5e:9a:0f:17:5c:f2:1a:19:28:87:ed:e6: e7:a3:c5:ea:c2:1f:5d:59:0d:ba:96:48:e2:a7:70:ee:3e:f3: 9d:ab:87:43:a3:c3:c1:43:26:00:2c:2f:d9:7d:5a:d6:75:7a: a3:2f:86:4d:c4:e2:f9:13:99:4e:b5:79:8f:3c:72:b3:10:d9: b9:8f:cd:6d:13:ff:a7:67:6d:01:bf:20:b0:fc:30:77:79:b0: 9a:7d:0c:8c:d2:8c:36:97:3d:91:b7:fb:a8:34:af:27:ca:c5: 7c:10:08:93:e9:07:72:f0:62:ab:aa:be:59:b6:e0:6a:cf:c2: 24:c8:0b:7e:11:81:81:e7:d3:4d:ff:dd:74:cd:98:c8:50:58: 8b:1c:84:65:38:44:33:b3:16:8f:44:04:20:25:cf:ba:a3:7c: f2:48:68:06:8d:e9:04:37:66:c6:55:2e:2f:24:98:63:52:62: 98:f8:fd:24:87:b1:2f:54:c1:c2:b7:96:79:3b:66:16:86:04: 17:90:87:0d:98:83:63:24:1e:74:33:c4:74:2f:36:3b:81:b4: 0c:4f:0f:e9:9d:1e:5d:33:3e:37:7e:16:09:81:0a:8a:18:4c: b4:e6:f1:ec:9d:66:82:46:9a:1e:a1:2b:48:09:75:f0:9f:27: 56:8a:48:17 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIULUlsEyFTYb3oKS9ou7IG+8/9gRYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDBaFw0yNjA3MDMwMDQ3NDBaMDMxMTAvBgNV BAMTKDQ5MjY1NEJDQjdGNjZGOUNCNEQ1N0RFRjQ5NkMyMzhEQzMyQ0VFRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk9o7qHED9T33KArzk9jTxdNOy R1xZxLeg4Tz2lre7cHaj9pqxK3UqEFbr+MFs10yOfgqj6lgI5YHH/MuE3NOvWu9o 0tCW/71H1Hwb5laiXFEcjgC190PRuKFiXMVCa2ctCQev9AwOAXbR4KcRT99oqTVJ d3k7Odj4XqoetyinQGQnZx4ZaK6LM5BhPPXfyP7jmzZq911qFm2hkdKO1Y65M+B3 iM+JsXp4Hzba4fmd4X2tVw0K/s7eM6AoxokuvQzo3rbMDJXtD1p2lGySkr7pQlJy aecvf+k1UTy3inttaxHW90CRZsdMqp+daZ1D/L5V7g2Bc4caXi4QQ0ej8CrpAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUSSZUvLf2b5y01X3vSWwjjcMs7tgwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzUzMTM3M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+UX MA0GCSqGSIb3DQEBCwUAA4IBAQCItKGjI3Zemg8XXPIaGSiH7ebno8Xqwh9dWQ26 lkjip3DuPvOdq4dDo8PBQyYALC/ZfVrWdXqjL4ZNxOL5E5lOtXmPPHKzENm5j81t E/+nZ20BvyCw/DB3ebCafQyM0ow2lz2Rt/uoNK8nysV8EAiT6Qdy8GKrqr5ZtuBq z8IkyAt+EYGB59NN/910zZjIUFiLHIRlOEQzsxaPRAQgJc+6o3zySGgGjekEN2bG VS4vJJhjUmKY+P0kh7EvVMHCt5Z5O2YWhgQXkIcNmINjJB50M8R0LzY7gbQMTw/p nR5dMz43fhYJgQqKGEy05vHsnWaCRpoeoStICXXwnydWikgX -----END CERTIFICATE-----Generated at Fri Jul 4 14:24:01 2025 by rpki-client