$ rpki-client -vvf rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/323632303a64393a323030303a3a2f34382d3438203d3e20343031373630.roa File: 323632303a64393a323030303a3a2f34382d3438203d3e20343031373630.roa (raw, json) Hash identifier: l+3L9Wd8FLDIoygTmQsS9OhPrvuI1TzPWEH0F4vahKU= Subject key identifier: BF:F2:C7:A4:86:D6:B5:28:FC:64:BD:3B:76:D4:BC:81:15:1B:92:EE Certificate issuer: /CN=cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf Certificate serial: 2DA4C83B07D36B068DD98733A78B71E1181C2619 Authority key identifier: EA:01:8B:25:10:4B:F7:51:B2:B8:90:0C:54:B2:13:3F:C3:C7:9C:EC Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer Subject info access: rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/323632303a64393a323030303a3a2f34382d3438203d3e20343031373630.roa Signing time: Tue 10 Jun 2025 18:26:32 +0000 ROA not before: Tue 10 Jun 2025 18:21:32 +0000 ROA not after: Tue 09 Jun 2026 18:26:32 +0000 asID: 401760 IP address blocks: 2620:d9:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.crl rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/e91c6482-7261-4772-b3f7-fd5fa4ae995c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/e91c6482-7261-4772-b3f7-fd5fa4ae995c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a73420cb-b3cc-4b03-bda7-1be204933ae5.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a4:c8:3b:07:d3:6b:06:8d:d9:87:33:a7:8b:71:e1:18:1c:26:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf Validity Not Before: Jun 10 18:21:32 2025 GMT Not After : Jun 9 18:26:32 2026 GMT Subject: CN=BFF2C7A486D6B528FC64BD3B76D4BC81151B92EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:88:c1:04:d7:8f:95:f3:bb:24:a5:53:a0:71: 24:62:fa:e8:2c:7f:76:d9:54:e5:a3:4c:e9:1a:c4: 13:1e:8a:ba:2a:f3:d0:d2:da:42:76:66:25:9f:f3: eb:c4:6e:13:fd:cf:01:57:da:92:cf:89:f9:40:55: e9:ba:48:e8:c5:d5:78:57:66:25:50:95:59:ec:1e: b0:cb:86:5a:f4:e2:a0:5e:27:e4:c4:95:b4:83:02: ea:de:82:42:e9:6d:3a:e4:6b:97:4c:2f:aa:e2:fc: 4b:db:47:ad:cb:c5:ee:a7:ef:56:70:b3:a1:45:ec: 49:53:a0:f7:bb:ef:36:b8:eb:66:5c:79:2b:0c:02: b5:77:2d:1d:99:7a:ef:ca:95:9f:a3:9b:ea:ee:d9: a6:0d:6b:db:4c:a7:6e:e4:53:54:ea:b0:f1:c2:8c: 6d:38:13:82:0d:79:3f:ae:d6:14:b8:7e:b7:2a:ad: 6b:5f:ac:3d:9d:c6:1a:65:8f:c9:5d:d1:94:f4:dd: ef:13:46:81:91:04:d4:10:13:b5:cd:3f:78:3a:ef: 7d:dd:ed:e6:67:ba:96:75:d0:a5:98:f1:98:5b:a7: 02:8f:04:d1:c8:6a:27:f9:d3:57:3f:25:c7:a7:36: bd:b7:78:57:c0:af:89:3f:1f:19:80:42:fa:20:2f: 88:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F2:C7:A4:86:D6:B5:28:FC:64:BD:3B:76:D4:BC:81:15:1B:92:EE X509v3 Authority Key Identifier: keyid:EA:01:8B:25:10:4B:F7:51:B2:B8:90:0C:54:B2:13:3F:C3:C7:9C:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/EA018B25104BF751B2B8900C54B2133FC3C79CEC.crl Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/e91c6482-7261-4772-b3f7-fd5fa4ae995c/cb1ee00ccae4705dab326a95a429cd234025a167151c2a6faf.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/3b01b744c8b84d72b2aa6247a2c06401/0/323632303a64393a323030303a3a2f34382d3438203d3e20343031373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:d9:2000::/48 Signature Algorithm: sha256WithRSAEncryption 56:76:02:fe:31:2f:d7:5b:96:1f:57:f0:75:22:fc:c4:ac:eb: 79:96:34:c8:34:71:6b:bf:2c:61:59:8f:4a:79:bb:c5:00:96: 8d:5f:63:fb:95:b7:d6:c3:3e:ef:a8:ba:9b:e2:94:89:ab:3d: 66:1b:c0:87:fd:96:62:a4:df:66:8b:be:29:45:3e:46:96:c6: 0b:e9:dc:d5:7f:72:97:9c:d2:7d:4b:fe:e8:96:8b:b9:85:ea: 83:e9:de:99:d1:d9:88:bf:f9:d0:d9:ed:b7:49:63:3d:71:ec: 86:85:10:47:42:02:6b:76:ac:9e:0d:9e:dd:2d:d2:64:ca:d2: 46:55:ef:43:6f:1d:7e:4d:a8:3b:16:47:6d:32:f6:cf:72:4b: 53:0e:36:7e:d0:cf:a2:7b:9b:62:cc:98:a1:73:4b:d4:fe:fa: f5:93:70:2f:e1:b7:cf:df:b3:df:50:6e:d0:08:3e:89:1e:4e: 33:38:5c:8d:7c:bc:05:af:ba:5f:b9:e2:21:45:f8:19:04:9c: 15:d9:a5:47:f2:df:db:9d:2f:96:f2:36:d6:6c:a4:fe:45:e8: ac:a3:20:f8:91:77:69:59:14:de:f1:13:0f:1f:84:74:ac:61: 0f:42:bb:67:4c:d2:15:70:74:94:01:3b:36:02:63:e9:75:66: 2c:54:1e:0a -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIULaTIOwfTawaN2Yczp4tx4RgcJhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyY2IxZWUwMGNjYWU0NzA1ZGFiMzI2YTk1YTQyOWNkMjM0 MDI1YTE2NzE1MWMyYTZmYWYwHhcNMjUwNjEwMTgyMTMyWhcNMjYwNjA5MTgyNjMy WjAzMTEwLwYDVQQDEyhCRkYyQzdBNDg2RDZCNTI4RkM2NEJEM0I3NkQ0QkM4MTE1 MUI5MkVFMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYjBBNePlfO7 JKVToHEkYvroLH922VTlo0zpGsQTHoq6KvPQ0tpCdmYln/PrxG4T/c8BV9qSz4n5 QFXpukjoxdV4V2YlUJVZ7B6wy4Za9OKgXifkxJW0gwLq3oJC6W065GuXTC+q4vxL 20ety8Xup+9WcLOhRexJU6D3u+82uOtmXHkrDAK1dy0dmXrvypWfo5vq7tmmDWvb TKdu5FNU6rDxwoxtOBOCDXk/rtYUuH63Kq1rX6w9ncYaZY/JXdGU9N3vE0aBkQTU EBO1zT94Ou993e3mZ7qWddClmPGYW6cCjwTRyGon+dNXPyXHpza9t3hXwK+JPx8Z gEL6IC+ImwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFL/yx6SG1rUo/GS9O3bUvIEV G5LuMB8GA1UdIwQYMBaAFOoBiyUQS/dRsriQDFSyEz/Dx5zsMA4GA1UdDwEB/wQE AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l dC9yZXBvc2l0b3J5LzNiMDFiNzQ0YzhiODRkNzJiMmFhNjI0N2EyYzA2NDAxLzAv RUEwMThCMjUxMDRCRjc1MUIyQjg5MDBDNTRCMjEzM0ZDM0M3OUNFQy5jcmwwgfMG CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0 OTMzYWU1L2U5MWM2NDgyLTcyNjEtNDc3Mi1iM2Y3LWZkNWZhNGFlOTk1Yy9jYjFl ZTAwY2NhZTQ3MDVkYWIzMjZhOTVhNDI5Y2QyMzQwMjVhMTY3MTUxYzJhNmZhZi5j ZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5jOi8vcnBr aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS8zYjAxYjc0NGM4Yjg0ZDcyYjJhYTYy NDdhMmMwNjQwMS8wLzMyMzYzMjMwM2E2NDM5M2EzMjMwMzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDM0MzAzMTM3MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACYgANkgADANBgkq hkiG9w0BAQsFAAOCAQEAVnYC/jEv11uWH1fwdSL8xKzreZY0yDRxa78sYVmPSnm7 xQCWjV9j+5W31sM+76i6m+KUias9ZhvAh/2WYqTfZou+KUU+RpbGC+nc1X9yl5zS fUv+6JaLuYXqg+nemdHZiL/50Nntt0ljPXHshoUQR0ICa3asng2e3S3SZMrSRlXv Q28dfk2oOxZHbTL2z3JLUw42ftDPonubYsyYoXNL1P769ZNwL+G3z9+z31Bu0Ag+ iR5OMzhcjXy8Ba+6X7niIUX4GQScFdmlR/Lf250vlvI21myk/kXorKMg+JF3aVkU 3vETDx+EdKxhD0K7Z0zSFXB0lAE7NgJj6XVmLFQeCg== -----END CERTIFICATE-----Generated at Mon Jun 16 11:19:23 2025 by rpki-client