$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663839323a3a2f34382d3438203d3e203136393039.roa File: 326130663a363238373a663839323a3a2f34382d3438203d3e203136393039.roa (raw, json) Hash identifier: 4AaEt2tpRbx+3BN5zF3OuyrL1mils/dvpOYdn0PnHo0= Subject key identifier: 59:86:D1:9C:66:1B:95:FE:18:D9:0C:CA:2B:B4:A4:A3:E0:1A:A7:72 Certificate issuer: /CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Certificate serial: 3A7A03C4D8478698003ECD0D995788F8F5DFD37A Authority key identifier: 42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663839323a3a2f34382d3438203d3e203136393039.roa Signing time: Thu 26 Jun 2025 12:10:57 +0000 ROA not before: Thu 26 Jun 2025 12:05:57 +0000 ROA not after: Thu 25 Jun 2026 12:10:57 +0000 asID: 16909 IP address blocks: 2a0f:6287:f892::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 10:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7a:03:c4:d8:47:86:98:00:3e:cd:0d:99:57:88:f8:f5:df:d3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Validity Not Before: Jun 26 12:05:57 2025 GMT Not After : Jun 25 12:10:57 2026 GMT Subject: CN=5986D19C661B95FE18D90CCA2BB4A4A3E01AA772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0d:a3:72:d1:cc:0b:cc:8c:59:04:b5:ab:1c: f9:6b:37:3a:0d:66:c8:45:7b:8b:9e:6d:b8:ec:a3: 4f:27:74:45:69:24:3b:5c:06:ef:df:4b:1f:88:97: c0:88:d0:31:f0:91:64:b6:a2:86:70:37:0f:7b:51: 4e:6e:ce:f8:52:aa:24:e4:62:a0:da:d7:5e:1a:f0: 90:78:ea:a3:33:5a:65:f0:d3:68:a2:98:56:f8:e9: 81:2a:11:de:ca:59:ae:bb:68:6f:0c:13:d6:10:e6: 62:fe:ff:7d:b0:f2:a8:0f:a5:7d:c8:a9:b0:54:ac: 1e:c2:05:83:d9:dc:7c:35:a6:9b:8a:77:85:4b:49: 63:f9:7f:e9:82:3a:cc:72:9c:73:9f:c7:36:cf:40: 39:61:63:6c:aa:a4:e0:d7:a8:97:43:f9:8b:c5:7b: 5d:b1:00:67:05:04:61:29:a2:5a:06:78:43:fa:61: 50:ee:19:79:bc:71:51:40:61:68:7d:ef:d9:eb:5b: 27:ec:9e:f5:5f:0d:92:f2:aa:7c:83:97:02:0f:fd: b5:10:da:98:e8:2e:5c:f8:95:17:02:f0:1f:f2:a9: bf:57:e6:60:39:b8:04:d8:ba:48:81:ab:0a:e2:a8: d4:b0:39:2c:e0:55:31:75:51:5c:c0:09:cc:21:57: 93:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:86:D1:9C:66:1B:95:FE:18:D9:0C:CA:2B:B4:A4:A3:E0:1A:A7:72 X509v3 Authority Key Identifier: keyid:42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a663839323a3a2f34382d3438203d3e203136393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:f892::/48 Signature Algorithm: sha256WithRSAEncryption 64:57:28:91:b7:1f:5c:3e:64:77:d5:d7:2c:01:ef:4e:7c:b1: de:18:4d:6e:1e:ed:1c:ea:ba:1b:d6:ce:f1:1b:4b:f4:e9:67: f1:c3:b7:a2:17:de:25:d8:a1:1f:6e:18:3b:ae:81:13:b9:1a: f4:33:19:de:ef:aa:86:79:97:8f:1b:7d:fa:e0:ac:81:e7:75: d8:ec:a7:66:3d:32:38:23:83:76:67:92:c6:cb:28:f4:53:4c: 3d:45:a4:3c:f1:3e:05:86:10:b5:00:15:9b:ff:69:af:b0:e2: d5:50:22:7c:c9:22:c7:ca:c2:b6:93:47:a4:d3:44:f7:02:85: ca:b7:b7:77:70:f5:0a:46:95:02:82:91:c1:8e:03:58:0c:eb: fe:7e:93:da:39:5e:ea:6b:db:d3:86:4e:c7:e8:d2:33:ab:f9: e6:9e:45:31:7b:49:78:b9:24:ca:3d:6c:a8:a0:c0:79:ac:47: f6:af:52:af:7d:0b:58:5d:00:0b:c7:f9:ed:72:98:49:38:12: f0:75:1f:b5:6f:26:68:fc:8d:1b:e2:31:df:bd:28:8f:47:db: e3:ee:56:e0:59:14:4c:e8:3c:a5:7a:94:9b:56:e0:e7:b5:ad: ca:bd:9c:5a:d6:3f:84:f9:32:ae:b9:35:86:a1:e5:28:7a:55: a1:b4:a3:d2 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUOnoDxNhHhpgAPs0NmVeI+PXf03owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwMUM1NEY5MkU2NTUyRTQ3QUE1NzVBQ0VFRDJBRjBF RTI5QThFNzAeFw0yNTA2MjYxMjA1NTdaFw0yNjA2MjUxMjEwNTdaMDMxMTAvBgNV BAMTKDU5ODZEMTlDNjYxQjk1RkUxOEQ5MENDQTJCQjRBNEEzRTAxQUE3NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZDaNy0cwLzIxZBLWrHPlrNzoN ZshFe4uebbjso08ndEVpJDtcBu/fSx+Il8CI0DHwkWS2ooZwNw97UU5uzvhSqiTk YqDa114a8JB46qMzWmXw02iimFb46YEqEd7KWa67aG8ME9YQ5mL+/32w8qgPpX3I qbBUrB7CBYPZ3Hw1ppuKd4VLSWP5f+mCOsxynHOfxzbPQDlhY2yqpODXqJdD+YvF e12xAGcFBGEpoloGeEP6YVDuGXm8cVFAYWh979nrWyfsnvVfDZLyqnyDlwIP/bUQ 2pjoLlz4lRcC8B/yqb9X5mA5uATYukiBqwriqNSwOSzgVTF1UVzACcwhV5PpAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUWYbRnGYblf4Y2QzKK7Sko+Aap3IwHwYDVR0j BBgwFoAUQgHFT5LmVS5Hqldazu0q8O4pqOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMi80MjAxQzU0Rjky RTY1NTJFNDdBQTU3NUFDRUVEMkFGMEVFMjlBOEU3LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4 OTk1ZC8zLzQyMDFDNTRGOTJFNjU1MkU0N0FBNTc1QUNFRUQyQUYwRUUyOUE4RTcu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMi8zMjYxMzA2NjNhMzYzMjM4MzczYTY2MzgzOTMyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzEzNjM5MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPYof4kjAN BgkqhkiG9w0BAQsFAAOCAQEAZFcokbcfXD5kd9XXLAHvTnyx3hhNbh7tHOq6G9bO 8RtL9Oln8cO3ohfeJdihH24YO66BE7ka9DMZ3u+qhnmXjxt9+uCsged12OynZj0y OCODdmeSxsso9FNMPUWkPPE+BYYQtQAVm/9pr7Di1VAifMkix8rCtpNHpNNE9wKF yre3d3D1CkaVAoKRwY4DWAzr/n6T2jle6mvb04ZOx+jSM6v55p5FMXtJeLkkyj1s qKDAeaxH9q9Sr30LWF0AC8f57XKYSTgS8HUftW8maPyNG+Ix370oj0fb4+5W4FkU TOg8pXqUm1bg57Wtyr2cWtY/hPkyrrk1hqHlKHpVobSj0g== -----END CERTIFICATE-----Generated at Mon Jun 30 16:02:58 2025 by rpki-client