$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a34633a3a2f34362d3438203d3e20323134323035.roa File: 326130623a346530373a34633a3a2f34362d3438203d3e20323134323035.roa (raw, json) Hash identifier: LgL/DRp9eLYLIhh4EqMPfTY2C4+sh5PEG+ywX5ZqY7o= Subject key identifier: 67:B8:D5:7D:E1:42:49:11:DB:FD:C6:E2:E7:79:7D:9D:1E:89:76:C1 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 65D37BFE14E0B6CBF0A285429B6C8245657B0409 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a34633a3a2f34362d3438203d3e20323134323035.roa Signing time: Mon 13 Oct 2025 11:44:40 +0000 ROA not before: Mon 13 Oct 2025 11:39:40 +0000 ROA not after: Mon 12 Oct 2026 11:44:40 +0000 asID: 214205 IP address blocks: 2a0b:4e07:4c::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 12:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d3:7b:fe:14:e0:b6:cb:f0:a2:85:42:9b:6c:82:45:65:7b:04:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Oct 13 11:39:40 2025 GMT Not After : Oct 12 11:44:40 2026 GMT Subject: CN=67B8D57DE1424911DBFDC6E2E7797D9D1E8976C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:07:3d:b8:04:3f:a1:b3:01:69:84:ad:1c:aa: 41:24:3b:83:0d:29:23:dd:63:b2:60:b0:52:81:fa: d0:c7:11:20:3f:52:86:fe:50:17:00:f0:3a:ba:41: ac:e6:69:bd:1a:2c:0c:9c:6d:cc:d5:b2:a4:7d:2d: b6:44:7b:b8:86:8e:fe:81:ef:0f:33:02:59:3e:c7: 21:93:5e:6a:ee:cc:0c:15:e7:21:2b:31:cd:a7:b1: 84:b6:0e:d2:d0:f1:26:91:25:37:49:57:4d:85:d9: da:2d:75:00:b2:92:04:1e:ac:06:3a:45:bd:49:b9: 28:b8:e6:f3:53:e7:79:ab:aa:a3:6b:c8:80:c1:82: ce:57:03:d2:71:8e:97:6c:84:2b:62:f5:31:6f:34: b7:48:fa:53:5b:00:cd:05:4e:09:8e:c1:fa:62:43: 67:a5:49:05:2c:02:c5:80:64:e7:ae:e1:c1:cf:03: c0:86:48:7d:5f:a9:2b:fa:86:9b:bf:5f:e2:52:5e: ae:b4:8a:13:3c:5f:8c:bb:f8:f0:b1:43:dd:35:89: bd:e0:65:35:b9:e7:eb:24:2c:29:49:a6:12:25:f4: 2a:4f:d2:38:1a:87:94:41:6a:7b:4b:68:45:2f:c2: 90:e9:d9:59:fd:5a:26:e6:b8:f4:34:15:52:85:ef: a8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B8:D5:7D:E1:42:49:11:DB:FD:C6:E2:E7:79:7D:9D:1E:89:76:C1 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a34633a3a2f34362d3438203d3e20323134323035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:4c::/46 Signature Algorithm: sha256WithRSAEncryption 22:ed:e5:a7:ab:87:3c:ab:96:14:76:fa:aa:05:a9:75:c1:3f: ad:d8:65:00:49:29:8f:fd:cd:bc:bf:90:74:06:0e:e3:d0:98: 90:6e:ce:cd:44:5d:74:8f:0d:8d:62:df:1d:01:31:bc:a5:8b: 0a:71:9d:cd:de:a1:37:c7:3f:56:f6:7b:aa:29:88:cf:79:9c: b7:35:1d:33:94:9e:b8:00:2a:3f:1d:66:a5:e1:7f:13:54:81: 31:49:f7:21:5d:df:62:86:09:84:70:d8:1a:5f:7a:4c:16:3c: fc:fc:61:a5:7b:37:81:50:2e:dd:73:4d:a1:6e:5b:57:25:a2: 6e:57:98:b4:d2:c3:e8:c7:00:39:3d:61:15:0e:de:75:01:44: 8a:a3:9b:93:d9:ed:70:12:10:a8:a7:61:5b:1a:05:82:f4:64: 2c:33:0a:17:bc:d8:30:9f:2f:4c:90:21:83:69:2e:13:a2:5f: 9f:25:53:42:b6:05:6e:48:d6:b2:6c:1d:26:6f:88:a4:3c:87: 1d:a4:de:e5:30:10:d0:cd:4b:b9:c0:a5:22:98:2c:86:6d:6a: 72:65:49:e0:30:38:c6:2f:da:c8:fb:74:38:c0:2c:f3:47:ff: 98:ee:26:8f:6c:84:33:4b:5e:01:86:a7:bc:54:6a:fa:49:b6: 55:f6:0b:bc -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUZdN7/hTgtsvwooVCm2yCRWV7BAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTEwMTMxMTM5NDBaFw0yNjEwMTIxMTQ0NDBaMDMxMTAvBgNV BAMTKDY3QjhENTdERTE0MjQ5MTFEQkZEQzZFMkU3Nzk3RDlEMUU4OTc2QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWBz24BD+hswFphK0cqkEkO4MN KSPdY7JgsFKB+tDHESA/Uob+UBcA8Dq6Qazmab0aLAycbczVsqR9LbZEe7iGjv6B 7w8zAlk+xyGTXmruzAwV5yErMc2nsYS2DtLQ8SaRJTdJV02F2dotdQCykgQerAY6 Rb1JuSi45vNT53mrqqNryIDBgs5XA9JxjpdshCti9TFvNLdI+lNbAM0FTgmOwfpi Q2elSQUsAsWAZOeu4cHPA8CGSH1fqSv6hpu/X+JSXq60ihM8X4y7+PCxQ901ib3g ZTW55+skLClJphIl9CpP0jgah5RBantLaEUvwpDp2Vn9WibmuPQ0FVKF76jtAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUZ7jVfeFCSRHb/cbi53l9nR6JdsEwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM0NjMzYTNhMmYzNDM2 MmQzNDM4MjAzZDNlMjAzMjMxMzQzMjMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwIqC04HAEwwDQYJ KoZIhvcNAQELBQADggEBACLt5aerhzyrlhR2+qoFqXXBP63YZQBJKY/9zby/kHQG DuPQmJBuzs1EXXSPDY1i3x0BMbyliwpxnc3eoTfHP1b2e6opiM95nLc1HTOUnrgA Kj8dZqXhfxNUgTFJ9yFd32KGCYRw2BpfekwWPPz8YaV7N4FQLt1zTaFuW1clom5X mLTSw+jHADk9YRUO3nUBRIqjm5PZ7XASEKinYVsaBYL0ZCwzChe82DCfL0yQIYNp LhOiX58lU0K2BW5I1rJsHSZviKQ8hx2k3uUwENDNS7nApSKYLIZtanJlSeAwOMYv 2sj7dDjALPNH/5juJo9shDNLXgGGp7xUavpJtlX2C7w= -----END CERTIFICATE-----Generated at Mon Oct 20 02:40:20 2025 by rpki-client