$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663064353a3a2f34382d3438203d3e203136393039.roa File: 326130663a363238373a663064353a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: ryS7LtvRM7BtYSXvqJNXaUSciO+e9Wq3zg1RzJ16Shw= Subject key identifier: 1A:12:50:EE:42:7A:A2:A0:DE:46:03:72:97:24:12:B9:F5:A5:D4:C7 Certificate issuer: /CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Certificate serial: 4DA722464442E8CC7137104F420B235A44247A06 Authority key identifier: 42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663064353a3a2f34382d3438203d3e203136393039.roa Signing time: Thu 26 Jun 2025 12:10:55 +0000 ROA not before: Thu 26 Jun 2025 12:05:55 +0000 ROA not after: Thu 25 Jun 2026 12:10:55 +0000 asID: 16909 IP address blocks: 2a0f:6287:f0d5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 17:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a7:22:46:44:42:e8:cc:71:37:10:4f:42:0b:23:5a:44:24:7a:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Validity Not Before: Jun 26 12:05:55 2025 GMT Not After : Jun 25 12:10:55 2026 GMT Subject: CN=1A1250EE427AA2A0DE460372972412B9F5A5D4C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bd:68:fa:5a:f8:b6:b6:f6:d3:57:83:ce:db: 1a:fa:03:2a:2d:89:47:90:be:e4:d1:43:59:e5:b1: 8e:86:25:98:c2:3c:c9:37:be:8d:f3:1a:00:c6:4a: 2b:45:87:52:82:b6:00:6f:75:7b:19:02:4c:d7:84: 59:a0:de:0f:97:3c:0f:52:03:b7:74:9f:63:6c:67: c6:de:94:4d:0a:82:64:a7:b4:c6:96:e1:29:5f:f7: f6:4f:68:55:9e:7f:8b:4a:bf:6e:45:db:76:07:76: 22:ab:e4:2f:7f:81:f6:70:2b:a0:b2:4c:b8:f5:63: b1:75:96:c9:09:e5:10:c2:cc:2e:4b:19:43:65:8e: a4:4c:98:69:e3:81:a2:22:5a:2e:e8:a7:05:8b:89: 3e:24:e4:c5:ab:37:5e:c2:f0:e1:73:de:08:30:33: ee:7c:9a:fc:65:98:95:c4:3b:73:17:3f:b6:e7:7e: 62:98:0c:3b:30:c5:75:c0:de:3a:be:04:46:c0:03: b7:cc:97:bc:dc:ca:38:05:ef:9f:cc:2e:2e:d7:a6: 23:97:a3:73:82:f4:84:14:fc:a9:ff:44:dd:f5:15: 4e:31:9f:c5:13:a3:1c:62:90:71:ad:30:73:38:99: 64:4b:af:68:31:3a:56:14:96:bd:f3:5c:68:32:4b: 79:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:12:50:EE:42:7A:A2:A0:DE:46:03:72:97:24:12:B9:F5:A5:D4:C7 X509v3 Authority Key Identifier: keyid:42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663064353a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:f0d5::/48 Signature Algorithm: sha256WithRSAEncryption 32:5f:cb:00:42:05:ed:8b:d7:5a:61:9b:01:08:9b:1f:29:c5: 05:cc:31:ab:a6:fc:04:46:1f:6e:83:eb:5b:a0:17:6d:f0:74: 2f:30:93:40:a6:dd:a5:99:8c:cb:35:9b:e7:7b:39:18:ce:9d: ce:dd:e1:af:ad:a4:5a:4f:f6:fb:a5:33:b8:b2:20:61:9a:b8: 21:25:9f:db:aa:e9:c5:81:7b:32:40:be:dc:76:cf:3f:6b:a9: b3:6f:40:08:7c:c3:c3:4e:7a:10:1e:60:5d:c4:6b:b3:e3:83: 41:38:2f:10:d5:77:12:9f:07:05:52:ed:a3:4e:ac:cb:09:fe: 17:9f:14:b9:46:6a:da:d0:83:9a:f0:0d:e5:4d:49:02:ca:8b: 9e:1f:bb:5d:9c:e5:f2:93:02:5d:77:f7:ee:e9:c7:31:c0:30: 11:a4:6c:6f:f5:b6:b6:3e:54:6b:06:b5:23:17:8a:c8:14:73: ab:c5:82:a3:87:72:5d:5d:4b:68:34:61:ae:3d:3c:91:01:63: c1:8d:ef:a1:56:c2:19:6b:24:d3:dd:22:41:10:cb:6d:af:94: e8:55:29:fa:ee:a1:2d:0c:c1:a2:aa:3b:28:27:15:89:7a:d3: 5f:f5:15:f4:a9:6e:b0:94:66:01:6e:f5:59:5f:d4:6a:ce:f8: e9:98:d2:b8 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUTaciRkRC6MxxNxBPQgsjWkQkegYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwMUM1NEY5MkU2NTUyRTQ3QUE1NzVBQ0VFRDJBRjBF RTI5QThFNzAeFw0yNTA2MjYxMjA1NTVaFw0yNjA2MjUxMjEwNTVaMDMxMTAvBgNV BAMTKDFBMTI1MEVFNDI3QUEyQTBERTQ2MDM3Mjk3MjQxMkI5RjVBNUQ0QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYvWj6Wvi2tvbTV4PO2xr6Ayot iUeQvuTRQ1nlsY6GJZjCPMk3vo3zGgDGSitFh1KCtgBvdXsZAkzXhFmg3g+XPA9S A7d0n2NsZ8belE0KgmSntMaW4Slf9/ZPaFWef4tKv25F23YHdiKr5C9/gfZwK6Cy TLj1Y7F1lskJ5RDCzC5LGUNljqRMmGnjgaIiWi7opwWLiT4k5MWrN17C8OFz3ggw M+58mvxlmJXEO3MXP7bnfmKYDDswxXXA3jq+BEbAA7fMl7zcyjgF75/MLi7XpiOX o3OC9IQU/Kn/RN31FU4xn8UToxxikHGtMHM4mWRLr2gxOlYUlr3zXGgyS3mbAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUGhJQ7kJ6oqDeRgNylyQSufWl1McwHwYDVR0j BBgwFoAUQgHFT5LmVS5Hqldazu0q8O4pqOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMi80MjAxQzU0Rjky RTY1NTJFNDdBQTU3NUFDRUVEMkFGMEVFMjlBOEU3LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4 OTk1ZC8zLzQyMDFDNTRGOTJFNjU1MkU0N0FBNTc1QUNFRUQyQUYwRUUyOUE4RTcu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMi8zMjYxMzA2NjNhMzYzMjM4MzczYTY2MzA2NDM1M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPYofw1TAN BgkqhkiG9w0BAQsFAAOCAQEAMl/LAEIF7YvXWmGbAQibHynFBcwxq6b8BEYfboPr W6AXbfB0LzCTQKbdpZmMyzWb53s5GM6dzt3hr62kWk/2+6UzuLIgYZq4ISWf26rp xYF7MkC+3HbPP2ups29ACHzDw056EB5gXcRrs+ODQTgvENV3Ep8HBVLto06sywn+ F58UuUZq2tCDmvAN5U1JAsqLnh+7XZzl8pMCXXf37unHMcAwEaRsb/W2tj5Uawa1 IxeKyBRzq8WCo4dyXV1LaDRhrj08kQFjwY3voVbCGWsk090iQRDLba+U6FUp+u6h LQzBoqo7KCcViXrTX/UV9KlusJRmAW71WV/Uas746ZjSuA== -----END CERTIFICATE-----Generated at Tue Jul 1 09:20:10 2025 by rpki-client