$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663462623a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a663462623a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: h886u1z+OGcqoBmVIE9I5LKYAu5l96oXIrr1gqcLCt4= Subject key identifier: 43:6C:6B:94:F8:7E:D9:17:10:E7:A7:EB:2D:1D:9C:61:07:83:00:40 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 25AD2527B640935AA5D63341245AE835DD6DEBD9 Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663462623a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:45 +0000 ROA not before: Fri 04 Jul 2025 00:42:45 +0000 ROA not after: Fri 03 Jul 2026 00:47:45 +0000 asID: 396968 IP address blocks: 2a0f:6287:f4bb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ad:25:27:b6:40:93:5a:a5:d6:33:41:24:5a:e8:35:dd:6d:eb:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:45 2025 GMT Not After : Jul 3 00:47:45 2026 GMT Subject: CN=436C6B94F87ED91710E7A7EB2D1D9C6107830040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e7:4d:77:c3:a8:b2:57:79:b8:33:8e:f3:02: c7:66:22:10:c7:de:3e:c8:49:5b:1e:7e:0d:a9:f2: ba:60:5b:e4:22:91:df:2d:65:92:b0:c1:9a:17:e7: 8d:22:f7:f6:7a:4d:9e:3d:74:35:02:95:6d:bb:6f: 87:ae:91:a6:09:ae:d3:0b:8f:a0:43:a1:6b:9d:75: 53:ce:ad:8a:10:47:f9:e5:aa:34:0f:bc:5a:89:ee: 1f:c6:74:d9:b3:7d:d0:a7:3a:9b:08:83:fc:e4:b2: fc:77:43:fd:ce:8c:8b:a1:10:30:48:c4:08:11:6d: de:c2:19:5e:d3:c4:d0:09:6c:00:d3:99:e1:31:4e: 2a:3f:94:7b:1f:ff:39:85:d8:e1:50:cd:49:5e:17: 22:c1:8a:fa:a3:e5:5e:9c:34:48:8f:75:1d:b4:4c: 39:0e:11:2e:a8:92:b7:ee:f7:03:d3:4e:6b:f0:48: 9d:cd:ed:89:ee:3c:d3:28:a2:5a:bc:3d:86:94:bb: fa:e4:a2:7f:81:17:15:4e:86:7b:8b:89:65:58:75: 95:c3:32:63:1e:36:01:ac:0d:e8:ea:cc:27:84:cf: b0:b1:d3:48:67:c2:65:66:16:cf:16:f1:ae:7c:5a: 7d:6f:00:92:b7:4c:3f:40:2e:91:fa:71:15:05:aa: a2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6C:6B:94:F8:7E:D9:17:10:E7:A7:EB:2D:1D:9C:61:07:83:00:40 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a663462623a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:f4bb::/48 Signature Algorithm: sha256WithRSAEncryption 88:67:70:cf:41:ce:f2:ae:6c:ee:37:79:64:7d:ac:4d:68:96: f0:c2:bc:1e:87:f1:8e:f7:f3:bb:65:6f:ef:90:5d:8e:7a:7c: 23:13:b5:aa:27:7a:1f:8f:a3:ff:c0:a6:c7:1b:11:5e:8f:02: fc:8d:89:4a:10:8c:31:48:0a:ff:5f:76:13:83:94:a2:20:dd: 1b:70:8d:91:fa:16:5b:fe:67:86:9c:21:72:93:47:2a:2e:4d: 65:77:4d:cf:54:2f:9c:46:c1:e2:f2:44:8d:2a:95:d0:6b:06: fc:76:28:59:e7:01:04:5f:73:84:35:87:90:e8:ad:cd:b1:b4: da:ce:63:8c:0a:7a:ba:41:d0:d9:61:3b:66:8d:ef:ab:94:6b: 5b:46:9b:d9:66:6e:25:b9:b4:16:c0:1f:44:f8:3d:39:ba:8c: d8:48:51:b0:df:3f:9e:85:a8:64:db:e3:18:83:42:34:be:cc: 9e:7a:81:e3:b1:9a:35:c0:8e:17:ab:ec:0b:1e:07:7d:a9:d9: 39:a4:d8:8d:12:d0:a9:2d:5e:5f:06:58:5b:d5:3b:12:f0:86: 9e:07:8b:5b:60:cc:8c:61:bd:b0:a9:09:49:a1:11:d2:6d:bc: 18:78:3d:53:27:0e:0e:2e:5f:e4:14:9a:a4:1c:82:76:2b:41: 55:2a:7b:c6 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUJa0lJ7ZAk1ql1jNBJFroNd1t69kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDVaFw0yNjA3MDMwMDQ3NDVaMDMxMTAvBgNV BAMTKDQzNkM2Qjk0Rjg3RUQ5MTcxMEU3QTdFQjJEMUQ5QzYxMDc4MzAwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd5013w6iyV3m4M47zAsdmIhDH 3j7ISVsefg2p8rpgW+Qikd8tZZKwwZoX540i9/Z6TZ49dDUClW27b4eukaYJrtML j6BDoWuddVPOrYoQR/nlqjQPvFqJ7h/GdNmzfdCnOpsIg/zksvx3Q/3OjIuhEDBI xAgRbd7CGV7TxNAJbADTmeExTio/lHsf/zmF2OFQzUleFyLBivqj5V6cNEiPdR20 TDkOES6okrfu9wPTTmvwSJ3N7YnuPNMoolq8PYaUu/rkon+BFxVOhnuLiWVYdZXD MmMeNgGsDejqzCeEz7Cx00hnwmVmFs8W8a58Wn1vAJK3TD9ALpH6cRUFqqLrAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUQ2xrlPh+2RcQ56frLR2cYQeDAEAwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY2MzQ2MjYyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/S7 MA0GCSqGSIb3DQEBCwUAA4IBAQCIZ3DPQc7yrmzuN3lkfaxNaJbwwrweh/GO9/O7 ZW/vkF2OenwjE7WqJ3ofj6P/wKbHGxFejwL8jYlKEIwxSAr/X3YTg5SiIN0bcI2R +hZb/meGnCFyk0cqLk1ld03PVC+cRsHi8kSNKpXQawb8dihZ5wEEX3OENYeQ6K3N sbTazmOMCnq6QdDZYTtmje+rlGtbRpvZZm4lubQWwB9E+D05uozYSFGw3z+ehahk 2+MYg0I0vsyeeoHjsZo1wI4Xq+wLHgd9qdk5pNiNEtCpLV5fBlhb1TsS8IaeB4tb YMyMYb2wqQlJoRHSbbwYeD1TJw4OLl/kFJqkHIJ2K0FVKnvG -----END CERTIFICATE-----Generated at Fri Jul 4 14:10:56 2025 by rpki-client