$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6265633a3a2f34372d3437203d3e203131393637.roa File: 326130623a346530373a6265633a3a2f34372d3437203d3e203131393637.roa (raw, json) Hash identifier: Sn1+7WFxokdfilphCgDSiIt/p85wZ7S7fV1YnTMR+SQ= Subject key identifier: 0C:90:32:3B:AF:03:B0:7E:30:36:75:52:21:32:8B:6A:A0:99:2F:43 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 5B6C8B3C5F54CAD603186D757C3E97D4E9747DAC Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6265633a3a2f34372d3437203d3e203131393637.roa Signing time: Tue 24 Jun 2025 08:27:12 +0000 ROA not before: Tue 24 Jun 2025 08:22:12 +0000 ROA not after: Tue 23 Jun 2026 08:27:12 +0000 asID: 11967 IP address blocks: 2a0b:4e07:bec::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 16:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:6c:8b:3c:5f:54:ca:d6:03:18:6d:75:7c:3e:97:d4:e9:74:7d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jun 24 08:22:12 2025 GMT Not After : Jun 23 08:27:12 2026 GMT Subject: CN=0C90323BAF03B07E3036755221328B6AA0992F43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ea:70:66:37:ca:c1:93:14:07:c6:f0:f9:43: 1f:c6:e9:74:92:49:43:49:67:2c:3a:d8:b5:74:77: 3e:c4:5a:de:9e:ba:a9:ac:62:23:06:51:8c:06:fb: 9f:1c:4b:cd:89:20:c1:9e:83:04:82:19:8c:37:d4: 68:24:ac:5f:77:c9:43:e6:c7:ec:78:15:af:23:a6: f2:f7:d4:ef:9f:81:b1:13:50:df:e7:89:ef:79:5a: 3c:11:91:9c:c0:3c:b1:7b:e5:5e:d3:1a:6d:11:5c: bd:1b:38:c8:22:e9:d9:9b:0f:c3:4c:07:59:b0:d5: 40:42:d6:ca:c9:8a:a9:8f:ce:d1:03:a4:53:8c:68: f5:d6:e7:45:36:56:c1:4c:08:3b:e6:3e:21:46:7a: e5:1e:8d:d3:82:bf:16:33:14:5d:75:52:3c:43:9d: 3b:32:0f:2b:e1:5b:1f:57:a1:6b:95:b1:3f:0f:bc: 07:20:bf:a6:d7:67:7f:8f:b7:a7:f1:88:c1:0d:cc: 67:f9:47:92:42:40:b8:13:d7:b1:95:6b:f2:1f:93: 9a:b1:b6:60:16:55:7d:e5:f2:f4:da:55:cf:75:f7: d0:2d:87:94:c5:f3:0f:39:5a:b3:63:3a:90:6c:2c: f3:42:fc:d7:b3:d9:c1:4e:e0:91:a5:c0:19:52:36: 61:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:90:32:3B:AF:03:B0:7E:30:36:75:52:21:32:8B:6A:A0:99:2F:43 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a6265633a3a2f34372d3437203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:bec::/47 Signature Algorithm: sha256WithRSAEncryption 03:a3:1f:6d:1d:0e:e0:25:3d:ff:29:9b:09:99:29:40:bd:3c: a4:18:5e:e9:98:87:e3:3e:39:7a:f9:75:ce:6e:3a:2b:3b:58: 1d:1d:0d:91:96:93:80:93:08:09:66:2e:5d:26:94:6b:1c:43: 01:57:0c:4c:60:27:d2:e0:79:b3:34:ea:56:a9:49:64:23:65: 20:34:d3:ab:d2:ef:56:31:43:3d:ea:4f:e0:e0:b4:79:65:1f: d0:d0:2a:dd:22:9c:8d:ea:b0:4f:b1:ba:23:b9:0c:49:10:0f: 10:23:1a:94:d2:2a:db:8b:06:2a:ea:28:bd:57:49:fe:97:cc: 5b:a3:98:34:00:f7:db:13:d6:35:a7:fd:fb:0c:51:72:81:8e: 76:58:4b:db:2d:e7:c1:9e:62:9d:e3:66:b7:82:e7:ca:c7:a4: 89:7b:75:e3:51:2f:70:77:03:cc:9f:5c:19:40:d7:fd:6a:61: 71:f4:81:85:5a:f8:21:98:16:73:bb:bf:7d:8c:c5:af:a6:f9: e6:e4:8c:80:0c:31:83:91:9a:e0:9d:f3:ce:85:8f:06:c5:6c: 33:df:97:b8:23:a9:c7:a5:d3:a3:3e:9c:6d:b9:c3:c0:53:cb: de:06:9c:ce:19:bf:49:3f:42:d0:c1:e3:83:fe:e6:7c:88:dd: 3e:bd:15:3f -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgIUW2yLPF9UytYDGG11fD6X1Ol0fawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA2MjQwODIyMTJaFw0yNjA2MjMwODI3MTJaMDMxMTAvBgNV BAMTKDBDOTAzMjNCQUYwM0IwN0UzMDM2NzU1MjIxMzI4QjZBQTA5OTJGNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO6nBmN8rBkxQHxvD5Qx/G6XSS SUNJZyw62LV0dz7EWt6euqmsYiMGUYwG+58cS82JIMGegwSCGYw31GgkrF93yUPm x+x4Fa8jpvL31O+fgbETUN/nie95WjwRkZzAPLF75V7TGm0RXL0bOMgi6dmbD8NM B1mw1UBC1srJiqmPztEDpFOMaPXW50U2VsFMCDvmPiFGeuUejdOCvxYzFF11UjxD nTsyDyvhWx9XoWuVsT8PvAcgv6bXZ3+Pt6fxiMENzGf5R5JCQLgT17GVa/Ifk5qx tmAWVX3l8vTaVc9199Ath5TF8w85WrNjOpBsLPNC/Nez2cFO4JGlwBlSNmGtAgMB AAGjggJmMIICYjAdBgNVHQ4EFgQUDJAyO68DsH4wNnVSITKLaqCZL0MwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGoBggrBgEFBQcBCwSBmzCBmDCBlQYIKwYBBQUHMAuGgYhyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyNjU2MzNhM2EyZjM0 MzcyZDM0MzcyMDNkM2UyMDMxMzEzOTM2Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEqC04HC+wwDQYJ KoZIhvcNAQELBQADggEBAAOjH20dDuAlPf8pmwmZKUC9PKQYXumYh+M+OXr5dc5u Ois7WB0dDZGWk4CTCAlmLl0mlGscQwFXDExgJ9LgebM06lapSWQjZSA006vS71Yx Qz3qT+DgtHllH9DQKt0inI3qsE+xuiO5DEkQDxAjGpTSKtuLBirqKL1XSf6XzFuj mDQA99sT1jWn/fsMUXKBjnZYS9st58GeYp3jZreC58rHpIl7deNRL3B3A8yfXBlA 1/1qYXH0gYVa+CGYFnO7v32Mxa+m+ebkjIAMMYORmuCd886FjwbFbDPfl7gjqcel 06M+nG25w8BTy94GnM4Zv0k/QtDB44P+5nyI3T69FT8= -----END CERTIFICATE-----Generated at Sun Jun 29 09:22:37 2025 by rpki-client