$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3566313a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a3566313a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: O38DBOPbY3kCha1gbLjB0TvW10SeN5090dW+MO9Ehs4= Subject key identifier: 34:BE:A9:C7:0D:76:27:A8:34:7D:4B:1D:24:6E:97:E8:C2:1B:07:9A Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 1F27D2313BD0037AC31F9E711BCCE48BCEE44C1D Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3566313a3a2f34382d3438203d3e20323134353433.roa Signing time: Fri 13 Mar 2026 14:36:56 +0000 ROA not before: Fri 13 Mar 2026 14:31:56 +0000 ROA not after: Fri 12 Mar 2027 14:36:56 +0000 asID: 214543 IP address blocks: 2a0b:4e07:5f1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 07:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:27:d2:31:3b:d0:03:7a:c3:1f:9e:71:1b:cc:e4:8b:ce:e4:4c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Mar 13 14:31:56 2026 GMT Not After : Mar 12 14:36:56 2027 GMT Subject: CN=34BEA9C70D7627A8347D4B1D246E97E8C21B079A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:56:e8:92:c9:98:72:7b:87:27:ab:86:b6:d1: 7b:14:33:78:3b:44:23:c7:c6:d4:4c:f8:b3:87:fa: a8:1e:e5:3e:ab:32:6e:dd:e8:85:7e:44:5a:bc:e8: bc:71:f7:80:06:59:cd:e3:5e:21:2d:1b:eb:75:ae: 90:cf:07:f0:85:9d:ab:c1:61:b7:7e:ba:8c:6d:e8: 29:4e:76:76:20:e7:56:3d:0d:f8:b8:97:4a:d2:32: 98:07:3b:5b:a6:fd:93:38:cb:1f:27:52:6c:f6:3e: 53:d8:42:e3:c6:29:7d:6d:fe:79:7c:d2:95:ae:54: e5:71:63:bd:e7:b1:b9:60:35:80:a4:22:22:19:47: d9:7f:a7:aa:21:f6:83:df:ab:45:62:39:c1:46:e2: 56:68:bd:97:fb:33:d9:96:d0:59:c5:ed:65:b3:46: c5:ca:90:ab:dc:56:f8:de:48:bc:78:02:eb:7c:c4: 1d:ce:d0:70:90:c7:93:84:e9:f8:ad:32:e2:3d:2c: 8d:c5:0f:56:6e:b7:f7:55:15:2d:cf:90:2e:d8:a5: 70:51:38:a3:cd:fd:d1:0b:e7:08:86:3b:bf:3a:44: 2e:db:31:d9:35:b4:87:a0:01:8d:db:97:f0:02:67: aa:02:b4:93:64:15:94:e6:4d:45:b4:f8:1c:27:34: 20:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BE:A9:C7:0D:76:27:A8:34:7D:4B:1D:24:6E:97:E8:C2:1B:07:9A X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a3566313a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:5f1::/48 Signature Algorithm: sha256WithRSAEncryption 5f:5a:4e:48:3f:0b:eb:15:80:9b:1f:b3:4d:fb:4b:59:fd:03: b6:80:41:b7:7e:12:e0:8b:9a:a2:d9:c1:6c:8e:90:c0:a4:0f: d6:80:c6:7e:93:0e:be:08:9e:51:66:b3:35:0a:bb:24:b7:60: 35:aa:5d:5d:8a:7d:dd:b9:b2:ca:07:85:4e:9d:5a:fb:f7:3b: 8b:f3:72:e9:43:10:29:1e:05:ae:06:2e:b0:8e:29:a7:3b:7b: b8:31:41:10:56:9e:51:7b:3b:b5:9c:be:12:f2:ce:e4:1d:73: 88:85:d3:af:33:e8:46:52:a6:5c:a8:cd:f3:0e:ef:4f:2f:cb: f8:0b:19:a8:4f:be:19:a1:96:d8:36:e7:85:d4:05:0c:8b:79: f4:a6:44:d7:9a:c6:fd:cd:26:fd:e7:12:1b:b3:e3:0e:fa:77: 8e:36:21:f5:ea:ee:3c:9a:7f:48:66:b5:dd:18:d3:bc:b2:f9: 21:bc:90:80:f4:e7:c3:6b:d7:13:96:f1:71:5e:90:0c:b1:a5: 56:e2:f4:2d:b8:bb:35:f9:54:c5:54:8d:c0:08:29:f8:e4:df: b8:d9:bb:45:0a:eb:32:7e:64:71:16:a8:8f:05:49:ab:10:4a: e9:56:ca:4c:76:48:f0:8b:bc:63:09:5e:2b:4f:d8:5a:8b:4d: a4:7f:e4:a4 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIUHyfSMTvQA3rDH55xG8zki87kTB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjAzMTMxNDMxNTZaFw0yNzAzMTIxNDM2NTZaMDMxMTAvBgNV BAMTKDM0QkVBOUM3MEQ3NjI3QTgzNDdENEIxRDI0NkU5N0U4QzIxQjA3OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYVuiSyZhye4cnq4a20XsUM3g7 RCPHxtRM+LOH+qge5T6rMm7d6IV+RFq86Lxx94AGWc3jXiEtG+t1rpDPB/CFnavB Ybd+uoxt6ClOdnYg51Y9Dfi4l0rSMpgHO1um/ZM4yx8nUmz2PlPYQuPGKX1t/nl8 0pWuVOVxY73nsblgNYCkIiIZR9l/p6oh9oPfq0ViOcFG4lZovZf7M9mW0FnF7WWz RsXKkKvcVvjeSLx4Aut8xB3O0HCQx5OE6fitMuI9LI3FD1Zut/dVFS3PkC7YpXBR OKPN/dEL5wiGO786RC7bMdk1tIegAY3bl/ACZ6oCtJNkFZTmTUW0+BwnNCAHAgMB AAGjggJoMIICZDAdBgNVHQ4EFgQUNL6pxw12J6g0fUsdJG6X6MIbB5owHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGqBggrBgEFBQcBCwSBnTCBmjCBlwYIKwYBBQUHMAuGgYpyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM1NjYzMTNhM2EyZjM0 MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoLTgcF8TAN BgkqhkiG9w0BAQsFAAOCAQEAX1pOSD8L6xWAmx+zTftLWf0DtoBBt34S4IuaotnB bI6QwKQP1oDGfpMOvgieUWazNQq7JLdgNapdXYp93bmyygeFTp1a+/c7i/Ny6UMQ KR4FrgYusI4ppzt7uDFBEFaeUXs7tZy+EvLO5B1ziIXTrzPoRlKmXKjN8w7vTy/L +AsZqE++GaGW2DbnhdQFDIt59KZE15rG/c0m/ecSG7PjDvp3jjYh9eruPJp/SGa1 3RjTvLL5IbyQgPTnw2vXE5bxcV6QDLGlVuL0Lbi7NflUxVSNwAgp+OTfuNm7RQrr Mn5kcRaojwVJqxBK6VbKTHZI8Iu8YwleK0/YWotNpH/kpA== -----END CERTIFICATE-----Generated at Thu Mar 26 17:43:48 2026 by rpki-client