$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33653a3a2f34382d3438203d3e203131393637.roa File: 326130623a346530373a33653a3a2f34382d3438203d3e203131393637.roa (raw, json) Hash identifier: NJDWDYzzWhAnDstc/ozJ6gfZ/83Yosc9zrTAumunjfg= Subject key identifier: 82:5E:A1:90:46:13:19:D7:65:8C:22:C4:DE:C7:89:EE:47:C0:06:42 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 470AFCE233607DB95B083F2415568B3A6E3F8E63 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33653a3a2f34382d3438203d3e203131393637.roa Signing time: Wed 25 Jun 2025 21:08:09 +0000 ROA not before: Wed 25 Jun 2025 21:03:09 +0000 ROA not after: Wed 24 Jun 2026 21:08:09 +0000 asID: 11967 IP address blocks: 2a0b:4e07:3e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 08:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:0a:fc:e2:33:60:7d:b9:5b:08:3f:24:15:56:8b:3a:6e:3f:8e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jun 25 21:03:09 2025 GMT Not After : Jun 24 21:08:09 2026 GMT Subject: CN=825EA190461319D7658C22C4DEC789EE47C00642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:22:20:46:72:1c:75:ee:e8:09:9d:d5:ec:83: f8:88:76:21:ce:78:22:c8:e9:12:72:00:54:fa:f5: 1e:50:f7:bf:a7:d7:f3:85:e3:31:5d:25:31:50:a6: ef:0d:66:9e:fb:67:96:da:f0:66:2c:c2:bb:d8:62: 42:52:ce:5b:15:c8:4d:28:72:54:68:86:35:e1:06: d9:55:f0:54:eb:76:a2:92:c5:60:3e:39:fd:66:bb: 9e:50:9b:5b:6f:14:9b:d4:ac:fa:c8:be:1a:d0:a2: 4d:22:26:99:ca:5c:82:d0:0b:48:12:2f:90:fa:81: f0:9c:0c:8b:00:ff:c0:11:fc:48:02:16:25:ca:31: 66:3c:f2:13:a5:c6:f5:a3:9c:3d:c5:0b:25:3c:2e: ac:d3:fe:cc:7c:68:20:4c:53:74:4a:8f:73:9f:0b: 47:03:3b:bb:02:16:f6:ec:03:2a:d9:5c:f7:35:ad: 0f:d4:c4:0a:ab:31:15:0e:ab:1b:6b:4b:c4:56:87: 06:52:cf:40:60:c3:b7:ed:91:07:61:4c:7d:87:63: 38:90:c4:ab:c3:ee:9b:a7:c9:20:05:d5:fc:37:8d: f2:7b:80:8a:20:20:a0:ed:4c:03:64:db:02:af:77: 50:cb:c6:00:0d:37:25:69:19:24:0d:7d:80:5e:9c: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5E:A1:90:46:13:19:D7:65:8C:22:C4:DE:C7:89:EE:47:C0:06:42 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a33653a3a2f34382d3438203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:3e::/48 Signature Algorithm: sha256WithRSAEncryption 98:14:65:70:19:7c:96:4b:83:b0:be:b2:92:7f:71:62:fc:18: 50:b6:70:87:e8:85:5d:30:52:4f:6c:52:43:a1:72:ce:bf:59: 37:58:8c:6d:9e:5e:56:3f:6f:f1:1a:2e:0e:43:b2:09:77:50: 68:61:94:ff:ac:07:2f:46:29:82:ca:78:30:36:25:fc:77:8e: a2:8d:3c:5b:db:e8:21:79:37:59:18:23:ea:fc:f9:1c:0d:bf: fc:c9:d7:d4:47:a5:21:61:6a:3f:ac:cf:37:9b:02:a9:00:d4: 07:3a:6c:89:84:a6:67:dd:94:26:e1:97:71:ab:49:f4:8b:fe: 5c:e0:15:8f:6d:d0:99:ba:ab:7b:14:14:c8:e6:6f:61:e7:3e: 03:26:70:99:8c:bc:fc:73:b9:f8:79:7a:02:be:28:ee:5b:17: 85:f2:d6:00:44:54:17:96:8e:ab:fb:37:52:50:0b:fb:97:77: 00:73:f1:76:bd:2d:50:7e:22:57:73:44:9f:eb:52:b3:73:42: e3:0c:af:63:f7:39:d2:a5:ab:68:a5:f0:96:ac:ea:97:bf:14: cb:12:b0:49:06:51:92:11:da:60:c3:c4:45:0b:ad:f6:13:b6: af:ad:33:b6:99:93:c9:87:4a:5f:d9:76:29:11:5a:bb:65:ff: 59:8c:25:7e -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIURwr84jNgfblbCD8kFVaLOm4/jmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA2MjUyMTAzMDlaFw0yNjA2MjQyMTA4MDlaMDMxMTAvBgNV BAMTKDgyNUVBMTkwNDYxMzE5RDc2NThDMjJDNERFQzc4OUVFNDdDMDA2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdIiBGchx17ugJndXsg/iIdiHO eCLI6RJyAFT69R5Q97+n1/OF4zFdJTFQpu8NZp77Z5ba8GYswrvYYkJSzlsVyE0o clRohjXhBtlV8FTrdqKSxWA+Of1mu55Qm1tvFJvUrPrIvhrQok0iJpnKXILQC0gS L5D6gfCcDIsA/8AR/EgCFiXKMWY88hOlxvWjnD3FCyU8LqzT/sx8aCBMU3RKj3Of C0cDO7sCFvbsAyrZXPc1rQ/UxAqrMRUOqxtrS8RWhwZSz0Bgw7ftkQdhTH2HYziQ xKvD7punySAF1fw3jfJ7gIogIKDtTANk2wKvd1DLxgANNyVpGSQNfYBenM2nAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQUgl6hkEYTGddljCLE3seJ7kfABkIwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMzNjUzYTNhMmYzNDM4 MmQzNDM4MjAzZDNlMjAzMTMxMzkzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgtOBwA+MA0GCSqG SIb3DQEBCwUAA4IBAQCYFGVwGXyWS4OwvrKSf3Fi/BhQtnCH6IVdMFJPbFJDoXLO v1k3WIxtnl5WP2/xGi4OQ7IJd1BoYZT/rAcvRimCyngwNiX8d46ijTxb2+gheTdZ GCPq/PkcDb/8ydfUR6UhYWo/rM83mwKpANQHOmyJhKZn3ZQm4Zdxq0n0i/5c4BWP bdCZuqt7FBTI5m9h5z4DJnCZjLz8c7n4eXoCvijuWxeF8tYARFQXlo6r+zdSUAv7 l3cAc/F2vS1QfiJXc0Sf61Kzc0LjDK9j9znSpatopfCWrOqXvxTLErBJBlGSEdpg w8RFC632E7avrTO2mZPJh0pf2XYpEVq7Zf9ZjCV+ -----END CERTIFICATE-----Generated at Sun Jun 29 21:01:44 2025 by rpki-client