$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656363383a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a656363383a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: YjLht2VLNQx8PyjnktV8AtrMCQl751rKiz107iryOgI= Subject key identifier: 9D:17:68:AB:23:74:3B:60:D8:A3:9D:B1:55:1A:DE:DD:BF:F0:B4:11 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 046AEC66DD6C231DC95F6178EBA79055E5C0559B Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656363383a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:46 +0000 ROA not before: Fri 04 Jul 2025 00:42:46 +0000 ROA not after: Fri 03 Jul 2026 00:47:46 +0000 asID: 396968 IP address blocks: 2a0f:6287:ecc8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:6a:ec:66:dd:6c:23:1d:c9:5f:61:78:eb:a7:90:55:e5:c0:55:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:46 2025 GMT Not After : Jul 3 00:47:46 2026 GMT Subject: CN=9D1768AB23743B60D8A39DB1551ADEDDBFF0B411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:10:27:b7:a1:3f:ca:7f:50:01:64:4d:4f:80: 14:a1:53:dd:d5:c4:5c:62:dd:b8:af:8f:8c:d0:f4: 65:d5:5c:41:80:5e:97:5a:36:9d:7d:f1:ac:0f:37: 87:7c:d3:6b:a8:1f:9c:80:55:a2:72:35:87:62:22: 0c:3a:4b:16:38:ea:8f:1e:d4:a1:7f:48:9a:f6:b7: 57:fb:74:b7:c3:c4:f9:85:42:85:23:fe:69:da:77: 12:c5:14:2b:ef:64:11:ee:ed:bf:25:b1:f7:cd:46: d3:9c:ef:11:d9:f6:b7:e0:a5:04:94:07:da:e4:ae: b4:43:91:51:4f:5e:6a:75:68:40:b2:79:32:45:4c: ed:d3:05:32:31:b1:6a:8a:2d:66:51:d5:77:cf:14: f5:f5:32:8c:6c:8c:25:6b:ab:2b:39:01:33:d4:f0: 86:ed:96:be:fb:63:fb:12:f6:66:41:0e:9f:f0:c5: 59:58:16:35:0a:3b:2f:88:bf:2a:f8:05:1d:69:8e: 12:b1:a1:72:6e:99:7a:92:fb:de:59:48:d8:26:33: b0:51:f8:e0:e2:03:b5:a7:33:ae:a9:7d:c3:cc:02: a1:cd:3e:81:95:d0:25:79:15:b2:b7:7d:3b:6c:5b: f4:29:cc:fa:b5:76:00:5f:78:47:bd:7d:05:f5:ef: eb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:17:68:AB:23:74:3B:60:D8:A3:9D:B1:55:1A:DE:DD:BF:F0:B4:11 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a656363383a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:ecc8::/48 Signature Algorithm: sha256WithRSAEncryption 0f:60:30:34:8e:e6:87:61:c9:74:5a:d1:ea:be:45:e9:11:b5: 48:0b:98:41:54:49:41:b2:6e:d5:c3:1d:01:89:5b:f0:2a:67: b3:33:71:d1:af:52:9b:69:7a:f7:ee:2c:cd:e0:03:a5:d1:33: 4a:db:f9:a1:6b:eb:4f:d4:3f:50:45:2a:06:47:bd:e0:fc:80: dd:c2:68:9d:14:7e:f9:3c:05:d0:9d:3f:0e:0a:57:e9:91:e6: 16:35:1d:58:83:69:4e:b1:fe:29:25:24:6c:3f:a7:f8:93:0d: 5b:f2:02:5b:af:5f:4e:a5:12:9a:86:00:77:98:3b:f1:35:41: c8:d9:cb:17:4c:7c:3d:be:b3:38:ba:ed:46:ea:5e:95:c4:d1: 98:90:e3:2f:5f:f7:16:2a:e7:97:db:6e:f1:ac:96:91:fc:50: d5:6a:8b:a5:a4:f3:f8:c0:92:bb:f1:41:e0:61:30:e4:e0:0f: a1:79:0c:74:3f:77:f7:9e:86:5d:2f:fa:86:d5:04:c2:00:f0: 58:0c:5a:c1:f3:bd:c5:48:33:95:9b:b3:c3:00:da:ad:8a:6a: 5f:d3:e8:5c:aa:f9:10:56:c2:f0:60:13:38:27:5a:75:bb:c5: 8d:b3:5f:3c:9d:e1:dd:89:ce:66:3f:5c:32:1f:a0:41:ef:c6: 32:dc:01:f2 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUBGrsZt1sIx3JX2F466eQVeXAVZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDZaFw0yNjA3MDMwMDQ3NDZaMDMxMTAvBgNV BAMTKDlEMTc2OEFCMjM3NDNCNjBEOEEzOURCMTU1MUFERUREQkZGMEI0MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjECe3oT/Kf1ABZE1PgBShU93V xFxi3bivj4zQ9GXVXEGAXpdaNp198awPN4d802uoH5yAVaJyNYdiIgw6SxY46o8e 1KF/SJr2t1f7dLfDxPmFQoUj/mnadxLFFCvvZBHu7b8lsffNRtOc7xHZ9rfgpQSU B9rkrrRDkVFPXmp1aECyeTJFTO3TBTIxsWqKLWZR1XfPFPX1MoxsjCVrqys5ATPU 8Ibtlr77Y/sS9mZBDp/wxVlYFjUKOy+Ivyr4BR1pjhKxoXJumXqS+95ZSNgmM7BR +ODiA7WnM66pfcPMAqHNPoGV0CV5FbK3fTtsW/QpzPq1dgBfeEe9fQX17+vhAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUnRdoqyN0O2DYo52xVRre3b/wtBEwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY1NjM2MzM4M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih+zI MA0GCSqGSIb3DQEBCwUAA4IBAQAPYDA0juaHYcl0WtHqvkXpEbVIC5hBVElBsm7V wx0BiVvwKmezM3HRr1KbaXr37izN4AOl0TNK2/mha+tP1D9QRSoGR73g/IDdwmid FH75PAXQnT8OClfpkeYWNR1Yg2lOsf4pJSRsP6f4kw1b8gJbr19OpRKahgB3mDvx NUHI2csXTHw9vrM4uu1G6l6VxNGYkOMvX/cWKueX227xrJaR/FDVaoulpPP4wJK7 8UHgYTDk4A+heQx0P3f3noZdL/qG1QTCAPBYDFrB873FSDOVm7PDANqtimpf0+hc qvkQVsLwYBM4J1p1u8WNs188neHdic5mP1wyH6BB78Yy3AHy -----END CERTIFICATE-----Generated at Fri Jul 4 14:53:49 2025 by rpki-client