$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62633a3a2f34372d3438203d3e203131393637.roa File: 326130623a346530373a62633a3a2f34372d3438203d3e203131393637.roa (raw, json) Hash identifier: F+6tLLPtA0SmZnC8zwynbIhaJl6rbHJIvwTIghpCuGU= Subject key identifier: D1:D1:5F:79:19:9F:CC:BF:D1:2D:A5:86:06:9D:5C:0F:95:78:91:DD Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 2F1A5E354DFA6B4D014DA1C12C8B82EE4BF071F6 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62633a3a2f34372d3438203d3e203131393637.roa Signing time: Sat 07 Jun 2025 20:18:07 +0000 ROA not before: Sat 07 Jun 2025 20:13:07 +0000 ROA not after: Sat 06 Jun 2026 20:18:07 +0000 asID: 11967 IP address blocks: 2a0b:4e07:bc::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 21:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1a:5e:35:4d:fa:6b:4d:01:4d:a1:c1:2c:8b:82:ee:4b:f0:71:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Jun 7 20:13:07 2025 GMT Not After : Jun 6 20:18:07 2026 GMT Subject: CN=D1D15F79199FCCBFD12DA586069D5C0F957891DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:96:d6:dc:6c:31:44:83:84:7c:f5:25:32:a8: 65:9d:ed:a1:00:a0:de:34:d6:11:09:b4:a2:90:94: 52:d4:e2:90:0e:25:f5:db:e0:d7:bc:8c:0a:f4:a7: e2:f8:16:3f:e7:01:5c:70:dd:4a:ee:55:9d:f0:cd: e8:6e:ba:35:aa:60:a2:c5:76:cc:31:90:40:18:68: d9:d3:1b:cc:5c:b2:00:8b:63:42:ef:c9:c0:51:53: 41:84:ea:c1:54:ca:6a:96:50:f8:a9:ad:b2:34:9c: ed:1a:ff:63:0d:97:93:ce:be:55:d2:a0:15:ca:4b: 71:23:a5:e3:8b:42:53:cb:d3:f8:56:da:25:5b:8c: ec:36:e9:fb:55:59:41:bc:04:1e:98:ae:02:8c:1a: 29:cc:2c:62:75:24:ee:2d:fb:c0:72:2b:47:83:a5: 82:23:b6:1d:1a:dc:80:58:33:c4:d5:1a:ec:e7:95: b8:87:fa:56:b3:46:33:e5:d4:56:49:57:fb:8d:65: 1f:55:29:b8:27:36:71:18:a1:21:b3:86:c3:c3:5c: a7:21:be:7c:95:0b:b1:b8:e5:ff:68:a5:26:0f:b5: 64:f5:92:b1:49:3b:8c:3c:a6:ec:b1:ae:f9:5e:7b: 92:b0:f2:94:35:c9:d5:c6:12:5a:53:fe:2f:ba:f1: 92:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D1:5F:79:19:9F:CC:BF:D1:2D:A5:86:06:9D:5C:0F:95:78:91:DD X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a62633a3a2f34372d3438203d3e203131393637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:bc::/47 Signature Algorithm: sha256WithRSAEncryption 49:d1:a5:56:a7:56:6e:63:ad:5d:32:5c:47:fc:e1:44:50:d3: f7:c3:da:7a:10:63:1c:a6:70:9f:89:63:0a:eb:f5:9c:1e:1e: cf:f2:e6:a0:6f:5b:02:c1:f5:27:5e:5d:59:44:0c:b6:c1:42: 38:c5:42:44:0f:7f:e1:b0:2d:ce:7f:a8:e4:e8:c8:b6:4b:51: 5f:cb:e8:e6:a6:14:26:f8:17:66:7f:ba:e6:99:9e:57:a7:dc: 71:61:26:2c:ab:39:97:ee:9f:e1:77:c3:3d:c4:32:bd:83:9b: f0:90:02:25:a7:93:22:8a:d0:1d:66:e1:4b:23:83:ec:ae:d6: 59:eb:c8:d1:4a:7f:5c:f1:47:3b:b6:90:32:b1:be:b8:79:9a: a5:c3:54:05:1b:41:c5:a3:5a:67:b2:36:78:3f:ed:da:57:9c: 67:76:8a:24:da:0c:7c:87:19:86:e3:ff:6d:6b:3c:ac:5b:e6: 44:de:b5:f2:2a:56:7e:dc:ee:09:d2:dd:35:33:14:36:dc:8f: 15:7a:85:07:34:d1:71:19:c9:8e:53:3b:e4:87:19:3b:9c:c0: 9d:18:5e:f8:07:00:94:dd:7c:6b:bc:fd:fa:58:6a:b5:1f:7f: 21:76:5e:d1:45:2d:1c:02:08:52:5d:00:02:bc:cd:8e:22:07: db:14:40:d8 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIULxpeNU36a00BTaHBLIuC7kvwcfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNTA2MDcyMDEzMDdaFw0yNjA2MDYyMDE4MDdaMDMxMTAvBgNV BAMTKEQxRDE1Rjc5MTk5RkNDQkZEMTJEQTU4NjA2OUQ1QzBGOTU3ODkxREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeltbcbDFEg4R89SUyqGWd7aEA oN401hEJtKKQlFLU4pAOJfXb4Ne8jAr0p+L4Fj/nAVxw3UruVZ3wzehuujWqYKLF dswxkEAYaNnTG8xcsgCLY0LvycBRU0GE6sFUymqWUPiprbI0nO0a/2MNl5POvlXS oBXKS3EjpeOLQlPL0/hW2iVbjOw26ftVWUG8BB6YrgKMGinMLGJ1JO4t+8ByK0eD pYIjth0a3IBYM8TVGuznlbiH+lazRjPl1FZJV/uNZR9VKbgnNnEYoSGzhsPDXKch vnyVC7G45f9opSYPtWT1krFJO4w8puyxrvlee5Kw8pQ1ydXGElpT/i+68ZJNAgMB AAGjggJkMIICYDAdBgNVHQ4EFgQU0dFfeRmfzL/RLaWGBp1cD5V4kd0wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGmBggrBgEFBQcBCwSBmTCBljCBkwYIKwYBBQUHMAuGgYZyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTYyNjMzYTNhMmYzNDM3 MmQzNDM4MjAzZDNlMjAzMTMxMzkzNjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBKgtOBwC8MA0GCSqG SIb3DQEBCwUAA4IBAQBJ0aVWp1ZuY61dMlxH/OFEUNP3w9p6EGMcpnCfiWMK6/Wc Hh7P8uagb1sCwfUnXl1ZRAy2wUI4xUJED3/hsC3Of6jk6Mi2S1Ffy+jmphQm+Bdm f7rmmZ5Xp9xxYSYsqzmX7p/hd8M9xDK9g5vwkAIlp5MiitAdZuFLI4PsrtZZ68jR Sn9c8Uc7tpAysb64eZqlw1QFG0HFo1pnsjZ4P+3aV5xndook2gx8hxmG4/9tazys W+ZE3rXyKlZ+3O4J0t01MxQ23I8VeoUHNNFxGcmOUzvkhxk7nMCdGF74BwCU3Xxr vP36WGq1H38hdl7RRS0cAghSXQACvM2OIgfbFEDY -----END CERTIFICATE-----Generated at Mon Jun 16 13:39:08 2025 by rpki-client