$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762343a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653762343a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: fgmhWWZXYE2fg+8X3nBjq1URW5+CGJSjAHAnK7sUeUU= Subject key identifier: 76:42:39:54:89:11:16:F8:55:78:26:86:08:85:2D:17:3C:57:C4:1E Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 5315074B1D90389936EC7E6FFA1A4CFB9A3A234B Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762343a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:43 +0000 ROA not before: Fri 04 Jul 2025 00:42:43 +0000 ROA not after: Fri 03 Jul 2026 00:47:43 +0000 asID: 396968 IP address blocks: 2a0f:6287:e7b4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:15:07:4b:1d:90:38:99:36:ec:7e:6f:fa:1a:4c:fb:9a:3a:23:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:43 2025 GMT Not After : Jul 3 00:47:43 2026 GMT Subject: CN=76423954891116F85578268608852D173C57C41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:02:3b:b4:0d:6d:0f:87:ce:d0:d2:7e:df:65: b2:d1:b8:c4:37:ce:61:60:f7:6a:b3:39:0f:bc:e9: 9e:13:7f:86:5f:3b:0f:81:95:0a:c5:f5:66:99:bb: 38:c9:cc:93:bb:d6:08:6b:2d:f1:cc:78:d2:ae:c7: 8e:92:f9:90:e7:1d:f6:1e:ca:52:83:65:c9:71:35: 8d:d2:3c:d7:ce:ed:51:32:92:b9:84:3a:c2:55:ac: d4:0a:b3:dd:93:21:57:df:07:aa:be:73:06:c3:18: 88:a1:8a:41:85:57:d2:88:9d:07:c4:ef:5e:2d:7f: e8:d8:ce:47:2c:a3:25:1e:a1:0b:3a:e0:01:6a:18: 10:09:ef:dc:b2:52:db:91:db:6b:dc:13:72:c7:a1: a0:16:12:cb:51:79:fd:14:8f:cf:4f:82:f6:b7:ef: 79:7a:76:20:5b:f9:e2:96:4f:a6:b0:41:ec:61:91: 1a:f2:78:1b:97:9f:3a:d3:1e:f2:25:6a:09:a6:1a: b9:03:dd:85:a2:f5:62:a3:92:c1:5d:1e:4d:2c:82: 9e:c3:b6:37:44:b4:a4:72:50:6f:e9:fd:73:bc:0b: c7:ef:02:85:6d:b7:a7:ce:a4:af:0b:7a:67:0c:29: 25:15:00:05:e0:98:95:77:b2:83:8b:8e:3a:57:c9: 50:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:42:39:54:89:11:16:F8:55:78:26:86:08:85:2D:17:3C:57:C4:1E X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762343a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e7b4::/48 Signature Algorithm: sha256WithRSAEncryption 56:20:1c:0e:1c:08:94:f6:7f:0c:97:3c:1f:9c:07:af:c1:2e: 4d:21:c7:08:af:b5:e6:52:b2:fe:25:4d:f4:41:96:53:52:85: df:0b:d2:e9:65:04:f6:27:56:8b:65:7e:f6:af:6b:1a:a8:c7: 56:9f:e5:2f:8f:42:c9:ac:c4:08:3d:aa:c3:d8:e5:c8:04:b3: f6:af:aa:0d:44:e0:8f:84:c6:b9:67:3e:60:d7:54:83:39:32: 0c:5a:73:8f:11:d5:da:18:86:fc:28:30:44:67:b4:b4:32:87: cc:7c:b7:74:3b:a1:4f:23:be:b1:30:38:4d:5f:a8:ae:fa:36: ba:36:0d:34:06:5d:25:9d:70:fd:ab:91:fd:e8:fa:53:8b:79: 51:90:c3:0d:b1:89:dc:d0:2d:29:57:cd:fb:6c:67:9b:2c:11: 8b:a0:ab:ef:2c:98:09:3c:f7:3f:6b:3b:2a:52:06:65:1f:05: 8b:34:bd:7d:90:9a:69:30:97:9a:6e:67:e6:39:d3:0d:59:3f: 9b:54:b5:dd:bd:8d:95:21:78:ca:77:5d:05:07:da:d3:13:35: e7:db:d2:44:1a:b5:c5:a3:cb:64:49:ae:1c:17:75:55:08:f7: 75:47:60:06:26:67:7d:33:87:70:1f:ec:66:23:42:a7:83:55: d7:b1:01:68 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUUxUHSx2QOJk27H5v+hpM+5o6I0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDNaFw0yNjA3MDMwMDQ3NDNaMDMxMTAvBgNV BAMTKDc2NDIzOTU0ODkxMTE2Rjg1NTc4MjY4NjA4ODUyRDE3M0M1N0M0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZAju0DW0Ph87Q0n7fZbLRuMQ3 zmFg92qzOQ+86Z4Tf4ZfOw+BlQrF9WaZuzjJzJO71ghrLfHMeNKux46S+ZDnHfYe ylKDZclxNY3SPNfO7VEykrmEOsJVrNQKs92TIVffB6q+cwbDGIihikGFV9KInQfE 714tf+jYzkcsoyUeoQs64AFqGBAJ79yyUtuR22vcE3LHoaAWEstRef0Uj89Pgva3 73l6diBb+eKWT6awQexhkRryeBuXnzrTHvIlagmmGrkD3YWi9WKjksFdHk0sgp7D tjdEtKRyUG/p/XO8C8fvAoVtt6fOpK8LemcMKSUVAAXgmJV3soOLjjpXyVAzAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUdkI5VIkRFvhVeCaGCIUtFzxXxB4wHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1Mzc2MjM0M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+e0 MA0GCSqGSIb3DQEBCwUAA4IBAQBWIBwOHAiU9n8MlzwfnAevwS5NIccIr7XmUrL+ JU30QZZTUoXfC9LpZQT2J1aLZX72r2saqMdWn+Uvj0LJrMQIParD2OXIBLP2r6oN ROCPhMa5Zz5g11SDOTIMWnOPEdXaGIb8KDBEZ7S0MofMfLd0O6FPI76xMDhNX6iu +ja6Ng00Bl0lnXD9q5H96PpTi3lRkMMNsYnc0C0pV837bGebLBGLoKvvLJgJPPc/ azsqUgZlHwWLNL19kJppMJeabmfmOdMNWT+bVLXdvY2VIXjKd10FB9rTEzXn29JE GrXFo8tkSa4cF3VVCPd1R2AGJmd9M4dwH+xmI0Kng1XXsQFo -----END CERTIFICATE-----Generated at Fri Jul 4 14:44:39 2025 by rpki-client