$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666361373a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a666361373a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: ALNhWx8v/3Q0VMXn0QMUnXrk99BM4RElpquJtgUBtec= Subject key identifier: A7:42:5D:02:ED:F3:41:F4:7C:66:9B:3A:76:85:64:F3:79:3E:87:D2 Certificate issuer: /CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Certificate serial: 53C777372468EED8563584D90B768FB316366BAD Authority key identifier: 01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666361373a3a2f34382d3438203d3e20333936393638.roa Signing time: Fri 04 Jul 2025 00:47:47 +0000 ROA not before: Fri 04 Jul 2025 00:42:47 +0000 ROA not after: Fri 03 Jul 2026 00:47:47 +0000 asID: 396968 IP address blocks: 2a0f:6287:fca7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.mft rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 01:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:c7:77:37:24:68:ee:d8:56:35:84:d9:0b:76:8f:b3:16:36:6b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15 Validity Not Before: Jul 4 00:42:47 2025 GMT Not After : Jul 3 00:47:47 2026 GMT Subject: CN=A7425D02EDF341F47C669B3A768564F3793E87D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:d4:b1:8b:25:73:b6:18:8e:72:54:c6:b8: 5b:41:9e:4f:8a:51:2b:a9:b8:98:9d:87:9a:8f:52: 17:88:99:a1:cd:92:75:eb:6d:21:16:b0:0e:ce:87: 4f:a4:6b:74:e7:15:79:0c:e2:c4:ff:99:e1:d8:f5: f5:1d:a4:30:71:7d:4c:de:d6:a5:3e:2b:dd:6b:3c: ed:50:ef:9b:b2:59:4d:99:6e:0d:78:67:cb:3d:94: ee:ab:38:a5:c1:19:8d:45:7b:39:54:3a:90:68:d9: 8a:6a:d0:e0:79:bd:a5:de:5f:d2:e7:75:e6:88:9e: fb:74:ba:c7:cb:a7:40:94:c5:f7:73:36:ba:7c:f2: af:38:bf:59:fe:94:c0:af:4d:0b:50:94:04:7e:aa: b0:40:52:eb:ab:94:6e:43:f8:59:06:40:45:a9:7b: 2f:bf:0a:39:59:2e:67:1c:1a:a2:70:1c:fe:c0:1f: 0e:74:66:2d:31:02:d8:eb:d7:1f:d1:eb:37:45:ec: 35:0b:fd:52:b7:21:74:5a:12:7a:00:89:56:90:d3: cc:87:89:00:02:5e:91:7e:23:0e:77:89:f1:c0:5a: e4:a2:da:fd:88:42:70:b7:75:ff:88:5c:2d:a6:c3: 68:fc:4a:6b:a4:bc:81:c7:4b:15:76:3d:98:ad:7a: 80:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:42:5D:02:ED:F3:41:F4:7C:66:9B:3A:76:85:64:F3:79:3E:87:D2 X509v3 Authority Key Identifier: keyid:01:5C:70:6E:4D:5C:D4:BD:25:FB:BE:8F:83:90:C8:4A:7C:F5:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/015C706E4D5CD4BD25FBBE8F8390C84A7CF57D15.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/3/326130663a363238373a666361373a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:fca7::/48 Signature Algorithm: sha256WithRSAEncryption 5b:ac:11:be:03:31:0c:97:77:3c:f7:6d:89:62:06:1d:ff:94: 64:22:88:4e:55:dd:02:b4:68:0e:8e:a9:b1:e7:33:90:d9:d7: 0e:6b:bc:2c:14:f3:5f:80:09:b1:4a:c2:83:9d:e5:18:47:c7: 53:5a:1a:6d:3e:2c:62:11:a7:64:6c:3f:91:d8:5a:c1:d2:95: 9f:8d:57:b9:86:0a:e5:60:2c:81:80:97:48:64:ea:31:bb:a1: 9a:c4:b2:ed:00:75:a2:69:12:11:86:c1:47:05:aa:8b:7e:68: fa:cb:b7:76:96:f5:81:11:4c:cd:b0:e6:01:1c:f2:fb:71:5f: 51:82:a8:97:4d:a8:7e:24:e5:b4:b0:94:c1:33:8c:1f:25:3a: 90:ab:5a:cc:c7:7f:91:f8:aa:3e:5c:34:5d:f2:ae:dc:a6:12: 80:0b:c0:34:05:45:51:b6:ba:96:12:04:7c:34:e4:05:d4:f1: 68:04:58:e3:9b:da:0f:db:a7:0b:a1:fe:90:23:c5:8e:ff:0b: cf:a1:8d:fc:67:13:2a:1d:ee:e1:ec:65:fa:43:ce:61:83:41: 22:47:f6:8d:c4:91:61:b4:01:f5:9b:e4:9e:51:1a:c1:00:27: 9f:d4:2d:2c:a1:31:14:74:1f:3f:0a:e6:ef:c3:ea:86:aa:2d: 0c:53:37:1f -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUU8d3NyRo7thWNYTZC3aPsxY2a60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE1QzcwNkU0RDVDRDRCRDI1RkJCRThGODM5MEM4NEE3 Q0Y1N0QxNTAeFw0yNTA3MDQwMDQyNDdaFw0yNjA3MDMwMDQ3NDdaMDMxMTAvBgNV BAMTKEE3NDI1RDAyRURGMzQxRjQ3QzY2OUIzQTc2ODU2NEYzNzkzRTg3RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeGNSxiyVzthiOclTGuFtBnk+K USupuJidh5qPUheImaHNknXrbSEWsA7Oh0+ka3TnFXkM4sT/meHY9fUdpDBxfUze 1qU+K91rPO1Q75uyWU2Zbg14Z8s9lO6rOKXBGY1FezlUOpBo2Ypq0OB5vaXeX9Ln deaInvt0usfLp0CUxfdzNrp88q84v1n+lMCvTQtQlAR+qrBAUuurlG5D+FkGQEWp ey+/CjlZLmccGqJwHP7AHw50Zi0xAtjr1x/R6zdF7DUL/VK3IXRaEnoAiVaQ08yH iQACXpF+Iw53ifHAWuSi2v2IQnC3df+IXC2mw2j8SmukvIHHSxV2PZiteoCNAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUp0JdAu3zQfR8Zps6doVk83k+h9IwHwYDVR0j BBgwFoAUAVxwbk1c1L0l+76Pg5DISnz1fRUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMy8wMTVDNzA2RTRE NUNENEJEMjVGQkJFOEY4MzkwQzg0QTdDRjU3RDE1LmNybDBvBggrBgEFBQcBAQRj MGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8va3JpbGwuNDcyNzIubmV0L3JlcG8vSFlF SE9TVC81LzAxNUM3MDZFNEQ1Q0Q0QkQyNUZCQkU4RjgzOTBDODRBN0NGNTdEMTUu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMy8zMjYxMzA2NjNhMzYzMjM4MzczYTY2NjM2MTM3M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/yn MA0GCSqGSIb3DQEBCwUAA4IBAQBbrBG+AzEMl3c8922JYgYd/5RkIohOVd0CtGgO jqmx5zOQ2dcOa7wsFPNfgAmxSsKDneUYR8dTWhptPixiEadkbD+R2FrB0pWfjVe5 hgrlYCyBgJdIZOoxu6GaxLLtAHWiaRIRhsFHBaqLfmj6y7d2lvWBEUzNsOYBHPL7 cV9RgqiXTah+JOW0sJTBM4wfJTqQq1rMx3+R+Ko+XDRd8q7cphKAC8A0BUVRtrqW EgR8NOQF1PFoBFjjm9oP26cLof6QI8WO/wvPoY38ZxMqHe7h7GX6Q85hg0EiR/aN xJFhtAH1m+SeURrBACef1C0soTEUdB8/Cubvw+qGqi0MUzcf -----END CERTIFICATE-----Generated at Fri Jul 4 14:44:43 2025 by rpki-client