$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663235623a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a663235623a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: CyD0xrIo2BSCZ7ETNH7LuPYwaER0H876bZNeIU/2RTM= Subject key identifier: FD:42:88:CD:AA:D4:19:A7:95:01:79:38:7E:EB:57:DA:A8:BD:F0:E7 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 77DEA55949C1F3B198122DD9AA253C86DF3C0571 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663235623a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 05 Jun 2026 01:06:23 +0000 ROA not before: Fri 05 Jun 2026 01:01:23 +0000 ROA not after: Fri 04 Jun 2027 01:06:23 +0000 asID: 396968 IP address blocks: 2a0f:6287:f25b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 20:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:de:a5:59:49:c1:f3:b1:98:12:2d:d9:aa:25:3c:86:df:3c:05:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jun 5 01:01:23 2026 GMT Not After : Jun 4 01:06:23 2027 GMT Subject: CN=FD4288CDAAD419A7950179387EEB57DAA8BDF0E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:89:81:83:6e:df:77:a5:d8:71:62:61:67: b1:0c:cc:e0:ad:4e:37:0d:59:02:b3:7d:53:2b:46: 3b:09:59:89:ce:ed:25:30:b5:f9:a0:d4:86:85:e1: 54:f9:46:66:44:62:cf:23:45:06:54:af:b3:10:1f: a8:2a:5b:5b:75:34:aa:00:25:f7:24:db:33:cd:9f: 2a:06:45:58:27:f3:61:86:ad:82:a9:ed:71:bc:5a: c5:00:81:2a:96:ce:12:f0:a2:7d:70:39:d6:b3:85: 63:81:cd:6c:bb:01:bf:99:06:b3:99:1c:78:6b:14: 1a:95:b4:f1:2b:6e:0a:28:7e:85:a2:9e:00:64:a5: b1:6f:7a:04:7f:22:cc:16:92:d0:63:8e:e2:e0:aa: d7:14:c9:e7:da:3d:39:b5:d7:9d:ea:b3:9b:e0:e0: eb:91:4a:ad:54:43:03:8b:b1:47:a5:92:f3:66:81: cc:64:8e:dc:a6:e1:6b:b0:fb:39:0e:78:88:34:84: be:ce:f3:f1:fb:3a:19:5a:2d:33:98:28:73:ff:28: 9a:8a:8c:82:61:d9:07:2a:2c:b1:66:91:77:8d:b5: 30:93:39:65:15:20:29:c2:bf:de:36:77:58:8d:eb: fd:be:ea:2c:c8:49:d2:42:83:b8:7c:a1:dd:db:21: 4c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:88:CD:AA:D4:19:A7:95:01:79:38:7E:EB:57:DA:A8:BD:F0:E7 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663235623a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:f25b::/48 Signature Algorithm: sha256WithRSAEncryption 37:c2:0a:cb:90:c1:2c:90:da:f5:24:90:4a:21:39:cf:dc:ca: 04:79:c6:65:dc:4f:45:ac:d8:67:65:b6:33:05:c3:70:37:81: c5:a6:af:21:e5:5d:a0:f6:eb:8e:6a:2d:f3:78:af:40:94:fe: 16:04:f5:ea:e6:00:65:9d:a1:ec:79:97:7f:c0:39:1c:3b:56: 33:10:17:63:ec:c8:ee:fb:25:68:a9:ad:0d:49:92:1c:44:e0: 3e:b8:a8:f8:76:e7:48:64:94:df:77:9a:b0:a4:58:6f:ea:fe: b7:e9:ec:02:82:c8:24:95:3f:cc:e9:0b:da:3c:4b:fd:a4:f2: cf:a7:2f:a0:a7:94:38:5c:01:2b:0d:ea:90:3a:d2:43:64:96: 91:fa:28:11:cf:02:ba:c9:03:b3:2c:dc:8e:72:3f:e2:50:e8: cf:73:92:03:d2:07:83:3c:64:0f:00:42:ad:71:13:b1:f4:0c: ea:97:30:49:da:01:c3:2d:d4:1c:c7:0f:38:50:05:a2:7c:c5: b0:2c:93:db:62:a1:da:9b:5a:53:8d:df:f6:74:88:02:52:75: c4:a9:23:19:dc:99:f3:39:99:fe:c1:41:18:4d:1b:62:f6:23: 98:cf:86:a4:61:76:f9:38:cc:f1:8f:71:6f:b4:d4:dc:1e:f4: f6:1b:80:a4 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUd96lWUnB87GYEi3ZqiU8ht88BXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNjA2MDUwMTAxMjNaFw0yNzA2MDQwMTA2MjNaMDMxMTAvBgNV BAMTKEZENDI4OENEQUFENDE5QTc5NTAxNzkzODdFRUI1N0RBQThCREYwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnVYmBg27fd6XYcWJhZ7EMzOCt TjcNWQKzfVMrRjsJWYnO7SUwtfmg1IaF4VT5RmZEYs8jRQZUr7MQH6gqW1t1NKoA Jfck2zPNnyoGRVgn82GGrYKp7XG8WsUAgSqWzhLwon1wOdazhWOBzWy7Ab+ZBrOZ HHhrFBqVtPErbgoofoWingBkpbFvegR/IswWktBjjuLgqtcUyefaPTm1153qs5vg 4OuRSq1UQwOLsUelkvNmgcxkjtym4Wuw+zkOeIg0hL7O8/H7OhlaLTOYKHP/KJqK jIJh2QcqLLFmkXeNtTCTOWUVICnCv942d1iN6/2+6izISdJCg7h8od3bIUzZAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU/UKIzarUGaeVAXk4futX2qi98OcwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY2MzIzNTYyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/Jb MA0GCSqGSIb3DQEBCwUAA4IBAQA3wgrLkMEskNr1JJBKITnP3MoEecZl3E9FrNhn ZbYzBcNwN4HFpq8h5V2g9uuOai3zeK9AlP4WBPXq5gBlnaHseZd/wDkcO1YzEBdj 7Mju+yVoqa0NSZIcROA+uKj4dudIZJTfd5qwpFhv6v636ewCgsgklT/M6QvaPEv9 pPLPpy+gp5Q4XAErDeqQOtJDZJaR+igRzwK6yQOzLNyOcj/iUOjPc5ID0geDPGQP AEKtcROx9AzqlzBJ2gHDLdQcxw84UAWifMWwLJPbYqHam1pTjd/2dIgCUnXEqSMZ 3JnzOZn+wUEYTRti9iOYz4akYXb5OMzxj3FvtNTcHvT2G4Ck -----END CERTIFICATE-----Generated at Sat Jun 6 08:32:11 2026 by rpki-client