$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656136653a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a656136653a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: KvsSc8RN6hp2EnyjWeHhPhYQVir+E/3GOrYkYCZNxb4= Subject key identifier: BA:F2:BB:3A:D7:E8:E8:9E:7A:BA:5D:4F:90:DF:E2:74:41:C6:73:B9 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 0338E8C34CFB3086B2503046BF00FA6364BAEFC8 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656136653a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:42 +0000 ROA not before: Fri 04 Jul 2025 00:42:42 +0000 ROA not after: Fri 03 Jul 2026 00:47:42 +0000 asID: 396968 IP address blocks: 2a0f:6287:ea6e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:38:e8:c3:4c:fb:30:86:b2:50:30:46:bf:00:fa:63:64:ba:ef:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:42 2025 GMT Not After : Jul 3 00:47:42 2026 GMT Subject: CN=BAF2BB3AD7E8E89E7ABA5D4F90DFE27441C673B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:30:27:d2:48:1b:05:b2:2d:9f:a2:12:29: 8d:ce:36:4d:82:4c:96:af:3c:58:b7:50:b1:7c:49: 16:0b:56:39:23:ad:fd:a3:48:4c:72:2a:2c:a5:a1: 92:7a:b6:5f:f0:d7:2f:4a:98:c6:eb:2e:46:00:47: 5d:b7:3e:55:0c:36:68:52:33:be:e1:d0:5d:97:d1: 2e:29:ae:b1:a7:e7:14:49:80:e9:d0:8c:9f:09:1b: fa:c4:88:5e:22:57:82:22:6c:5a:03:46:cc:26:84: 7e:4d:b6:46:38:c7:d8:82:77:28:2c:a4:e0:96:3b: d5:25:9d:5d:aa:e0:28:41:9c:fc:1e:f4:03:04:73: fa:64:b6:55:49:9a:c1:b2:6c:0e:76:c0:75:53:ae: 6a:7c:b5:8a:ad:9e:24:4b:d4:a5:fa:aa:b1:23:42: 92:3c:7c:5e:eb:cc:9f:20:dc:a7:53:1f:b7:01:7f: fd:43:16:38:10:89:95:df:09:00:5e:c9:73:4b:16: 2e:18:a9:e3:3d:0f:e4:85:c9:33:9a:4a:16:44:2c: be:7e:c5:81:9c:d8:99:c4:55:62:fe:fd:d4:47:56: 50:a1:9f:8f:08:da:16:84:c2:4d:90:30:6d:a7:f3: 29:d8:fe:33:91:5b:30:d9:d6:de:92:ae:34:a1:e4: 0d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F2:BB:3A:D7:E8:E8:9E:7A:BA:5D:4F:90:DF:E2:74:41:C6:73:B9 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656136653a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:ea6e::/48 Signature Algorithm: sha256WithRSAEncryption 29:5f:f9:98:85:bf:3b:e0:4f:72:5f:19:ca:d2:84:d7:c2:3b: a9:1a:6e:cc:ac:90:4f:27:0b:59:9e:4e:5c:7a:d0:59:11:5d: d1:1f:8e:de:b0:c7:fa:69:b6:68:cf:68:59:e6:c6:ba:61:1d: ef:31:b6:94:9c:18:44:20:38:81:c9:60:4f:92:97:1c:bd:c6: 0e:17:13:e6:4d:df:2f:7d:f1:30:40:f1:9a:0a:7f:53:a0:ed: 2e:dc:8d:6b:d8:24:35:5c:48:d8:c3:9b:13:bf:29:c0:bf:6d: e4:8c:80:5a:3e:8f:dd:db:27:f9:b1:fd:25:f8:e7:40:05:c6: 18:8b:ad:1d:a0:6a:67:bd:56:ef:d4:9a:f6:45:ae:36:2b:7b: f9:bd:a1:ef:de:f8:9d:d9:77:bd:cc:b2:65:f7:b0:65:c5:06: 09:5a:61:68:1e:db:7d:37:ea:a0:f1:e3:0a:c4:9d:50:6b:d6: 66:62:5f:6b:8d:0f:d5:13:2e:cd:9a:f9:b6:2d:ab:56:6c:54: ef:cb:31:93:e0:36:35:bd:be:67:a1:0a:44:0a:6f:36:3e:17: 45:a2:27:d5:cc:1a:91:89:e7:b1:aa:52:d0:eb:0f:af:62:2d: 46:9e:ff:39:b7:15:5c:01:78:b0:8d:a1:a9:3d:72:dc:91:58: 40:88:fa:73 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUAzjow0z7MIayUDBGvwD6Y2S678gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDJaFw0yNjA3MDMwMDQ3NDJaMDMxMTAvBgNV BAMTKEJBRjJCQjNBRDdFOEU4OUU3QUJBNUQ0RjkwREZFMjc0NDFDNjczQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl/jAn0kgbBbItn6ISKY3ONk2C TJavPFi3ULF8SRYLVjkjrf2jSExyKiyloZJ6tl/w1y9KmMbrLkYAR123PlUMNmhS M77h0F2X0S4prrGn5xRJgOnQjJ8JG/rEiF4iV4IibFoDRswmhH5NtkY4x9iCdygs pOCWO9UlnV2q4ChBnPwe9AMEc/pktlVJmsGybA52wHVTrmp8tYqtniRL1KX6qrEj QpI8fF7rzJ8g3KdTH7cBf/1DFjgQiZXfCQBeyXNLFi4YqeM9D+SFyTOaShZELL5+ xYGc2JnEVWL+/dRHVlChn48I2haEwk2QMG2n8ynY/jORWzDZ1t6SrjSh5A1bAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUuvK7Otfo6J56ul1PkN/idEHGc7kwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1NjEzNjY1M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+pu MA0GCSqGSIb3DQEBCwUAA4IBAQApX/mYhb874E9yXxnK0oTXwjupGm7MrJBPJwtZ nk5cetBZEV3RH47esMf6abZoz2hZ5sa6YR3vMbaUnBhEIDiByWBPkpccvcYOFxPm Td8vffEwQPGaCn9ToO0u3I1r2CQ1XEjYw5sTvynAv23kjIBaPo/d2yf5sf0l+OdA BcYYi60doGpnvVbv1Jr2Ra42K3v5vaHv3vid2Xe9zLJl97BlxQYJWmFoHtt9N+qg 8eMKxJ1Qa9ZmYl9rjQ/VEy7Nmvm2LatWbFTvyzGT4DY1vb5noQpECm82PhdFoifV zBqRieexqlLQ6w+vYi1Gnv85txVcAXiwjaGpPXLckVhAiPpz -----END CERTIFICATE-----Generated at Fri Jul 4 14:48:13 2025 by rpki-client