$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762393a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a653762393a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: GghKNlVxcIZujWpdtikixVGGVs4s+8dhj8Db06hg7gA= Subject key identifier: D0:FD:32:5A:39:AB:21:85:E1:CB:E5:CE:05:AF:2D:4A:7A:19:F6:EC Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 60924CD82AD17AE8E08A0734EB5223F22C8CDCAC Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762393a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:42 +0000 ROA not before: Fri 04 Jul 2025 00:42:42 +0000 ROA not after: Fri 03 Jul 2026 00:47:42 +0000 asID: 396968 IP address blocks: 2a0f:6287:e7b9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:92:4c:d8:2a:d1:7a:e8:e0:8a:07:34:eb:52:23:f2:2c:8c:dc:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:42 2025 GMT Not After : Jul 3 00:47:42 2026 GMT Subject: CN=D0FD325A39AB2185E1CBE5CE05AF2D4A7A19F6EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5b:8c:e9:bd:c1:c8:17:f1:f1:e9:76:78:f8: 2f:89:a6:19:51:c7:3c:5b:fc:6a:75:d0:91:97:63: 4e:8f:82:ca:a3:20:32:35:ba:24:54:11:2d:51:d7: c5:12:b2:52:97:2b:b9:49:3f:84:5f:ec:7c:9a:48: fa:8d:4a:27:94:a8:2c:95:e6:1d:c8:82:37:88:35: 94:9b:70:f9:54:25:53:c9:f5:0c:3a:94:f9:20:a6: 80:56:1c:48:f5:ac:72:4b:dc:25:e3:17:4b:b7:49: 50:96:de:1b:40:cf:07:8d:a8:5c:c4:c0:41:a4:46: 51:5a:21:67:52:7f:bb:fd:7c:a1:11:41:e0:68:eb: 9a:5b:96:6c:f9:88:53:19:b2:93:44:6e:1a:b8:91: a9:15:59:af:0d:71:64:23:eb:cf:43:bf:cb:3c:ad: 48:5f:f9:88:45:c2:5f:97:e6:c7:6b:83:21:f9:44: 60:8b:b0:5b:c8:c0:7d:9a:6c:c0:3c:d3:82:a0:72: b3:65:c5:8b:50:af:db:57:2c:ee:cf:f9:6c:8a:88: fd:7f:9b:7e:ff:28:a5:4b:f9:e6:ff:ae:18:f2:b3: ee:db:dd:02:68:c0:f3:c1:e9:1b:2a:e4:ab:91:d8: 65:1a:f6:df:8d:0a:60:f8:a0:ee:29:ed:39:75:d8: 17:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FD:32:5A:39:AB:21:85:E1:CB:E5:CE:05:AF:2D:4A:7A:19:F6:EC X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a653762393a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:e7b9::/48 Signature Algorithm: sha256WithRSAEncryption 54:f5:40:23:74:96:ea:16:d4:90:c9:19:74:23:34:cd:8d:bd: f0:62:be:27:0e:e8:b5:6c:1a:84:40:d0:f5:5d:22:b6:b9:02: b1:7b:61:a2:7b:42:e9:2d:ec:91:60:14:ce:42:24:0b:19:2e: 3d:e4:64:4e:44:53:d6:90:68:39:b5:9c:02:bb:c6:18:2b:fa: 79:98:d3:61:28:42:ee:b5:1b:fd:c4:df:47:6c:43:d9:42:d5: 2c:47:90:7f:d2:39:55:b7:09:52:d2:6c:3c:b2:51:40:fd:2a: 17:c4:d2:63:17:fb:82:a9:d9:56:e9:5d:80:b1:95:74:fb:ea: 42:9f:0e:eb:0e:27:2b:4c:48:cf:90:73:08:2d:ac:68:83:da: fa:0d:73:a7:65:ac:d8:d5:3d:28:17:06:57:e7:99:2f:b9:93: a5:67:75:8c:b7:51:97:45:62:09:3e:fa:e0:80:c7:61:7c:30: 1f:88:fd:28:ab:e6:0f:4c:6b:b9:06:f1:f0:6e:66:61:21:e9: f7:b6:c2:90:c1:df:34:b2:b6:e3:7c:18:93:f0:18:57:b2:cb: f7:b5:00:23:cc:cf:5c:4e:db:87:fc:f8:f9:0c:08:45:57:00: b9:26:99:2e:72:fb:a4:c5:a3:3e:f8:51:b3:6a:95:dc:6d:b4: 2b:08:d0:3e -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUYJJM2CrReujgigc061Ij8iyM3KwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDJaFw0yNjA3MDMwMDQ3NDJaMDMxMTAvBgNV BAMTKEQwRkQzMjVBMzlBQjIxODVFMUNCRTVDRTA1QUYyRDRBN0ExOUY2RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNW4zpvcHIF/Hx6XZ4+C+JphlR xzxb/Gp10JGXY06PgsqjIDI1uiRUES1R18USslKXK7lJP4Rf7HyaSPqNSieUqCyV 5h3IgjeINZSbcPlUJVPJ9Qw6lPkgpoBWHEj1rHJL3CXjF0u3SVCW3htAzweNqFzE wEGkRlFaIWdSf7v9fKERQeBo65pblmz5iFMZspNEbhq4kakVWa8NcWQj689Dv8s8 rUhf+YhFwl+X5sdrgyH5RGCLsFvIwH2abMA804KgcrNlxYtQr9tXLO7P+WyKiP1/ m37/KKVL+eb/rhjys+7b3QJowPPB6Rsq5KuR2GUa9t+NCmD4oO4p7Tl12BepAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU0P0yWjmrIYXhy+XOBa8tSnoZ9uwwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1Mzc2MjM5M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+e5 MA0GCSqGSIb3DQEBCwUAA4IBAQBU9UAjdJbqFtSQyRl0IzTNjb3wYr4nDui1bBqE QND1XSK2uQKxe2Gie0LpLeyRYBTOQiQLGS495GRORFPWkGg5tZwCu8YYK/p5mNNh KELutRv9xN9HbEPZQtUsR5B/0jlVtwlS0mw8slFA/SoXxNJjF/uCqdlW6V2AsZV0 ++pCnw7rDicrTEjPkHMILaxog9r6DXOnZazY1T0oFwZX55kvuZOlZ3WMt1GXRWIJ PvrggMdhfDAfiP0oq+YPTGu5BvHwbmZhIen3tsKQwd80srbjfBiT8BhXssv3tQAj zM9cTtuH/Pj5DAhFVwC5JpkucvukxaM++FGzapXcbbQrCNA+ -----END CERTIFICATE-----Generated at Fri Jul 4 14:40:28 2025 by rpki-client