$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666337383a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a666337383a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: KfhZatDTJ6XZZ5PGG6Jt7MUVzZuYvXadmTRsjw/Ayn8= Subject key identifier: 09:85:83:8E:5C:58:02:78:E9:5E:EA:A0:3F:86:17:C6:C1:55:D1:C5 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 15F379C58386475360E042A1523A189E8D2CCAAA Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666337383a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:45 +0000 ROA not before: Fri 04 Jul 2025 00:42:45 +0000 ROA not after: Fri 03 Jul 2026 00:47:45 +0000 asID: 396968 IP address blocks: 2a0f:6287:fc78::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:f3:79:c5:83:86:47:53:60:e0:42:a1:52:3a:18:9e:8d:2c:ca:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:45 2025 GMT Not After : Jul 3 00:47:45 2026 GMT Subject: CN=0985838E5C580278E95EEAA03F8617C6C155D1C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:80:14:54:ef:61:e3:5c:b4:90:3c:2c:a0:c0: 5a:43:12:8a:c2:ad:58:c1:59:1e:84:b2:23:66:ba: 96:6a:a4:11:36:19:0a:0d:60:5f:bd:c6:ac:23:32: 44:a6:18:cd:aa:62:c0:13:b8:8c:c4:0f:91:da:4c: 61:3a:19:ec:58:96:a5:8c:c6:29:76:cc:3f:38:25: 2d:88:2c:ab:40:e6:9a:20:ae:3e:80:c8:06:87:5a: 92:7c:4f:5f:db:23:f0:aa:a4:a1:6c:ef:2b:2f:38: 76:d7:5f:63:30:17:f0:f0:c1:9b:cd:83:81:e9:6d: a7:02:ce:a1:ee:9b:af:25:7a:3b:07:79:8c:1b:4f: 94:a3:54:ee:34:68:59:09:63:e3:9d:e7:25:44:6a: 7d:c4:9c:bc:79:b5:17:e0:73:1c:44:44:18:90:a1: 16:6b:91:4b:11:a4:bb:f5:ac:7b:f9:d4:71:c8:80: 2a:de:a3:65:c3:6b:5a:fa:a0:1e:4d:22:cf:3b:23: 16:23:7c:75:da:87:df:44:8d:09:73:75:3b:92:26: 56:9e:0c:a2:d2:ce:ae:7a:74:90:9c:c8:55:0a:f5: 6c:4c:0e:c5:0f:06:77:8f:52:a0:10:df:9a:11:7c: 0c:71:ca:02:ec:17:84:23:87:07:2c:de:62:b7:fa: 0b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:85:83:8E:5C:58:02:78:E9:5E:EA:A0:3F:86:17:C6:C1:55:D1:C5 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666337383a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:fc78::/48 Signature Algorithm: sha256WithRSAEncryption 70:1c:27:6e:7f:20:3b:00:82:09:85:22:2f:bb:eb:45:a0:27: cc:37:67:3f:86:09:1c:88:3b:7d:47:31:10:21:15:90:93:94: d1:76:df:c1:9d:89:5f:3d:df:6a:1f:0e:fd:11:5c:85:de:24: 26:43:85:fd:4f:40:41:74:62:45:6a:19:c4:28:8e:b4:5d:8c: 18:f7:d3:7f:87:8e:a4:4e:3d:9d:c7:ac:09:c8:04:87:2e:94: 52:b9:37:67:0e:2c:26:ff:e1:3f:85:9f:17:64:14:eb:ae:a7: 20:b0:1f:2c:bd:58:08:56:b7:9d:f6:77:15:50:97:8b:2c:99: 43:da:01:fb:e0:a5:c3:71:a0:ab:08:8e:89:fe:22:4d:d6:a4: ba:2b:f3:a7:10:dc:13:f1:61:eb:96:eb:92:63:46:c6:25:45: 5f:b7:af:d0:cf:c8:18:40:65:cc:18:c8:94:4b:f5:f6:52:f4: d8:57:40:49:fb:98:ff:64:88:ca:aa:4d:6a:f8:48:41:f2:d0: 97:fa:c5:b7:29:06:34:51:e7:1d:05:f8:17:7c:f8:ea:cf:ba: 21:3c:2e:28:98:ef:a5:5f:af:f4:bb:83:5c:a5:29:c7:e3:b6: ff:bf:78:44:d1:06:a7:5c:63:b5:3f:8d:2b:0a:55:95:37:29: 90:70:f3:c8 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUFfN5xYOGR1Ng4EKhUjoYno0syqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDVaFw0yNjA3MDMwMDQ3NDVaMDMxMTAvBgNV BAMTKDA5ODU4MzhFNUM1ODAyNzhFOTVFRUFBMDNGODYxN0M2QzE1NUQxQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmgBRU72HjXLSQPCygwFpDEorC rVjBWR6EsiNmupZqpBE2GQoNYF+9xqwjMkSmGM2qYsATuIzED5HaTGE6GexYlqWM xil2zD84JS2ILKtA5pogrj6AyAaHWpJ8T1/bI/CqpKFs7ysvOHbXX2MwF/DwwZvN g4HpbacCzqHum68lejsHeYwbT5SjVO40aFkJY+Od5yVEan3EnLx5tRfgcxxERBiQ oRZrkUsRpLv1rHv51HHIgCreo2XDa1r6oB5NIs87IxYjfHXah99EjQlzdTuSJlae DKLSzq56dJCcyFUK9WxMDsUPBnePUqAQ35oRfAxxygLsF4Qjhwcs3mK3+gsdAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUCYWDjlxYAnjpXuqgP4YXxsFV0cUwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY2NjMzNzM4M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/x4 MA0GCSqGSIb3DQEBCwUAA4IBAQBwHCdufyA7AIIJhSIvu+tFoCfMN2c/hgkciDt9 RzEQIRWQk5TRdt/BnYlfPd9qHw79EVyF3iQmQ4X9T0BBdGJFahnEKI60XYwY99N/ h46kTj2dx6wJyASHLpRSuTdnDiwm/+E/hZ8XZBTrrqcgsB8svVgIVred9ncVUJeL LJlD2gH74KXDcaCrCI6J/iJN1qS6K/OnENwT8WHrluuSY0bGJUVft6/Qz8gYQGXM GMiUS/X2UvTYV0BJ+5j/ZIjKqk1q+EhB8tCX+sW3KQY0UecdBfgXfPjqz7ohPC4o mO+lX6/0u4NcpSnH47b/v3hE0QanXGO1P40rClWVNymQcPPI -----END CERTIFICATE-----Generated at Fri Jul 4 14:53:43 2025 by rpki-client