$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: e1QWYBhrM3abtZrfhNJiczWNn8E6f6iAOfu7AefYiVI= Subject key identifier: B5:DB:AD:C1:75:95:1D:BB:EC:31:62:6E:5F:C5:B1:D0:E3:B7:87:96 Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 2AF56B6AF642D420B98666EB2652C40B2AB0FCDA Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa Signing time: Fri 13 Mar 2026 14:36:56 +0000 ROA not before: Fri 13 Mar 2026 14:31:56 +0000 ROA not after: Fri 12 Mar 2027 14:36:56 +0000 asID: 214543 IP address blocks: 2a0b:4e07:2a0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 15:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f5:6b:6a:f6:42:d4:20:b9:86:66:eb:26:52:c4:0b:2a:b0:fc:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Mar 13 14:31:56 2026 GMT Not After : Mar 12 14:36:56 2027 GMT Subject: CN=B5DBADC175951DBBEC31626E5FC5B1D0E3B78796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d5:74:11:31:3d:c6:3c:a3:6b:ec:3e:44:85: cc:80:92:ab:b2:7a:65:20:15:e2:39:9b:a5:e9:5f: 20:69:e8:4a:91:9e:82:0f:fc:28:2d:36:50:50:3e: 43:0b:11:34:a2:9c:20:09:4b:51:ab:85:97:dc:71: 3b:af:b1:ca:87:e9:a1:25:84:32:d4:53:22:77:d3: 6e:46:e7:d2:d5:04:3f:b0:0d:43:88:1a:7c:8a:62: 45:c4:e2:a7:d0:62:6f:24:ed:e3:cd:81:de:33:94: bb:fc:a8:a0:3d:16:05:5b:25:16:ca:e4:c5:8b:44: 78:3c:2f:8c:3d:29:57:67:de:55:38:1a:86:5c:9b: cf:8a:b3:37:3a:87:a6:1d:16:de:6a:82:d9:6d:a7: 27:c3:ba:54:98:e7:11:1f:13:48:06:20:61:26:da: b6:f1:a3:b1:9c:fa:f1:a6:c0:6e:99:6f:bc:f6:03: c3:14:40:7f:ce:1f:06:39:59:ae:51:eb:da:d5:36: 23:ca:48:6a:79:1a:1b:58:bd:6b:81:7d:8f:7a:38: 73:9c:19:17:3e:c1:2b:8d:5c:a0:1a:e6:90:6c:52: c3:d9:57:95:e3:0c:a8:d2:ff:62:6f:16:7e:07:82: 15:b0:e5:79:f0:62:b2:b6:1c:b4:75:e0:a9:94:15: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DB:AD:C1:75:95:1D:BB:EC:31:62:6E:5F:C5:B1:D0:E3:B7:87:96 X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2a0b::/48 Signature Algorithm: sha256WithRSAEncryption 81:fc:8f:2e:26:99:17:7e:b0:47:c4:8d:7b:b6:b1:32:85:55: 63:01:b4:89:ee:90:3d:4d:e9:cc:26:3f:25:a6:c4:b9:35:da: bd:89:bd:df:75:d9:0f:40:68:35:65:b6:7e:35:39:7a:73:d0: 5c:f5:16:f6:a8:6c:94:a6:8b:87:15:86:f0:f8:ed:e7:82:37: e7:93:99:eb:4b:e4:af:84:8f:e5:53:29:47:8c:14:6f:2e:54: 19:f5:a6:ce:f0:ee:89:35:08:38:d9:01:53:d7:4a:02:cc:58: ba:03:ab:e6:59:6f:10:b6:fa:31:94:da:ad:b3:7e:bd:2d:11: 52:18:03:b8:a1:bb:93:78:73:94:d0:44:18:97:f0:66:f0:5f: f0:b2:d0:81:a5:1b:60:16:cd:11:15:d5:c3:25:52:b0:cf:69: 17:12:c8:96:96:d7:d3:f5:45:9d:d1:d8:70:37:e3:cf:4e:b0: 41:45:36:25:d7:92:eb:72:86:cc:2d:8c:01:96:f9:d6:42:49: c9:91:e8:61:0f:83:b9:f4:09:f9:d5:cf:93:51:5e:30:91:2e: 7e:6a:49:f3:a2:63:38:cf:9e:b5:c0:1b:e0:60:9e:e8:0c:03: cb:f6:58:23:00:b2:6d:ba:2d:cf:3e:3d:ab:5c:a9:68:15:56: eb:4a:cc:d9 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIUKvVravZC1CC5hmbrJlLECyqw/NowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjAzMTMxNDMxNTZaFw0yNzAzMTIxNDM2NTZaMDMxMTAvBgNV BAMTKEI1REJBREMxNzU5NTFEQkJFQzMxNjI2RTVGQzVCMUQwRTNCNzg3OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd1XQRMT3GPKNr7D5EhcyAkquy emUgFeI5m6XpXyBp6EqRnoIP/CgtNlBQPkMLETSinCAJS1GrhZfccTuvscqH6aEl hDLUUyJ3025G59LVBD+wDUOIGnyKYkXE4qfQYm8k7ePNgd4zlLv8qKA9FgVbJRbK 5MWLRHg8L4w9KVdn3lU4GoZcm8+Kszc6h6YdFt5qgtltpyfDulSY5xEfE0gGIGEm 2rbxo7Gc+vGmwG6Zb7z2A8MUQH/OHwY5Wa5R69rVNiPKSGp5GhtYvWuBfY96OHOc GRc+wSuNXKAa5pBsUsPZV5XjDKjS/2JvFn4HghWw5XnwYrK2HLR14KmUFRXNAgMB AAGjggJqMIICZjAdBgNVHQ4EFgQUtdutwXWVHbvsMWJuX8Wx0OO3h5YwHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTMyNjEzMDYyM2EzYTJm MzQzODJkMzQzODIwM2QzZTIwMzIzMTM0MzUzNDMzLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgtOByoL MA0GCSqGSIb3DQEBCwUAA4IBAQCB/I8uJpkXfrBHxI17trEyhVVjAbSJ7pA9TenM Jj8lpsS5Ndq9ib3fddkPQGg1ZbZ+NTl6c9Bc9Rb2qGyUpouHFYbw+O3ngjfnk5nr S+SvhI/lUylHjBRvLlQZ9abO8O6JNQg42QFT10oCzFi6A6vmWW8QtvoxlNqts369 LRFSGAO4obuTeHOU0EQYl/Bm8F/wstCBpRtgFs0RFdXDJVKwz2kXEsiWltfT9UWd 0dhwN+PPTrBBRTYl15LrcobMLYwBlvnWQknJkehhD4O59An51c+TUV4wkS5+aknz omM4z561wBvgYJ7oDAPL9lgjALJtui3PPj2rXKloFVbrSszZ -----END CERTIFICATE-----Generated at Thu Mar 26 02:50:17 2026 by rpki-client