$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653662393a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653662393a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: w9DeLlDBhPGsQp5R75ylGO8yKjIi8B6UavYeXm8dBEA= Subject key identifier: FF:6C:1F:78:5C:4A:89:48:9C:67:17:0D:34:CA:F9:26:51:F8:8E:0F Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 0CC50023F04F3B589D7902689BE49A98B6DA4E08 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653662393a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:43 +0000 ROA not before: Fri 04 Jul 2025 00:42:43 +0000 ROA not after: Fri 03 Jul 2026 00:47:43 +0000 asID: 396968 IP address blocks: 2a0f:6287:e6b9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c5:00:23:f0:4f:3b:58:9d:79:02:68:9b:e4:9a:98:b6:da:4e:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:43 2025 GMT Not After : Jul 3 00:47:43 2026 GMT Subject: CN=FF6C1F785C4A89489C67170D34CAF92651F88E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:74:b4:5c:a9:dd:4e:2e:eb:a6:a4:39:7c:ab: 05:ad:75:4f:9f:6b:f4:8f:5b:cb:95:fa:82:51:3d: 4c:40:69:e9:ec:90:83:a5:f1:13:f8:b6:81:25:72: 8d:36:99:80:da:9d:3f:8a:e2:96:4e:ac:46:0e:9d: a2:9e:91:29:3b:74:c5:60:d4:af:e3:52:cc:98:57: d3:eb:d2:58:70:ae:b6:34:5d:60:13:48:0c:46:c9: 13:61:31:02:05:2b:89:22:9b:8b:2e:1a:37:80:8b: 4b:da:e3:41:27:54:bc:2d:80:94:d9:6f:0a:36:89: e1:35:8f:23:47:f6:7a:79:bc:9f:00:5e:22:11:d7: e6:e0:5f:17:0b:09:a2:9f:2d:79:11:2e:90:16:11: c9:39:49:d6:31:2c:01:44:97:77:bd:a2:1c:24:30: de:d2:6e:c8:40:69:8a:80:80:0d:fe:0e:17:79:51: ef:16:92:50:c8:3f:e7:22:c9:aa:bf:5e:a4:2b:9e: 8d:f6:54:75:d0:17:0d:a9:a1:93:7f:7f:ca:34:c4: 97:f8:ff:4c:91:52:73:22:f2:24:fc:e9:11:2d:94: a9:97:7e:dd:94:a6:ff:90:70:8c:91:40:f6:3d:90: 4e:83:42:d0:8f:1e:3c:10:ed:77:e1:a4:b9:91:9d: 1c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6C:1F:78:5C:4A:89:48:9C:67:17:0D:34:CA:F9:26:51:F8:8E:0F X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653662393a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e6b9::/48 Signature Algorithm: sha256WithRSAEncryption 59:3c:25:09:a9:88:8d:53:f9:8e:63:bb:58:41:48:27:e6:0c: d8:dc:e8:11:8d:67:d1:63:f3:45:ea:ed:42:36:ec:e8:28:08: 76:d0:50:16:c3:d5:b5:f4:73:18:8b:39:aa:18:c0:33:e7:85: af:9e:cd:31:ec:1f:84:36:9e:65:6b:c3:6f:48:2e:23:ad:3a: 5c:13:c4:65:96:79:23:af:57:20:3d:31:29:05:7f:5a:ec:65: 42:0a:b7:84:1f:83:7f:e0:ee:05:cd:57:fa:1a:91:ff:3c:55: ac:ac:e6:d8:98:8a:3b:71:c1:28:04:69:6e:fd:f6:90:e4:c3: 3f:7c:3c:8b:25:5b:ad:41:eb:6c:b0:70:18:e0:62:a3:0b:b9: 5b:10:68:32:01:16:e3:8d:c2:c2:5a:47:b9:81:88:88:fb:e3: e4:58:a9:35:f7:66:d5:ac:c7:3f:b9:90:99:8e:d0:07:a8:20: 2a:41:c7:39:83:ee:2f:9b:7c:a5:41:87:af:95:9a:80:63:e1: 68:0d:26:6b:e7:30:85:97:cd:56:a5:d0:7f:c8:a7:17:86:62: 6b:56:fc:bc:6a:4c:33:10:e6:d8:3b:eb:28:45:45:9c:67:23: 5c:f5:c6:aa:8e:8f:3f:eb:8a:c4:14:11:ce:3f:32:3f:70:df: c8:d6:82:99 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUDMUAI/BPO1ideQJom+SamLbaTggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDNaFw0yNjA3MDMwMDQ3NDNaMDMxMTAvBgNV BAMTKEZGNkMxRjc4NUM0QTg5NDg5QzY3MTcwRDM0Q0FGOTI2NTFGODhFMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfdLRcqd1OLuumpDl8qwWtdU+f a/SPW8uV+oJRPUxAaenskIOl8RP4toElco02mYDanT+K4pZOrEYOnaKekSk7dMVg 1K/jUsyYV9Pr0lhwrrY0XWATSAxGyRNhMQIFK4kim4suGjeAi0va40EnVLwtgJTZ bwo2ieE1jyNH9np5vJ8AXiIR1+bgXxcLCaKfLXkRLpAWEck5SdYxLAFEl3e9ohwk MN7SbshAaYqAgA3+Dhd5Ue8WklDIP+ciyaq/XqQrno32VHXQFw2poZN/f8o0xJf4 /0yRUnMi8iT86REtlKmXft2Upv+QcIyRQPY9kE6DQtCPHjwQ7XfhpLmRnRynAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU/2wfeFxKiUicZxcNNMr5JlH4jg8wHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzY2MjM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+a5 MA0GCSqGSIb3DQEBCwUAA4IBAQBZPCUJqYiNU/mOY7tYQUgn5gzY3OgRjWfRY/NF 6u1CNuzoKAh20FAWw9W19HMYizmqGMAz54Wvns0x7B+ENp5la8NvSC4jrTpcE8Rl lnkjr1cgPTEpBX9a7GVCCreEH4N/4O4FzVf6GpH/PFWsrObYmIo7ccEoBGlu/faQ 5MM/fDyLJVutQetssHAY4GKjC7lbEGgyARbjjcLCWke5gYiI++PkWKk192bVrMc/ uZCZjtAHqCAqQcc5g+4vm3ylQYevlZqAY+FoDSZr5zCFl81WpdB/yKcXhmJrVvy8 akwzEObYO+soRUWcZyNc9caqjo8/64rEFBHOPzI/cN/I1oKZ -----END CERTIFICATE-----Generated at Fri Jul 4 16:46:07 2025 by rpki-client