$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653665393a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653665393a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: 8k4ifk+V1LwlZaFUtKoMEoU+A4OcoWQhsIy702DwFSc= Subject key identifier: 4E:A1:1B:A7:B1:76:7B:00:E3:38:44:FD:13:CB:75:71:0B:EA:FB:65 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 272CE9AC4EFDC1A5D53FFA390F1B8DE5684A60AD Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653665393a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:44 +0000 ROA not before: Fri 04 Jul 2025 00:42:44 +0000 ROA not after: Fri 03 Jul 2026 00:47:44 +0000 asID: 396968 IP address blocks: 2a0f:6287:e6e9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2c:e9:ac:4e:fd:c1:a5:d5:3f:fa:39:0f:1b:8d:e5:68:4a:60:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:44 2025 GMT Not After : Jul 3 00:47:44 2026 GMT Subject: CN=4EA11BA7B1767B00E33844FD13CB75710BEAFB65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:85:4e:ef:41:9f:6c:aa:8f:bb:21:7d:c5: 96:56:ab:0d:66:c8:70:d2:76:37:b8:ff:88:45:e3: dd:99:e3:dc:79:a3:a2:af:3c:c4:ac:62:73:fc:10: 00:27:01:e6:03:ee:50:36:c6:4d:04:ec:b6:7c:c6: c8:53:58:19:72:fc:2e:d6:1b:d3:e5:54:66:5f:68: d9:ff:19:86:db:9e:b9:d3:73:8e:c5:1b:a9:c7:86: 17:69:d0:26:da:3a:a2:78:63:78:63:1b:16:d8:e0: c9:5c:7a:1b:27:66:06:b4:43:c1:12:95:6e:18:55: 62:ef:74:71:f0:3c:98:8b:8b:dd:1a:09:36:32:25: 15:b4:e9:10:f6:ce:00:41:d5:3b:d1:ba:d7:d1:da: 32:87:e6:38:bf:58:92:d3:0a:59:88:0e:56:7b:cf: 1f:55:79:8b:f8:00:86:bc:2e:5c:b5:a0:89:59:41: 64:72:7a:cc:65:90:28:d4:03:9c:20:89:74:d3:a1: 09:4f:5a:0b:d9:bf:8d:9b:a8:94:94:11:f5:50:99: 67:1d:ee:56:d2:6f:a7:4f:53:b0:66:48:80:78:78: 6b:02:53:f3:d9:86:cb:4f:3c:68:03:bb:a5:8b:b1: dc:74:28:4b:bc:8c:9e:ef:27:63:17:30:c8:34:24: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A1:1B:A7:B1:76:7B:00:E3:38:44:FD:13:CB:75:71:0B:EA:FB:65 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653665393a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e6e9::/48 Signature Algorithm: sha256WithRSAEncryption 42:bb:02:b0:69:99:73:b1:a9:12:01:da:59:69:ba:1e:e8:d6: 9f:fc:88:ad:c0:3d:4d:b2:a6:41:d5:41:1c:0e:83:ad:df:12: c2:14:8a:c9:29:bd:3d:32:39:5a:d2:da:85:82:3a:3e:42:d3: 90:1d:81:25:00:f5:76:fc:f8:f2:43:70:67:28:bb:6b:60:f5: 7f:aa:ea:9c:36:96:7e:60:74:f7:f8:a8:e6:c9:38:17:a9:6d: d1:3e:ed:d5:99:22:36:14:42:03:83:49:2e:33:a7:7e:9d:f7: e2:19:ba:31:a7:ec:4e:51:e8:ef:83:2e:28:13:50:18:f6:60: b3:66:dc:fc:cd:c2:6e:3c:63:b0:67:5e:34:f6:7a:41:22:2e: c5:ba:e9:f0:73:3d:57:07:11:01:04:0e:02:43:b2:70:bc:37: a4:63:21:39:e8:54:48:aa:ed:ee:a4:1e:51:4f:8e:49:f0:3c: 4d:16:47:7a:f3:1b:16:4a:01:7f:17:3e:f5:a6:a4:21:34:bc: b8:89:e6:bb:d3:d1:f6:f7:d2:76:e9:aa:8c:f8:a4:95:5b:7e: 65:31:b3:50:bd:78:07:98:b8:61:ab:24:6b:93:7a:e4:d3:b4: 7f:f5:ae:57:9d:26:23:4b:31:60:b0:22:19:6f:57:84:a0:0d: 52:22:3e:97 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUJyzprE79waXVP/o5DxuN5WhKYK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDRaFw0yNjA3MDMwMDQ3NDRaMDMxMTAvBgNV BAMTKDRFQTExQkE3QjE3NjdCMDBFMzM4NDRGRDEzQ0I3NTcxMEJFQUZCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv0YVO70GfbKqPuyF9xZZWqw1m yHDSdje4/4hF492Z49x5o6KvPMSsYnP8EAAnAeYD7lA2xk0E7LZ8xshTWBly/C7W G9PlVGZfaNn/GYbbnrnTc47FG6nHhhdp0CbaOqJ4Y3hjGxbY4MlcehsnZga0Q8ES lW4YVWLvdHHwPJiLi90aCTYyJRW06RD2zgBB1TvRutfR2jKH5ji/WJLTClmIDlZ7 zx9VeYv4AIa8Lly1oIlZQWRyesxlkCjUA5wgiXTToQlPWgvZv42bqJSUEfVQmWcd 7lbSb6dPU7BmSIB4eGsCU/PZhstPPGgDu6WLsdx0KEu8jJ7vJ2MXMMg0JGmdAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUTqEbp7F2ewDjOET9E8t1cQvq+2UwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1MzY2NTM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+bp MA0GCSqGSIb3DQEBCwUAA4IBAQBCuwKwaZlzsakSAdpZaboe6Naf/IitwD1NsqZB 1UEcDoOt3xLCFIrJKb09Mjla0tqFgjo+QtOQHYElAPV2/PjyQ3BnKLtrYPV/quqc NpZ+YHT3+KjmyTgXqW3RPu3VmSI2FEIDg0kuM6d+nffiGboxp+xOUejvgy4oE1AY 9mCzZtz8zcJuPGOwZ1409npBIi7Fuunwcz1XBxEBBA4CQ7JwvDekYyE56FRIqu3u pB5RT45J8DxNFkd68xsWSgF/Fz71pqQhNLy4iea709H299J26aqM+KSVW35lMbNQ vXgHmLhhqyRrk3rk07R/9a5XnSYjSzFgsCIZb1eEoA1SIj6X -----END CERTIFICATE-----Generated at Fri Jul 4 14:54:19 2025 by rpki-client