$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666462353a3a2f34382d3438203d3e20333936393638.roa File: 326130663a363238373a666462353a3a2f34382d3438203d3e20333936393638.roa (raw, json) Hash identifier: 4OJwnHE7EDN0Y3hh93kj46+vaUzCyRNl1p3xBBrPfxY= Subject key identifier: C3:05:E1:C3:D8:DA:D2:0E:3C:8B:55:5F:E3:87:14:5C:CF:58:76:6C Certificate issuer: /CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Certificate serial: 1AFAF6AF84D16AB1F38B6659F1BE177D0E430AE2 Authority key identifier: 42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666462353a3a2f34382d3438203d3e20333936393638.roa Signing time: Thu 26 Jun 2025 12:57:56 +0000 ROA not before: Thu 26 Jun 2025 12:52:56 +0000 ROA not after: Thu 25 Jun 2026 12:57:56 +0000 asID: 396968 IP address blocks: 2a0f:6287:fdb5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 02 Jul 2025 18:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:fa:f6:af:84:d1:6a:b1:f3:8b:66:59:f1:be:17:7d:0e:43:0a:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4201C54F92E6552E47AA575ACEED2AF0EE29A8E7 Validity Not Before: Jun 26 12:52:56 2025 GMT Not After : Jun 25 12:57:56 2026 GMT Subject: CN=C305E1C3D8DAD20E3C8B555FE387145CCF58766C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ab:95:ca:2b:2a:a0:da:8e:54:61:a5:66:27: 09:98:8d:dc:65:e2:3a:c1:4c:49:0a:f3:ed:87:28: bf:91:45:77:68:8a:d3:5c:78:27:8d:68:9f:23:a8: 1d:76:03:a4:8e:7f:c2:9b:96:c3:45:48:d4:68:64: 66:2e:b4:8e:2f:b3:ec:3f:91:e4:fe:4c:52:6b:25: 5a:d8:a1:9b:f7:17:02:22:dc:f8:fd:f0:c4:7f:8a: ea:b1:20:3e:f9:29:ee:52:8b:08:97:47:08:31:bf: 23:20:6d:61:09:f3:48:bd:f3:65:d9:95:f0:c9:d1: 36:79:a0:4a:e5:59:e1:f5:e6:3b:4e:af:8c:3c:d4: 3f:5f:c9:cb:3f:d8:6d:69:17:3a:df:68:d3:74:87: 9d:d4:eb:d5:97:24:3f:97:58:d4:97:19:28:45:3d: b5:89:9c:0f:bf:cd:fd:2a:4e:b3:81:4a:34:d7:33: 25:88:f3:ba:6a:1a:d3:7b:d9:09:bb:4e:ff:8c:57: 72:49:d4:12:ce:60:0b:c8:ec:10:57:f1:41:a9:ed: 70:9d:2e:d9:2b:41:f4:05:a5:cb:b8:4e:e5:3c:06: a8:45:1c:4c:5b:cc:e2:af:f8:c4:50:c9:f0:b3:3c: 29:fa:22:df:7d:39:65:09:88:7e:4f:4d:bc:df:6c: c8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:05:E1:C3:D8:DA:D2:0E:3C:8B:55:5F:E3:87:14:5C:CF:58:76:6C X509v3 Authority Key Identifier: keyid:42:01:C5:4F:92:E6:55:2E:47:AA:57:5A:CE:ED:2A:F0:EE:29:A8:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4201C54F92E6552E47AA575ACEED2AF0EE29A8E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf92ee4d840193df45a0ea6687/2/326130663a363238373a666462353a3a2f34382d3438203d3e20333936393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6287:fdb5::/48 Signature Algorithm: sha256WithRSAEncryption 06:0d:1c:82:30:3d:6f:0f:f9:2a:c7:75:c9:45:17:56:b2:a2: 7e:9c:50:a4:85:e9:b0:85:64:f8:f6:85:76:83:4a:e2:1a:a1: 5d:53:d1:30:b4:bf:e3:4a:45:c5:2b:55:8e:cf:45:59:64:6f: b6:9e:9f:d9:03:3e:43:ab:51:16:4f:49:a6:ef:39:a0:ed:eb: f8:14:dd:b9:01:28:d4:fb:c7:72:b2:f1:85:49:a0:ba:49:00: 89:d9:53:cb:f0:a9:47:64:4f:38:e0:f5:8c:7b:af:36:c2:68: 71:48:ee:4c:3d:3b:84:83:67:3d:e3:1b:6e:42:cf:d6:77:73: 46:65:53:6a:4d:58:3c:45:2c:32:0c:e0:cc:a8:5b:7a:19:9c: e8:8e:1b:a9:c6:d3:86:80:9a:f6:2b:b6:9e:1c:bf:3b:cd:90: d4:6a:0f:a9:33:e2:2c:bb:1f:cb:89:86:9e:3a:51:a0:b9:fa: 54:f6:92:53:14:6c:f6:85:31:54:fe:44:1b:f1:72:ff:9f:a0: d5:d7:6d:c9:63:a8:ba:e1:2e:f9:dc:00:8e:6a:ed:35:c2:fa: a2:a9:7b:e4:a2:fb:f6:01:f2:15:85:0e:5a:5b:35:b8:9c:28: da:52:fe:3e:ff:be:71:5d:5c:7f:77:83:2e:c2:23:45:66:d4: 6d:4d:e6:4f -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUGvr2r4TRarHzi2ZZ8b4XfQ5DCuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDIwMUM1NEY5MkU2NTUyRTQ3QUE1NzVBQ0VFRDJBRjBF RTI5QThFNzAeFw0yNTA2MjYxMjUyNTZaFw0yNjA2MjUxMjU3NTZaMDMxMTAvBgNV BAMTKEMzMDVFMUMzRDhEQUQyMEUzQzhCNTU1RkUzODcxNDVDQ0Y1ODc2NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVq5XKKyqg2o5UYaVmJwmYjdxl 4jrBTEkK8+2HKL+RRXdoitNceCeNaJ8jqB12A6SOf8KblsNFSNRoZGYutI4vs+w/ keT+TFJrJVrYoZv3FwIi3Pj98MR/iuqxID75Ke5SiwiXRwgxvyMgbWEJ80i982XZ lfDJ0TZ5oErlWeH15jtOr4w81D9fycs/2G1pFzrfaNN0h53U69WXJD+XWNSXGShF PbWJnA+/zf0qTrOBSjTXMyWI87pqGtN72Qm7Tv+MV3JJ1BLOYAvI7BBX8UGp7XCd LtkrQfQFpcu4TuU8BqhFHExbzOKv+MRQyfCzPCn6It99OWUJiH5PTbzfbMidAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUwwXhw9ja0g48i1Vf44cUXM9YdmwwHwYDVR0j BBgwFoAUQgHFT5LmVS5Hqldazu0q8O4pqOcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNkZjQ1YTBlYTY2ODcvMi80MjAxQzU0Rjky RTY1NTJFNDdBQTU3NUFDRUVEMkFGMEVFMjlBOEU3LmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L2Y3OTQ4NzM4LTMyNTUtNDlmOS05YjZjLTljOWYzODk4 OTk1ZC8zLzQyMDFDNTRGOTJFNjU1MkU0N0FBNTc1QUNFRUQyQUYwRUUyOUE4RTcu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvOGE4NDhhZGY5MmVlNGQ4NDAxOTNk ZjQ1YTBlYTY2ODcvMi8zMjYxMzA2NjNhMzYzMjM4MzczYTY2NjQ2MjM1M2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzMzOTM2MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg9ih/21 MA0GCSqGSIb3DQEBCwUAA4IBAQAGDRyCMD1vD/kqx3XJRRdWsqJ+nFCkhemwhWT4 9oV2g0riGqFdU9EwtL/jSkXFK1WOz0VZZG+2np/ZAz5Dq1EWT0mm7zmg7ev4FN25 ASjU+8dysvGFSaC6SQCJ2VPL8KlHZE844PWMe682wmhxSO5MPTuEg2c94xtuQs/W d3NGZVNqTVg8RSwyDODMqFt6GZzojhupxtOGgJr2K7aeHL87zZDUag+pM+Isux/L iYaeOlGgufpU9pJTFGz2hTFU/kQb8XL/n6DV123JY6i64S753ACOau01wvqiqXvk ovv2AfIVhQ5aWzW4nCjaUv4+/75xXVx/d4MuwiNFZtRtTeZP -----END CERTIFICATE-----Generated at Wed Jul 2 03:37:08 2025 by rpki-client